vendor/symfony/security-http/Firewall/AccessListener.php line 27

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Component\Security\Http\Firewall;
  14. use Symfony\Component\HttpKernel\Event\GetResponseEvent;
  15. use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
  16. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  17. use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
  18. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  19. use Symfony\Component\Security\Core\Exception\AuthenticationCredentialsNotFoundException;
  20. use Symfony\Component\Security\Http\AccessMapInterface;
  22. /**
  23.  * AccessListener enforces access control rules.
  24.  *
  25.  * @author Fabien Potencier <fabien@symfony.com>
  26.  */
  27. class AccessListener implements ListenerInterface
  28. {
  29.     private $tokenStorage;
  30.     private $accessDecisionManager;
  31.     private $map;
  32.     private $authManager;
  34.     public function __construct(TokenStorageInterface $tokenStorageAccessDecisionManagerInterface $accessDecisionManagerAccessMapInterface $mapAuthenticationManagerInterface $authManager)
  35.     {
  36.         $this->tokenStorage $tokenStorage;
  37.         $this->accessDecisionManager $accessDecisionManager;
  38.         $this->map $map;
  39.         $this->authManager $authManager;
  40.     }
  42.     /**
  43.      * Handles access authorization.
  44.      *
  45.      * @throws AccessDeniedException
  46.      * @throws AuthenticationCredentialsNotFoundException
  47.      */
  48.     public function handle(GetResponseEvent $event)
  49.     {
  50.         if (null === $token $this->tokenStorage->getToken()) {
  51.             throw new AuthenticationCredentialsNotFoundException('A Token was not found in the TokenStorage.');
  52.         }
  54.         $request $event->getRequest();
  56.         list($attributes) = $this->map->getPatterns($request);
  58.         if (null === $attributes) {
  59.             return;
  60.         }
  62.         if (!$token->isAuthenticated()) {
  63.             $token $this->authManager->authenticate($token);
  64.             $this->tokenStorage->setToken($token);
  65.         }
  67.         if (!$this->accessDecisionManager->decide($token$attributes$request)) {
  68.             $exception = new AccessDeniedException();
  69.             $exception->setAttributes($attributes);
  70.             $exception->setSubject($request);
  72.             throw $exception;
  73.         }
  74.     }
  75. }