src/Hitso/Bundle/AdminBundle/EventListener/AccessDeniedListener.php line 60

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace Hitso\Bundle\AdminBundle\EventListener;
  7. use Hitso\Bundle\MultiSiteBundle\MultiSite\SiteContext;
  8. use Symfony\Component\HttpFoundation\RedirectResponse;
  9. use Symfony\Component\HttpFoundation\Session\Session;
  10. use Symfony\Component\HttpKernel\Event\GetResponseForExceptionEvent;
  11. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  12. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  13. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  14. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  15. use Symfony\Contracts\Translation\TranslatorInterface;
  17. class AccessDeniedListener
  18. {
  19.     /**
  20.      * @var SiteContext
  21.      */
  22.     protected $context;
  24.     /**
  25.      * @var AuthorizationCheckerInterface
  26.      */
  27.     protected $checker;
  29.     /**
  30.      * @var TokenStorageInterface
  31.      */
  32.     protected $storage;
  34.     /**
  35.      * @var TranslatorInterface
  36.      */
  37.     protected $translator;
  39.     /**
  40.      * @var UrlGeneratorInterface
  41.      */
  42.     protected $generator;
  44.     public function __construct(
  45.         SiteContext $context,
  46.         AuthorizationCheckerInterface $checker,
  47.         TokenStorageInterface $storage,
  48.         TranslatorInterface $translator,
  49.         UrlGeneratorInterface $generator
  50.     ) {
  51.         $this->context    $context;
  52.         $this->checker    $checker;
  53.         $this->storage    $storage;
  54.         $this->translator $translator;
  55.         $this->generator  $generator;
  56.     }
  58.     public function onException(GetResponseForExceptionEvent $e)
  59.     {
  60.         if (!($e->getException() instanceof AccessDeniedHttpException)) {
  61.             return;
  62.         }
  64.         if (!$this->context->getRunningSite()->isContent() && !$this->checker->isGranted('ROLE_WITH_ACCESS_TO_ADMIN')) {
  65.             $this->storage->setToken(null);
  67.             $session $e->getRequest()->getSession();
  68.             $session->invalidate();
  70.             if ($session instanceof Session) {
  71.                 $session->getFlashBag()->add(
  72.                     'error',
  73.                     $this->translator->trans(
  74.                         'Nie masz uprawnień do logowania się do panelu administracyjnego.',
  75.                         [],
  76.                         'admin'
  77.                     )
  78.                 );
  79.             }
  81.             $e->setResponse(new RedirectResponse($this->generator->generate('hitso_admin_login')));
  82.         }
  83.     }
  84. }