src/Security/Authentication/AuthenticationSubscriber.php line 59

  1. <?php
  2. namespace App\Security\Authentication;
  4. use Symfony\Component\EventDispatcher\EventSubscriberInterface,
  5.     Symfony\Component\Security\Http\Event\CheckPassportEvent,
  6.     Symfony\Component\HttpFoundation\RequestStack;
  8. use Lexik\Bundle\JWTAuthenticationBundle\Events as LexikEvents,
  9.     Lexik\Bundle\JWTAuthenticationBundle\Event\AuthenticationSuccessEvent,
  10.     Lexik\Bundle\JWTAuthenticationBundle\Event\AuthenticationFailureEvent;
  12. use App\Entity\Admin,
  13.     App\Entity\LoginEntry,
  14.     App\Security\Authentication\LoginBlockedChecker,
  15.     App\Repository\AdminRepository,
  16.     App\Repository\LoginEntryRepository;
  18. final class AuthenticationSubscriber implements EventSubscriberInterface
  19. {
  20.     private AdminRepository $adminRepository;
  21.     private LoginEntryRepository $loginEntryRepository;
  22.     private LoginBlockedChecker $loginBlockedChecker;
  23.     private RequestStack $requestStack;
  25.     public function __construct(
  26.         AdminRepository $adminRepository,
  27.         LoginEntryRepository $loginEntryRepository,
  28.         LoginBlockedChecker $loginBlockedChecker,
  29.         RequestStack $requestStack
  30.     ) {
  31.         $this->adminRepository $adminRepository;
  32.         $this->loginEntryRepository $loginEntryRepository;
  33.         $this->loginBlockedChecker $loginBlockedChecker;
  34.         $this->requestStack $requestStack;
  35.     }
  37.     public static function getSubscribedEvents() : array
  38.     {
  39.         return [
  40.             CheckPassportEvent::class => [
  41.                 ['onAuthenticationCheck'10]
  42.             ],
  43.             LexikEvents::AUTHENTICATION_SUCCESS => [
  44.                 ['onAuthenticationSuccess'10],
  45.             ],
  46.             LexikEvents::AUTHENTICATION_FAILURE => [
  47.                 ['onAuthenticationFailure'10]
  48.             ]
  49.         ];
  50.     }
  52.     public function onAuthenticationCheck(CheckPassportEvent $event): void
  53.     {
  54.         $this->loginBlockedChecker->check($this->getClientIp());
  56.         return;
  57.     }
  59.     public function onAuthenticationSuccess(AuthenticationSuccessEvent $event): void
  60.     {
  61.         /** @var Admin */
  62.         $admin $event->getUser();
  63.         $admin->setLastActivityAt(new \DateTimeImmutable());
  65.         $this->adminRepository->persist($admin);
  67.         $this->persistLoginEntry(
  68.             username$admin->getUserIdentifier(),
  69.             ip$this->getClientIp(),
  70.             resulttrue
  71.         );
  73.         return;
  74.     }
  76.     public function onAuthenticationFailure(AuthenticationFailureEvent $event): void
  77.     {
  78.         $content json_decode($this->getRequestContent());
  80.         $this->persistLoginEntry(
  81.             usernameproperty_exists($content'email') ? $content->email 'unkown',
  82.             ip$this->getClientIp(),
  83.             resultfalse
  84.         );
  86.         return;
  87.     }
  89.     private function persistLoginEntry(string $usernamestring $ipbool $result): void
  90.     {
  91.         $loginEntry = new LoginEntry($username$ip$result);
  93.         $this->loginEntryRepository->persist($loginEntrytrue);
  95.         return;
  96.     }
  98.     private function getClientIp(): string
  99.     {
  100.         return $this->requestStack->getCurrentRequest()?->getClientIp() ?? '';
  101.     }
  103.     private function getRequestContent(): string
  104.     {
  105.         return $this->requestStack->getCurrentRequest()?->getContent() ?? '';
  106.     }
  107. }