src/EventSubscriber/UserSubscriber.php line 124

Open in your IDE?
  1. <?php
  3. namespace App\EventSubscriber;
  5. use App\Entity\User;
  6. use App\Entity\JobQueue;
  7. use App\Service\EsCache;
  8. use App\Service\EsJobQueue;
  9. use App\Handler\UserHandler;
  10. use App\Entity\RoleContainer;
  11. use App\Event\EsEventLogEvent;
  12. use App\Event\UserPreRemoveEvent;
  13. use App\Event\UserPreUpdateEvent;
  14. use App\Event\UserPrePersistEvent;
  15. use App\Event\UserPostPersistEvent;
  16. use Doctrine\ORM\EntityManagerInterface;
  17. use Symfony\Component\Security\Core\Security;
  18. use App\Service\JobQueueAction\ElasticDependentUpdateAction;
  19. use Symfony\Component\Validator\Validator\ValidatorInterface;
  20. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  21. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  22. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  23. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  24. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  26. class UserSubscriber implements EventSubscriberInterface
  27. {
  28.     public function __construct(
  29.         private UserHandler $handler,
  30.         private UserPasswordHasherInterface $passwordEncoder,
  31.         private EntityManagerInterface $_em,
  32.         private EventDispatcherInterface $dispatcher,
  33.         private ValidatorInterface $validator,
  34.         private Security $security,
  35.         private EsJobQueue $esJobQueue,
  36.         private EsCache $esCache,
  37.         private $appEnvType
  38.     ) {
  39.     }
  41.     public static function getSubscribedEvents(): array
  42.     {
  43.         return [
  44.             UserPostPersistEvent::NAME => 'onPostCreate',
  45.             UserPrePersistEvent::NAME => 'onPreCreate',
  46.             UserPreUpdateEvent::NAME => 'onPreUpdate',
  47.             UserPreRemoveEvent::NAME => 'onPreRemove'
  48.         ];
  49.     }
  51.     public function onPostCreate(UserPostPersistEvent $event)
  52.     {
  53.         $object $event->getObject();
  54.         $this->handler->assignContainerUserGroup($object);
  56.         $this->handler->attchUserToCompany([$object->getId()]);
  58.         $eventObj = new EsEventLogEvent($objectEsEventLogEvent::EVENT_USER_CREATE);
  59.         $this->dispatcher->dispatch($eventObjEsEventLogEvent::EVENT_USER_CREATE);
  60.     }
  62.     public function onPreCreate(UserPrePersistEvent $event)
  63.     {
  64.         $object $event->getObject();
  66.         $violations $this->validator->validate($object);
  67.         if (count($violations) > 0) {
  68.             foreach ($violations as $v) {
  69.                 throw new BadRequestHttpException($v->getMessage());
  70.                 break;
  71.             }
  72.         }
  74.         if (empty($this->security->getUser())) {
  75.             return;
  76.         }
  78.         if (!$this->security->isGranted(RoleContainer::ROLE_ADMIN) && $this->security->isGranted(RoleContainer::ROLE_OPERATOR)) {
  79.             $allowRoles = [
  80.                 RoleContainer::ROLE_SPEAKER,
  81.                 RoleContainer::ROLE_MODERATOR,
  82.                 RoleContainer::ROLE_OPERATOR
  83.             ];
  84.             if (!in_array($object->getRole(), $allowRoles)) {
  85.                 throw new AccessDeniedException();
  86.             }
  87.         }
  89.         $userContainer $this->esCache->getContainer(false);
  90.         if (!$userContainer) {
  91.             throw new BadRequestHttpException("User creation container not found!");
  92.         }
  93.         $object->setUserContainer($userContainer);
  94.         $object->addNewsfeedContainerSubscription($userContainer);
  96.         if (($object->getIsConsiderSpeaker() && !$object->getIsDisplayAsGuest()) ||
  97.             ($object->getIsConsiderModerator() && !$object->getIsDisplayAsGuest())) {
  98.             $object->setIsDisplayAsGuest(true);
  99.         }
  100.         if ($object->getIsConsiderSpeaker() || $object->getIsConsiderModerator()) {
  101.             $object->setIsOnboarded(true);
  102.         }
  104.         if ($object->getPlainPassword()) {
  105.             $object->setPassword(
  106.                 $this->passwordEncoder->hashPassword($object$object->getPlainPassword())
  107.             );
  108.             $object->eraseCredentials();
  109.         }
  110.         $object->setIsPwdGenerated(true);
  111.         $object->setIsEmailOff(false);
  112.         $object->setIsUnsubscribedInvite(false);
  114.         if ($object->getSpecialTitles()) {
  115.             foreach ($object->getSpecialTitles() as $title) {
  116.                 $nfCategory $title->getNewsfeedCategory();
  117.                 if ($nfCategory) {
  118.                     $object->addNewsfeedSubscription($nfCategory);
  119.                 }
  120.             }
  121.         }
  122.     }
  124.     public function onPreUpdate(UserPreUpdateEvent $event)
  125.     {
  126.         $object $event->getObject();
  128.         $violations $this->validator->validate($object);
  129.         if (count($violations) > 0) {
  130.             foreach ($violations as $v) {
  131.                 throw new BadRequestHttpException($v->getMessage());
  132.                 break;
  133.             }
  134.         }
  136.         if ($object->getPlainPassword()) {
  137.             $object->setPassword(
  138.                 $this->passwordEncoder->hashPassword($object$object->getPlainPassword())
  139.             );
  140.             $object->eraseCredentials();
  141.         }
  143.         if (($object->getIsConsiderSpeaker() && !$object->getIsDisplayAsGuest()) ||
  144.             ($object->getIsConsiderModerator() && !$object->getIsDisplayAsGuest())) {
  145.             $object->setIsDisplayAsGuest(true);
  146.         }
  147.         if ($object->getIsConsiderSpeaker() || $object->getIsConsiderModerator()) {
  148.             $object->setIsOnboarded(true);
  149.         }
  151.         if (empty($this->security->getUser())) {
  152.             return;
  153.         }
  155.         if ($object->getIsUpdateNewsfeedSubscriptions() && $object->getSpecialTitles()) {
  156.             foreach ($object->getSpecialTitles() as $title) {
  157.                 $nfCategory $title->getNewsfeedCategory();
  158.                 if ($nfCategory) {
  159.                     $object->addNewsfeedSubscription($nfCategory);
  160.                 }
  161.             }
  162.         }
  164.         if (!$this->security->isGranted(RoleContainer::ROLE_ADMIN) && $this->security->isGranted(RoleContainer::ROLE_OPERATOR)) {
  165.             $allowRoles = [
  166.                 RoleContainer::ROLE_SPEAKER,
  167.                 RoleContainer::ROLE_MODERATOR,
  168.                 RoleContainer::ROLE_OPERATOR
  169.             ];
  170.             if (!in_array($object->getRole(), $allowRoles)) {
  171.                 throw new AccessDeniedException();
  172.             }
  173.         }
  175.         $originalEvent $event->getEvent();
  176.         $changeSet $originalEvent->getEntityChangeSet();
  177.         if (isset($changeSet['isOnboarded'])) {
  178.             if ($changeSet['isOnboarded'][0] !== $changeSet['isOnboarded'][1]) {
  179.                 $object->setOnboardedAt(new \DateTime());
  181.                 $eventObj = new EsEventLogEvent($objectEsEventLogEvent::EVENT_ONBOARDING);
  182.                 $this->dispatcher->dispatch($eventObjEsEventLogEvent::EVENT_ONBOARDING);
  183.             }
  184.         }
  185.         if (isset($changeSet['firstName']) || isset($changeSet['lastName']) || isset($changeSet['imageName'])) {
  186.             $payload = [...$object->getQueueInfo(), 'operation' => 'UPDATE'];
  187.             $this->esJobQueue->create(
  188.                 ElasticDependentUpdateAction::NAME,
  189.                 json_encode($payload),
  190.                 JobQueue::PRIORITY_LOW,
  191.                 null,
  192.                 1,
  193.                 null,
  194.                 false,
  195.                 false
  196.             );
  197.         }
  198.         /*
  199.         if (is_array($changeSet) && count($changeSet) > 0) {
  200.             $eventObj = new EsEventLogEvent($object, EsEventLogEvent::EVENT_CHANGE_PROFILE);
  201.             $this->dispatcher->dispatch($eventObj, EsEventLogEvent::EVENT_CHANGE_PROFILE);
  202.         }
  203.         */
  204.     }
  206.     public function onPreRemove(UserPreRemoveEvent $event)
  207.     {
  208.         $user $this->security->getUser();
  210.         if (empty($user)) {
  211.             return;
  212.         }
  214.         $allowRoles = [];
  215.         if ($this->security->isGranted(RoleContainer::ROLE_OPERATOR)) {
  216.             $allowRoles = [
  217.                 RoleContainer::ROLE_SPEAKER,
  218.                 RoleContainer::ROLE_MODERATOR,
  219.                 RoleContainer::ROLE_OPERATOR
  220.             ];
  221.         }
  222.         if ($this->security->isGranted(RoleContainer::ROLE_ADMIN) || $this->security->isGranted(RoleContainer::ROLE_SUPPORT)) {
  223.             $allowRoles = [
  224.                 RoleContainer::ROLE_GUEST_VOTER,
  225.                 RoleContainer::ROLE_READER,
  226.                 RoleContainer::ROLE_USER,
  227.                 RoleContainer::ROLE_INSTRUCTOR,
  228.                 RoleContainer::ROLE_STAFF,
  229.                 RoleContainer::ROLE_RELATION_MANAGER,
  230.                 RoleContainer::ROLE_SPEAKER,
  231.                 RoleContainer::ROLE_MODERATOR,
  232.                 RoleContainer::ROLE_SUPPORT,
  233.                 RoleContainer::ROLE_OPERATOR,
  234.                 RoleContainer::ROLE_ADMIN
  235.             ];
  236.         }
  237.         if ($this->security->isGranted(RoleContainer::ROLE_SUPER_ADMIN)) {
  238.             if ($this->appEnvType === 'CS') {
  239.                 $allowRoles = [
  240.                     RoleContainer::ROLE_ADMIN,
  241.                     RoleContainer::ROLE_OPERATOR
  242.                 ];
  243.             } else {
  244.                 $allowRoles = [
  245.                     ...$allowRoles,
  246.                     RoleContainer::ROLE_SUPER_ADMIN
  247.                 ];
  248.             }
  249.         }
  251.         $object $event->getObject();
  252.         if (!in_array($object->getRole(), $allowRoles) && $user->getId() !== $object->getId()) {
  253.             throw new AccessDeniedException();
  254.         }
  256.         $payload = [...$object->getQueueInfo(), 'operation' => 'DELETE'];
  257.         $this->esJobQueue->create(
  258.             ElasticDependentUpdateAction::NAME,
  259.             json_encode($payload),
  260.             JobQueue::PRIORITY_LOW
  261.         );
  263.         $eventObj = new EsEventLogEvent($objectEsEventLogEvent::EVENT_USER_DELETE);
  264.         $this->dispatcher->dispatch($eventObjEsEventLogEvent::EVENT_USER_DELETE);
  265.     }
  266. }