symfony
diff --git a/‎src/Symfony/Component/Security/Core/Authentication/AuthenticationProviderManager.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Core/Authentication/AuthenticationProviderManager.php
+11Lines changed: 11 additions & 0 deletions b/‎src/Symfony/Component/Security/Core/Authentication/AuthenticationProviderManager.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Core/Authentication/AuthenticationProviderManager.php
+11Lines changed: 11 additions & 0 deletions
diff --git a/‎src/Symfony/Component/Security/Core/AuthenticationEvents.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Core/AuthenticationEvents.php
+24-1Lines changed: 24 additions & 1 deletion b/‎src/Symfony/Component/Security/Core/AuthenticationEvents.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Core/AuthenticationEvents.php
+24-1Lines changed: 24 additions & 1 deletion
diff --git a/‎src/Symfony/Component/Security/Core/Event/AuthenticationSensitiveEvent.php
Copy file name to clipboard
+96Lines changed: 96 additions & 0 deletions b/‎src/Symfony/Component/Security/Core/Event/AuthenticationSensitiveEvent.php
Copy file name to clipboard
+96Lines changed: 96 additions & 0 deletions
diff --git a/‎src/Symfony/Component/Security/Core/Tests/Authentication/AuthenticationProviderManagerTest.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Core/Tests/Authentication/AuthenticationProviderManagerTest.php
+42-10Lines changed: 42 additions & 10 deletions b/‎src/Symfony/Component/Security/Core/Tests/Authentication/AuthenticationProviderManagerTest.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Core/Tests/Authentication/AuthenticationProviderManagerTest.php
+42-10Lines changed: 42 additions & 10 deletions
@@ -15,6 +15,7 @@
 use Symfony\Component\Security\Core\Event\AuthenticationEvent;
 use Symfony\Component\Security\Core\AuthenticationEvents;
 use Symfony\Component\EventDispatcher\EventDispatcherInterface;
+use Symfony\Component\Security\Core\Event\AuthenticationSensitiveEvent;
 use Symfony\Component\Security\Core\Exception\AccountStatusException;
 use Symfony\Component\Security\Core\Exception\AuthenticationException;
 use Symfony\Component\Security\Core\Exception\ProviderNotFoundException;
@@ -32,6 +33,10 @@ class AuthenticationProviderManager implements AuthenticationManagerInterface
 {
     private $providers;
     private $eraseCredentials;
+
+    /**
+     * @var EventDispatcherInterface|null
+     */
     private $eventDispatcher;
 
     /**
@@ -62,6 +67,7 @@ public function authenticate(TokenInterface $token)
     {
         $lastException = null;
         $result = null;
+        $providerClassName = null;
 
         foreach ($this->providers as $provider) {
             if (!$provider instanceof AuthenticationProviderInterface) {
@@ -76,6 +82,7 @@ public function authenticate(TokenInterface $token)
                 $result = $provider->authenticate($token);
 
                 if (null !== $result) {
+                    $providerClassName = get_class($provider);
                     break;
                 }
             } catch (AccountStatusException $e) {
@@ -88,6 +95,10 @@ public function authenticate(TokenInterface $token)
         }
 
         if (null !== $result) {
+            if (null !== $this->eventDispatcher) {
+                $this->eventDispatcher->dispatch(AuthenticationEvents::AUTHENTICATION_SUCCESS_SENSITIVE, new AuthenticationSensitiveEvent($token, $result, $providerClassName));
+            }
+
             if (true === $this->eraseCredentials) {
                 $result->eraseCredentials();
             }
 
@@ -13,9 +13,32 @@
 
 final class AuthenticationEvents
 {
+    /**
+     * The AUTHENTICATION_SUCCESS_SENSITIVE event occurs after a user is
+     * authenticated by one provider. It is dispatched immediately *prior* to
+     * the companion AUTHENTICATION_SUCCESS event.
+     *
+     * This event *does* contain user credentials and other sensitive data. This
+     * enables rehashing and other credentials-aware actions. Listeners and
+     * subscribers of this event carry the added responsibility of passing
+     * around sensitive data and usage should be limited to cases where this
+     * extra information is explicitly utilized; otherwise, use the
+     * AUTHENTICATION_SUCCESS event instead.
+     *
+     * @Event("Symfony\Component\Security\Core\Event\AuthenticationSensitiveEvent")
+     */
+    const AUTHENTICATION_SUCCESS_SENSITIVE = 'security.authentication.success_sensitive';
+
     /**
      * The AUTHENTICATION_SUCCESS event occurs after a user is authenticated
-     * by one provider.
+     * by one provider. It is dispatched immediately *after* the companion
+     * AUTHENTICATION_SUCCESS_SENSITIVE event.
+     *
+     * This event does *not* contain user credentials and other sensitive data
+     * by default. Listeners and subscribers of this event are shielded from
+     * the added responsibility of passing around sensitive data and this event
+     * should be used unless such extra information is required; use the
+     * AUTHENTICATION_SUCCESS_SENSITIVE event instead if this is the case.
      *
      * @Event("Symfony\Component\Security\Core\Event\AuthenticationEvent")
      */
 
@@ -0,0 +1,96 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Core\Event;
+
+use Symfony\Component\EventDispatcher\Event;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+
+/**
+ * This is an authentication event that includes sensitive data.
+ *
+ * @author Rob Frawley 2nd <rmf@src.run>
+ */
+class AuthenticationSensitiveEvent extends Event
+{
+    private $authenticationToken;
+    private $preAuthenticationToken;
+    private $authenticationProviderClassName;
+
+    public function __construct(TokenInterface $preAuthenticationToken, TokenInterface $authenticationToken, ?string $authenticationProviderClassName = null)
+    {
+        $this->preAuthenticationToken = $preAuthenticationToken;
+        $this->authenticationToken = $authenticationToken;
+        $this->authenticationProviderClassName = $authenticationProviderClassName;
+    }
+
+    public function getAuthenticationToken(): TokenInterface
+    {
+        return $this->authenticationToken;
+    }
+
+    public function getPreAuthenticationToken(): TokenInterface
+    {
+        return $this->preAuthenticationToken;
+    }
+
+    public function getAuthenticationProviderClassName(): ?string
+    {
+        return $this->authenticationProviderClassName;
+    }
+
+    /**
+     * Attempts to extract the credentials password, first from the authentication token and second from the pre-
+     * authentication token. It uses either a custom extractor closure (optionally passed as its only argument) or
+     * the default extractor implementation, which returns the token's credentials string representation if it is
+     * not an array, or if it is, searches for the index "password", "secret", or "api_key" (in that order) if the
+     * token's credentials is an array.
+     *
+     * @param \Closure|null $extractor An optional custom token credentials password extraction \Closure that is
+     *                                 provided an auth token (as an instance of TokenInterface) and an auth event
+     *                                 (as an instance of AuthenticationSensitiveEvent). This closure is called
+     *                                 first with the final-auth token and second with the pre-auth token, returning
+     *                                 early if a non-null/non-empty scalar/castable-object value is returned.
+     *
+     * @return null|string Either a credentials password/secret/auth_key is returned or null on extraction failure
+     */
+    public function getAuthenticationTokenPassword(\Closure $extractor = null): ?string
+    {
+        $extractor = $extractor ?? function (TokenInterface $token): ?string {
+            return $this->tryCoercibleCredentialsPassToString($credentials = $token->getCredentials())
+                ?: $this->tryArrayFindCredentialsPassToString($credentials);
+        };
+
+        return $extractor($this->authenticationToken, $this) ?: $extractor($this->preAuthenticationToken, $this);
+    }
+
+    private function tryCoercibleCredentialsPassToString($credentials): ?string
+    {
+        if (is_object($credentials) && method_exists($credentials, '__toString')) {
+            return $credentials->__toString() ?: null;
+        }
+
+        return is_scalar($credentials) ? ($credentials ?: null) : null;
+    }
+
+    private function tryArrayFindCredentialsPassToString($credentials): ?string
+    {
+        if (is_array($credentials)) {
+            foreach (array('password', 'api_key', 'api-key', 'secret') as $index) {
+                if (null !== $c = $this->tryCoercibleCredentialsPassToString($credentials[$index] ?? null)) {
+                    return $c;
+                }
+            }
+        }
+
+        return null;
+    }
+}
@@ -12,10 +12,14 @@
 namespace Symfony\Component\Security\Core\Tests\Authentication;
 
 use PHPUnit\Framework\TestCase;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\EventDispatcher\EventDispatcherInterface;
 use Symfony\Component\Security\Core\Authentication\AuthenticationProviderManager;
+use Symfony\Component\Security\Core\Authentication\Provider\AuthenticationProviderInterface;
 use Symfony\Component\Security\Core\AuthenticationEvents;
 use Symfony\Component\Security\Core\Event\AuthenticationEvent;
 use Symfony\Component\Security\Core\Event\AuthenticationFailureEvent;
+use Symfony\Component\Security\Core\Event\AuthenticationSensitiveEvent;
 use Symfony\Component\Security\Core\Exception\ProviderNotFoundException;
 use Symfony\Component\Security\Core\Exception\AuthenticationException;
 use Symfony\Component\Security\Core\Exception\AccountStatusException;
@@ -152,29 +156,57 @@ public function testAuthenticateDispatchesAuthenticationFailureEvent()
         }
     }
 
-    public function testAuthenticateDispatchesAuthenticationSuccessEvent()
+    public function testAuthenticateDispatchesAuthenticationSuccessEvents()
     {
-        $token = new UsernamePasswordToken('foo', 'bar', 'key');
+        $finalToken = new UsernamePasswordToken('foo', 'bar', 'baz', array('role-01', 'role-02'));
+        $priorToken = new UsernamePasswordToken('foo', 'bar', 'baz');
 
-        $provider = $this->getMockBuilder('Symfony\Component\Security\Core\Authentication\Provider\AuthenticationProviderInterface')->getMock();
-        $provider->expects($this->once())->method('supports')->willReturn(true);
-        $provider->expects($this->once())->method('authenticate')->willReturn($token);
+        $provider = $this->getAuthenticationProvider(true, $finalToken);
+        $providerCN = get_class($provider);
 
-        $dispatcher = $this->getMockBuilder('Symfony\Component\EventDispatcher\EventDispatcherInterface')->getMock();
+        $dispatcher = $this->getMockBuilder(EventDispatcherInterface::class)->getMock();
         $dispatcher
-            ->expects($this->once())
+            ->expects($this->exactly(2))
             ->method('dispatch')
-            ->with(AuthenticationEvents::AUTHENTICATION_SUCCESS, $this->equalTo(new AuthenticationEvent($token)));
+            ->withConsecutive(array(
+                AuthenticationEvents::AUTHENTICATION_SUCCESS_SENSITIVE, $this->equalTo(new AuthenticationSensitiveEvent($priorToken, $finalToken, $providerCN)),
+            ), array(
+                AuthenticationEvents::AUTHENTICATION_SUCCESS, $this->equalTo(new AuthenticationEvent($finalToken)),
+            ));
 
         $manager = new AuthenticationProviderManager(array($provider));
         $manager->setEventDispatcher($dispatcher);
 
-        $this->assertSame($token, $manager->authenticate($token));
+        $this->assertSame($finalToken, $manager->authenticate($priorToken));
+    }
+
+    public function testAuthenticateDispatchesAuthenticationSuccessEventsWithCredentialsAvailableAndRemovedForSuccessiveDispatches()
+    {
+        $finalToken = new UsernamePasswordToken('foo', 'bar', 'baz', array('role-01', 'role-02'));
+        $priorToken = new UsernamePasswordToken('foo', 'bar', 'baz');
+
+        $provider = $this->getAuthenticationProvider(true, $finalToken);
+        $providerCN = get_class($provider);
+
+        $dispatcher = new EventDispatcher();
+        $dispatcher->addListener(AuthenticationEvents::AUTHENTICATION_SUCCESS_SENSITIVE, function (AuthenticationSensitiveEvent $event) use ($providerCN) {
+            $this->assertSame($providerCN, $event->getAuthenticationProviderClassName());
+            $this->assertSame('bar', $event->getAuthenticationTokenPassword());
+            $this->assertEquals('bar', $event->getPreAuthenticationToken()->getCredentials());
+            $this->assertEquals('bar', $event->getAuthenticationToken()->getCredentials());
+        });
+        $dispatcher->addListener(AuthenticationEvents::AUTHENTICATION_SUCCESS, function (AuthenticationEvent $event) {
+            $this->assertEquals('', $event->getAuthenticationToken()->getCredentials());
+        });
+
+        $manager = new AuthenticationProviderManager(array($provider));
+        $manager->setEventDispatcher($dispatcher);
+        $manager->authenticate($priorToken);
     }
 
     protected function getAuthenticationProvider($supports, $token = null, $exception = null)
     {
-        $provider = $this->getMockBuilder('Symfony\Component\Security\Core\Authentication\Provider\AuthenticationProviderInterface')->getMock();
+        $provider = $this->getMockBuilder(AuthenticationProviderInterface::class)->getMock();
         $provider->expects($this->once())
                  ->method('supports')
                  ->will($this->returnValue($supports))