src/App/EventSubscriber/Framework/AccessDeniedSubscriber.php line 44

Open in your IDE?
  1. <?php
  3. namespace App\EventSubscriber\Framework;
  5. use App\Entity\Profile;
  6. use App\Entity\Profile\JoboffererProfile;
  7. use App\Entity\Profile\JobseekerProfile;
  8. use App\Entity\User;
  9. use Doctrine\ORM\EntityManagerInterface;
  10. use Exception;
  11. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  12. use Symfony\Component\HttpFoundation\Request;
  13. use Symfony\Component\HttpFoundation\Response;
  14. use Symfony\Component\HttpKernel\Event\ExceptionEvent;
  15. use Symfony\Component\HttpKernel\KernelEvents;
  16. use Symfony\Component\Routing\RouterInterface;
  17. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  18. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  19. use Twig\Environment;
  21. class AccessDeniedSubscriber implements EventSubscriberInterface
  22. {
  23. private $router;
  24. private $entityManager;
  25. private $tokenStorage;
  26. private $template;
  28. public function __construct(RouterInterface $router, EntityManagerInterface $entityManager, TokenStorageInterface $tokenStorage, Environment $template)
  29. {
  30. $this->router = $router;
  31. $this->entityManager = $entityManager;
  32. $this->tokenStorage = $tokenStorage;
  33. $this->template = $template;
  34. }
  36. public static function getSubscribedEvents()
  37. {
  38. return [
  39. KernelEvents::EXCEPTION => ['onKernelException', 1],
  40. ];
  41. }
  43. /** @throws Exception */
  44. public function onKernelException(ExceptionEvent $event): void
  45. {
  46. $token = $this->tokenStorage->getToken();
  48. /** @var User $user */
  49. $user = null;
  50. if (!is_null($token)) {
  51. $user = $token->getUser();
  52. }
  54. if (is_object($user) && $event->getThrowable() instanceof AccessDeniedException) {
  55. $request = $event->getRequest();
  56. $matchedRoute = $request->attributes->get('_route');
  58. if (in_array($matchedRoute, [
  59. 'account.conversations.show_jobseeker',
  60. 'account.conversations.show_jobofferer'
  61. ])) {
  62. $username = $this->getLoginUsername($request, $matchedRoute);
  63. $response = new Response($this->template->render('errors/access_denied.html.twig', [
  64. 'username' => $username,
  65. 'targetPath' => $request->getRequestUri()
  66. ]), Response::HTTP_FORBIDDEN);
  68. $response->prepare($request);
  69. $event->setResponse($response);
  70. }
  71. }
  72. }
  74. protected function getLoginUsername(Request $request, string $route): string
  75. {
  76. $profileId = $route === 'account.conversations.show_jobseeker' ? $request->attributes->get('jobseekerProfileId') : $request->attributes->get('joboffererProfileId');
  77. $class = $route === 'account.conversations.show_jobseeker' ? JobseekerProfile::class : JoboffererProfile::class;
  79. /** @var Profile $profile */
  80. $profile = $this->entityManager->getRepository($class)->find($profileId);
  82. return !is_null($profile) ? $profile->getUser()->getUsername() : '';
  83. }
  84. }