src/EventListener/ModuleAccessListerner.php line 28

Open in your IDE?
  1. <?php
  2. namespace App\EventListener;
  4. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  5. use Symfony\Component\HttpKernel\Event\GetResponseEvent;
  6. use Symfony\Component\HttpFoundation\RedirectResponse;
  7. use Symfony\Component\HttpKernel\Exception\HttpException;
  8. use Symfony\Component\HttpFoundation\Response;
  10. class ModuleAccessListerner
  11. {
  12.     private $em;
  13.     private $root;
  14.     private $container;
  15.     private $user;
  16.     private $router;
  18.     public function __construct($entityManager ,$container$router)
  19.     {
  20.         $this->em $entityManager;
  21.         $this->container $container;
  22.         $this->root $this->container->get('kernel')->getRootDir() . '/../';
  23.         $this->clientPath $this->container->get('kernel')->getRootDir() . '/../';
  24.         $this->router $router;
  25.         
  26.     }
  28.     public function CheckModuleAccess(GetResponseEvent $event)
  29.     {
  30.         $request $event->getRequest();
  31.         $urlPath explode('/'trim($request->getPathInfo(),'/'));
  33.         $routeName $request->get('_route'); 
  34.         
  35.         $ignoreRouteName = [
  36.             'mon_profil_save_user',
  37.             'user_connect_modif_adresse',
  38.             'delete_adresse_user_connect',
  39.             'add_new_adresse_user_connect',
  40.             'load_adresse_user_connect',
  41.             'save_remove_img_user_connected',
  42.             'user_profil_change_password'
  43.         ];
  45.         $addActionArray = ['add','ajout','ajouter','ajouté','dupplicate','new'];
  46.         $updateActionArray = ['update','modif','modifier','modifié','save','edit'];
  47.         $deleteActionArray = ['delete','remove','supr','supprimer','supprimé'];
  48.         $otherActionArray = ['load'];
  50.         $isAccessDenied false;
  53.         // 1 - Liste
  54.         // 2 - Liste Event / Fiche
  55.         // 3 - Fiche Event
  57.         if(!$this->container->get('security.token_storage')->getToken()){
  58.             $user null;
  59.         }else{
  60.             if($this->container->get('security.token_storage')->getToken()->getUser() == 'anon.' || !$this->container->get('security.token_storage')->getToken()->getUser()){
  61.                 $user null;
  62.             }else{
  63.                 $user $this->container->get('security.token_storage')->getToken()->getUser();
  64.             }
  65.         }
  66.         
  67.         if(!in_array($routeName$ignoreRouteName) && $routeName != null){
  68.             
  69.             if($user){
  71.                 $userModule $user->getAllModules();
  73.                 
  74.                 if(count($urlPath) == 2){
  75.                     //exemple : (site-internet/evenements)
  76.                     if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['other']))
  77.                         $isAccessDenied true;
  79.                 }else if(count($urlPath) == 3){
  81.                     if($urlPath[2] == 'data'){
  83.                         //exemple : (site-internet/evenements/data)
  84.                         if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['other']))
  85.                             $isAccessDenied true;
  87.                     }else if(is_numeric($urlPath[2])){
  88.                         
  89.                         //exemple : (site-internet/evenements/{id})
  90.                         if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['view']))
  91.                             $isAccessDenied true;
  93.                     }else{
  95.                         //exemple : (site-internet/evenements/%add%)
  96.                         //exemple : (site-internet/evenements/%delete%)
  97.                         //exemple : (site-internet/evenements/%update%)
  98.                         //exemple : (site-internet/evenements/%load%)
  100.                         if((str_replace($addActionArray''$urlPath[2]) != $urlPath[2])){
  102.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['add']))
  103.                                 $isAccessDenied true;
  105.                         }else if ((str_replace($deleteActionArray''$urlPath[2]) != $urlPath[2])){
  107.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['delete']))
  108.                                 $isAccessDenied true;
  110.                         }else if ((str_replace($updateActionArray''$urlPath[2]) != $urlPath[2])){
  112.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['update']))
  113.                                 $isAccessDenied true;
  115.                         }else if ((str_replace($otherActionArray''$urlPath[2]) != $urlPath[2])){
  117.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['other']))
  118.                                 $isAccessDenied true;
  120.                         }
  122.                     }
  124.                 }else if(count($urlPath) >= 4){
  125.                     if(is_numeric($urlPath[2])){
  127.                         //exemple : (site-internet/evenements/{id}/%add%)
  128.                         //exemple : (site-internet/evenements/{id}/%delete%)
  129.                         //exemple : (site-internet/evenements/{id}/%update%)
  130.                         //exemple : (site-internet/evenements/{id}/%load%)
  132.                         if((str_replace($addActionArray''$urlPath[3]) != $urlPath[3])){
  134.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['add']))
  135.                                 $isAccessDenied true;
  137.                         }else if ((str_replace($deleteActionArray''$urlPath[3]) != $urlPath[3])){
  139.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['delete']))
  140.                                 $isAccessDenied true;
  142.                         }else if ((str_replace($updateActionArray''$urlPath[3]) != $urlPath[3])){
  144.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['update']))
  145.                                 $isAccessDenied true;
  147.                         }else if ((str_replace($otherActionArray''$urlPath[3]) != $urlPath[3])){
  148.                             
  149.                             if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['other']))
  150.                                 $isAccessDenied true;
  152.                         }
  154.                     }else if(is_numeric($urlPath[3])){
  156.                         if(isset($urlPath[4])){
  158.                             //exemple : (configuration/generale/infos-admin/{id}/%add%)
  159.                             //exemple : (configuration/generale/infos-admin/{id}/%delete%)
  160.                             //exemple : (configuration/generale/infos-admin/{id}/%update%)
  161.                             //exemple : (configuration/generale/infos-admin/{id}/%load%)
  163.                             if((str_replace($addActionArray''$urlPath[4]) != $urlPath[4])){
  165.                                 if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['add']))
  166.                                     $isAccessDenied true;
  167.         
  168.                             }else if ((str_replace($deleteActionArray''$urlPath[4]) != $urlPath[4])){
  169.         
  170.                                 if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['delete']))
  171.                                     $isAccessDenied true;
  172.         
  173.                             }else if ((str_replace($updateActionArray''$urlPath[4]) != $urlPath[4])){
  174.         
  175.                                 if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['update']))
  176.                                     $isAccessDenied true;
  177.         
  178.                             }else if ((str_replace($otherActionArray''$urlPath[4]) != $urlPath[4])){
  179.         
  180.                                 if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['other']))
  181.                                     $isAccessDenied true;
  182.         
  183.                             }
  184.                         }
  186.                     }else if($urlPath[2] == 'data'){
  187.                         //exemple : (configuration/generale/data/admins)
  188.                         if(!isset($userModule[$urlPath[0]][$urlPath[1]]['actions']['other']))
  189.                             $isAccessDenied true;
  190.                     }
  191.                     
  192.                 }
  194.             }
  195.         }
  197.         
  198.         if($isAccessDenied){
  199.             $event->setResponse(new RedirectResponse($this->router->generate('home') . '?error=module'));
  200.         }
  201.         
  202.     }
  204. }