src/System/Listener/User/Authentication/AuthenticationListener.php line 115

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace App\System\Listener\User\Authentication;
  7. use ApiPlatform\Core\Bridge\Symfony\Validator\Exception\ValidationException;
  8. use App\Entities\User\Admin;
  9. use App\Entities\User\UserInterface;
  10. use App\Infrastructure\Interfaces\Logger\MessageDirectorInterface;
  11. use App\Infrastructure\Interfaces\Logger\NetworkLoggerInterface;
  12. use App\System\Infrastructure\Implementation\Connection\Live\Event\User\AccessTokenRefreshedEvent;
  13. use App\System\Infrastructure\Implementation\Logger\User\Authentication\MessageBuilder;
  14. use App\UseCase\User\Event\Authentication\SuccessEvent;
  15. use App\UseCase\User\Read\TwoFactor\CodeValidationDto;
  16. use App\UseCase\User\Read\TwoFactor\CodeValidationHandler;
  17. use App\UseCase\User\Write\Authentication\SuccessHandler;
  18. use App\UseCase\User\Write\TwoFactor\CreationDto;
  19. use App\UseCase\User\Write\TwoFactor\CreationHandler;
  20. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  21. use Symfony\Component\HttpFoundation\RequestStack;
  22. use Symfony\Component\Messenger\MessageBusInterface;
  23. use Symfony\Component\Security\Http\Event\LoginSuccessEvent;
  24. use Symfony\Component\Validator\ConstraintViolation;
  25. use Symfony\Component\Validator\ConstraintViolationList;
  27. class AuthenticationListener implements EventSubscriberInterface
  28. {
  29.     public function __construct(
  30.         private readonly CreationHandler $twoFactorCreationHandler,
  31.         private readonly CodeValidationHandler $codeValidationHandler,
  32.         private readonly SuccessHandler $successHandler,
  33.         private readonly MessageDirectorInterface $messageDirector,
  34.         private readonly RequestStack $requestStack,
  35.         private readonly NetworkLoggerInterface $networkLogger,
  36.         private readonly MessageBusInterface $bus,
  37.     ) {
  38.     }
  40.     public static function getSubscribedEvents(): array
  41.     {
  42.         return [
  43.             LoginSuccessEvent::class => [
  44.                 [
  45.                     'loginSuccess',
  46.                     0,
  47.                 ],
  48.                 [
  49.                     'tokenCreated',
  50.                     1,
  51.                 ],
  52.             ],
  53.             SuccessEvent::class => 'authenticationSuccess',
  54.         ];
  55.     }
  57.     /**
  58.      * @param LoginSuccessEvent $event
  59.      * @throws \App\UseCase\User\Write\TwoFactor\Exception\UserAlreadyHasTwoFactorAuthenticationException
  60.      */
  61.     public function loginSuccess(LoginSuccessEvent $event): void
  62.     {
  63.         $request $event->getRequest();
  64.         $routeName $request->attributes->get('_route');
  66.         if ($routeName !== 'api_login_check') {
  67.             return;
  68.         }
  70.         $user $event->getPassport()?->getUser();
  72.         if (!$user instanceof UserInterface) {
  73.             return;
  74.         }
  76.         if (!$user instanceof Admin) {
  77.             return;
  78.         }
  80.         if (!$user->hasTwoFactorKey()) {
  81.             $this->twoFactorCreationHandler->handle(new CreationDto($user));
  83.             $response $event->getResponse();
  85.             $response->setStatusCode(400);
  86.             $response->setContent(
  87.                 json_encode([
  88.                     'qrcode' => $this->twoFactorCreationHandler->getQrCodeWithSecretBase64(),
  89.                     'identifier' => $this->twoFactorCreationHandler->getUserIdentifier(),
  90.                 ])
  91.             );
  92.         } else {
  93.             $data json_decode($request->getContent(), true);
  95.             if (isset($data['twoFaCode'])) {
  96.                 $result $this->codeValidationHandler->handle(
  97.                     new CodeValidationDto($user$data['twoFaCode'])
  98.                 );
  99. return;
  100.                 if ($result->valid) {
  101.                     $this->successHandler->handle(
  102.                         new \App\UseCase\User\Write\Authentication\SuccessDto($user)
  103.                     );
  104.                     return;
  105.                 }
  106.             }
  108.             $list = new ConstraintViolationList();
  109.             $list->add(new ConstraintViolation('Неверный код'null, [], null'twoFaCode'null));
  111.             throw new ValidationException($list);
  112.         }
  113.     }
  115.     public function authenticationSuccess(SuccessEvent $event): void
  116.     {
  117.         $request $this->requestStack->getMainRequest();
  119.         if (!$request) {
  120.             return;
  121.         }
  123.         $builder = new MessageBuilder();
  124.         $builder
  125.             ->setCountry('')
  126.             ->setIp($request->getClientIp() ?? '')
  127.             ->setUserAgent($request->headers->get('user-agent'''));
  129.         $this->messageDirector->setMessageBuilder($builder);
  131.         $this->networkLogger->publish($this->messageDirector);
  132.     }
  134.     /**
  135.      * Доставляем событие обновления токена пользователя в сокетные соединения
  136.      */
  137.     public function tokenCreated(LoginSuccessEvent $event): void
  138.     {
  139.         if (!$event->getResponse()) {
  140.             return;
  141.         }
  143.         $user $event->getUser();
  144.         $response json_decode($event->getResponse()->getContent(), true);
  146.         if (!$response || !$user instanceof UserInterface) {
  147.             return;
  148.         }
  150.         $this->bus->dispatch(
  151.             new AccessTokenRefreshedEvent(
  152.                 $user->getUserIdentifier(),
  153.                 $response['token'],
  154.             )
  155.         );
  156.     }
  157. }