src/EventSubscriber/HotelRequestSubscriber.php line 48

Open in your IDE?
  1. <?php
  3. namespace App\EventSubscriber;
  5. use App\Doctrine\HotelFilter;
  6. use App\Entity\Hotel;
  7. use App\Entity\User;
  8. use App\Repository\ComplexRepository;
  9. use App\Repository\HotelRepository;
  10. use App\Service\HotelHelper;
  11. use Doctrine\ORM\EntityManagerInterface;
  12. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  13. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  14. use Symfony\Component\HttpFoundation\RedirectResponse;
  15. use Symfony\Component\HttpKernel\Event\RequestEvent;
  16. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  17. use Symfony\Component\HttpKernel\KernelEvents;
  18. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  19. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  20. use Symfony\Component\Security\Core\Security;
  21. use function Symfony\Component\String\u;
  23. class HotelRequestSubscriber implements EventSubscriberInterface
  24. {
  25.     private Security $security;
  26.     private ParameterBagInterface $parameterBag;
  27.     private UrlGeneratorInterface $router;
  28.     private EntityManagerInterface $em;
  29.     private ComplexRepository $complexRepository;
  30.     private HotelRepository $hotelRepository;
  31.     private HotelHelper $hotelHelper;
  32.     private string $baseHost;
  33.     private bool $saasCustomInstall;
  35.     public function __construct(Security $securityParameterBagInterface $parameterBagUrlGeneratorInterface $routerEntityManagerInterface $emComplexRepository $complexRepositoryHotelRepository $hotelRepositoryHotelHelper $hotelHelperstring $baseHostbool $saasCustomInstall)
  36.     {
  37.         $this->security $security;
  38.         $this->parameterBag $parameterBag;
  39.         $this->router $router;
  40.         $this->em $em;
  41.         $this->complexRepository $complexRepository;
  42.         $this->hotelRepository $hotelRepository;
  43.         $this->hotelHelper $hotelHelper;
  44.         $this->baseHost $baseHost;
  45.         $this->saasCustomInstall $saasCustomInstall;
  46.     }
  48.     public function onKernelRequest(RequestEvent $event)
  49.     {
  50.         $request $event->getRequest();
  51.         $route $request->attributes->get('_route');
  53.         // Go ahead if it's a profiler route in dev mode
  54.         $route u($route);
  55.         $isDev $this->parameterBag->get('kernel.environment') === 'dev';
  56.         $isProfilerRoute $route->startsWith('_wdt') || $route->startsWith('_profiler') || $request->getPathInfo() === '/_fragment';
  57.         $isErrorRoute $route->startsWith('_error');
  58.         if ($isDev && ($isProfilerRoute || $isErrorRoute)) {
  59.             return;
  60.         }
  62.         /** @var HotelFilter $filter */
  63.         $filter $this->em->getFilters()->getFilter('hotelfilter');
  64.         // We have to disable filter to allow get hotel without interferences
  65.         $filter->disableForEntity(Hotel::class);
  67.         /** @var User $user */
  68.         $user $this->security->getUser();
  69.         $host $request->getHttpHost();
  70.         $isAdminRoute $route->startsWith('admin_') && !$route->containsAny(['login''logout']);
  71.         $isGuestRoute $route->startsWith('app_') && !$route->containsAny(['login''logout']);
  72.         $isAdminLoginOrLogoutRoute $route->startsWith('admin_') && $route->containsAny(['login''logout']);
  73.         $isGuestLoginOrLogoutRoute $route->startsWith('app_') && $route->containsAny(['login''logout']);
  74.         $subdomain str_replace('.' $this->baseHost''$host);
  75.         $complex $this->complexRepository->findOneBy(['subdomain' => $subdomain]);
  76.         $hotel $this->hotelRepository->findOneBy(['subdomain' => $subdomain]);
  78.         // Avoid infinite redirect loops
  79.         if ($isAdminLoginOrLogoutRoute) {
  80.             return;
  81.         }
  83.         // Redirect base route to admin if using complex subdomain
  84.         if ($isGuestLoginOrLogoutRoute && $complex) {
  85.             $event->setResponse(new RedirectResponse($this->router->generate('admin_login', [], UrlGeneratorInterface::ABSOLUTE_URL)));
  86.             return;
  87.         }
  89.         // Admin domain
  90.         if ($host === 'admin.' $this->baseHost) {
  91.             if (!$this->saasCustomInstall && $isGuestRoute) {
  92.                 throw new AccessDeniedException();
  93.             }
  95.             if (!$user || !$isAdminRoute) {
  96.                 return;
  97.             }
  99.             if (!$this->security->isGranted('ROLE_SUPER_ADMIN')) {
  100.                 throw new AccessDeniedException();
  101.             }
  103.             return;
  104.         }
  106.         // SaaS domain
  107.         if ($host === $this->baseHost) {
  108.             if (!$this->saasCustomInstall && $isGuestRoute) {
  109.                 throw new AccessDeniedException();
  110.             }
  112.             if (!$user || !$isAdminRoute) {
  113.                 return;
  114.             }
  116.             if (!$this->security->isGranted('ROLE_ADMIN')) {
  117.                 throw new AccessDeniedException();
  118.             }
  120.             return;
  121.         }
  123.         // Complex and hotel subdomains
  124.         if ($complex) {
  125.             $hotel $this->hotelHelper->getCurrentHotel($user$complex);
  126.             if (!$complex->getHotels()->contains($hotel)) {
  127.                 throw new AccessDeniedException();
  128.             }
  130.             if (!$hotel) {
  131.                 $hotel $complex->getHotels()->first();
  132.                 if (!$hotel) {
  133.                     throw new AccessDeniedException();
  134.                 }
  135.             }
  136.         }
  138.         if (!$hotel) {
  139.             throw new NotFoundHttpException(sprintf('Subdomain %s does not exist in %s.'$subdomain$this->baseHost));
  140.         }
  142.         if ($user && $isAdminRoute && !$this->hotelHelper->userCanAccessToHotel($user$hotel)) {
  143.             throw new AccessDeniedException();
  144.         }
  146.         $this->hotelHelper->setCurrentHotel($hotel);
  148.         $filter->enableForEntity(Hotel::class);
  149.     }
  151.     public static function getSubscribedEvents(): array
  152.     {
  153.         return [
  154.             // Priority default is 0. This must be lower than 8 because this is the priority for get user in security service.
  155.             KernelEvents::REQUEST => [['onKernelRequest'0]],
  156.         ];
  157.     }
  158. }