src/Subscriber/AppSubscriber.php line 102

Open in your IDE?
  1. <?php
  2. declare(strict_types=1);
  3. namespace App\Subscriber;
  5. use App\Logger\Log;
  6. use App\Entity\User;
  7. use App\Entity\BaseAuth;
  8. use App\Form\CommonForm;
  9. use App\Service\AuthService;
  10. use App\Service\FileService;
  11. use App\Service\IAppService;
  12. use App\Service\IAuthService;
  13. use App\Service\SchoolService;
  14. use App\Service\IOptionService;
  15. use App\Controller\AuthController;
  16. use App\Controller\UserController;
  17. use App\Controller\StaffController;
  18. use App\Controller\WizardController;
  19. use Symfony\Component\Security\Core\Security;
  20. use Symfony\Component\HttpKernel\KernelEvents;
  21. use Symfony\Component\HttpFoundation\JsonResponse;
  22. use Symfony\Component\HttpKernel\Event\RequestEvent;
  23. use Symfony\Component\HttpFoundation\RedirectResponse;
  24. use Symfony\Component\HttpKernel\Event\ExceptionEvent;
  25. use Symfony\Contracts\Translation\TranslatorInterface;
  26. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  27. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  28. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  29. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  30. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  31. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  32. use Doctrine\ORM\Tools\Console\Command\SchemaTool\AbstractCommand;
  33. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  34. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  36. class AppSubscriber implements EventSubscriberInterface
  37. {
  38.     private ParameterBagInterface $parameterBag;
  39.     private SessionInterface $session;
  40.     private Security $security;
  41.     private SchoolService $schoolService;
  42.     protected TokenStorageInterface $securityToken;
  43.     protected Log $log;
  44.     protected FileService $fileService;
  45.     protected AuthService $authService;
  47.     public function __construct(
  48.         ParameterBagInterface $parameterBag,
  49.         SessionInterface $session,
  50.         Security $security,
  51.         TokenStorageInterface $securityToken,
  52.         Log $log,
  53.         FileService $fileService,
  54.         SchoolService $schoolService,
  55.         TranslatorInterface $translator,
  56.         AuthService $authService
  57.     ) {
  58.         $this->session $session;
  59.         $this->security $security;
  60.         $this->schoolService $schoolService;
  61.         $this->securityToken $securityToken;
  62.         $this->fileService $fileService;
  63.         $this->log $log;
  64.         $this->parameterBag $parameterBag;
  65.         $this->authService $authService;
  66.     }
  68.     public function onInteractiveLogin(InteractiveLoginEvent $event)
  69.     {
  70.         $user $event->getAuthenticationToken()->getUser();
  71.         /*if (null !== $user->getLocale()) {
  72.             $this->translator->setLocale($user->getLocale());
  73.         }*/
  74.     }
  76.     public function checkSubscription(ControllerEvent $eventAbstractController $controller){
  77.          // Permet de controler l'abonnement du site connecté
  78.          $user $this->security->getUser();
  79.          if($controller instanceof UserController && !empty($user) && $user instanceof User) {
  80.              $school $user->getSchool();
  81.              $site null;
  82.              if(!empty($school)){
  83.                  if (!empty($site $this->session->get(IOptionService::CURRENT_SITE))) {
  84.                      $site $this->schoolService->findSite(['guid' => $site->getGuid()]);
  85.                  } elseif (\count($school->getSites()) > 0) {
  86.                      $site $school->getSites()[0];
  87.                      $this->session->set(IOptionService::CURRENT_SITE$site);
  88.                  }
  89.              }         
  90.              if(!empty($site) && (empty($site->getExpirationDate()))) {
  91.                  $event->setController(function () {
  92.                      return new RedirectResponse($this->parameterBag->get('app.url').'error/expired');
  93.                  });
  94.              } else if( !empty($site) && CommonForm::timeElapsed(new \DateTime('now'),$site->getExpirationDate()) <= 0){
  95.                  $event->setController(function () {
  96.                      return new RedirectResponse($this->parameterBag->get('app.url').'error/expired');
  97.                  });
  98.              }
  99.          }
  100.     }
  102.     public function onKernelController(ControllerEvent $event)
  103.     {
  104.         $controller $event->getController();
  105.         if (!is_array($controller)) {
  106.             return;
  107.         }
  109.         // Permet de controler l'abonnement du site connecté
  111.         if ($controller[0] instanceof StaffController || $controller[0] instanceof UserController || $controller[0] instanceof WizardController) {
  112.             $user $this->security->getUser();
  113.             if ($this->fileService->checkFile($this->parameterBag->get('app.connection_dir').DIRECTORY_SEPARATOR.IOptionService::MAINTENANCE_FILE) && IAuthService::STAFF != $this->parameterBag->get('app.user')
  114.                 && !in_array(IAuthService::ROLE.'_'.IAuthService::ROLE_SUPER_ADMINISTRATOR,
  115.                     $user->getRoles())) {
  116.                 // logger - site is under maintenance
  117.                 $this->log->writeLog(
  118.                     [
  119.                         IOptionService::KEY_CLASS => get_class($this),
  120.                         IOptionService::KEY_FUNCTION => __FUNCTION__,
  121.                         IOptionService::KEY_MESSAGE => 'site is under maintenance',
  122.                     ],
  123.                     Log::MESSAGE_INFO
  124.                 );
  125.                 // clean session i think is not working
  126.                 $session $event->getRequest()->getSession();
  127.                 $session->invalidate();
  128.                 $session->clear();
  129.                 // clean user activity
  130.                 $this->securityToken->setToken(null);
  131.                 // redirect to maintenance page
  132.                 $this->redirectionMaintenance($event);
  133.             } elseif (null === $user) {
  134.                 // logger - user is not log
  135.                 $this->log->writeLog(
  136.                     [
  137.                         IOptionService::KEY_CLASS => get_class($this),
  138.                         IOptionService::KEY_FUNCTION => __FUNCTION__,
  139.                         IOptionService::KEY_MESSAGE => "User is not connected. He can't access to the application",
  140.                     ],
  141.                     Log::MESSAGE_ERROR
  142.                 );
  143.                 $this->redirectLogout($event);
  144.             } elseif (
  145.                 !$this->fileService->checkFile(
  146.                     $this->parameterBag->get('app.connection_dir').DIRECTORY_SEPARATOR.
  147.                     $user->getUsername().'-'.$this->session->getId()
  148.                 )
  149.             ) {
  150.                 // logger - try to connect with no log
  151.                 $this->log->writeLog(
  152.                     [
  153.                         IOptionService::KEY_CLASS => get_class($this),
  154.                         IOptionService::KEY_FUNCTION => __FUNCTION__,
  155.                         IOptionService::KEY_MESSAGE => 'User is already connected on another device',
  156.                     ],
  157.                     Log::MESSAGE_ERROR
  158.                 );
  159.                 // $this->session->invalidate();
  160.                 // $this->session->clear();
  161.                 $this->redirectLogout($event);
  162.             } else if (!empty($user) && $user instanceof BaseAuth && !empty($user->getValidationCode()) && $event->getRequest()->attributes->get('_route') != "auth_activation") {
  163.                 // logger - try to connect with no log
  164.                 $this->log->writeLog(
  165.                     [
  166.                         IOptionService::KEY_CLASS => get_class($this),
  167.                         IOptionService::KEY_FUNCTION => __FUNCTION__,
  168.                         IOptionService::KEY_MESSAGE => "User has to connect with wright status. He can't access to the application"
  169.                     ],
  170.                     Log::MESSAGE_ERROR
  171.                 );
  172.                 $this->redirectLogout($event);
  173.             }  else {
  174.                 if (null == $this->session->get(IAppService::SESSION_URL) && !empty($user)) {
  175.                     $this->session->set(IAppService::SESSION_URL, [
  176.                         'last_date' => new \DateTime(),
  177.                         'page' => $event->getRequest()->getRequestUri(),
  178.                         'route' => $event->getRequest()->get('_route'),
  179.                     ]);
  180.                 } elseif (!empty($user)) {
  181.                     $lastUrl $this->session->get(IAppService::SESSION_URL);
  182.                     if (
  183.                         null != $lastUrl['last_date']
  184.                         && !CommonForm::checkActivity($lastUrl['last_date'], IAppService::MAX_IDLE_TIME)
  185.                     ) {
  186.                         // logger - timeout
  187.                         $this->log->writeLog(
  188.                             [
  189.                                 IOptionService::KEY_CLASS => get_class($this),
  190.                                 IOptionService::KEY_FUNCTION => __FUNCTION__,
  191.                                 IOptionService::KEY_MESSAGE => 'Connection TIMEOUT',
  192.                             ],
  193.                             Log::MESSAGE_ERROR
  194.                         );
  195.                         // $this->session->clear();
  196.                         $this->session->remove(IAppService::SESSION_URL);
  197.                         $this->redirectLogout($event);
  198.                     } else {
  200.                        // Permert de contrôler l'abonnement de l'utilisateur
  201.                         $this->checkSubscription($event,$controller[0]);
  202.                         
  203.                         $this->session->set(IAppService::SESSION_URL, [
  204.                             'last_date' => new \DateTime(),
  205.                             'page' => $event->getRequest()->getRequestUri(),
  206.                             'route' => $event->getRequest()->get('_route'),
  207.                         ]);
  208.                         $this->log->writeLog(
  209.                             [
  210.                                 IOptionService::KEY_CLASS => get_class($this),
  211.                                 IOptionService::KEY_FUNCTION => __FUNCTION__,
  212.                                 IOptionService::KEY_ACCOUNT => $user->getUsername(),
  213.                             ],
  214.                             Log::MESSAGE_INFO
  215.                         );
  216.                     }
  217.                 }
  218.             }
  219.         }
  220.     }
  222.     public static function getSubscribedEvents()
  223.     {
  224.         return [
  225.             KernelEvents::CONTROLLER => 'onKernelController',
  226.         ];
  227.     }
  230.     public function redirectLogout(ControllerEvent $event)
  231.     {
  232.         if ($event->getRequest()->isMethod('POST') && $event->getRequest()->isXmlHttpRequest()) {
  233.             if (!$event->getController() instanceof AuthController) {
  234.                 $event->setController(function () {
  235.                     return new JsonResponse([
  236.                         'code' => 'signout',
  237.                         'redirect' => $this->parameterBag->get('app.url').'signout',
  238.                     ], 400);
  239.                 });
  240.             } else {
  241.                 $event->setController(function () {
  242.                     return new JsonResponse('signout'200);
  243.                 });
  244.             }
  245.         } else {
  246.             $event->setController(function () {
  247.                 return new RedirectResponse($this->parameterBag->get('app.url').'signout');
  248.             });
  249.         }
  250.     }
  252.     public function redirectionMaintenance(ControllerEvent $event)
  253.     {
  254.         if ($event->getRequest()->isMethod('POST') && $event->getRequest()->isXmlHttpRequest()) {
  255.             if (!$event->getController() instanceof AuthController) {
  256.                 $event->setController(function () {
  257.                     return new JsonResponse([
  258.                         'redirect' => $this->parameterBag->get('app.url').'maintenance',
  259.                     ], 200);
  260.                 });
  261.             } else {
  262.                 $event->setController(function () {
  263.                     return new JsonResponse('maintenance'200);
  264.                 });
  265.             }
  266.         } else {
  267.             $event->setController(function () {
  268.                 return new RedirectResponse($this->parameterBag->get('app.url').'maintenance');
  269.             });
  270.         }
  271.     }
  272. }