src/Subscriber/EventSubscriber/Request/RequestSubscriber.php line 49

  1. <?php
  4. namespace App\Subscriber\EventSubscriber\Request;
  7. use App\Entity\System\Log\RequestLog;
  8. use App\Security\AppCustomAuthenticator;
  9. use App\Services\Php\System\GlobalFunctions;
  10. use App\Services\Php\System\SystemService;
  11. use App\Services\Php\Traits\LoggedDataTrait;
  12. use Doctrine\ORM\EntityManager;
  13. use Psr\Container\ContainerInterface;
  14. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
  15. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  16. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  17. use Symfony\Component\HttpKernel\Event\RequestEvent;
  18. use Symfony\Component\HttpKernel\KernelEvents;
  19. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  20. use Symfony\Component\Security\Csrf\CsrfToken;
  23. class RequestSubscriber implements EventSubscriberInterface
  24. {
  25.     use TargetPathTrait;
  26.     use LoggedDataTrait;
  27.     
  28.     private $container;
  29.     private $em;
  30.     private $ss;
  31.     
  32.     public function __construct(ContainerInterface $container)
  33.     {
  34.         $this->container $container;
  35.         
  36.         $this->em $this->container->get('doctrine')->getManager();
  37.         
  38.     }
  39.     
  40.     public static function getSubscribedEvents()
  41.     {
  42.         return [
  43.             RequestEvent::class => 'onKernelRequest',
  44.         ];
  45.     }
  46.     /**
  47.      * @Security("user.isEnabled()")
  48.      */
  49.     public function onKernelRequest(RequestEvent $event): void
  50.     {
  51.         
  52.         $gf = new GlobalFunctions();
  53.         
  54.         $request $event->getRequest();
  55.         if (
  56.             !$event->isMainRequest()
  57.             || $request->isXmlHttpRequest()
  58.             || AppCustomAuthenticator::LOGIN_ROUTE === $request->attributes->get('_route')
  59.         ) {
  60.             return;
  61.         }
  62.         
  63.         return;
  64.         
  65.         
  66.         $request $event->getRequest();
  67.         
  68.         $queryDATA = array();
  69.         foreach ($request->query->all() as $key => $query) {
  70.             if (is_array($query)) {
  71.                 foreach ($query as $arrayKey => $q) {
  72.                     if (is_array($q)) {
  73.                         foreach ($q as $key2 => $s) {
  74.                             if (is_array($s)) {
  75.                                 foreach ($s as $key3 => $t) {
  76.                                     $tc $gf->xss_clean($t);
  77.                                     $queryDATA[$key][$arrayKey][$key2][$key3] = $tc;
  78.                                 }
  79.                             } else {
  80.                                 $sc $gf->xss_clean($s);
  81.                                 $queryDATA[$key][$arrayKey][$key2] = $sc;
  82.                             }
  83.                         }
  84.                     } else {
  85.                         $qc $gf->xss_clean($q);
  86.                         $queryDATA[$key][$arrayKey] = $qc;
  87.                     }
  88.                 }
  89.             } else {
  90.                 $query $gf->xss_clean($query);
  91.                 $queryDATA[$key] = $query;
  92.             }
  93.         }
  94.         $request->query->replace($queryDATA);
  95.         
  96.         
  97.         $postDATA = array();
  98.         foreach ($request->request->all() as $key => $post_data) {
  99.             if (is_array($post_data)) {
  100.                 foreach ($post_data as $arrayKey => $q) {
  101.                     if (is_array($q)) {
  102.                         foreach ($q as $key2 => $s) {
  103.                             if (is_array($s)) {
  104.                                 foreach ($s as $key3 => $t) {
  105.                                     $tc $gf->xss_clean($t);
  106.                                     $postDATA[$key][$arrayKey][$key2][$key3] = $tc;
  107.                                 }
  108.                             } else {
  109.                                 $sc $gf->xss_clean($s);
  110.                                 $postDATA[$key][$arrayKey][$key2] = $sc;
  111.                             }
  112.                         }
  113.                     } else {
  114.                         $qc $gf->xss_clean($q);
  115.                         $postDATA[$key][$arrayKey] = $qc;
  116.                     }
  117.                 }
  118.             } else {
  119.                 $post_data $gf->xss_clean($post_data);
  120.                 $postDATA[$key] = $post_data;
  121.             }
  122.         }
  123.         
  124.         $request->request->replace($postDATA);
  125.         
  126.         
  127.         $status 0;
  128.         if ($event->isMainRequest()) {
  129.             $controller $event->getRequest()->attributes->get("_controller");
  130.             
  131.             $explodeController explode("\\"$controller);
  132.             $explodeControllerNameAndFunction explode("::"end($explodeController));
  133.             $controller_path $explodeControllerNameAndFunction[0];
  134.             $controller_function $explodeControllerNameAndFunction[1];
  135.             
  136.             
  137.             if ($controller_path and $controller_function and $status 1) {
  138.                 
  139.                 
  140.                 $disabled_url_path = array(
  141.                     "",
  142.                 );
  145. //                $security = $this->container->get('security.cont');
  146. //                $user = $security->getToken()->getUser();
  147.                 
  148.                 $ip_address $this->get_ip_address();
  149.                 $method $event->getRequest()->getMethod();
  150.                 $url $event->getRequest()->getPathInfo();
  151.                 
  152.                 $controller_name explode("\\"$controller_path);
  153.                 $bundle $controller_name[0];
  154.                 $controller end($controller_name);
  155.                 $url str_replace(strtolower($bundle) . "/"""ltrim(rtrim($url"/"), "/"));
  156.                 $url ltrim($url'/');
  157.              
  158.                 
  159.                 $localhost 1;
  160.                 if ($this->getLoggedUser(1) and $this->getLoggedUser() != "anon."
  161.                     and $this->getLoggedUser() > 0
  162.                     and ($ip_address != "127.0.0.1" or $localhost == 1) and (!in_array($url$disabled_url_path) and strpos($url"favicon.ico") === false)) {
  163.                     
  164.                     $sub_user_id $this->getLoggedUser();
  165.                     $user_id $this->getKullanici();
  166.                     
  167.                     
  168.                     if ($user_id == $sub_user_id$sub_user_id null;
  169.                     
  170.                     
  171.                     $methodID 0;
  172.                     if ($method === "GET"$methodID 1;
  173.                     if ($method === "POST"$methodID 2;
  174.                     
  175.                     
  176.                     $queryDATA = array();
  177.                     foreach ($event->getRequest()->query->all() as $key => $q) {
  178.                         if ($q != "*" and $q != ""$queryDATA["get"][$key] = $q;
  179.                     }
  180.                     
  181.                     
  182.                     foreach ($event->getRequest()->request->all() as $key => $q) {
  183.                         if ($q != "*" and $q != ""$queryDATA["post"][$key] = $q;
  184.                     }
  185.                     
  186.                     
  187.                     /** @var EntityManager $em */
  188.                     $em $this->em;
  189.                     
  190.                     if ($ip_address == null) {
  191.                         $ip_address $event->getRequest()->getClientIp();
  192.                     }
  193.                     
  194.                     $adminLog = new RequestLog();
  195.                     $adminLog->setBusinessId($user_id);
  196.                     $adminLog->setUserId($user_id);
  197.                     $adminLog->setCreatedAt(new \DateTime("now"));
  198.                     $adminLog->setIp($ip_address);
  199.                     $adminLog->setMethod($methodID);
  200.                     $adminLog->setUrlPath($url);
  201.                     $adminLog->setQuerys($queryDATA);
  202.                     $em->persist($adminLog);
  203.                     $em->flush();
  204.                     
  205.                 }
  206.             }
  207.         }
  208.         
  209.         
  210.         $this->saveTargetPath($request->getSession(), 'main'$request->getUri());
  211.     }
  212.     
  213.     
  214. }