Authenticate user on registration

Author: codedmonkey

src/Controller/Dashboard/DashboardSecurityController.php

@@ -6,6 +6,7 @@
 use CodedMonkey\Dirigent\Doctrine\Repository\UserRepository;
 use CodedMonkey\Dirigent\Form\RegistrationFormType;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Bundle\SecurityBundle\Security;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\Routing\Attribute\Route;
@@ -21,9 +22,7 @@ public function __construct(
     #[Route('/login', name: 'dashboard_login')]
     public function login(AuthenticationUtils $authenticationUtils): Response
     {
-        $userCount = $this->userRepository->count([]);
-
-        if (0 === $userCount) {
+        if ($this->userRepository->noUsers()) {
             return $this->redirectToRoute('dashboard_register');
         }
 
@@ -38,12 +37,13 @@ public function login(AuthenticationUtils $authenticationUtils): Response
     }
 
     #[Route('/register', name: 'dashboard_register')]
-    public function register(Request $request): Response
+    public function register(Request $request, Security $security): Response
     {
         $registrationEnabled = $this->getParameter('dirigent.security.registration_enabled');
-        $userCount = $this->userRepository->count([]);
+        $noUsers = $this->userRepository->noUsers();
 
-        if (!$registrationEnabled && 0 !== $userCount) {
+        // Redirect to the homepage page if registration is disabled, but allow it if there are no users yet
+        if (!$registrationEnabled && !$noUsers) {
             return $this->redirectToRoute('dashboard');
         }
 
@@ -54,13 +54,14 @@ public function register(Request $request): Response
         $form->handleRequest($request);
 
         if ($form->isSubmitted() && $form->isValid()) {
-            if (0 === $userCount) {
+            // The first user gets owner privileges
+            if ($noUsers) {
                 $user->setRoles(['ROLE_SUPER_ADMIN', 'ROLE_USER']);
             }
 
             $this->userRepository->save($user, true);
 
-            return $this->redirectToRoute('dashboard_login');
+            return $security->login($user, 'security.authenticator.form_login.main', 'main');
         }
 
         return $this->render('dashboard/security/register.html.twig', [

src/Doctrine/Repository/UserRepository.php

@@ -25,6 +25,14 @@ public function __construct(ManagerRegistry $registry)
         parent::__construct($registry, User::class);
     }
 
+    /**
+     * Checks if at least one user exists in the database. Used to allow registration for the first user.
+     */
+    public function noUsers(): bool
+    {
+        return null === $this->findOneBy([]);
+    }
+
     public function save(User $entity, bool $flush = false): void
     {
         $this->getEntityManager()->persist($entity);

src/EventListener/SecurityListener.php

@@ -28,6 +28,7 @@ public function __construct(
     #[AsEventListener]
     public function checkAccessIsGranted(ControllerEvent $event): void
     {
+        // if (null !== array_first($event->getAttributes(IsGrantedAccess::class))) {
         if (null !== ($event->getAttributes(IsGrantedAccess::class)[0] ?? null)) {
             if (!$this->publicAccess && !$this->authorizationChecker->isGranted('ROLE_USER')) {
                 throw new AccessDeniedException();