still retarded ngl

.env

@@ -19,4 +19,4 @@ APP_ENV=dev
 APP_SECRET=bfc9c288ee3dcce80dec8622c2870f27
 ###< symfony/framework-bundle ###
 
-DATA_DIR='/var/www/html/data'
+DATA_DIR=/var/www/data

.gitea/workflows/build.yaml

@@ -1,10 +1,10 @@
 name: build
-on:
+on: push
-  pull_request:
+#  pull_request:
-    types:
+#    types:
-      - closed
+#      - closed
-    branches:
+#    branches:
-      - main
+#      - main
 jobs:
   build:
     runs-on: ubuntu-latest

Dockerfile

@@ -18,3 +18,9 @@ RUN pecl install apcu && docker-php-ext-enable apcu
 
 WORKDIR /var/www/project
 RUN composer install --optimize-autoloader --no-suggest --no-progress
+RUN composer dump-env prod
+RUN php bin/console tailwind:build
+RUN php bin/console asset-map:compile
+RUN mkdir -p /var/www/data
+RUN chown -R www-data:www-data /var/www/data
+RUN chown -R www-data:www-data .

composer.json

@@ -7,7 +7,6 @@
         "php": ">=8.2",
         "ext-ctype": "*",
         "ext-iconv": "*",
-        "knpuniversity/oauth2-client-bundle": "^2.18",
         "symfony/apache-pack": "^1.0",
         "symfony/asset-mapper": "^7.1",
         "symfony/console": "7.1.*",
@@ -17,7 +16,6 @@
         "symfony/form": "^7.1",
         "symfony/framework-bundle": "7.1.*",
         "symfony/runtime": "7.1.*",
-        "symfony/security-bundle": "7.1.*",
         "symfony/stimulus-bundle": "^2.22",
         "symfony/twig-bundle": "7.1.*",
         "symfony/ux-icons": "^2.22",

config/bundles.php

@@ -8,6 +8,4 @@ return [
     Symfonycasts\TailwindBundle\SymfonycastsTailwindBundle::class => ['all' => true],
     Symfony\UX\StimulusBundle\StimulusBundle::class => ['all' => true],
     Symfony\Bundle\WebProfilerBundle\WebProfilerBundle::class => ['dev' => true, 'test' => true],
-    KnpU\OAuth2ClientBundle\KnpUOAuth2ClientBundle::class => ['all' => true],
-    Symfony\Bundle\SecurityBundle\SecurityBundle::class => ['all' => true],
 ];

config/packages/knpu_oauth2_client.yaml

@@ -1,10 +0,0 @@
-knpu_oauth2_client:
-    clients:
-        auth:
-            type: generic
-            provider_class: App\Service\Security\Provider
-
-            client_id: '%env(AUTHENTIK_CLIENT_ID)%'
-            client_secret: '%env(AUTHENTIK_CLIENT_SECRET)%'
-            redirect_route: auth_callback
-            redirect_params: {}

config/packages/security.yaml

@@ -1,45 +0,0 @@
-security:
-    # https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords
-    password_hashers:
-        Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
-    # https://symfony.com/doc/current/security.html#loading-the-user-the-user-provider
-    providers:
-        app_user_provider:
-            entity:
-                class: App\Entity\User
-                property: email
-    firewalls:
-        dev:
-            pattern: ^/(_(profiler|wdt)|css|images|js)/
-            security: false
-        main:
-            lazy: true
-            provider: app_user_provider
-            custom_authenticators:
-                - App\Security\Authenticator
-
-            # activate different ways to authenticate
-            # https://symfony.com/doc/current/security.html#the-firewall
-
-            # https://symfony.com/doc/current/security/impersonating_user.html
-            # switch_user: true
-
-    # Easy way to control access for large sections of your site
-    # Note: Only the *first* access control that matches will be used
-    access_control:
-        # - { path: ^/admin, roles: ROLE_ADMIN }
-        # - { path: ^/profile, roles: ROLE_USER }
-        - { path: /, roles: ROLE_USER }
-
-when@test:
-    security:
-        password_hashers:
-            # By default, password hashers are resource intensive and take time. This is
-            # important to generate secure password hashes. In tests however, secure hashes
-            # are not important, waste resources and increase test times. The following
-            # reduces the work factor to the lowest possible values.
-            Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
-                algorithm: auto
-                cost: 4 # Lowest possible value for bcrypt
-                time_cost: 3 # Lowest possible value for argon
-                memory_cost: 10 # Lowest possible value for argon

config/routes/security.yaml

@@ -1,3 +0,0 @@
-_security_logout:
-    resource: security.route_loader.logout
-    type: service

src/Controller/AuthenticationController.php

@@ -1,19 +0,0 @@
-<?php
-declare(strict_types=1);
-
-namespace App\Controller;
-
-use KnpU\OAuth2ClientBundle\Client\ClientRegistry;
-use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
-use Symfony\Component\HttpFoundation\Request;
-use Symfony\Component\HttpFoundation\Response;
-use Symfony\Component\Routing\Attribute\Route;
-
-class AuthenticationController extends AbstractController
-{
-    #[Route(path: '/auth/callback', name: 'auth_callback', methods: Request::METHOD_GET)]
-    public function __invoke(ClientRegistry $clientRegistry): Response
-    {
-        $clientRegistry->getClient('auth')->fetchUser();
-    }
-}

src/Entity/User.php

@@ -1,21 +0,0 @@
-<?php
-declare(strict_types=1);
-
-namespace App\Entity;
-
-use League\OAuth2\Client\Provider\ResourceOwnerInterface;
-
-class User implements ResourceOwnerInterface
-{
-    private int $id;
-
-    public function getId(): int
-    {
-        return $this->id;
-    }
-
-    public function toArray(): array
-    {
-        return ['id' => $this->id];
-    }
-}

src/Security/Authenticator.php

@@ -1,33 +0,0 @@
-<?php
-declare(strict_types=1);
-
-namespace App\Security;
-
-use Symfony\Component\HttpFoundation\Request;
-use Symfony\Component\HttpFoundation\Response;
-use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
-use Symfony\Component\Security\Core\Exception\AuthenticationException;
-use Symfony\Component\Security\Http\Authenticator\AbstractAuthenticator;
-use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
-
-class Authenticator extends AbstractAuthenticator
-{
-    public function supports(Request $request): ?bool
-    {
-        return $request->attributes->get('_route') === 'auth_callback';
-    }
-
-    public function authenticate(Request $request): Passport
-    {
-    }
-
-    public function onAuthenticationSuccess(Request $request, TokenInterface $token, string $firewallName): ?Response
-    {
-        // TODO: Implement onAuthenticationSuccess() method.
-    }
-
-    public function onAuthenticationFailure(Request $request, AuthenticationException $exception): ?Response
-    {
-        // TODO: Implement onAuthenticationFailure() method.
-    }
-}

src/Service/Security/Provider.php

@@ -1,43 +0,0 @@
-<?php
-declare(strict_types=1);
-
-namespace App\Service\Security;
-
-use League\OAuth2\Client\Provider\AbstractProvider;
-use League\OAuth2\Client\Provider\GenericResourceOwner;
-use League\OAuth2\Client\Token\AccessToken;
-use Psr\Http\Message\ResponseInterface;
-
-class Provider extends AbstractProvider
-{
-
-    public function getBaseAuthorizationUrl(): string
-    {
-        return 'https://oauth.simonis.lol/application/o/authorize/';
-    }
-
-    public function getBaseAccessTokenUrl(array $params): string
-    {
-        return 'https://oauth.simonis.lol/application/o/token/';
-    }
-
-    public function getResourceOwnerDetailsUrl(AccessToken $token)
-    {
-        return 'https://oauth.simonis.lol/application/o/userinfo/';
-    }
-
-    protected function getDefaultScopes(): array
-    {
-        return ['email', 'profile', 'openid'];
-    }
-
-    protected function checkResponse(ResponseInterface $response, $data)
-    {
-
-    }
-
-    protected function createResourceOwner(array $response, AccessToken $token)
-    {
-        dd($response);
-    }
-}

src/test.php

@@ -0,0 +1,23 @@
+<?php
+declare(strict_types=1);
+
+namespace App;
+
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\HttpKernel\Event\ExceptionEvent;
+use Symfony\Component\HttpKernel\Event\GetResponseForExceptionEvent;
+use Symfony\Component\HttpKernel\KernelEvents;
+
+class test implements EventSubscriberInterface
+{
+
+    public static function getSubscribedEvents()
+    {
+        return [KernelEvents::EXCEPTION => 'x'];
+    }
+
+    public function x(ExceptionEvent $event)
+    {
+        dd($event->getThrowable());
+    }
+}

symfony.lock

@@ -1,16 +1,4 @@
 {
-    "knpuniversity/oauth2-client-bundle": {
-        "version": "2.18",
-        "recipe": {
-            "repo": "github.com/symfony/recipes-contrib",
-            "branch": "main",
-            "version": "1.20",
-            "ref": "1ff300d8c030f55c99219cc55050b97a695af3f6"
-        },
-        "files": [
-            "config/packages/knpu_oauth2_client.yaml"
-        ]
-    },
     "symfony/apache-pack": {
         "version": "1.0",
         "recipe": {
@@ -94,19 +82,6 @@
             "config/routes.yaml"
         ]
     },
-    "symfony/security-bundle": {
-        "version": "7.1",
-        "recipe": {
-            "repo": "github.com/symfony/recipes",
-            "branch": "main",
-            "version": "6.4",
-            "ref": "2ae08430db28c8eb4476605894296c82a642028f"
-        },
-        "files": [
-            "config/packages/security.yaml",
-            "config/routes/security.yaml"
-        ]
-    },
     "symfony/stimulus-bundle": {
         "version": "2.22",
         "recipe": {