OXDEV-9919: Some fixes and refactorings during review

Author: MarcelOxid

CHANGELOG.md

@@ -8,6 +8,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ### Added
 - Extracted reusable Twig code into captcha.html.twig and password.html.twig
+- Facebook login OAuth-provider
 
 ### Changed
 - Show multiple errors on invalid password

services.yaml

@@ -2,6 +2,7 @@ imports:
   - { resource: src/Captcha/services.yaml }
   - { resource: src/PasswordPolicy/services.yaml }
   - { resource: src/Authentication/services.yaml }
+  - { resource: src/Shared/services.yaml }
 
 services:
   _defaults:

src/Authentication/OAuth2/Infrastructure/Factory/OAuth2UserDTOFactory.php

@@ -0,0 +1,26 @@
+<?php
+
+/**
+ * Copyright © OXID eSales AG. All rights reserved.
+ * See LICENSE file for license details.
+ */
+
+declare(strict_types=1);
+
+namespace OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory;
+
+use League\OAuth2\Client\Provider\FacebookUser;
+use OxidEsales\SecurityModule\Authentication\OAuth2\DTO\OAuth2UserDTO;
+use OxidEsales\SecurityModule\Authentication\OAuth2\DTO\OAuth2UserDTOInterface;
+
+class OAuth2UserDTOFactory implements OAuth2UserDTOFactoryInterface
+{
+    public function createFromFacebookUser(FacebookUser $facebookUser): OAuth2UserDTOInterface
+    {
+        return new OAuth2UserDTO(
+            $facebookUser->getFirstName(),
+            $facebookUser->getLastName(),
+            $facebookUser->getEmail(),
+        );
+    }
+}

src/Authentication/OAuth2/Infrastructure/Factory/OAuth2UserDTOFactoryInterface.php

@@ -0,0 +1,16 @@
+<?php
+
+/**
+ * Copyright © OXID eSales AG. All rights reserved.
+ * See LICENSE file for license details.
+ */
+
+namespace OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory;
+
+use League\OAuth2\Client\Provider\FacebookUser;
+use OxidEsales\SecurityModule\Authentication\OAuth2\DTO\OAuth2UserDTOInterface;
+
+interface OAuth2UserDTOFactoryInterface
+{
+    public function createFromFacebookUser(FacebookUser $facebookUser): OAuth2UserDTOInterface;
+}

src/Authentication/OAuth2/Infrastructure/Factory/services.yaml

@@ -8,3 +8,6 @@ services:
 
   OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory\UserDTOFactoryInterface:
     class: OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory\UserDTOFactory
+
+  OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory\OAuth2UserDTOFactoryInterface:
+    class: OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory\OAuth2UserDTOFactory

src/Authentication/OAuth2/Infrastructure/Provider/Facebook/FacebookAdapter.php

@@ -12,8 +12,8 @@
 use League\OAuth2\Client\Provider\FacebookUser;
 use League\OAuth2\Client\Token\AccessToken;
 use League\OAuth2\Client\Token\AccessTokenInterface;
-use OxidEsales\SecurityModule\Authentication\OAuth2\DTO\OAuth2UserDTO;
 use OxidEsales\SecurityModule\Authentication\OAuth2\DTO\OAuth2UserDTOInterface;
+use OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory\OAuth2UserDTOFactoryInterface;
 use OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Provider\ProviderAdapterInterface;
 use OxidEsales\SecurityModule\Authentication\OAuth2\Service\ModuleSettingsServiceInterface;
 use League\OAuth2\Client\Provider\Facebook as FacebookProvider;
@@ -25,9 +25,10 @@ class FacebookAdapter implements ProviderAdapterInterface
 
     public function __construct(
         private readonly ModuleSettingsServiceInterface $moduleSettings,
-        private readonly FacebookProviderFactoryInterface $facebookProvider,
+        private readonly FacebookProviderFactoryInterface $facebookProviderFactory,
+        private readonly OAuth2UserDTOFactoryInterface $oAuth2UserDTOFactory,
     ) {
-        $this->provider = $this->facebookProvider->create();
+        $this->provider = $this->facebookProviderFactory->create();
     }
 
     public function isActive(): bool
@@ -59,10 +60,6 @@ public function getUserInfo(AccessTokenInterface $token): OAuth2UserDTOInterface
         /** @var FacebookUser $user */
         $user = $this->provider->getResourceOwner($token);
 
-        return new OAuth2UserDTO(
-            $user->getFirstName(),
-            $user->getLastName(),
-            $user->getEmail(),
-        );
+        return $this->oAuth2UserDTOFactory->createFromFacebookUser($user);
     }
 }

src/Authentication/OAuth2/Infrastructure/Provider/ProviderAdapterInterface.php

@@ -7,6 +7,7 @@
 
 namespace OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Provider;
 
+use Exception;
 use League\OAuth2\Client\Token\AccessTokenInterface;
 use OxidEsales\SecurityModule\Authentication\OAuth2\DTO\OAuth2UserDTOInterface;
 
@@ -35,6 +36,7 @@ public function getAccessToken(string $code): AccessTokenInterface;
     /**
      * Fetch user information (claims) from the provider using the access token.
      * Should return UserInterface
+     * @throws Exception
      */
     public function getUserInfo(AccessTokenInterface $token): OAuth2UserDTOInterface;
 }

src/Authentication/OAuth2/Infrastructure/Repository/UserRepository.php

@@ -14,12 +14,14 @@
 use OxidEsales\SecurityModule\Authentication\OAuth2\Exception\UserNotFoundException;
 use OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory\UserDTOFactoryInterface;
 use OxidEsales\SecurityModule\Authentication\OAuth2\Infrastructure\Factory\UserFactoryInterface;
+use OxidEsales\SecurityModule\Shared\Service\PasswordGeneratorServiceInterface;
 
 class UserRepository implements UserRepositoryInterface
 {
     public function __construct(
         private UserFactoryInterface $userFactory,
         private UserDTOFactoryInterface $userDTOFactory,
+        private PasswordGeneratorServiceInterface $passwordGenerator
     ) {
     }
 
@@ -28,10 +30,7 @@ public function getUserByEmail(string $username): UserDTOInterface
         $userModel = $this->userFactory->create();
 
         $userId = $userModel->getIdByUserName($username);
-        if (
-            !$userId ||
-            !$userModel->load($userId)
-        ) {
+        if (!$userId || !$userModel->load($userId)) {
             throw new UserNotFoundException();
         }
 
@@ -45,9 +44,8 @@ public function createUser(OAuth2UserDTOInterface $userDTO): UserDTOInterface
             'OXFNAME'    => $userDTO->getFirstName(),
             'OXLNAME'    => $userDTO->getLastName(),
             'OXUSERNAME' => $userDTO->getEmail(),
-            'OXREGISTER' => date('Y-m-d H:i:s')
         ]);
-        $userModel->setPassword(bin2hex(random_bytes(20)));
+        $userModel->setPassword($this->passwordGenerator->generatePasswordForOAuthUser());
         $userModel->createUser();
 
         return $this->userDTOFactory->createFromModel($userModel);

src/Authentication/OAuth2/Infrastructure/services.yaml

@@ -2,8 +2,3 @@ imports:
   - { resource: Factory/services.yaml }
   - { resource: Provider/services.yaml }
   - { resource: Repository/services.yaml }
-
-services:
-  _defaults:
-    autowire: true
-    public: false

src/Authentication/OAuth2/Service/UserService.php

@@ -30,14 +30,14 @@ public function login(OAuth2UserDTOInterface $auth2UserDTO): void
         }
 
         try {
-            $userModel = $this->userRepository->getUserByEmail($auth2UserDTO->getEmail());
-            if ($userModel->isBlocked()) {
+            $userDTO = $this->userRepository->getUserByEmail($auth2UserDTO->getEmail());
+            if ($userDTO->isBlocked()) {
                 throw new UserBlockedException();
             }
         } catch (UserNotFoundException $e) {
-            $userModel = $this->userRepository->createUser($auth2UserDTO);
+            $userDTO = $this->userRepository->createUser($auth2UserDTO);
         }
 
-        $this->session->set('usr', $userModel->getId());
+        $this->session->set('usr', $userDTO->getId());
     }
 }