src/EventSubscriber/File/FileReadSubscriber.php line 29

Open in your IDE?
  1. <?php
  3. namespace App\EventSubscriber\File;
  5. use App\Entity\File\OSFile;
  6. use App\Security\Voter\OSFileAccessVoter;
  7. use Doctrine\ORM\EntityManagerInterface;
  8. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  9. use Symfony\Component\HttpKernel\Event\RequestEvent;
  10. use Symfony\Component\HttpKernel\KernelEvents;
  11. use Symfony\Component\HttpKernel\UriSigner;
  12. use Symfony\Component\Security\Core\Security;
  14. class FileReadSubscriber implements EventSubscriberInterface
  15. {
  16.     public function __construct(private UriSigner $uriSigner, private Security $security, private EntityManagerInterface $manager){}
  18.     public static function getSubscribedEvents(): array
  19.     {
  20.         return [
  21.             KernelEvents::REQUEST => 'onKernelRequest',
  22.         ];
  23.     }
  25.     /**
  26.      * @throws InvalideFileSignatureException
  27.      * @throws FileAccessNotGrantedException
  28.      */
  29.     public function onKernelRequest(RequestEvent $event): void
  30.     {
  31.         $request $event->getRequest();
  32.         if (!$event->isMainRequest() ) {
  33.             return;
  34.         }
  36.         $secureRoute= ["file-read""file-download"];
  37.         if (!in_array($request->get('_route'), $secureRoutetrue)) {
  38.             return;
  39.         }
  41.         if ($request->get('_hash') && !$this->uriSigner->checkRequest($request)) {
  42.             throw new InvalideFileSignatureException($request);
  43.         }
  45.         $doc$this->manager->getRepository(OSFile::class)->find($request->get('id'));
  46.         if(!$this->security->isGranted(OSFileAccessVoter::DOWNLOAD$doc)){
  47.             throw new FileAccessNotGrantedException($request$docOSFileAccessVoter::DOWNLOAD);
  48.         }
  49.     }
  50. }