How to decline user authentication request depending on its ip address in Symfony2

In my case some of users can login only from specific ip addresses (one for each user).

I need 开发者_如何学Goto decline all auth requests for a user if user's ip address doesn't match with ip from database.

For now I have this User entity:

class User implements AdvancedUserInterface
{
    // ....
    protected $id;

    // ....
    protected $allowedIp;
}

This check needs to be done at the authentication stage.

You'll want to use an authentication voter. The Symfony cookbook has a recipe for an IP blacklist voter, so you can follow their example and change the code to deny if it's not on the list, instead of denying if it is.