Symfony Profiler

<?php
/*
* This file is part of the Symfony package.
*
* (c) Fabien Potencier <fabien@symfony.com>
*
* For the full copyright and license information, please view the LICENSE
* file that was distributed with this source code.
*/
namespace Sensio\Bundle\FrameworkExtraBundle\EventListener;
use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
use Sensio\Bundle\FrameworkExtraBundle\Request\ArgumentNameConverter;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Symfony\Component\HttpKernel\Event\FilterControllerArgumentsEvent;
use Symfony\Component\HttpKernel\Exception\HttpException;
use Symfony\Component\HttpKernel\KernelEvents;
use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
use Symfony\Component\Security\Core\Exception\AccessDeniedException;
/**
* Handles the IsGranted annotation on controllers.
*
* @author Ryan Weaver <ryan@knpuniversity.com>
*/
class IsGrantedListener implements EventSubscriberInterface
{
private $argumentNameConverter;
private $authChecker;
public function __construct(ArgumentNameConverter $argumentNameConverter, AuthorizationCheckerInterface $authChecker = null)
{
$this->argumentNameConverter = $argumentNameConverter;
$this->authChecker = $authChecker;
}
public function onKernelControllerArguments(FilterControllerArgumentsEvent $event)
{
$request = $event->getRequest();
/** @var $configurations IsGranted[] */
if (!$configurations = $request->attributes->get('_is_granted')) {
return;
}
if (null === $this->authChecker) {
throw new \LogicException('To use the @IsGranted tag, you need to install symfony/security-bundle and configure your security system.');
}
$arguments = $this->argumentNameConverter->getControllerArguments($event);
foreach ($configurations as $configuration) {
$subject = null;
if ($configuration->getSubject()) {
if (!isset($arguments[$configuration->getSubject()])) {
throw new \RuntimeException(sprintf('Could not find the subject "%s" for the @IsGranted annotation. Try adding a "$%s" argument to your controller method.', $configuration->getSubject(), $configuration->getSubject()));
}
$subject = $arguments[$configuration->getSubject()];
}
if (!$this->authChecker->isGranted($configuration->getAttributes(), $subject)) {
$argsString = $this->getIsGrantedString($configuration);
$message = $configuration->getMessage() ?: sprintf('Access Denied by controller annotation @IsGranted(%s)', $argsString);
if ($statusCode = $configuration->getStatusCode()) {
throw new HttpException($statusCode, $message);
}
throw new AccessDeniedException($message);
}
}
}
private function getIsGrantedString(IsGranted $isGranted)
{
$attributes = array_map(function ($attribute) {
return sprintf('"%s"', $attribute);
}, (array) $isGranted->getAttributes());
if (1 === \count($attributes)) {
$argsString = reset($attributes);
} else {
$argsString = sprintf('[%s]', implode(', ', $attributes));
}
if (null !== $isGranted->getSubject()) {
$argsString = sprintf('%s, %s', $argsString, $isGranted->getSubject());
}
return $argsString;
}
/**
* {@inheritdoc}
*/
public static function getSubscribedEvents()
{
return [KernelEvents::CONTROLLER_ARGUMENTS => 'onKernelControllerArguments'];
}
}

vendor/sensio/framework-extra-bundle/EventListener/IsGrantedListener.php line 39