Sign upLogin

1ma/UMAPsr7HmacBundle

View on GitHub
Star
src/Security/Firewall/HmacListener.php

Summary

Maintainability
A
35 mins
Test Coverage
<?php

namespace UMA\Psr7HmacBundle\Security\Firewall;

use Psr\Log\LoggerInterface;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\HttpKernel\Event\GetResponseEvent;
use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
use Symfony\Component\Security\Core\Exception\AuthenticationCredentialsNotFoundException;
use Symfony\Component\Security\Core\Exception\AuthenticationException;
use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
use Symfony\Component\Security\Http\Firewall\ListenerInterface;
use UMA\Psr7HmacBundle\Security\Authentication\HmacToken;

class HmacListener implements ListenerInterface
{
    /**
     * @var string
     */
    private $apiKeyHeader;

    /**
     * @var AuthenticationManagerInterface
     */
    private $authManager;

    /**
     * @var TokenStorageInterface
     */
    private $tokenStorage;

    /**
     * @var AuthenticationEntryPointInterface|null
     */
    private $entryPoint;

    /**
     * @var LoggerInterface
     */
    private $logger;

    /**
     * @param string                                 $apiKeyHeader
     * @param AuthenticationManagerInterface         $authManager
     * @param TokenStorageInterface                  $tokenStorage
     * @param AuthenticationEntryPointInterface|null $entryPoint
     * @param LoggerInterface|null                   $logger
     */
    public function __construct($apiKeyHeader, AuthenticationManagerInterface $authManager, TokenStorageInterface $tokenStorage, AuthenticationEntryPointInterface $entryPoint = null, LoggerInterface $logger = null)
    {
        $this->apiKeyHeader = $apiKeyHeader;
        $this->authManager = $authManager;
        $this->tokenStorage = $tokenStorage;
        $this->entryPoint = $entryPoint;
        $this->logger = $logger;
    }

    /**
     * {@inheritdoc}
     */
    public function handle(GetResponseEvent $event)
    {
        $request = $event->getRequest();

        try {
            if (null === $apiKey = $request->headers->get($this->apiKeyHeader)) {
                throw new AuthenticationCredentialsNotFoundException('Request is missing the API key HTTP header');
            }

            $this->tokenStorage->setToken(
                $this->authManager->authenticate(new HmacToken($apiKey))
            );
        } catch (AuthenticationException $e) {
            if (null !== $this->logger) {
                $this->logger->info('Hmac authentication failed.', ['exception' => $e]);
            }

            $response = null !== $this->entryPoint ?
                $this->entryPoint->start($request, $e) :
                new Response('Unauthorized request', Response::HTTP_UNAUTHORIZED);

            $event->setResponse($response);
        }
    }
}