src/EventSubscriber/AdminPermissionListener.php line 48

Open in your IDE?
  1. <?php
  3. namespace App\EventSubscriber;
  5. use App\Controller\AdminPermissionController;
  6. use App\Controller\MainController;
  7. use App\Service\Storage\AdminSession;
  8. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  9. use Symfony\Component\HttpFoundation\RedirectResponse;
  10. use Symfony\Component\HttpKernel\Event\ControllerArgumentsEvent;
  11. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  12. use Symfony\Component\HttpKernel\Event\ResponseEvent;
  13. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  14. use Symfony\Component\HttpKernel\KernelEvents;
  16. class AdminPermissionListener implements EventSubscriberInterface
  17. {
  18.     /** @var AdminSession */
  19.     private $adminSession;
  21.     public function __construct(AdminSession $adminSession)
  22.     {
  23.         $this->adminSession $adminSession;
  24.     }
  26.     public function onKernelController(ControllerEvent $event)
  27.     {
  28.         $controller $event->getController();
  29.         if (is_array($controller)) {
  30.             $controller $controller[0];
  31.         }
  32.         /*if ($controller instanceof AdminPermissionController || $controller instanceof MainController) {
  33.             //check_white_ip_list
  34.             if (!$this->adminSession->isTrustedIP($event->getRequest()->getClientIp()))
  35.             {
  36.                 header('Location: https://google.com/');
  37.                 exit;
  38.             }
  39.         }*/
  40.         if ($controller instanceof AdminPermissionController) {
  41.             //check_route permission
  42.             if (!$this->adminSession->checkPermissions($event->getRequest()) && $this->adminSession->isLogged()) {
  43.                 throw new AccessDeniedHttpException('No permission');
  44.             }
  45.         }
  46.     }
  48.     public function onKernelView(ControllerArgumentsEvent $event)
  49.     {
  50.         return;
  51.         $controller $event->getController();
  52.         if (is_array($controller)) {
  53.             $controller $controller[0];
  54.         }
  55.         if ($controller instanceof AdminPermissionController) {
  56.         }
  57.         return;
  58.     }
  60.     public function onKernelResponse(ResponseEvent $event)
  61.     {
  62.         return;
  64.         // check to see if onKernelController marked this as a token "auth'ed" request
  65.         if (!$token $event->getRequest()->attributes->get('auth_token')) {
  66.             return;
  67.         }
  69.         $response $event->getResponse();
  71.         // create a hash and set it as a response header
  72.         $hash sha1($response->getContent().$token);
  73.         $response->headers->set('X-CONTENT-HASH'$hash);
  74.     }
  77.     public static function getSubscribedEvents()
  78.     {
  79.         return [
  80.             KernelEvents::CONTROLLER => 'onKernelController',
  81.             KernelEvents::CONTROLLER_ARGUMENTS => 'onKernelView',
  82.             KernelEvents::RESPONSE => 'onKernelResponse',
  83.         ];
  84.     }
  85. }