vendor/scheb/two-factor-bundle/Security/TwoFactor/EventListener/RequestListener.php line 66

Open in your IDE?
  1. <?php
  3. namespace Scheb\TwoFactorBundle\Security\TwoFactor\EventListener;
  5. use Symfony\Component\HttpKernel\Event\GetResponseEvent;
  6. use Symfony\Component\HttpFoundation\Response;
  7. use Scheb\TwoFactorBundle\Security\TwoFactor\AuthenticationHandlerInterface;
  8. use Scheb\TwoFactorBundle\Security\TwoFactor\AuthenticationContextFactoryInterface;
  9. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  11. class RequestListener
  12. {
  13.     /**
  14.      * @var AuthenticationContextFactoryInterface
  15.      */
  16.     private $authenticationContextFactory;
  18.     /**
  19.      * @var AuthenticationHandlerInterface
  20.      */
  21.     private $authHandler;
  23.     /**
  24.      * @var TokenStorageInterface
  25.      */
  26.     private $tokenStorage;
  28.     /**
  29.      * @var array
  30.      */
  31.     private $supportedTokens;
  33.     /**
  34.      * @var string
  35.      */
  36.     private $excludePattern;
  38.     /**
  39.      * Construct a listener for login events.
  40.      *
  41.      * @param AuthenticationContextFactoryInterface $authenticationContextFactory
  42.      * @param AuthenticationHandlerInterface        $authHandler
  43.      * @param TokenStorageInterface                 $tokenStorage
  44.      * @param array                                 $supportedTokens
  45.      * @param string                                $excludePattern
  46.      */
  47.     public function __construct(
  48.         AuthenticationContextFactoryInterface $authenticationContextFactory,
  49.         AuthenticationHandlerInterface $authHandler,
  50.         TokenStorageInterface $tokenStorage,
  51.         array $supportedTokens,
  52.         $excludePattern
  53.     ) {
  54.         $this->authenticationContextFactory $authenticationContextFactory;
  55.         $this->authHandler $authHandler;
  56.         $this->tokenStorage $tokenStorage;
  57.         $this->supportedTokens $supportedTokens;
  58.         $this->excludePattern $excludePattern;
  59.     }
  61.     /**
  62.      * Listen for request events.
  63.      *
  64.      * @param GetResponseEvent $event
  65.      */
  66.     public function onCoreRequest(GetResponseEvent $event)
  67.     {
  68.         $request $event->getRequest();
  70.         // Exclude path
  71.         if ($this->excludePattern !== null && preg_match('#'.$this->excludePattern.'#'$request->getPathInfo())) {
  72.             return;
  73.         }
  75.         // Check if security token is supported
  76.         $token $this->tokenStorage->getToken();
  77.         if (!$this->isTokenSupported($token)) {
  78.             return;
  79.         }
  81.         // Forward to two-factor provider
  82.         // Providers can create a response object
  83.         $context $this->authenticationContextFactory->create($request$token);
  84.         $response $this->authHandler->requestAuthenticationCode($context);
  86.         // Set the response (if there is one)
  87.         if ($response instanceof Response) {
  88.             $event->setResponse($response);
  89.         }
  90.     }
  92.     /**
  93.      * Check if the token class is supported.
  94.      *
  95.      * @param mixed $token
  96.      *
  97.      * @return bool
  98.      */
  99.     private function isTokenSupported($token)
  100.     {
  101.         if (null === $token) {
  102.             return false;
  103.         }
  105.         $class get_class($token);
  107.         return in_array($class$this->supportedTokens);
  108.     }
  109. }