app/Plugin/CustomerGroup/EventListener/ProductListener.php line 59

Open in your IDE?
  1. <?php
  2. /**
  3.  * This file is part of CustomerGroupPrice
  4.  *
  5.  * Copyright(c) Akira Kurozumi <info@a-zumi.net>
  6.  *
  7.  * https://a-zumi.net
  8.  *
  9.  * For the full copyright and license information, please view the LICENSE
  10.  * file that was distributed with this source code.
  11.  */
  13. namespace Plugin\CustomerGroup\EventListener;
  16. use Doctrine\ORM\EntityManagerInterface;
  17. use Eccube\Entity\Category;
  18. use Eccube\Entity\Page;
  19. use Eccube\Entity\Product;
  20. use Plugin\CustomerGroup\Security\Authorization\Voter\CategoryVoter;
  21. use Plugin\CustomerGroup\Security\Authorization\Voter\PageVoter;
  22. use Plugin\CustomerGroup\Security\Authorization\Voter\ProductVoter;
  23. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  24. use Symfony\Component\HttpFoundation\Request;
  25. use Symfony\Component\HttpKernel\Event\GetResponseEvent;
  26. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  27. use Symfony\Component\HttpKernel\KernelEvents;
  28. use Symfony\Component\Security\Core\Security;
  30. class ProductListener implements EventSubscriberInterface
  31. {
  33.     /**
  34.      * @var Security
  35.      */
  36.     private $security;
  38.     /**
  39.      * @var EntityManagerInterface
  40.      */
  41.     private $entityManager;
  43.     public static function getSubscribedEvents()
  44.     {
  45.         return [
  46.             KernelEvents::REQUEST => 'onKernelRequest',
  47.         ];
  48.     }
  50.     public function __construct(
  51.         Security $security,
  52.         EntityManagerInterface $entityManager
  53.     )
  54.     {
  55.         $this->security $security;
  56.         $this->entityManager $entityManager;
  57.     }
  59.     public function onKernelRequest(GetResponseEvent $event)
  60.     {
  61.         if (false === $event->isMasterRequest()) {
  62.             return;
  63.         }
  65.         switch ($event->getRequest()->attributes->get('_route')) {
  66.             case 'product_list':
  67.                 if ($category $this->findCategory($event->getRequest())) {
  68.                     if (false === $this->security->isGranted(CategoryVoter::VIEW$category)) {
  69.                         throw new AccessDeniedHttpException();
  70.                     }
  71.                 }
  72.                 break;
  73.             case 'product_detail':
  74.                 if ($product $this->findProduct($event->getRequest())) {
  75.                     if (false === $this->security->isGranted(ProductVoter::VIEW$product)) {
  76.                         throw new AccessDeniedHttpException();
  77.                     }
  78.                 }
  79.                 break;
  80.             case 'user_data':
  81.                 if ($page $this->findPage($event->getRequest())) {
  82.                     if (false === $this->security->isGranted(PageVoter::VIEW$page)) {
  83.                         throw new AccessDeniedHttpException();
  84.                     }
  85.                 }
  86.         }
  87.     }
  89.     /**
  90.      * @param Request $request
  91.      * @return Category|null
  92.      */
  93.     protected function findCategory(Request $request): ?Category
  94.     {
  95.         // 数字以外だとpsglでエラーが発生するので
  96.         if (!preg_match('/^\d+$/'$request->query->get('category_id'), $matches)) {
  97.             return null;
  98.         }
  100.         return $this->entityManager->getRepository(Category::class)->find($matches[0]);
  101.     }
  103.     /**
  104.      * @param Request $request
  105.      * @return Product|null
  106.      */
  107.     protected function findProduct(Request $request): ?Product
  108.     {
  109.         if (!$id $request->get('id')) {
  110.             return null;
  111.         }
  113.         return $this->entityManager->getRepository(Product::class)->find($id);
  114.     }
  116.     protected function findPage(Request $request): ?Page
  117.     {
  118.         if (!$route $request->get('route')) {
  119.             return null;
  120.         }
  122.         return $this->entityManager->getRepository(Page::class)->findOneBy([
  123.             'url' => $route,
  124.             'edit_type' => Page::EDIT_TYPE_USER
  125.         ]);
  126.     }
  127. }