Skip to content

Instantly share code, notes, and snippets.

Created March 8, 2011 17:25
Show Gist options
  • Save memphys/860603 to your computer and use it in GitHub Desktop.
Save memphys/860603 to your computer and use it in GitHub Desktop.
Doctrine2 auth adapter to use with Zend_Auth
class My_Auth_Adapter_Doctrine2 implements Zend_Auth_Adapter_Interface
* Doctrine Entity Manager
* @var \Doctrine\ORM\EntityManager
protected $_em = null;
* The entity name to check for an identity.
* @var string
protected $_entityName;
* $_identityColumn - the column to use as the identity
* @var string
protected $_identityColumn = null;
* $_credentialColumn - columns to be used as the credentials
* @var string
protected $_credentialColumn = null;
* $_identity - Identity value
* @var string
protected $_identity = null;
* $_credential - Credential values
* @var string
protected $_credential = null;
* $_authenticateResultInfo
* @var array
protected $_authenticateResultInfo = null;
* __construct() - Sets configuration options
* @param \Doctrine\ORM\EntityManager $em
* @param string $entityName
* @param string $identityColumn
* @param string $credentialColumn
* @param string $credentialTreatment
* @return void
public function __construct($em = null, $entityName = null, $identityColumn = null,
$credentialColumn = null)
if (null !== $em) {
if (null !== $entityName) {
if (null !== $identityColumn) {
if (null !== $credentialColumn) {
* setEm() - set the Doctrine2 Entity Manager
* @param \Doctrine\ORM\EntityManager $em
public function setEm($em)
$this->_em = $em;
return $this;
* setEntityName() - set the entity name to be used in the select query
* @param string $entityName
* @return My_Auth_Adapter_Doctrine2 Provides a fluent interface
public function setEntityName($entityName)
$this->_entityName = $entityName;
return $this;
* setIdentityColumn() - set the column name to be used as the identity column
* @param string $identityColumn
* @return My_Auth_Adapter_Doctrine2 Provides a fluent interface
public function setIdentityColumn($identityColumn)
$this->_identityColumn = $identityColumn;
return $this;
* setCredentialColumn() - set the column name to be used as the credential column
* @param string $credentialColumn
* @return My_Auth_Adapter_Doctrine2 Provides a fluent interface
public function setCredentialColumn($credentialColumn)
$this->_credentialColumn = $credentialColumn;
return $this;
* setIdentity() - set the value to be used as the identity
* @param string $value
* @return My_Auth_Adapter_Doctrine2 Provides a fluent interface
public function setIdentity($value)
$this->_identity = $value;
return $this;
* setCredential() - set the credential value to be used
* @param string $credential
* @return My_Auth_Adapter_Doctrine2 Provides a fluent interface
public function setCredential($credential)
$this->_credential = $credential;
return $this;
* authenticate() - defined by Zend_Auth_Adapter_Interface. This method is called to
* attempt an authentication. Previous to this call, this adapter would have already
* been configured with all necessary information to successfully connect to a database
* table and attempt to find a record matching the provided identity.
* @throws Zend_Auth_Adapter_Exception if answering the authentication query is impossible
* @return Zend_Auth_Result
public function authenticate()
$query = $this->_getQuery();
$resultIdentities = $this->_performQuery($query);
$authResult = $this->_validateResult($resultIdentities);
return $authResult;
* _authenticateSetup() - This method abstracts the steps involved with making sure
* that this adapter was indeed setup properly with all required peices of information.
* @throws Zend_Auth_Adapter_Exception - in the event that setup was not done properly
* @return true
protected function _authenticateSetup()
$exception = null;
if ($this->_em === null) {
$exception = 'A database connection was not set, nor could one be created.';
} elseif ($this->_entityName == '') {
$exception = 'A entity name must be supplied for the My_Auth_Adapter_Doctrine2 authentication adapter.';
} elseif ($this->_identityColumn == '') {
$exception = 'An identity column must be supplied for the My_Auth_Adapter_Doctrine2 authentication adapter.';
} elseif ($this->_credentialColumn == '') {
$exception = 'A credential column must be supplied for the My_Auth_Adapter_Doctrine2 authentication adapter.';
} elseif ($this->_identity == '') {
$exception = 'A value for the identity was not provided prior to authentication with My_Auth_Adapter_Doctrine2.';
} elseif ($this->_credential === null) {
$exception = 'A credential value was not provided prior to authentication with My_Auth_Adapter_Doctrine2.';
if (null !== $exception) {
* @see Zend_Auth_Adapter_Exception
require_once 'Zend/Auth/Adapter/Exception.php';
throw new Zend_Auth_Adapter_Exception($exception);
$this->_authenticateResultInfo = array(
'code' => Zend_Auth_Result::FAILURE,
'identity' => $this->_identity,
'messages' => array()
return true;
* _getQuery() - This method creates a Doctrine\ORM\Query object that
* is completely configured to be queried against the database.
* @return Doctrine\ORM\Query
protected function _getQuery()
$dql = 'SELECT u FROM ' . $this->_entityName . ' u
WHERE u.' . $this->_identityColumn . ' = ?1';
$query = $this->_em->createQuery($dql)
->setParameter(1, $this->_identity)
return $query;
* _performQuery() - This method accepts a Doctrine\ORM\Query object and
* performs a query against the database with that object.
* @param Doctrine\ORM\Query $query
* @throws Zend_Auth_Adapter_Exception - when a invalid select object is encoutered
* @return array
protected function _performQuery(Doctrine\ORM\Query $query)
try {
$resultIdentities = $query->execute();
} catch (Exception $e) {
* @see Zend_Auth_Adapter_Exception
require_once 'Zend/Auth/Adapter/Exception.php';
throw new Zend_Auth_Adapter_Exception('The supplied parameters to \Doctrine\ORM\EntityManager failed to '
. 'produce a valid sql statement, please check entity and column names '
. 'for validity.');
return $resultIdentities;
* _validateResult() - This method attempts to validate that the record in the
* result set is indeed a record that matched the identity provided to this adapter.
* @param array $resultIdentities
* @return Zend_Auth_Result
protected function _validateResult($resultIdentities)
if (count($resultIdentities) < 1) {
$this->_authenticateResultInfo['code'] = Zend_Auth_Result::FAILURE_IDENTITY_NOT_FOUND;
$this->_authenticateResultInfo['messages'][] = 'A record with the supplied identity could not be found.';
return $this->_authenticateCreateAuthResult();
} elseif (count($resultIdentities) > 1) {
$this->_authenticateResultInfo['code'] = Zend_Auth_Result::FAILURE_IDENTITY_AMBIGUOUS;
$this->_authenticateResultInfo['messages'][] = 'More than one record matches the supplied identity.';
return $this->_authenticateCreateAuthResult();
} elseif (count($resultIdentities) == 1) {
$resultIdentity = $resultIdentities[0];
if ($resultIdentity->{$this->_credentialColumn} != $this->_credential) {
$this->_authenticateResultInfo['code'] = Zend_Auth_Result::FAILURE_CREDENTIAL_INVALID;
$this->_authenticateResultInfo['messages'][] = 'Supplied credential is invalid.';
} else {
$this->_authenticateResultInfo['code'] = Zend_Auth_Result::SUCCESS;
$this->_authenticateResultInfo['identity'] = $this->_identity;
$this->_authenticateResultInfo['messages'][] = 'Authentication successful.';
} else {
$this->_authenticateResultInfo['code'] = Zend_Auth_Result::FAILURE_UNCATEGORIZED;
return $this->_authenticateCreateAuthResult();
* _authenticateCreateAuthResult() - This method creates a Zend_Auth_Result object
* from the information that has been collected during the authenticate() attempt.
* @return Zend_Auth_Result
protected function _authenticateCreateAuthResult()
return new Zend_Auth_Result(
Copy link

memphys commented Oct 20, 2011

Of course, you are right. It just was the fastest way of getting things done for demonstration.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment