vendor/contao/core-bundle/src/EventListener/UserSessionListener.php line 63

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. /*
  6.  * This file is part of Contao.
  7.  *
  8.  * (c) Leo Feyer
  9.  *
  10.  * @license LGPL-3.0-or-later
  11.  */
  13. namespace Contao\CoreBundle\EventListener;
  15. use Contao\CoreBundle\Routing\ScopeMatcher;
  16. use Contao\User;
  17. use Doctrine\DBAL\Connection;
  18. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  19. use Symfony\Component\HttpFoundation\Request;
  20. use Symfony\Component\HttpFoundation\Session\Attribute\AttributeBagInterface;
  21. use Symfony\Component\HttpFoundation\Session\SessionBagInterface;
  22. use Symfony\Component\HttpKernel\Event\RequestEvent;
  23. use Symfony\Component\HttpKernel\Event\ResponseEvent;
  24. use Symfony\Component\HttpKernel\KernelEvents;
  25. use Symfony\Component\Security\Core\Security;
  27. /**
  28.  * @internal
  29.  */
  30. class UserSessionListener
  31. {
  32.     /**
  33.      * @var Connection
  34.      */
  35.     private $connection;
  37.     /**
  38.      * @var Security
  39.      */
  40.     private $security;
  42.     /**
  43.      * @var ScopeMatcher
  44.      */
  45.     private $scopeMatcher;
  47.     /**
  48.      * @var EventDispatcherInterface
  49.      */
  50.     private $eventDispatcher;
  52.     public function __construct(Connection $connectionSecurity $securityScopeMatcher $scopeMatcherEventDispatcherInterface $eventDispatcher)
  53.     {
  54.         $this->connection $connection;
  55.         $this->security $security;
  56.         $this->scopeMatcher $scopeMatcher;
  57.         $this->eventDispatcher $eventDispatcher;
  58.     }
  60.     /**
  61.      * Replaces the current session data with the stored session data.
  62.      */
  63.     public function __invoke(RequestEvent $event): void
  64.     {
  65.         if (!$this->scopeMatcher->isContaoMasterRequest($event)) {
  66.             return;
  67.         }
  69.         $user $this->security->getUser();
  71.         if (!$user instanceof User) {
  72.             return;
  73.         }
  75.         $session $user->session;
  77.         if (\is_array($session)) {
  78.             /** @var AttributeBagInterface $sessionBag */
  79.             $sessionBag $this->getSessionBag($event->getRequest());
  80.             $sessionBag->replace($session);
  81.         }
  83.         // Dynamically register the kernel.response listener (see #1293)
  84.         $this->eventDispatcher->addListener(KernelEvents::RESPONSE, [$this'write']);
  85.     }
  87.     /**
  88.      * Writes the current session data to the database.
  89.      */
  90.     public function write(ResponseEvent $event): void
  91.     {
  92.         if (!$this->scopeMatcher->isContaoMasterRequest($event)) {
  93.             return;
  94.         }
  96.         $user $this->security->getUser();
  98.         if (!$user instanceof User) {
  99.             return;
  100.         }
  102.         /** @var AttributeBagInterface $sessionBag */
  103.         $sessionBag $this->getSessionBag($event->getRequest());
  104.         $data $sessionBag->all();
  106.         $this->connection->update($user->getTable(), ['session' => serialize($data)], ['id' => $user->id]);
  107.     }
  109.     /**
  110.      * Returns the session bag.
  111.      *
  112.      * @throws \RuntimeException
  113.      */
  114.     private function getSessionBag(Request $request): SessionBagInterface
  115.     {
  116.         if (!$request->hasSession()) {
  117.             throw new \RuntimeException('The request did not contain a session.');
  118.         }
  120.         $name 'contao_frontend';
  122.         if ($this->scopeMatcher->isBackendRequest($request)) {
  123.             $name 'contao_backend';
  124.         }
  126.         return $request->getSession()->getBag($name);
  127.     }
  128. }