vendor/scheb/two-factor-bundle/Security/TwoFactor/Trusted/TrustedCookieResponseListener.php line 72

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace Scheb\TwoFactorBundle\Security\TwoFactor\Trusted;
  7. use Symfony\Component\HttpFoundation\Cookie;
  8. use Symfony\Component\HttpKernel\Event\FilterResponseEvent;
  9. use Symfony\Component\HttpKernel\Event\ResponseEvent;
  11. class TrustedCookieResponseListener
  12. {
  13.     /**
  14.      * @var TrustedDeviceTokenStorage
  15.      */
  16.     private $trustedTokenStorage;
  18.     /**
  19.      * @var int
  20.      */
  21.     private $trustedTokenLifetime;
  23.     /**
  24.      * @var string
  25.      */
  26.     private $cookieName;
  28.     /**
  29.      * @var bool
  30.      */
  31.     private $cookieSecure;
  33.     /**
  34.      * @var string|null
  35.      */
  36.     private $cookieSameSite;
  38.     /**
  39.      * @var string|null
  40.      */
  41.     private $cookiePath;
  43.     /**
  44.      * @var string|null
  45.      */
  46.     private $cookieDomain;
  48.     public function __construct(
  49.         TrustedDeviceTokenStorage $trustedTokenStorage,
  50.         int $trustedTokenLifetime,
  51.         string $cookieName,
  52.         bool $cookieSecure,
  53.         ?string $cookieSameSite,
  54.         ?string $cookiePath,
  55.         ?string $cookieDomain
  56.     ) {
  57.         $this->trustedTokenStorage $trustedTokenStorage;
  58.         $this->trustedTokenLifetime $trustedTokenLifetime;
  59.         $this->cookieName $cookieName;
  60.         $this->cookieSecure $cookieSecure;
  61.         $this->cookieSameSite $cookieSameSite;
  62.         $this->cookiePath $cookiePath;
  63.         $this->cookieDomain $cookieDomain;
  64.     }
  66.     /**
  67.      * @psalm-suppress UndefinedDocblockClass
  68.      * @psalm-suppress UndefinedClass
  69.      *
  70.      * @param FilterResponseEvent|ResponseEvent $event
  71.      */
  72.     public function onKernelResponse($event): void
  73.     {
  74.         if ($this->trustedTokenStorage->hasUpdatedCookie()) {
  75.             $domain null;
  77.             if (null !== $this->cookieDomain) {
  78.                 $domain $this->cookieDomain;
  79.             } else {
  80.                 $requestHost $event->getRequest()->getHost();
  81.                 if ($this->shouldSetDomain($requestHost)) {
  82.                     $domain '.'.$requestHost;
  83.                 }
  84.             }
  86.             // Set the cookie
  87.             $cookie = new Cookie(
  88.                 $this->cookieName,
  89.                 $this->trustedTokenStorage->getCookieValue(),
  90.                 $this->getValidUntil(),
  91.                 $this->cookiePath,
  92.                 $domain,
  93.                 $this->cookieSecure,
  94.                 true,
  95.                 false,
  96.                 $this->cookieSameSite
  97.             );
  99.             $response $event->getResponse();
  100.             $response->headers->setCookie($cookie);
  101.         }
  102.     }
  104.     private function shouldSetDomain(string $requestHost): bool
  105.     {
  106.         return !(
  107.             'localhost' === $requestHost
  108.             || preg_match('#^(?:[0-9]{1,3}\.){3}[0-9]{1,3}$#'$requestHost// IPv4
  109.             || substr_count($requestHost':') > // IPv6
  110.         );
  111.     }
  113.     private function getValidUntil(): \DateTime
  114.     {
  115.         return $this->getDateTimeNow()->add(new \DateInterval('PT'.$this->trustedTokenLifetime.'S'));
  116.     }
  118.     protected function getDateTimeNow(): \DateTime
  119.     {
  120.         return new \DateTime();
  121.     }
  122. }