src/Social/UserBundle/EventListener/PageLoadListener.php line 63

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the FOSUserBundle package.
  5.  *
  6.  * (c) FriendsOfSymfony <http://friendsofsymfony.github.com/>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Social\UserBundle\EventListener;
  14. use Doctrine\ORM\EntityManagerInterface;
  15. use Firebase\JWT\ExpiredException;
  16. use Social\FrontendBundle\Service\Mailer;
  17. use Social\UserBundle\Entity\User;
  18. use Symfony\Component\EventDispatcher\EventDispatcher;
  19. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  20. use Symfony\Component\HttpKernel\Event\FilterControllerEvent;
  21. use Symfony\Component\HttpKernel\KernelEvents;
  22. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage;
  23. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  24. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  25. use Symfony\Component\HttpFoundation\RedirectResponse;
  26. use Firebase\JWT\JWT;
  27. use Firebase\JWT\Key;
  28. use Social\InternalBundle\Service\LocationService;
  30. /**
  31.  * Class EmailConfirmationListener
  32.  *
  33.  * @package Social\UserBundle\EventListener
  34.  */
  35. class PageLoadListener implements EventSubscriberInterface
  36. {
  37.     private $entityManager;
  39.     private $tokenStorage;
  41.     private $locationService;
  43.     public function __construct(
  44.         EntityManagerInterface $entityManager
  45.         TokenStorage $tokenStorage,
  46.         LocationService $locationService
  47.     ) {
  48.         $this->entityManager $entityManager;
  49.         $this->tokenStorage $tokenStorage;
  50.         $this->locationService $locationService;
  51.     }
  53.     /**
  54.      * @return string[]
  55.      */
  56.     public static function getSubscribedEvents(): array
  57.     {
  58.         return [
  59.             KernelEvents::class => 'onKernelController',
  60.         ];
  61.     }
  63.     public function onKernelController(FilterControllerEvent $event)
  64.     {
  65.         $request $event->getRequest();
  67.         if (!$request) {
  68.             return;
  69.         }
  70.         
  71.         $key $_ENV['APP_MAILS_JWT_PASSWORD'];
  72.         $jwt $request->query->get('login_token');
  74.         if (!$jwt) {
  75.             return;
  76.         }
  78.         try {
  79.             $decoded =  JWT::decode($jwt, new Key($key'HS256'));
  80.         } catch (ExpiredException $exception) {
  81.             return;
  82.         }
  84.         if(!property_exists($decoded"id")) {
  85.             return;
  86.         }
  88.         $password $decoded->id;
  90.         if (!$password) {
  91.             return;
  92.         }
  94.         $em $this->entityManager;
  96.         $userRepository $em->getRepository(User::class);
  98.         $user $userRepository->find($password);
  100.         if (!$user) {
  101.             return;
  102.         }
  104.         $token = new UsernamePasswordToken($user$user->getId(), "main"$user->getRoles());
  106.         $this->tokenStorage->setToken($token);
  108.         $historyApiip $user->getHistoryApiipReference();
  109.         if (empty($historyApiip)) {
  110.             $this->locationService->generateLocationHistory($request->getClientIp(), $user);
  111.         } else if (empty($user->getNewLocation()) && !empty($historyApiip->getNewLocation())) {
  112.             $user->setNewLocation($historyApiip->getNewLocation());
  113.             $em->persist($user);
  114.             $em->flush();
  115.         }
  117.         // Fire the login event
  118.         try {
  119.             $event = new InteractiveLoginEvent($request$token);
  121.             $dispatcher = new EventDispatcher();
  123.             $dispatcher->dispatch("security.interactive_login"$event);
  125.             $domain $request->getSchemeAndHttpHost();
  126.             $newUrl $domain$this->strip_param_from_url($request->getRequestUri(), 'login_token');
  128.             if ('?' == substr($newUrl, -1)) {
  129.                 $newUrl =  substr($newUrl0, -1);
  130.             }
  132.             header("location: ".$newUrl);
  134.         } catch (\Exception $exception) {
  135.         }
  137.         return;
  138.     }
  140.     private function strip_param_from_url$url$param ) {
  141.         $base_url strtok($url'?');              // Get the base url
  142.         $parsed_url parse_url($url);              // Parse it
  144.         if (!isset($parsed_url['query'])) {
  145.             return $base_url;
  146.         }
  148.         $query $parsed_url['query'];              // Get the query string
  149.         parse_str$query$parameters );           // Convert Parameters into array
  150.         unset( $parameters[$param] );               // Delete the one you want
  151.         $new_query http_build_query($parameters); // Rebuilt query string
  152.         return $base_url.'?'.$new_query;            // Finally url is ready
  153.     }
  154. }