AuthenticationProviderFilterInterface.php

Same filename in other branches
  1. 9 core/lib/Drupal/Core/Authentication/AuthenticationProviderFilterInterface.php
  2. 10 core/lib/Drupal/Core/Authentication/AuthenticationProviderFilterInterface.php
  3. 11.x core/lib/Drupal/Core/Authentication/AuthenticationProviderFilterInterface.php

Namespace

Drupal\Core\Authentication

File

core/lib/Drupal/Core/Authentication/AuthenticationProviderFilterInterface.php

View source
<?php

namespace Drupal\Core\Authentication;

use Symfony\Component\HttpFoundation\Request;

/**
 * Restrict authentication methods to a subset of the site.
 *
 * Some authentication methods should not be available throughout a whole site.
 * For instance, there are good reasons to restrict insecure methods like HTTP
 * basic authentication or a URL token authentication method to API-only
 * routes.
 */
interface AuthenticationProviderFilterInterface {
    
    /**
     * Checks whether the authentication method is allowed on a given route.
     *
     * While authentication itself is run before routing, this method is called
     * after routing, hence RouteMatch is available and can be used to inspect
     * route options.
     *
     * @param \Symfony\Component\HttpFoundation\Request $request
     *   The request.
     * @param bool $authenticated
     *   Whether or not the request is authenticated.
     *
     * @return bool
     *   TRUE if an authentication method is allowed on the request, otherwise
     *   FALSE.
     */
    public function appliesToRoutedRequest(Request $request, $authenticated);

}

Interfaces

Title Deprecated Summary
AuthenticationProviderFilterInterface Restrict authentication methods to a subset of the site.

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.