src/EventSubscriber/ProspectControllerSubscriber.php line 41

Open in your IDE?
  1. <?php
  3. namespace App\EventSubscriber;
  5. use App\Controller\V1\Prospect\AnonymousController;
  6. use App\Controller\V1\Prospect\ProspectAuthenticatedControllerInterface;
  7. use App\Controller\V1\Prospect\RegistrationController;
  8. use App\Repository\Account\TenantPersonRepository;
  9. use App\Service\TenantPerson\TenantPersonService;
  10. use Doctrine\ORM\NonUniqueResultException;
  11. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  12. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  13. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  14. use Symfony\Component\HttpKernel\KernelEvents;
  16. class ProspectControllerSubscriber implements EventSubscriberInterface
  17. {
  18.     private $tenantPersonRepository;
  20.     private $tenantPersonService;
  22.     public function __construct(
  23.         TenantPersonRepository $tenantPersonRepository,
  24.         TenantPersonService $tenantPersonService
  25.     ) {
  26.         $this->tenantPersonRepository $tenantPersonRepository;
  27.         $this->tenantPersonService $tenantPersonService;
  28.     }
  30.     public static function getSubscribedEvents(): array
  31.     {
  32.         return [
  33.             KernelEvents::CONTROLLER => 'onKernelController',
  34.         ];
  35.     }
  37.     /**
  38.      * @throws NonUniqueResultException
  39.      * @throws \Exception
  40.      */
  41.     public function onKernelController(ControllerEvent $event)
  42.     {
  43.         $controller $event->getController();
  44.         $request $event->getRequest();
  46.         // when a controller class defines multiple action methods, the controller
  47.         // is returned as [$controllerInstance, 'methodName']
  48.         if (is_array($controller)) {
  49.             $controller $controller[0];
  50.         }
  52.         if ($controller instanceof RegistrationController || $controller instanceof AnonymousController) {
  53.             return;
  54.         }
  56.         if ($controller instanceof ProspectAuthenticatedControllerInterface) {
  57.             $forbidden = new AccessDeniedHttpException("You don't have permission to access the server.");
  59.             if (!$request->headers->has('X-TP-ID')) {
  60.                 throw $forbidden;
  61.             }
  63.             $prospectTenantPersonId $request->headers->get('X-TP-ID');
  65.             if (!is_numeric($prospectTenantPersonId)) {
  66.                 throw $forbidden;
  67.             }
  69.             $tenantPerson $this->tenantPersonRepository->findOneByProspectTenantPersonId($prospectTenantPersonId);
  71.             if (!$tenantPerson) {
  72.                 throw $forbidden;
  73.             }
  75.             if ($this->tenantPersonService->isInitialized()) {
  76.                 return;
  77.             }
  79.             $this->tenantPersonService->init($tenantPerson);
  80.         }
  81.     }
  82. }