vendor/dachcom-digital/members/src/MembersBundle/EventListener/ForbiddenRouteListener.php line 67

Open in your IDE?
  1. <?php
  3. namespace MembersBundle\EventListener;
  5. use MembersBundle\Event\StaticRouteEvent;
  6. use MembersBundle\Manager\RestrictionManager;
  7. use MembersBundle\Manager\RestrictionManagerInterface;
  8. use MembersBundle\MembersEvents;
  9. use MembersBundle\Restriction\ElementRestriction;
  10. use Pimcore\Bundle\CoreBundle\EventListener\Traits\PimcoreContextAwareTrait;
  11. use Pimcore\Http\RequestHelper;
  12. use Pimcore\Model\DataObject\AbstractObject;
  13. use Pimcore\Http\Request\Resolver\PimcoreContextResolver;
  14. use Symfony\Cmf\Bundle\RoutingBundle\Routing\DynamicRouter;
  15. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  16. use Symfony\Component\HttpFoundation\RedirectResponse;
  17. use Symfony\Component\HttpKernel\KernelEvents;
  18. use Symfony\Component\HttpKernel\Event\GetResponseEvent;
  19. use Symfony\Component\Routing\RouterInterface;
  21. class ForbiddenRouteListener implements EventSubscriberInterface
  22. {
  23.     use PimcoreContextAwareTrait;
  25.     /**
  26.      * @var RestrictionManagerInterface
  27.      */
  28.     protected $restrictionManager;
  30.     /**
  31.      * @var RouterInterface
  32.      */
  33.     protected $router;
  35.     /**
  36.      * @var RequestHelper
  37.      */
  38.     private $requestHelper;
  40.     /**
  41.      * ForbiddenRouteListener constructor.
  42.      *
  43.      * @param RestrictionManagerInterface $restrictionManager
  44.      * @param RouterInterface             $router
  45.      * @param RequestHelper               $requestHelper
  46.      */
  47.     public function __construct(RestrictionManagerInterface $restrictionManagerRouterInterface $routerRequestHelper $requestHelper)
  48.     {
  49.         $this->restrictionManager $restrictionManager;
  50.         $this->router $router;
  51.         $this->requestHelper $requestHelper;
  52.     }
  54.     /**
  55.      * @return array
  56.      */
  57.     public static function getSubscribedEvents()
  58.     {
  59.         return [
  60.             KernelEvents::REQUEST => ['onKernelRequest'//before head meta listener
  61.         ];
  62.     }
  64.     /**
  65.      * @param GetResponseEvent $event
  66.      */
  67.     public function onKernelRequest(GetResponseEvent $event)
  68.     {
  69.         if (!$event->isMasterRequest()) {
  70.             return;
  71.         }
  73.         if (!$this->requestHelper->isFrontendRequest($event->getRequest())) {
  74.             return;
  75.         }
  77.         if (!$this->matchesPimcoreContext($event->getRequest(), PimcoreContextResolver::CONTEXT_DEFAULT)) {
  78.             return;
  79.         }
  81.         $restriction false;
  83.         if (strpos($event->getRequest()->attributes->get('_route'), 'document_') !== false) {
  84.             $document $event->getRequest()->get(DynamicRouter::CONTENT_KEYnull);
  85.             $restriction $this->restrictionManager->getElementRestrictionStatus($document);
  86.         } elseif ($event->getRequest()->attributes->get('pimcore_request_source') === 'staticroute') {
  87.             $routeEvent = new StaticRouteEvent($event->getRequest(), $event->getRequest()->attributes->get('_route'));
  88.             \Pimcore::getEventDispatcher()->dispatch(
  89.                 MembersEvents::RESTRICTION_CHECK_STATICROUTE,
  90.                 $routeEvent
  91.             );
  93.             $restrictionObject $routeEvent->getStaticRouteObject();
  94.             if ($restrictionObject instanceof AbstractObject) {
  95.                 $restriction $this->restrictionManager->getElementRestrictionStatus($restrictionObject);
  96.             }
  97.         }
  99.         if ($restriction !== false) {
  100.             $event->getRequest()->attributes->set(RestrictionManager::REQUEST_RESTRICTION_STORAGE$restriction);
  101.             $restrictionRoute $this->getRouteForRestriction($restriction);
  102.             if ($restrictionRoute !== false) {
  103.                 $parameters $restrictionRoute === 'members_user_security_login' ? ['_target_path' => $event->getRequest()->getUri()] : [];
  104.                 $response = new RedirectResponse($this->router->generate($restrictionRoute$parameters));
  105.                 $event->setResponse($response);
  106.             }
  107.         }
  108.     }
  110.     /**
  111.      * @param ElementRestriction $elementRestriction
  112.      *
  113.      * @return bool|string
  114.      */
  115.     private function getRouteForRestriction(ElementRestriction $elementRestriction)
  116.     {
  117.         if ($elementRestriction->getSection() == RestrictionManager::RESTRICTION_SECTION_ALLOWED) {
  118.             //section allowed
  119.             return false;
  120.         } elseif ($elementRestriction->getState() === RestrictionManager::RESTRICTION_STATE_NOT_LOGGED_IN
  121.             && $elementRestriction->getSection() === RestrictionManager::RESTRICTION_SECTION_NOT_ALLOWED
  122.         ) {
  123.             //not allowed
  124.             return 'members_user_security_login';
  125.         } elseif ($elementRestriction->getState() === RestrictionManager::RESTRICTION_STATE_LOGGED_IN
  126.             && $elementRestriction->getSection() === RestrictionManager::RESTRICTION_SECTION_NOT_ALLOWED
  127.         ) {
  128.             //logged in but no allowed.
  129.             return 'members_user_restriction_refused';
  130.         }
  132.         return false;
  133.     }
  134. }