src/EventListener/RequestAuthenticationSubscriber.php line 50

Open in your IDE?
  1. <?php
  3. namespace App\EventListener;
  5. use App\Entity\Location;
  6. use App\Entity\User;
  7. use App\Entity\UserActivity;
  8. use App\Service\UserActivityService;
  9. use Doctrine\ORM\EntityManagerInterface;
  10. use Psr\Log\LoggerInterface;
  11. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  12. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  13. use Symfony\Component\HttpKernel\Event\RequestEvent;
  14. use Symfony\Component\HttpKernel\KernelEvents;
  15. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  16. use Symfony\Component\Security\Core\Security;
  19. class RequestAuthenticationSubscriber implements EventSubscriberInterface
  20. {
  21.     /** @var EntityManagerInterface */
  22.     private $entityManager;
  24.     /** @var SessionInterface */
  25.     private $session;
  27.     /** @var TokenStorageInterface */
  28.     private $tokenStorage;
  30.     /** @var UserActivityService */
  31.     private $userActivityService;
  33.     public function __construct(
  34.         EntityManagerInterface $entityManager,
  35.         SessionInterface $session,
  36.         TokenStorageInterface $tokenStorage,
  37.         LoggerInterface $logger,
  38.         UserActivityService $userActivityService,
  39.         Security $security
  40.     )
  41.     {
  42.         $this->entityManager $entityManager;
  43.         $this->session $session;
  44.         $this->tokenStorage $tokenStorage;
  45.         $this->logger $logger;
  46.         $this->userActivityService $userActivityService;
  47.         $this->security $security;
  48.     }
  50.     public function onKernelRequest(RequestEvent $event): void
  51.     {
  52.         $logout false;
  53.         $user $this->security->getUser();
  55.         // get url
  56.         $request $event->getRequest();
  57.         $url $request->getRequestUri();
  59.         if(!$this->tokenStorage->getToken()){
  60.             $url str_replace('/login',''$url);
  61.         }
  62.         if (strpos($url'/login') !== false &&
  63.             $this->tokenStorage->getToken() &&
  64.             $this->tokenStorage->getToken()->getUser() instanceof User) {
  65.             $url str_replace('/login',''$url);
  66.         }
  67.         // check if client
  68.         if(
  69.             strpos($url'/client/') !== false
  70.             && strpos($url'/api/') === false
  71.             && strpos($url'/relational/') === false
  72.             && strpos($url'/client/toolbar/') === false
  73.             && strpos($url'/client/cform/') === false
  74.             && strpos($url'/client/hr-document/') === false
  75.             && strpos($url'/client/employee-survey/') === false
  76.             && strpos($url'/client/location-select') === false
  77.         ){
  78.             // break apart into pieces
  80.             if($locationId $request->get('locationId')) {
  81.                 /** @var Location $location */
  82.                 $location $this->entityManager->getRepository(Location::class)->find($locationId);
  84.                 //Track login when default controller is bypassed by external link
  85.                 if(!$this->session->get('loginIsTracked') && $this->tokenStorage->getToken() && !strpos($url'select_location=1')) {
  86.                     $this->userActivityService->logUserActivity(LoggableListener::ACTION_LOGIN$user,  $locationId$user);
  87.                     $this->session->set('loginIsTracked'true);
  88.                 }
  90.                 if( !$location || !$location->isActive()
  91.                     || !$location->getCompany() || !$location->getCompany()->isActive()
  92.                     || (
  93.                         $user
  94.                         && (
  95.                             !$user->isHatchAdministrator()
  96.                             && !$user->getActiveLocations()->contains($location)
  97.                         )
  98.                     )
  99.                 ){
  100.                     $logout true;
  101.                 }
  104.                 if($logout) {
  105.                     $event->getRequest()->getSession()->getFlashBag()->add('error'"Invalid location for login");
  106.                     $this->logger->error('Invalid URL: ' $url);
  107.                     // clear session - logout
  108.                     $this->session->clear();
  109.                     $this->tokenStorage->setToken(null);
  110.                     $this->session->invalidate();
  112.                     header("Location: /");
  113.                     exit;
  114.                 }
  116.             }
  117.         }
  119.         if ($url === '/admin/' && !$this->session->get('loginIsTracked')) {
  120.             $this->userActivityService->logAdminActivity(LoggableListener::ACTION_LOGIN$this->security->getUser(), $this->security->getUser());
  121.             $this->session->set('loginIsTracked'true);
  122.         }
  123.     }
  125.     /**
  126.      * @inheritDoc
  127.      */
  128.     public static function getSubscribedEvents(): array
  129.     {
  130.         return array(
  131.             KernelEvents::REQUEST => 'onKernelRequest',
  132.         );
  133.     }
  135. }