You are here

Home » API reference » Secure Site 8

SecuresiteSubscriber.php in Secure Site 8

Contains Drupal\securesite\EventSubscriber\SecuresiteSubscriber.

Namespace

Drupal\securesite\EventSubscriber

File

src/EventSubscriber/SecuresiteSubscriber.php
View source 
<?php

/**
 * @file
 * Contains Drupal\securesite\EventSubscriber\SecuresiteSubscriber.
 */
namespace Drupal\securesite\EventSubscriber;

use Symfony\Component\HttpKernel\KernelEvents;
use Symfony\Component\HttpKernel\Event\GetResponseEvent;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Drupal\securesite\SecuresiteManagerInterface;
use Symfony\Component\HttpKernel\HttpKernelInterface;
use Symfony\Component\HttpKernel\Event\FilterResponseEvent;

/**
 * Subscribes to the kernel request event to check whether authentication is required
 */
class SecuresiteSubscriber implements EventSubscriberInterface {

  /**
   * The manager used to check for authentication.
   *
   * @var \Drupal\securesite\SecuresiteManagerInterface
   */
  protected $manager;

  // protected $authManager;

  /**
   * Construct the SecuresiteSubscriber.
   *
   * @param \Drupal\securesite\SecuresiteManagerInterface $manager
   *   The manager used to check for authentication.
   */
  public function __construct(SecuresiteManagerInterface $manager) {
    $this->manager = $manager;
  }

  /**
   * Check every page request for authentication
   *
   * @param \Symfony\Component\HttpKernel\Event\GetResponseEvent $event
   *   The event to process.
   */
  public function onKernelRequest(GetResponseEvent $event) {
    $account = \Drupal::currentUser();
    $request = $event
      ->getRequest();

    //creating an array of headers to be added to the response. This array will be populated later on
    $request->securesiteHeaders = array();
    $this->manager
      ->setRequest($request);

    // Did the user send credentials that we accept?
    $type = $this->manager
      ->getMechanism();
    if ($type !== FALSE && (isset($_SESSION['securesite_repeat']) ? !$_SESSION['securesite_repeat'] : TRUE)) {
      $this->manager
        ->boot($type);
    }
    elseif ($account
      ->id() == 0 && !isset($_SESSION['securesite_guest'])) {
      if (isset($_SESSION['securesite_repeat'])) {
        unset($_SESSION['securesite_repeat']);
      }
      if ($this->manager
        ->forcedAuth()) {
        $types = \Drupal::config('securesite.settings')
          ->get('securesite_type');
        sort($types, SORT_NUMERIC);
        $this->manager
          ->showDialog(array_pop($types));
      }
    }
  }

  /**
   * Add headers to response based on authentication by securesite
   *
   * @param \Symfony\Component\HttpKernel\Event\FilterResponseEvent $event
   *   The event to process.
   */
  public function onResponse(FilterResponseEvent $event) {
    $request = $event
      ->getRequest();
    $response = $event
      ->getResponse();
    foreach ($request->securesiteHeaders as $name => $value) {
      if ($name === 'Status') {
        $response
          ->setStatusCode($value);
        if ($value == '401' || $value == '403') {
          $response
            ->setContent('');
        }
      }
      else {
        $response->headers
          ->set($name, $value);
      }
    }
  }

  /**
   * Registers the methods in this class that should be listeners.
   *
   * @return array
   *   An array of event listener definitions.
   */
  static function getSubscribedEvents() {
    $events[KernelEvents::REQUEST][] = array(
      'onKernelRequest',
      255,
    );
    $events[KernelEvents::RESPONSE][] = array(
      'onResponse',
      255,
    );
    return $events;
  }

}

Classes

Namesort descending Description
SecuresiteSubscriber Subscribes to the kernel request event to check whether authentication is required