src/EventListener/RefreshTokenListener.php line 40

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace App\EventListener;
  7. use App\Entity\Security\RefreshToken;
  8. use App\Processor\Orm\RemoveEntityProcessor;
  9. use App\Service\Slack\SlackService;
  10. use App\Service\Slack\SlackServiceInterface;
  11. use Doctrine\ORM\EntityManagerInterface;
  12. use Gesdinet\JWTRefreshTokenBundle\Event\RefreshAuthenticationFailureEvent;
  13. use Gesdinet\JWTRefreshTokenBundle\Security\Exception\TokenNotFoundException;
  14. use Psr\Log\LoggerInterface;
  15. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\HttpFoundation\RequestStack;
  19. class RefreshTokenListener implements EventSubscriberInterface
  20. {
  21.     private ?Request $request;
  23.     public function __construct(
  24.         private EntityManagerInterface $entityManager,
  25.         private RequestStack $requestStack,
  26.         private LoggerInterface $channelLoginLogger,
  27.         private SlackService $slackService,
  28.         private RemoveEntityProcessor $removeEntityProcessor,
  29.     ) {
  30.         $this->request $this->requestStack->getCurrentRequest();
  31.     }
  33.     public static function getSubscribedEvents()
  34.     {
  35.         return [
  36.             'gesdinet.refresh_token_failure' => 'onRefreshTokenFailure',
  37.         ];
  38.     }
  40.     public function onRefreshTokenFailure(RefreshAuthenticationFailureEvent $event): void
  41.     {
  42.         if (true !== $event->getException() instanceof TokenNotFoundException) {
  43.             return;
  44.         }
  46.         $data json_decode($this->request->getContent() ?? ''true);
  47.         $refreshToken $data['refresh_token'] ?? null;
  48.         if (null === $refreshToken) {
  49.             return;
  50.         }
  52.         $this->channelLoginLogger->info('Login using refresh token failed : ', [
  53.             'user-agent' => $this->request->headers->get('user-agent'),
  54.             'source' => $this->request->headers->get('source'),
  55.             'ip' => $this->request->getClientIp(),
  56.             'refreshToken' => $refreshToken,
  57.         ]);
  58.         $this->removeEntityProcessor->disableSoftDeleteFilter();
  59.         $repository $this->entityManager->getRepository(RefreshToken::class);
  60.         $refreshTokenObject $repository->findOneByRefreshToken($refreshToken);
  61.         if (null === $refreshTokenObject) {
  62.             return;
  63.         }
  65.         $userName $refreshTokenObject->getUsername();
  66.         $this->channelLoginLogger->info('Deleting all refresh tokens related to user : ', ['userName' => $userName]);
  67.         $this->entityManager->createQuery('DELETE FROM App\Entity\Security\RefreshToken rt WHERE rt.username = :username')
  68.             ->setParameter('username'$userName)
  69.             ->execute()
  70.         ;
  72.         $this->slackService->sendMessage(SlackServiceInterface::BUG_REPORTS_CHANNEL"Token refresh failed for user {$userName} : with token : {$refreshToken}");
  73.         $this->removeEntityProcessor->enableSoftDeleteFilter();
  74.     }
  75. }