src/Core/Domain/Infrastructure/Annotation/AccessEventSubscriber.php line 38

  1. <?php
  2.     
  3.     namespace App\Core\Domain\Infrastructure\Annotation;
  4.     
  5.     use App\Core\Domain\Infrastructure\Repository\Insales\Interface\ApplicationRepositoryInterface;
  6.     use App\Core\Ports\Http\Error\SessionEndAction;
  7.     use App\Shared\Domain\Exception\AccessForbiddenException;
  8.     use App\Shared\Domain\Exception\InvalidInputDataException;
  9.     use Symfony\Component\EventDispatcher\Attribute\AsEventListener;
  10.     use Symfony\Component\HttpFoundation\RedirectResponse;
  11.     use Symfony\Component\HttpKernel\Event\ControllerEvent;
  12.     use Symfony\Component\HttpKernel\KernelEvents;
  13.     use Symfony\Component\Routing\RouterInterface;
  15.     /**
  16.      * Class AccessEventSubscriber
  17.      * @package App\Core\Domain\Infrastructure\Annotation
  18.      */
  19.     final class AccessEventSubscriber
  20.     {
  21.     
  22.         /**
  23.          * @param ApplicationRepositoryInterface $applicationRepository
  24.          * @param RouterInterface $router
  25.          */
  26.         public function __construct(
  27.             private readonly ApplicationRepositoryInterface $applicationRepository,
  28.             private readonly RouterInterface                $router
  29.         )
  30.         {
  31.         }
  32.     
  33.         /**
  34.          * @throws AccessForbiddenException
  35.          * @throws InvalidInputDataException
  36.          */
  37.         #[AsEventListener(KernelEvents::CONTROLLER)]
  38.         public function onController(ControllerEvent $event)
  39.         {
  41.             if(
  42.                 !empty($event->getAttributes()[Access::class][0])
  43.                 && $event->getAttributes()[Access::class][0] instanceof Access
  44.             )
  45.             {
  46.     
  47.                 /** @var Access $access */
  48.                 $access $event->getAttributes()[Access::class][0];
  49.     
  50.                 try
  51.                 {
  53.                     if(!$event->getRequest()->getSession()->has('insalesId'))
  54.                     {
  55.                         throw new AccessForbiddenException(
  56.                             AccessForbiddenException::SESSION_CHECK_FAIL
  57.                         );
  58.                     }
  60.                     if(!$event->getRequest()->attributes->has($access->getName()))
  61.                     {
  62.                         throw new AccessForbiddenException(
  63.                             AccessForbiddenException::SESSION_CHECK_FAIL
  64.                         );
  65.                     }
  66.     
  67.                     $application $this->applicationRepository->findOneByUuid(
  68.                         $event->getRequest()->attributes->get(
  69.                             $access->getName()
  70.                         )
  71.                     );
  72.     
  73.                     if(
  74.                         $application === null
  75.                         || $application->getInsalesId() !== $event->getRequest()->getSession()->get('insalesId')
  76.                     )
  77.                     {
  78.                         throw new AccessForbiddenException(
  79.                             AccessForbiddenException::SESSION_CHECK_FAIL
  80.                         );
  81.                     }
  82.     
  83.                     if(empty($access->getName()))
  84.                     {
  85.                         throw new AccessForbiddenException(
  86.                             InvalidInputDataException::INVALID_ACCESS_CONFIGURATION
  87.                         );
  88.                     }
  89.                 }
  90.                 catch (AccessForbiddenException $exception)
  91.                 {
  92.                     if($access->isAutoRedirect())
  93.                     {
  94.                         $event->setController(
  95.                             function()
  96.                             {
  97.                                 return new RedirectResponse(
  98.                                     $this->router->generate(
  99.                                         SessionEndAction::ROUTE_NAME
  100.                                     )
  101.                                 );
  102.                             }
  103.                         );
  104.                     }
  105.                     else
  106.                     {
  107.                         throw $exception;
  108.                     }
  109.                 }
  110.             }
  111.         }
  112.     }