【EC-CUBE4】Yahoo!ID連携を実装する方法
目次
EC-CUBE4でYahoo!ID連携を実装する方法です。
細かい説明はしていませんのでご了承ください。
ファイル設置場所やファイル名はネームスペースやクラス名をご確認ください。
必要なライブラリをComposerでインストール
1 2 | bin/console eccube:composer:require knpuniversity/oauth2-client-bundle:1.4 bin/console eccube:composer:require tavii/oauth2-yconnect |
bundles.phpにライブラリを追加
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 | <?php // app/config/eccube/bundles.php /* * This file is part of EC-CUBE * * Copyright(c) EC-CUBE CO.,LTD. All Rights Reserved. * * http://www.ec-cube.co.jp/ * * For the full copyright and license information, please view the LICENSE * file that was distributed with this source code. */ return [ // ... KnpU\OAuth2ClientBundle\KnpUOAuth2ClientBundle::class => ['all' => true] ]; |
knpu_oauth2_client.yamlを追加
YahooJapan!デベロッパーネットワークのアプリケーションの管理にてClient IDとシークレットを取得して設定してください。
1 2 3 4 5 6 7 8 | knpu_oauth2_client: clients: yconnect_client: type: generic provider_class: Customize\Security\OAuth2\Client\Provider\YConnect client_id: ***************************************** client_secret: ************************************* redirect_route: yahoo_callback |
インストールしたoauth2-yconnectを若干修正
1 2 3 4 5 6 7 8 9 10 11 12 | <?php namespace Customize\Security\OAuth2\Client\Provider; class YConnect extends \Tavii\OAuth2\Client\Provider\YConnect { const YAHOO_LOGIN_USERINFO = 'yahoo_login.userinfo'; public $version = 'v2'; } |
Customerエンティティにyahoo_user_idプロパティを追加
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 | <?php namespace Customize\Entity; use Customize\Entity\Master\CustomerType; use Doctrine\ORM\Mapping as ORM; use Eccube\Annotation\EntityExtension; /** * @EntityExtension("Eccube\Entity\Customer") */ trait CustomerTrait { /** * @ORM\Column(type="string", length=255, nullable=true) */ private $yahoo_user_id; public function getYahooUserId(): ?string { return $this->yahoo_user_id; } public function setYahooUserId(?string $yahoo_user_id): self { $this->yahoo_user_id = $yahoo_user_id; return $this; } } |
YahooAuthenticatorを用意
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 | <?php namespace Customize\Security\Authenticator; use Customize\Security\OAuth2\Client\Provider\YConnect; use Doctrine\ORM\EntityManagerInterface; use Eccube\Entity\Customer; use KnpU\OAuth2ClientBundle\Client\ClientRegistry; use KnpU\OAuth2ClientBundle\Exception\InvalidStateException; use KnpU\OAuth2ClientBundle\Security\Authenticator\SocialAuthenticator; use Symfony\Component\HttpFoundation\RedirectResponse; use Symfony\Component\HttpFoundation\Request; use Symfony\Component\HttpFoundation\Response; use Symfony\Component\HttpFoundation\Session\SessionInterface; use Symfony\Component\Routing\RouterInterface; use Symfony\Component\Security\Core\Authentication\Token\TokenInterface; use Symfony\Component\Security\Core\Exception\AuthenticationException; use Symfony\Component\Security\Core\User\UserProviderInterface; class YahooAuthenticator extends SocialAuthenticator { /** * @var ClientRegistry */ private $clientRegistry; /** * @var EntityManagerInterface */ private $entityManager; /** * @var RouterInterface */ private $router; /** * @var SessionInterface */ private $session; public function __construct( ClientRegistry $clientRegistry, EntityManagerInterface $entityManager, RouterInterface $router, SessionInterface $session ) { $this->clientRegistry = $clientRegistry; $this->entityManager = $entityManager; $this->router = $router; $this->session = $session; } public function supports(Request $request) { return $request->attributes->get('_route') === 'yahoo_callback'; } /** * @inheritDoc */ public function start(Request $request, AuthenticationException $authException = null) { return new RedirectResponse( $this->router->generate("yahoo"), Response::HTTP_TEMPORARY_REDIRECT ); } /** * @inheritDoc */ public function getCredentials(Request $request) { try { return $this->fetchAccessToken($this->getYahooClient()); } catch (InvalidStateException $e) { return false; } } /** * @inheritDoc */ public function getUser($credentials, UserProviderInterface $userProvider) { // stateが正しくない時がある if ($credentials) { $userInfo = $this->getYahooClient() ->fetchUserFromToken($credentials); } else { return null; } // メールアドレス認証していない場合がある if(!$userInfo->getEmailVerified()) { return null; } // ヤフー連携済みの場合 $Customer = $this->entityManager->getRepository(Customer::class) ->findOneBy(['yahoo_user_id' => $userInfo->getSub()]); if ($Customer) { return $Customer; } $Customer = $this->entityManager->getRepository(Customer::class) ->findOneBy(['email' => $userInfo->getEmail()]); // 会員登録していない場合、会員登録ページへ if (!$Customer) { $this->session->set(YConnect::YAHOO_LOGIN_USERINFO, $userInfo->toArray()); return null; } // 通常の会員登録済みの場合はユーザー識別子を保存 $Customer->setYahooUserId($userInfo->getSub()); $this->entityManager->persist($Customer); $this->entityManager->flush(); return $Customer; } /** * @inheritDoc */ public function onAuthenticationFailure(Request $request, AuthenticationException $exception) { $message = strtr($exception->getMessageKey(), $exception->getMessageData()); if ($this->session->get(YConnect::YAHOO_LOGIN_USERINFO)) { return new RedirectResponse($this->router->generate("entry")); } else { return new RedirectResponse($this->router->generate("yahoo")); } } /** * @inheritDoc */ public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey) { $targetUrl = $this->router->generate("mypage"); return new RedirectResponse($targetUrl); } private function getYahooClient() { return $this->clientRegistry ->getClient('yconnect_client'); } } |
security.yamlを修正
guardを追加しています。
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 | security: encoders: # Our user class and the algorithm we'll use to encode passwords # https://symfony.com/doc/current/security.html#c-encoding-the-user-s-password Eccube\Entity\Member: id: Eccube\Security\Core\Encoder\PasswordEncoder Eccube\Entity\Customer: id: Eccube\Security\Core\Encoder\PasswordEncoder providers: # https://symfony.com/doc/current/security.html#b-configuring-how-users-are-loaded # In this example, users are stored via Doctrine in the database # To see the users at src/App/DataFixtures/ORM/LoadFixtures.php # To load users from somewhere else: https://symfony.com/doc/current/security/custom_provider.html member_provider: id: Eccube\Security\Core\User\MemberProvider customer_provider: id: Eccube\Security\Core\User\CustomerProvider # https://symfony.com/doc/current/security.html#initial-security-yml-setup-authentication firewalls: dev: pattern: ^/(_(profiler|wdt)|css|images|js)/ security: false admin: pattern: '^/%eccube_admin_route%/' anonymous: true provider: member_provider form_login: check_path: admin_login login_path: admin_login csrf_token_generator: security.csrf.token_manager default_target_path: admin_homepage username_parameter: 'login_id' password_parameter: 'password' use_forward: true success_handler: eccube.security.success_handler failure_handler: eccube.security.failure_handler logout: path: admin_logout target: admin_login customer: pattern: ^/ anonymous: true provider: customer_provider remember_me: secret: '%kernel.secret%' lifetime: 3600 name: eccube_remember_me remember_me_parameter: 'login_memory' form_login: check_path: mypage_login login_path: mypage_login csrf_token_generator: security.csrf.token_manager default_target_path: homepage username_parameter: 'login_email' password_parameter: 'login_pass' use_forward: true success_handler: eccube.security.success_handler failure_handler: eccube.security.failure_handler logout: path: logout target: homepage guard: authenticators: - Customize\Security\Authenticator\YahooAuthenticator access_decision_manager: strategy: unanimous allow_if_all_abstain: false |
Yahoo!ID連携用のコントローラーを用意
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 | <?php namespace Customize\Controller; use Customize\OAuth2\Client\Provider\YConnect; use Eccube\Controller\AbstractController; use Symfony\Component\Routing\Annotation\Route; use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface; /** * @Route("/yahoo") * * Class YahooController * @package Customize\Controller */ class YahooController extends AbstractController { /** * @var TokenStorageInterface */ private $tokenStorage; public function __construct( TokenStorageInterface $tokenStorage ) { $this->tokenStorage = $tokenStorage; } /** * @Route("/", name="yahoo") * * @return \Symfony\Component\HttpFoundation\RedirectResponse */ public function index() { return $this->get('oauth2.registry') ->getClient('yconnect_client') ->redirect([ "scope" => "openid profile email address" ]); } /** * @Route("/callback", name="yahoo_callback") */ public function callback() { if($this->isGranted("IS_AUTHENTICATED_FULLY")) { return $this->redirectToRoute("mypage"); }else{ return $this->redirectToRoute("yahoo"); } } } |
EntryTypeを拡張
Yahoo!ID連携経由で会員登録する場合はyahoo_user_idを登録するためEntryTypeを拡張します。
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 | <?php namespace Customize\Form\Extension; use Customize\Entity\Master\CustomerType; use Customize\Security\OAuth2\Client\Provider\YConnect; use Customize\Repository\Master\CustomerTypeRepository; use Eccube\Entity\Customer; use Eccube\Form\Type\AddressType; use Eccube\Form\Type\Front\EntryType; use Eccube\Form\Type\NameType; use Eccube\Form\Type\PostalType; use Eccube\Form\Type\RepeatedEmailType; use Eccube\Repository\Master\PrefRepository; use Symfony\Component\Form\AbstractTypeExtension; use Symfony\Component\Form\Extension\Core\Type\HiddenType; use Symfony\Component\Form\FormBuilderInterface; use Symfony\Component\Form\FormEvent; use Symfony\Component\Form\FormEvents; use Symfony\Component\HttpFoundation\Session\SessionInterface; class EntryTypeExtension extends AbstractTypeExtension { /** * @var SessionInterface */ private $session; /** * @var CustomerTypeRepository */ private $customerTypeRepository; /** * @var PrefRepository */ private $prefRepository; public function __construct( SessionInterface $session, CustomerTypeRepository $customerTypeRepository, PrefRepository $prefRepository ) { $this->session = $session; $this->customerTypeRepository = $customerTypeRepository; $this->prefRepository = $prefRepository; } public function buildForm(FormBuilderInterface $builder, array $options) { $userInfo = $this->session->get(YConnect::YAHOO_LOGIN_USERINFO); if($userInfo) { // 名前セット $options = $builder->get('name')->getOptions(); $options['lastname_options']['data'] = isset($userInfo["family_name"]) ? $userInfo["family_name"] : ""; $options['firstname_options']['data'] = isset($userInfo["given_name"]) ? $userInfo["given_name"] : ""; $builder->add('name', NameType::class, $options); // 郵便番号セット $options = $builder->get('postal_code')->getOptions(); $options['data'] = isset($userInfo["address"]["postal_code"]) ? $userInfo["address"]["postal_code"] : ""; $builder->add('postal_code', PostalType::class, $options); // 住所セット $options = $builder->get('address')->getOptions(); if(isset($userInfo["address"]["region"])) { $Pref = $this->prefRepository->findOneBy(["name" => $userInfo["address"]["region"]]); $options["pref_options"]["data"] = $Pref; } $options["addr01_options"]["data"] = isset($userInfo["address"]["locality"]) ? $userInfo["address"]["locality"] : ""; $builder->add('address', AddressType::class, $options); // メールアドレスセット $options = $builder->get('email')->getOptions(); $options["first_options"]['data'] = $userInfo["email"]; $options["second_options"]['data'] = $userInfo["email"]; $builder->add('email', RepeatedEmailType::class, $options); $builder ->add('yahoo_user_id', HiddenType::class, [ "data" => $userInfo["sub"], "eccube_form_options" => [ "auto_render" => true, 'form_theme' => "Form/Entry/hidden_type.html.twig" ] ]); } } /** * {@inheritdoc} */ public function getExtendedType() { return EntryType::class; } } |
yahoo_user_id項目をHiddenにしたいのでテンプレートを用意
Form/Entry/hidden_type.html.twig
1 2 3 4 | {% block form_row %} {{ form_widget(form) }} {{ form_errors(form) }} {% endblock %} |
以上で完成のはずです。
Facebookログインなども上記を参考に修正すれば実装できるとかと思います。
