src/EventSubscriber/RequestSubscriber.php line 43

Open in your IDE?
  1. <?php
  2. namespace App\EventSubscriber;
  4. use App\Entity\WhiteList;
  5. use App\Service\System\Location;
  6. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  7. use Symfony\Component\HttpKernel\Event\ExceptionEvent;
  8. use Symfony\Component\HttpKernel\KernelEvents;
  9. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  10. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  11. use Doctrine\ORM\EntityManagerInterface;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  14. class RequestSubscriber implements EventSubscriberInterface
  15. {
  18.     public function __construct(
  19.         EntityManagerInterface $entityManager,
  20.         TokenStorageInterface $tokenStorage,
  21.         Location $location
  22.     )
  23.     {
  24.         $this->em $entityManager;
  25.         $this->tokenStorage $tokenStorage;
  26.         $this->location $location;
  27.     }
  30.     public static function getSubscribedEvents()
  31.     {
  32.         // return the subscribed events, their methods and priorities
  33.         return [
  34.             KernelEvents::CONTROLLER => [
  35.                 ['logException'0],
  36.             ],
  37.         ];
  38.     }
  40.     /**
  41.      * @param ControllerEvent $event
  42.      */
  43.     public function logException($event)
  44.     {
  45.         $token $this->tokenStorage->getToken();
  46.         $location $this->location;
  47.         $user_data $location->getUserData();
  48.         $request_url $user_data['request_url'];
  49.         $firewall $_SERVER['FIREWALL'];
  51.         if(!is_null($token)) {
  53.             $user $token->getUser();
  54.             $last_login $user->getLastLogin();
  55.             $this_time = (new \DateTime());
  56.             if(
  57.                 (
  58.                 $last_login and
  59.                 $last_login < (clone $this_time)->modify('-20 minutes')
  60.                 ) and
  61.                 $request_url !== '/security'
  62.             ){
  63.                 if (isset($_SESSION))
  64.                     session_destroy();
  65.                 $event->setController(function () {
  66.                     return new RedirectResponse('/');
  67.                 });
  68.             }
  70.             if($firewall === 'true') {
  71.                 $user_ip $user_data['ip'];
  73.                 $logout true;
  74.                 $white_list $this->em->getRepository(WhiteList::class)->findBy([
  75.                     'ip' => $user_ip
  76.                 ]);
  77.                 if ($white_list) {
  78.                     foreach ($white_list as $white) {
  79.                         $status_user $white->checkUser($user);
  80.                         if ($status_user) {
  81.                             $logout false;
  82.                             break;
  83.                         }
  84.                     }
  85.                 }
  86.                 if ($logout) {
  87.                     if (isset($_SESSION))
  88.                         session_destroy();
  89.                     $event->setController(function () {
  90.                         return new RedirectResponse('/logout/no/valid/ip');
  91.                     });
  92.                 }
  93.             }
  95.         }
  96.     }
  99. }