src/Infrastructure/EventSubscriber/AuthByApiTokenSubscriber.php line 31

Open in your IDE?
  1. <?php
  3. namespace App\Infrastructure\EventSubscriber;
  5. use App\Database\Domain\Entity\User\UserAccessToken;
  6. use App\Database\Domain\Repository\AccessTokenRepository;
  7. use App\Infrastructure\Security\AuthManager;
  8. use Symfony\Component\DependencyInjection\ContainerInterface;
  9. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  10. use Symfony\Component\HttpFoundation\RedirectResponse;
  11. use Symfony\Component\HttpKernel\Event\RequestEvent;
  12. use Symfony\Component\HttpKernel\KernelEvents;
  13. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  15. class AuthByApiTokenSubscriber implements EventSubscriberInterface
  16. {
  17.     private ContainerInterface $container;
  18.     private AuthManager $authManager;
  19.     private AccessTokenRepository $accessTokenRepository;
  21.     public function __construct(
  22.         ContainerInterface $container,
  23.         AuthManager $authManager,
  24.         AccessTokenRepository $accessTokenRepository
  25.     ) {
  26.         $this->container             $container;
  27.         $this->authManager           $authManager;
  28.         $this->accessTokenRepository $accessTokenRepository;
  29.     }
  31.     public function onKernelRequest(RequestEvent $event): void
  32.     {
  33.         $request $event->getRequest();
  35.         if ($event->getRequest()->query->has('referral_code')) {
  36.             $code $event->getRequest()->query->get('referral_code');
  37.             $request->getSession()->set('referral_code'$code);
  38.         }
  40.         if (strpos($request->getPathInfo(), 'api') !== false) {
  41.             return;
  42.         }
  44.         $token          $this->container->get('security.token_storage')->getToken();
  45.         $logoutResponse = new RedirectResponse($this->container->get('router')->generate('user_logout'));
  47.         if ($token && $token->getUser() && !is_string($token->getUser()) &&
  48.             (!$request->cookies->has('token') || !$request->cookies->has('token-expires-at'))
  49.         ) {
  50.             $event->setResponse($logoutResponse);
  51.         }
  53.         if ($token && is_string($token->getUser())) {
  54.             if ($request->cookies->has('token') && $request->cookies->has('token-expires-at')) {
  55.                 /** @var UserAccessToken $accessToken */
  56.                 $accessToken $this->accessTokenRepository->findOneBy(['token' => $request->cookies->get('token')]);
  58.                 if ((null === $accessToken || !$accessToken->isValid()) && $token->getUser()) {
  59.                     $event->setResponse($logoutResponse);
  60.                 }
  62.                 if (null !== $accessToken && $accessToken->isValid() && is_string($token->getUser())) {
  63.                     $token = new UsernamePasswordToken($accessToken->getUser(), null'main'$accessToken->getUser()->getRoles());
  64.                     $this->container->get('security.token_storage')->setToken($token);
  65.                     $session $this->container->get('session');
  66.                     $session->set('_security_main'serialize($token));
  68.                     if (null !== $session->get('login_url')) {
  69.                         $redirectUrl $session->get('login_url');
  70.                         $session->remove('login_url');
  72.                         $response = new RedirectResponse($redirectUrl);
  73.                         $event->setResponse($response);
  74.                     }
  75.                 }
  76.             }
  77.         }
  78.     }
  80.     public static function getSubscribedEvents(): array
  81.     {
  82.         return [
  83.             KernelEvents::REQUEST => ['onKernelRequest'7]
  84.         ];
  85.     }
  86. }