custom/static-plugins/SamsonCustomer/src/Api/Soap/Subscriber/AuthSubscriber.php line 64

Open in your IDE?
  1. <?php declare(strict_types=1);
  2. namespace Samson\Api\Soap\Subscriber;
  4. /***
  5.  *
  6.  * This file is part of the "SAMSON Shop" project.
  7.  *
  8.  * For the full copyright and license information, please read the
  9.  * LICENSE.txt file that was distributed with this source code.
  10.  *
  11.  *  (c) 2020
  12.  *
  13.  ***/
  15. use Samson\Api\Soap\Controller\ApiController;
  16. use Samson\Api\Soap\Service\AuthService;
  17. use Samson\Service\LoggerService;
  18. use Shopware\Core\Framework\Routing\KernelListenerPriorities;
  19. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  20. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  21. use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
  22. use Symfony\Component\HttpKernel\KernelEvents;
  23. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  25. /**
  26.  * Class AuthSubscriber
  27.  * @package Samson\Api\BasicAuth
  28.  * @author Artur Seitz <artur.seitz@dkd.de>
  29.  */
  30. class AuthSubscriber implements EventSubscriberInterface
  31. {
  32.     protected AuthService $authService;
  33.     protected LoggerService $logger;
  35.     /**
  36.      * AuthSubscriber constructor.
  37.      *
  38.      * @param AuthService $authService
  39.      * @param LoggerService $logger
  40.      */
  41.     public function __construct(
  42.         AuthService $authService,
  43.         LoggerService $logger
  44.     ) {
  45.         $this->authService $authService;
  46.         $this->logger $logger;
  47.     }
  49.     /** {@inheritDoc} */
  50.     public static function getSubscribedEvents(): array
  51.     {
  52.         return [
  53.             KernelEvents::CONTROLLER => [
  54.                 ['resolveContext'KernelListenerPriorities::KERNEL_CONTROLLER_EVENT_PRIORITY_AUTH_VALIDATE],
  55.             ],
  56.         ];
  57.     }
  59.     /**
  60.      * KernelEvents::CONTROLLER event listener.
  61.      *
  62.      * @param ControllerEvent $event
  63.      */
  64.     public function resolveContext(ControllerEvent $event): void
  65.     {
  66.         $controller $event->getController();
  68.         // when a controller class defines multiple action methods, the controller
  69.         // is returned as [$controllerInstance, 'methodName']
  70.         if (is_array($controller)) {
  71.             $controller $controller[0];
  72.         }
  74.         if ($controller instanceof ApiController) {
  75.             if (!$event->getRequest()->headers->has('Authorization')) {
  76.                 throw new UnauthorizedHttpException('header''Header "Authorization" is required.');
  77.             }
  79.             if (!$this->authService->isAuthenticated($event->getRequest())) {
  80.                 $this->logger->authenticationFailed($event->getRequest());
  81.                 throw new AuthenticationException('Basic authorization failed. The user is unknown.');
  82.             }
  83.         }
  84.     }
  85. }