src/EventListener/AuthorizationRequestResolverListener.php line 33

Open in your IDE?
  1. <?php
  3. namespace App\EventListener;
  5. use Psr\Log\LoggerInterface;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use League\Bundle\OAuth2ServerBundle\Event\AuthorizationRequestResolveEvent;
  8. use Symfony\Component\HttpFoundation\RequestStack;
  9. use Symfony\Component\HttpFoundation\RedirectResponse;
  10. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  11. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  12. use Symfony\Component\Routing\RouterInterface;
  13. use App\Entity\User;
  14. use App\Entity\SwitchUserToken;
  16. class AuthorizationRequestResolverListener {
  18.     private $symfonyUserKey 'symfony_username';
  19.     private EntityManagerInterface $em;
  20.     private LoggerInterface $logger;
  21.     private RequestStack $requestStack;
  22.     private RouterInterface $router;
  23.     private SessionInterface $session;
  24.     private TokenStorageInterface $tokenStorage;
  25.     private string $oauthImpersonate "oauth_impersonate_token";
  27.     public function __construct(EntityManagerInterface $emRequestStack $requestStackRouterInterface $router,
  28.             LoggerInterface $loggerTokenStorageInterface $tokenStorage) {
  29.         $this->em $em;
  30.         $this->logger $logger;
  31.         $this->requestStack $requestStack;
  32.         $this->router $router;
  33.         $this->session $this->requestStack->getSession();
  34.         $this->tokenStorage $tokenStorage;
  35.     }
  37.     public function resolve(AuthorizationRequestResolveEvent $event) {
  38.         $user $this->getUser();
  39.         if (empty($user)) {
  40.             $this->redirectLogin($event);
  41.         } else {
  42.             $this->resolveAuthorization($event$user);
  43.         }
  44.     }
  46.     private function getUser() {
  47.         if ($this->session->has($this->oauthImpersonate)) {
  48.             return $this->processImpersonate();
  49.         }
  51.         $token $this->tokenStorage->getToken();
  52.         if (empty($token)) {
  53.             return null;
  54.         }
  56.         return $token->getUser();
  57.     }
  59.     private function processImpersonate() {
  60.         $strToken $this->session->get($this->oauthImpersonate);
  62.         /* @var $token SwitchUserToken */
  63.         $token $this->em->getRepository(SwitchUserToken::class)->findOneBy(array('token' => $strToken));
  64.         if (empty($token)) {
  65.             return null;
  66.         }
  68.         if ($token->getUsed()) {
  69.             return null;
  70.         }
  72.         $userID $token->getUserID();
  73.         $user $this->em->getRepository(User::class)->find($userID);
  75.         $token->setUsed(true);
  77.         $this->em->persist($token);
  78.         $this->em->flush();
  80.         $this->session->remove($this->oauthImpersonate);
  82.         return $user;
  83.     }
  85.     private function resolveAuthorization(AuthorizationRequestResolveEvent $eventUser $user) {
  86.         /* set data for further processing in league oauth2 server */
  87.         $event->resolveAuthorization(true);
  88.         $event->setUser($user);
  90.         /* remove session value */
  91.         $this->session->remove($this->symfonyUserKey);
  92.     }
  94.     private function redirectLogin(AuthorizationRequestResolveEvent $event) {
  95.         $request $this->requestStack->getCurrentRequest();
  96.         $parameters $request->query->all();
  97.         $location $this->router->generate('oauth2_login'$parameters);
  99.         $this->logger->info($location);
  101.         $redirectResponse = new RedirectResponse($location);
  102.         $event->setResponse($redirectResponse);
  103.     }
  104. }