src/EventSubscriber/AuthCookieSubscriber.php line 84

Open in your IDE?
  1. <?php
  2. /**
  3.  * User: Quentin
  4.  * Date: 06/07/2020
  5.  * Time: 22:57
  6.  */
  8. namespace App\EventSubscriber;
  10. use App\Entity\User;
  11. use App\Services\RemoteAuthService;
  12. use App\Services\UserService;
  13. use Doctrine\ORM\EntityManagerInterface;
  14. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. use Symfony\Component\HttpFoundation\Cookie;
  16. use Symfony\Component\HttpKernel\Event\RequestEvent;
  17. use Symfony\Component\HttpKernel\Event\ResponseEvent;
  18. use Symfony\Component\HttpKernel\KernelEvents;
  20. class AuthCookieSubscriber implements EventSubscriberInterface {
  22.     protected $ticket;
  23.     
  24.     /**
  25.      * @var RemoteAuthService
  26.      */
  27.     private $remoteAuth;
  28.     
  29.     protected $mustClearCookie false;
  30.     
  31.     /**
  32.      * @var EntityManagerInterface
  33.      */
  34.     private $entityManager;
  35.     
  36.     /**
  37.      * @var UserService
  38.      */
  39.     private $userService;
  41.     public function __construct(RemoteAuthService $remoteAuthEntityManagerInterface $entityManagerUserService $userService) {
  42.         $this->remoteAuth $remoteAuth;
  43.         $this->entityManager $entityManager;
  44.         $this->userService $userService;
  45.     }
  47.     public static function getSubscribedEvents() {
  48.         return [
  49.             KernelEvents::REQUEST => 'onKernelRequest',
  50.             KernelEvents::RESPONSE => 'onKernelResponse',
  51.         ];
  52.     }
  54.     public function onKernelRequest(RequestEvent $event) {
  55.         $ticketGrantingTicket $event->getRequest()->cookies->get(RemoteAuthService::COOKIE_NAME);
  56.         if (is_null($ticketGrantingTicket)) {
  57.             return;
  58.         }
  59.         
  60.         if ($this->userService->getUser() !== null) {
  61.             return;
  62.         }
  64.         $ticketGrantingTicket trim($ticketGrantingTicketRemoteAuthService::COOKIE_WRAP_CHAR);
  65.         
  66.         $userData $this->remoteAuth->tradeTGTForUserData($ticketGrantingTicket);
  67.         if (is_string($userData)) {
  68.             $this->mustClearCookie true;
  69.             return;
  70.         }
  72.         /** @var User|null $user */
  73.         $user $this->entityManager->getRepository(User::class)->findOneByRemoteId($userData->remoteId);
  74.         if (is_null($user)) {
  75.             $this->mustClearCookie true;
  76.             return;
  77.         }
  78.         
  79.         $this->userService->authenticate($user$event->getRequest());
  80.         $user->setLastConnectedAt(new \DateTime());
  81.         $this->entityManager->flush();
  82.     }
  84.     public function onKernelResponse(ResponseEvent $event) {
  85.         if ($this->mustClearCookie) {
  86.             $this->remoteAuth->setCookie($event->getResponse(), null);
  87.         }
  88.     }
  90. }