src/Bidcoz/Bundle/FrontendBundle/EventListener/AccessDeniedExceptionListener.php line 40

Open in your IDE?
  1. <?php
  3. namespace Bidcoz\Bundle\FrontendBundle\EventListener;
  5. use RS\DiExtraBundle\Annotation as DI;
  6. use Symfony\Component\HttpFoundation\RedirectResponse;
  7. use Symfony\Component\HttpFoundation\RequestStack;
  8. use Symfony\Component\HttpKernel\Event\ExceptionEvent;
  9. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  10. use Symfony\Component\HttpKernel\KernelEvents;
  11. use Symfony\Component\Routing\RouterInterface;
  12. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  14. /**
  15.  * @DI\Service
  16.  */
  17. class AccessDeniedExceptionListener
  18. {
  19.     private AuthorizationCheckerInterface $authorizationChecker;
  20.     private RouterInterface $router;
  21.     private RequestStack $requestStack;
  23.     /**
  24.      * @DI\InjectParams({
  25.      *     "authorizationChecker" = @DI\Inject("security.authorization_checker"),
  26.      *     "router" = @DI\Inject("router"),
  27.      *     "requestStack" = @DI\Inject("request_stack")
  28.      * })
  29.      */
  30.     public function __construct(AuthorizationCheckerInterface $authorizationCheckerRouterInterface $routerRequestStack $requestStack)
  31.     {
  32.         $this->authorizationChecker $authorizationChecker;
  33.         $this->router $router;
  34.         $this->requestStack $requestStack;
  35.     }
  37.     /**
  38.      * @DI\Observe(KernelEvents::EXCEPTION)
  39.      */
  40.     public function onKernelException(ExceptionEvent $event): void
  41.     {
  42.         // interested only in AccessDeniedHttpException events
  43.         $exception $event->getThrowable();
  44.         if (!$exception instanceof AccessDeniedHttpException) {
  45.             return;
  46.         }
  47.         // exception must have WITH_CC check
  48.         if (false === strpos($exception->getMessage(), 'WITH_CC')) {
  49.             return;
  50.         }
  52.         $request $event->getRequest();
  53.         if (!$request->attributes->has('campaign')) {
  54.             return;
  55.         }
  56.         // if we have a campaign then we also have an organization
  57.         $campaign $request->attributes->get('campaign');
  58.         $organization $request->attributes->get('organization');
  60.         if (!$this->authorizationChecker->isGranted('VIEW'$organization) ||
  61.             !$this->authorizationChecker->isGranted('FRONT_END'$campaign)
  62.         ) {
  63.             return;
  64.         }
  66.         if ($this->authorizationChecker->isGranted('WITH_CC'$campaign)) {
  67.             return;
  68.         }
  70.         $this->requestStack->getSession()->getFlashBag()->add('info''You must add Credit Card to your profile to access this.');
  71.         $url $this->router->generate('fos_user_profile_edit');
  72.         $response = new RedirectResponse($url);
  74.         // Send the modified response object to the event
  75.         $event->setResponse($response);
  76.     }
  77. }