src/EventSubscriber/NotAuthorizedResponseSubscriber.php line 43

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace App\EventSubscriber;
  7. use App\Entity\System\Employee;
  8. use App\Service\AdminRouteSecurityService;
  9. use App\Service\EnvironmentService;
  10. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  11. use Symfony\Component\HttpFoundation\RedirectResponse;
  12. use Symfony\Component\HttpFoundation\Response;
  13. use Symfony\Component\HttpKernel\Event\ResponseEvent;
  14. use Symfony\Component\HttpKernel\KernelEvents;
  15. use Symfony\Component\Routing\RouterInterface;
  16. use Symfony\Component\Security\Core\Authentication\Token\SwitchUserToken;
  17. use Symfony\Component\Security\Core\Security;
  19. class NotAuthorizedResponseSubscriber implements EventSubscriberInterface
  20. {
  21.     private RouterInterface $router;
  22.     private Security $security;
  23.     private EnvironmentService $environmentService;
  24.     private AdminRouteSecurityService $adminRouteSecurityService;
  26.     public function __construct(
  27.         RouterInterface $router,
  28.         Security $security,
  29.         EnvironmentService $environmentService,
  30.         AdminRouteSecurityService $adminRouteSecurityService
  31.     ) {
  32.         $this->router $router;
  33.         $this->security $security;
  34.         $this->environmentService $environmentService;
  35.         $this->adminRouteSecurityService $adminRouteSecurityService;
  36.     }
  38.     public static function getSubscribedEvents(): array
  39.     {
  40.         return [KernelEvents::RESPONSE => ['onKernelResponse'1]];
  41.     }
  43.     public function onKernelResponse(ResponseEvent $event): void
  44.     {
  45.         if ($this->environmentService->isApi()) {
  46.             return;
  47.         }
  49.         if ($event->getResponse()->getStatusCode() === Response::HTTP_FORBIDDEN) {
  50.             $user $this->security->getUser();
  51.             $token $this->security->getToken();
  53.             if ($user instanceof Employee || $token instanceof SwitchUserToken) {
  54.                 $event->setResponse($this->adminRouteSecurityService->redirectToAdminDashboard());
  56.                 return;
  57.             }
  59.             $url $this->router->generate('homepage');
  60.             $event->setResponse(new RedirectResponse($url));
  61.         }
  63.         if (
  64.             $event->getResponse() instanceof RedirectResponse
  65.             && $event->getRequest()->getPathInfo() === '/admin/'
  66.             && str_contains($event->getResponse()->getTargetUrl(), '/account/popuplogin')
  67.         ) {
  68.             $url $this->router->generate('admin_login');
  69.             $event->setResponse(new RedirectResponse($url));
  70.         }
  71.     }
  72. }