vendor/symfony/security/Http/Firewall/ChannelListener.php line 28

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Component\Security\Http\Firewall;
  14. use Psr\Log\LoggerInterface;
  15. use Symfony\Component\HttpFoundation\Request;
  16. use Symfony\Component\HttpKernel\Event\RequestEvent;
  17. use Symfony\Component\Security\Http\AccessMapInterface;
  18. use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
  20. /**
  21.  * ChannelListener switches the HTTP protocol based on the access control
  22.  * configuration.
  23.  *
  24.  * @author Fabien Potencier <fabien@symfony.com>
  25.  *
  26.  * @final since Symfony 4.3
  27.  */
  28. class ChannelListener extends AbstractListener implements ListenerInterface
  29. {
  30.     use LegacyListenerTrait;
  32.     private $map;
  33.     private $authenticationEntryPoint;
  34.     private $logger;
  36.     public function __construct(AccessMapInterface $mapAuthenticationEntryPointInterface $authenticationEntryPointLoggerInterface $logger null)
  37.     {
  38.         $this->map $map;
  39.         $this->authenticationEntryPoint $authenticationEntryPoint;
  40.         $this->logger $logger;
  41.     }
  43.     /**
  44.      * Handles channel management.
  45.      */
  46.     public function supports(Request $request): ?bool
  47.     {
  48.         [, $channel] = $this->map->getPatterns($request);
  50.         if ('https' === $channel && !$request->isSecure()) {
  51.             if (null !== $this->logger) {
  52.                 if ('https' === $request->headers->get('X-Forwarded-Proto')) {
  53.                     $this->logger->info('Redirecting to HTTPS. ("X-Forwarded-Proto" header is set to "https" - did you set "trusted_proxies" correctly?)');
  54.                 } elseif (str_contains($request->headers->get('Forwarded'''), 'proto=https')) {
  55.                     $this->logger->info('Redirecting to HTTPS. ("Forwarded" header is set to "proto=https" - did you set "trusted_proxies" correctly?)');
  56.                 } else {
  57.                     $this->logger->info('Redirecting to HTTPS.');
  58.                 }
  59.             }
  61.             return true;
  62.         }
  64.         if ('http' === $channel && $request->isSecure()) {
  65.             if (null !== $this->logger) {
  66.                 $this->logger->info('Redirecting to HTTP.');
  67.             }
  69.             return true;
  70.         }
  72.         return false;
  73.     }
  75.     public function authenticate(RequestEvent $event)
  76.     {
  77.         $request $event->getRequest();
  79.         $response $this->authenticationEntryPoint->start($request);
  81.         $event->setResponse($response);
  82.     }
  83. }