Flag of Ukraine
SymfonyCasts stands united with the people of Ukraine
TRACK

Symfony 5 >

COURSE

Symfony 5 Security: Authenticators >

CHAPTER

When Authentication Fails

Buy Access to Course
Next Chapter

Challenge #1 of 1

Q: 

Check out this code in our authenticator:

public function authenticate(Request $request): Passport
{
    $email = $request->request->get('email');
    $password = $request->request->get('password');

    if ($email === 'ryan@symfonycasts.com') {
        throw new UserNotFoundException('Get outta here Ryan!');
    }

    return new Passport(new UserBadge($email), new PasswordCredentials($password));
}

public function onAuthenticationFailure(Request $request, AuthenticationException $exception): Response
{
    dd($exception);
}

If I try to login as ryan@symfonycasts.com, what type of object will be dumped inside onAuthenticationFailure()? And if we redirected to /login and rendered that error, what text would be displayed?

a)

The exception class would either be UserNotFoundException or BadCredentialsException based on whether or not you have hide_user_not_found in your security.yaml. The user would see Get outta here Ryan!

b)

The exception class would either be UserNotFoundException or BadCredentialsException based on whether or not you have hide_user_not_found in your security.yaml. The user would see Username could not be found.

c)

The onAuthenticationFailure() method would actually not be called because you can't throw that exception from directly inside authenticate(): you can only throw it from inside a "user loader" callback, like we have in the tutorial.

Rewatch Video
userVoice