src/EventListener/FirewallPartnerListener.php line 30

Open in your IDE?
  1. <?php
  3. namespace App\EventListener;
  5. use Symfony\Bundle\FrameworkBundle\Routing\Router;
  6. use Symfony\Component\HttpFoundation\RedirectResponse;
  7. use Symfony\Component\HttpKernel\Event\RequestEvent;
  8. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  9. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  11. class FirewallPartnerListener
  12. {
  13.     /** @var TokenStorageInterface $tokenStorage */
  14.     private $tokenStorage;
  15.     /** @var AuthorizationCheckerInterface $authorizationChecker */
  16.     private $authorizationChecker;
  17.     /** @var Router $router */
  18.     private $router;
  20.     public function __construct(TokenStorageInterface         $tokenStorage,
  21.                                 AuthorizationCheckerInterface $authorizationChecker,
  22.                                 Router                        $router
  23.     )
  24.     {
  25.         $this->tokenStorage $tokenStorage;
  26.         $this->authorizationChecker $authorizationChecker;
  27.         $this->router $router;
  28.     }
  30.     public function onKernelRequest(RequestEvent $event)
  31.     {
  32.         $controller $event->getRequest()->get('_controller');
  33.         $parts explode(':'$controller);
  34.         $currentController $parts[0];
  35.         $currentAction = empty($parts[1]) ? null $parts[1];
  36.         if (!$this->tokenStorage->getToken() ||
  37.             false === $this->authorizationChecker->isGranted('ROLE_ADMINISTRATION_ACCESS') ||
  38.             !($user $this->tokenStorage->getToken()->getUser()) ||
  39.             !$user->getPartner() ||
  40.             strpos($controller'exception') !== false ||
  41.             $this->isAllowedController($currentController$currentAction)
  42.         ) {
  43.             return;
  44.         }
  46.         $event->setResponse(new RedirectResponse($this->router->generate('sylius_admin_dashboard')));
  47.     }
  49.     private function isAllowedController(string $controllerstring $action null): bool
  50.     {
  52.         if (!empty($action) && $controller === 'app.controller.order.grid' &&
  53.             preg_match('/(logs|downloadImportedFile)/i'$action)
  54.         ) {
  55.             return false;
  56.         }
  58.         switch ($controller) {
  59.             case 'app.controller.order.grid':
  60.             case 'app.controller.partner.partner':
  61.             case 'app.controller.rca.rca_admin_grid';
  62.             case 'app.controller.cms_rca';
  63.             case 'app.controller.road_assistance.admin_road_assistance':
  64.             case 'app.controller.vignette.ro_vignette_admin_grid':
  65.             case 'app.controller.license_recovery.license_recovery_admin':
  66.             case 'app.controller.telemedicine.telemedicine_admin':
  67.             case 'sylius.controller.admin.dashboard':
  68.             case 'sylius.controller.admin_user':
  69.             case 'sylius.controller.channel':
  70.             case 'sylius.controller.order':
  71.             case 'sylius_admin_admin_user_update':
  72.                 return true;
  73.             default:
  74.                 return false;
  75.         }
  76.     }
  78. }