src/EventSubscriber/TokenSubscriber.php line 33

Open in your IDE?
  1. <?php
  2. // src/EventSubscriber/TokenSubscriber.php
  3. namespace App\EventSubscriber;
  5. use App\Controller\TokenAuthenticatedController;
  6. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  7. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  8. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  9. use Symfony\Component\HttpKernel\KernelEvents;
  10. use Psr\Log\LoggerInterface;
  12. use App\Service\OAuth2\Autoloader;
  13. use Doctrine\DBAL\Connection;
  14. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  16. use App\Service\OAuth2\Storage\Pdo;
  17. use App\Service\OAuth2\Server;
  18. use App\Service\OAuth2\Request;
  19. use App\Service\OAuth2\Response;
  22. class TokenSubscriber implements EventSubscriberInterface
  23. {
  24.     private $tokens;
  26.     public function __construct(Connection $connectionParameterBagInterface $paramsLoggerInterface $apiLogger)
  27.     {
  28.         $this->connection $connection;
  29.         $this->params $params;
  30.         $this->logger $apiLogger;
  31.     }
  33.     public function onKernelController(ControllerEvent $event)
  34.     {
  35.         $controller $event->getController();
  36.         $allowed_ip $this->params->get('api.allowed_ips');
  38.         // when a controller class defines multiple action methods, the controller
  39.         // is returned as [$controllerInstance, 'methodName']
  40.         if (is_array($controller)) {
  41.             $controller $controller[0];
  42.         }
  44.         if(!in_array($_SERVER['REMOTE_ADDR'],$allowed_ip) && !in_array('0.0.0.0'$allowed_ip)){
  45.             $this->logger->warning("API called from not allowed ip",array("REMOTE_ADDR" => $_SERVER['REMOTE_ADDR']) );
  46.             throw new AccessDeniedHttpException();
  47.         }
  49.         if ($controller instanceof TokenAuthenticatedController) {
  50.             $token $event->getRequest()->query->get('token');
  52.             Autoloader::register();
  54.             /** @var \Doctrine\DBAL\Connection */
  55.             $connectionParams $this->connection->getParams();
  57.             $db_user $connectionParams['user'];
  58.             $db_passwd $connectionParams['password'];
  59.             $db_host $connectionParams['host'];
  60.             $db_port $connectionParams['port'];
  61.             $db_name $connectionParams['dbname'];
  63.             $db_dsn "pgsql:host=".$db_host.";port=".$db_port.";dbname=".$db_name.";";
  65.             // create your storage again
  66.             $storage = new Pdo(array('dsn' => $db_dsn'username' => $db_user'password' => $db_passwd));
  68.             // create your server again
  69.             $server = new Server($storage);
  71.             // Handle a request for an OAuth2.0 Access Token and send the response to the client
  72.             if (!$server->verifyResourceRequest(Request::createFromGlobals(), new Response())) {
  73.                 $server->getResponse()->send();
  74.                 die;
  75.             }
  76.         }
  77.     }
  79.     public static function getSubscribedEvents()
  80.     {
  81.         return [
  82.             KernelEvents::CONTROLLER => 'onKernelController',
  83.         ];
  84.     }
  85. }