src/EventListener/SecurityEventListener.php line 96

Open in your IDE?
  1. <?php
  3. namespace App\EventListener;
  5. use App\Entity\Commons\OAuth2\AccessToken;
  6. use App\Exception\Security as SecurityException;
  7. use App\Service\CdpService;
  8. use App\Service\UserManager;
  9. use Psr\Log\LoggerAwareInterface;
  10. use Psr\Log\LoggerAwareTrait;
  11. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  12. use Symfony\Component\HttpFoundation\JsonResponse;
  13. use Symfony\Component\HttpFoundation\RequestStack;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\HttpKernel\Event\ExceptionEvent;
  16. use Symfony\Component\HttpKernel\KernelEvents;
  17. use Symfony\Component\Security\Core\AuthenticationEvents;
  18. use Symfony\Component\Security\Core\Event\AuthenticationEvent;
  19. use Trikoder\Bundle\OAuth2Bundle\Security\Authentication\Token\OAuth2Token;
  21. class SecurityEventListener implements EventSubscriberInterfaceLoggerAwareInterface
  22. {
  23.     use LoggerAwareTrait;
  25.     /**
  26.      * @var CdpService
  27.      */
  28.     protected $cdp;
  30.     /**
  31.      * @var UserManager
  32.      */
  33.     protected $userManager;
  35.     public function __construct(CdpService $cdpUserManager $userManagerRequestStack $requestStack)
  36.     {
  37.         $this->cdp $cdp;
  38.         $this->userManager $userManager;
  39.     }
  41.     public static function getSubscribedEvents()
  42.     {
  43.         return [
  44.             AuthenticationEvents::AUTHENTICATION_SUCCESS => [['onOAuth2Authentication'20]],
  45.             KernelEvents::EXCEPTION => [['onSecurityException']],
  46.         ];
  47.     }
  49.     public function onOAuth2Authentication(AuthenticationEvent $event)
  50.     {
  51.         $token $event->getAuthenticationToken();
  53.         if (!$token instanceof OAuth2Token) {
  54.             return;
  55.         }
  57.         $accessTokenId $token->getAttribute('server_request')->getAttribute('oauth_access_token_id');
  58.         $clientId $token->getAttribute('server_request')->getAttribute('oauth_client_id');
  60.         $accessTokenEntity $this->cdp->getCommonsEntityManager()->createQueryBuilder()
  61.             ->from(AccessToken::class, 'access_token')
  62.             ->select('access_token')
  63.             ->innerJoin('access_token.account''account')
  64.             ->innerJoin('account.fond''fond')
  66.             ->addSelect('account')
  67.             ->addSelect('fond')
  69.             ->andWhere('access_token.identifier = :identifier')
  70.             ->setParameter('identifier'$accessTokenId)
  72.             ->getQuery()
  73.             ->getOneOrNullResult()
  74.         ;
  76.         if (!$accessTokenEntity) {
  77.             throw new SecurityException("Token entity not found"SecurityException::CODE_GENERAL);
  78.         }
  80.         $account $accessTokenEntity->getAccount();
  81.         $user $token->getUser(); // Ou bien $accessTokenEntity.account.user
  83.         if (!$user) {
  84.             throw new SecurityException("Token without user"SecurityException::CODE_GENERAL);
  85.         }
  87.         $this->userManager->updateConnectedAt($user);
  89.         $this->cdp
  90.             ->setCurrentUser($user)
  91.             ->setCurrentAccount($account)
  92.             ->setCurrentFond($account->getFond())
  93.         ;
  94.     }
  96.     public function onSecurityException(ExceptionEvent $event)
  97.     {
  98.         $exception $event->getThrowable();
  100.         if (!$exception instanceof SecurityException\SecurityException) {
  101.             return;
  102.         }
  104.         $this->logger->error($exception->getMessage(), [
  105.             'code' => $exception->getCode(),
  106.         ]);
  108.         $response = new JsonResponse([
  109.             'error' => $exception->getMessage(),
  110.             'code' => $exception->getCode(),
  111.         ], Response::HTTP_FORBIDDEN);
  113.         $event->setResponse($response);
  114.     }
  115. }