class PerimeterSubscriber in Drupal Perimeter Defence 2.0.x
Same name and namespace in other branches
- 8 src/EventSubscriber/PerimeterSubscriber.php \Drupal\perimeter\EventSubscriber\PerimeterSubscriber
On page not found events, ban the IP if the request is suspicious.
Hierarchy
- class \Drupal\perimeter\EventSubscriber\PerimeterSubscriber implements \Symfony\Component\EventDispatcher\EventSubscriberInterface
Expanded class hierarchy of PerimeterSubscriber
1 string reference to 'PerimeterSubscriber'
1 service uses PerimeterSubscriber
File
- src/
EventSubscriber/ PerimeterSubscriber.php, line 18
Namespace
Drupal\perimeter\EventSubscriberView source
class PerimeterSubscriber implements EventSubscriberInterface {
protected $loggerFactory;
protected $configFactory;
/**
* {@inheritdoc}
*/
public function __construct(LoggerChannelFactoryInterface $logger_factory, ConfigFactoryInterface $config_factory) {
$this->loggerFactory = $logger_factory;
$this->configFactory = $config_factory;
}
/**
* {@inheritdoc}
*/
public static function getSubscribedEvents() {
$events['kernel.exception'][] = [
'handleBannedUrls',
];
return $events;
}
/**
* On page not found events, ban the IP if the request is suspicious.
*/
public function handleBannedUrls(Event $event) {
$exception = $event
->getException();
if ($exception instanceof NotFoundHttpException) {
$request_path = $event
->getRequest()
->getPathInfo();
$bannedPatterns = $this->configFactory
->get('perimeter.settings')
->get('not_found_exception_patterns');
if (!empty($bannedPatterns)) {
foreach ($bannedPatterns as $pattern) {
$pattern = trim($pattern);
if (preg_match($pattern, $request_path)) {
$connection = Database::getConnection();
$banManager = new BanIpManager($connection);
$banManager
->banIp($event
->getRequest()
->getClientIp());
$this->loggerFactory
->get('Perimeter')
->notice('Banned: %ip for requesting %pattern <br />Source: %source <br /> User Agent: %browser', [
'%ip' => $event
->getRequest()
->getClientIp(),
'%pattern' => Xss::filter($request_path),
'%source' => isset($_SERVER['HTTP_REFERER']) ? Xss::filter($_SERVER['HTTP_REFERER']) : '',
'%browser' => isset($_SERVER['HTTP_USER_AGENT']) ? Xss::filter($_SERVER['HTTP_USER_AGENT']) : '',
]);
break;
}
}
}
}
}
}Members
Name |
Modifiers | Type | Description | Overrides |
|---|---|---|---|---|
|
PerimeterSubscriber:: |
protected | property | ||
|
PerimeterSubscriber:: |
protected | property | ||
|
PerimeterSubscriber:: |
public static | function | ||
|
PerimeterSubscriber:: |
public | function | On page not found events, ban the IP if the request is suspicious. | |
|
PerimeterSubscriber:: |
public | function |