Home Explore Help
Sign In
bux
/
muzich
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
741 Commits
1 Branches
Tree: 43ed0c3c0e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '43ed0c3c0e'
${ noResults }
muzich/vendor/symfony/src/Symfony/Component/Security/Http/Firewall/ContextListener.php

ContextListener.php 4.9KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155 
  1. <?php

  2. 

  3. /*

  4.  * This file is part of the Symfony package.

  5.  *

  6.  * (c) Fabien Potencier <fabien@symfony.com>

  7.  *

  8.  * For the full copyright and license information, please view the LICENSE

  9.  * file that was distributed with this source code.

  10.  */

  11. 

  12. namespace Symfony\Component\Security\Http\Firewall;

  13. 

  14. use Symfony\Component\HttpKernel\HttpKernelInterface;

  15. use Symfony\Component\HttpKernel\Log\LoggerInterface;

  16. use Symfony\Component\HttpKernel\Event\GetResponseEvent;

  17. use Symfony\Component\HttpKernel\Event\FilterResponseEvent;

  18. use Symfony\Component\HttpKernel\KernelEvents;

  19. use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;

  20. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;

  21. use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;

  22. use Symfony\Component\Security\Core\Exception\UnsupportedUserException;

  23. use Symfony\Component\Security\Core\SecurityContextInterface;

  24. use Symfony\Component\Security\Core\User\UserInterface;

  25. use Symfony\Component\EventDispatcher\EventDispatcherInterface;

  26. 

  27. /**

  28.  * ContextListener manages the SecurityContext persistence through a session.

  29.  *

  30.  * @author Fabien Potencier <fabien@symfony.com>

  31.  * @author Johannes M. Schmitt <schmittjoh@gmail.com>

  32.  */

  33. class ContextListener implements ListenerInterface

  34. {

  35.     private $context;

  36.     private $contextKey;

  37.     private $logger;

  38.     private $userProviders;

  39. 

  40.     public function __construct(SecurityContextInterface $context, array $userProviders, $contextKey, LoggerInterface $logger = null, EventDispatcherInterface $dispatcher = null)

  41.     {

  42.         if (empty($contextKey)) {

  43.             throw new \InvalidArgumentException('$contextKey must not be empty.');

  44.         }

  45. 

  46.         $this->context = $context;

  47.         $this->userProviders = $userProviders;

  48.         $this->contextKey = $contextKey;

  49.         $this->logger = $logger;

  50. 

  51.         if (null !== $dispatcher) {

  52.             $dispatcher->addListener(KernelEvents::RESPONSE, array($this, 'onKernelResponse'));

  53.         }

  54.     }

  55. 

  56.     /**

  57.      * Reads the SecurityContext from the session.

  58.      *

  59.      * @param GetResponseEvent $event A GetResponseEvent instance

  60.      */

  61.     public function handle(GetResponseEvent $event)

  62.     {

  63.         $request = $event->getRequest();

  64. 

  65.         $session = $request->hasPreviousSession() ? $request->getSession() : null;

  66. 

  67.         if (null === $session || null === $token = $session->get('_security_'.$this->contextKey)) {

  68.             $this->context->setToken(null);

  69.         } else {

  70.             if (null !== $this->logger) {

  71.                 $this->logger->debug('Read SecurityContext from the session');

  72.             }

  73. 

  74.             $token = unserialize($token);

  75. 

  76.             if (null !== $token) {

  77.                 $token = $this->refreshUser($token);

  78.             }

  79. 

  80.             $this->context->setToken($token);

  81.         }

  82.     }

  83. 

  84.     /**

  85.      * Writes the SecurityContext to the session.

  86.      *

  87.      * @param FilterResponseEvent $event A FilterResponseEvent instance

  88.      */

  89.     public function onKernelResponse(FilterResponseEvent $event)

  90.     {

  91.         if (HttpKernelInterface::MASTER_REQUEST !== $event->getRequestType()) {

  92.             return;

  93.         }

  94. 

  95.         if (!$event->getRequest()->hasSession()) {

  96.             return;

  97.         }

  98. 

  99.         if (null === $token = $this->context->getToken()) {

  100.             return;

  101.         }

  102. 

  103.         if (null === $token || $token instanceof AnonymousToken) {

  104.             return;

  105.         }

  106. 

  107.         if (null !== $this->logger) {

  108.             $this->logger->debug('Write SecurityContext in the session');

  109.         }

  110. 

  111.         $event->getRequest()->getSession()->set('_security_'.$this->contextKey, serialize($token));

  112.     }

  113. 

  114.     /**

  115.      * Refreshes the user by reloading it from the user provider

  116.      *

  117.      * @param TokenInterface $token

  118.      *

  119.      * @return TokenInterface|null

  120.      */

  121.     private function refreshUser(TokenInterface $token)

  122.     {

  123.         $user = $token->getUser();

  124.         if (!$user instanceof UserInterface) {

  125.             return $token;

  126.         }

  127. 

  128.         if (null !== $this->logger) {

  129.             $this->logger->debug(sprintf('Reloading user from user provider.'));

  130.         }

  131. 

  132.         foreach ($this->userProviders as $provider) {

  133.             try {

  134.                 $token->setUser($provider->refreshUser($user));

  135. 

  136.                 if (null !== $this->logger) {

  137.                     $this->logger->debug(sprintf('Username "%s" was reloaded from user provider.', $user->getUsername()));

  138.                 }

  139. 

  140.                 return $token;

  141.             } catch (UnsupportedUserException $unsupported) {

  142.                 // let's try the next user provider

  143.             } catch (UsernameNotFoundException $notFound) {

  144.                 if (null !== $this->logger) {

  145.                     $this->logger->warn(sprintf('Username "%s" could not be found.', $user->getUsername()));

  146.                 }

  147. 

  148.                 return null;

  149.             }

  150.         }

  151. 

  152.         throw new \RuntimeException(sprintf('There is no user provider for user "%s".', get_class($user)));

  153.     }

  154. }