src/EventSubscriber/AuthenticationToken/AuthenticationTokenSubscriber.php line 260

Open in your IDE?
  1. <?php
  2. namespace App\EventSubscriber\AuthenticationToken;
  4. use App\Entity\Referral;
  5. use App\Service\AuthenticationTokenService;
  6. use Symfony\Component\HttpFoundation\JsonResponse;
  7. use Symfony\Component\HttpKernel\Event\RequestEvent;
  8. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  9. use Doctrine\Persistence\ManagerRegistry;
  10. use Psr\Log\LoggerInterface;
  11. use Symfony\Component\HttpFoundation\Exception\BadRequestException;
  13. class AuthenticationTokenSubscriber
  14. {
  16. protected $doctrine;
  18. protected $router;
  20. /** @var AuthenticationTokenService $tokenService **/
  21. protected $tokenService;
  23. protected $authenticationKey;
  25. protected $authenticationSecret;
  27. private $logger;
  29. public function __construct(ManagerRegistry $doctrine, UrlGeneratorInterface $router, AuthenticationTokenService $tokenService, $authenticationKey, $authenticationSecret, LoggerInterface $logger)
  30. {
  31. $this->doctrine = $doctrine;
  32. $this->router = $router;
  33. $this->tokenService = $tokenService;
  34. $this->authenticationKey = $authenticationKey;
  35. $this->authenticationSecret = $authenticationSecret;
  36. $this->logger = $logger;
  37. }
  39. protected function checkTokenReview(RequestEvent $event)
  40. {
  41. $request = $event->getRequest();
  42. $checkPath = '/api/authentication_tokens/review';
  44. if ($request->getRequestUri() !== $checkPath || $request->getMethod() !== 'POST') {
  45. return false;
  46. }
  48. $headers = $request->headers;
  49. $authenticationTokenUid = $headers->get('authorization', null);
  51. if (! $authenticationTokenUid) {
  52. return false;
  53. }
  55. $token = $this->tokenService->getTokenByUid($authenticationTokenUid);
  57. if (! $token) {
  58. return false;
  59. }
  61. if ($token->getAccessTimestamp()) {
  62. return false;
  63. }
  65. $uid = $token->getUid();
  67. $url = $this->router->generate('views_external_referral_review', [
  68. 'token' => $uid
  69. ], UrlGeneratorInterface::ABSOLUTE_URL);
  71. $response = new JsonResponse([
  72. 'url' => $url
  73. ]);
  75. $event->setResponse($response);
  77. return true;
  78. }
  80. protected function checkTokenRequest(RequestEvent $event)
  81. {
  82. $request = $event->getRequest();
  83. $checkPath = '/api/authentication_tokens/request';
  85. if ($request->getRequestUri() !== $checkPath || $request->getMethod() !== 'POST') {
  86. return false;
  87. }
  89. $content = json_decode($request->getContent(), true);
  91. try {
  92. $key = $content['key'];
  93. $secret = $content['secret'];
  94. $referralId = $content['referral'];
  95. $userData = $content['user'];
  96. } catch (\Exception $ex) {
  97. throw new BadRequestException("Invalid request data");
  98. }
  100. $systemKey = $this->authenticationKey;
  101. $systemSecret = $this->authenticationSecret;
  103. if (! $key) {
  104. throw new BadRequestException("Authentication key must be submitted");
  105. }
  107. if (! $secret) {
  108. throw new BadRequestException("Authentication secret must be submitted");
  109. }
  111. if (! $referralId) {
  112. throw new BadRequestException("Authentication referral must be submitted");
  113. }
  115. if (! $userData) {
  116. throw new BadRequestException("Authentication user must be submitted");
  117. }
  119. if ($key !== $systemKey || $secret !== $systemSecret) {
  120. throw new BadRequestException("Could not authenticate");
  121. }
  123. $referralRepository = $this->doctrine->getRepository(Referral::class);
  125. $referral = null;
  126. try {
  127. $referral = $referralRepository->findOneBy([
  128. 'submissionId' => $referralId
  129. ]);
  130. } catch (\Exception $ex) {}
  132. if (! $referral) {
  133. throw new BadRequestException("Invalid referral submitted");
  134. }
  136. $clientIps = $request->headers->get('x-forwarded-for') ?: json_encode($request->getClientIps());
  138. $requestorInformation = $clientIps;
  140. $token = $this->tokenService->generateToken($referral, $requestorInformation, $userData);
  142. $response = new JsonResponse([
  143. 'uid' => $token->getUid()
  144. ]);
  146. $event->setResponse($response);
  148. return true;
  149. }
  151. protected function checkTokenStatusUpdate(RequestEvent $event)
  152. {
  153. $request = $event->getRequest();
  154. $checkPaths = [
  155. '/api/authentication_tokens/received',
  156. '/api/authentication_tokens/processed',
  157. '/api/authentication_tokens/eligible',
  158. '/api/authentication_tokens/not_eligible',
  159. '/api/authentication_tokens/rejected',
  160. '/api/authentication_tokens/unable_to_contact'
  161. ];
  163. if (! in_array($request->getRequestUri(), $checkPaths) || $request->getMethod() !== 'POST') {
  164. return false;
  165. }
  167. $content = json_decode($request->getContent(), true);
  168. $comments = null;
  169. $serviceCoordinator = null;
  170. $serviceCoordinatorEs = null;
  171. $eligibilityDetermination = null;
  172. $eligibilityDeterminationEs = null;
  173. $statusDetails = null;
  174. $statusDetailsEs = null;
  177. $status = null;
  178. switch ($request->getRequestUri()) {
  179. case '/api/authentication_tokens/received':
  180. $status = Referral::STATUS_RECEIVED;
  181. break;
  182. case '/api/authentication_tokens/processed':
  183. $status = Referral::STATUS_PROCESSED;
  184. break;
  185. case '/api/authentication_tokens/eligible':
  186. $status = Referral::STATUS_ELIGIBLE;
  187. $serviceCoordinator = $content['service_coordinator'] ?? null;
  188. $serviceCoordinatorEs = $content['service_coordinator_es'] ?? null;
  189. $eligibilityDetermination = $content['eligibility_determination'] ?? null;
  190. $eligibilityDeterminationEs = $content['eligibility_determination_es'] ?? null;
  191. $statusDetails = $content['status_details'] ?? null;
  192. $statusDetailsEs = $content['status_details_es'] ?? null;
  193. break;
  194. case '/api/authentication_tokens/not_eligible':
  195. $status = Referral::STATUS_NOT_ELIGIBLE;
  196. $serviceCoordinator = $content['service_coordinator'] ?? null;
  197. $serviceCoordinatorEs = $content['service_coordinator_es'] ?? null;
  198. break;
  199. case '/api/authentication_tokens/rejected':
  200. $status = Referral::STATUS_REJECTED;
  201. $comments = $content['comments'] ?? null;
  202. break;
  203. case '/api/authentication_tokens/unable_to_contact':
  204. $status = Referral::STATUS_UNABLE_TO_CONTACT;
  205. $serviceCoordinator = $content['service_coordinator'] ?? null;
  206. $serviceCoordinatorEs = $content['service_coordinator_es'] ?? null;
  207. $statusDetails = $content['status_details'] ?? null;
  208. $statusDetailsEs = $content['status_details_es'] ?? null;
  209. break;
  210. }
  212. $headers = $request->headers;
  213. $authenticationTokenUid = $headers->get('authorization', null);
  215. if (! $authenticationTokenUid) {
  216. return false;
  217. }
  219. $token = $this->tokenService->getTokenByUid($authenticationTokenUid);
  220. if (! $token) {
  221. return false;
  222. }
  224. if ($token->getExpirationTimestamp()) {
  225. return false;
  226. }
  228. $clientIps = $request->headers->get('x-forwarded-for') ?: json_encode($request->getClientIps());
  230. $accessorInformation = $clientIps;
  231. $accessTimestamp = new \DateTime("now");
  232. $referral = $token->getReferral();
  234. $token->setAccessorInformation($accessorInformation);
  235. $token->setAccessTimestamp($accessTimestamp);
  236. $token->setExpirationTimestamp($accessTimestamp);
  238. $referral->setStatus($status);
  239. $referral->setComments($comments);
  240. $referral->setServiceCoordinator($serviceCoordinator);
  241. $referral->setServiceCoordinatorEs($serviceCoordinatorEs);
  242. $referral->setEligibilityDetermination($eligibilityDetermination);
  243. $referral->setEligibilityDeterminationEs($eligibilityDeterminationEs);
  244. $referral->setStatusDetails($statusDetails);
  245. $referral->setStatusDetailsEs($statusDetailsEs);
  247. $this->doctrine->getManager()->persist($token);
  248. $this->doctrine->getManager()->persist($referral);
  249. $this->doctrine->getManager()->flush();
  251. $response = new JsonResponse([
  252. 'status' => $referral->getStatus()
  253. ]);
  255. $event->setResponse($response);
  257. return true;
  258. }
  260. public function onKernelRequest(RequestEvent $event)
  261. {
  262. if ($this->checkTokenRequest($event)) {
  263. return;
  264. }
  266. if ($this->checkTokenReview($event)) {
  267. return;
  268. }
  270. if ($this->checkTokenStatusUpdate($event)) {
  271. return;
  272. }
  274. return;
  275. }
  276. }