src/Common/EventSubscriber/AccessLogSubscriber.php line 39

Open in your IDE?
  1. <?php
  3. namespace PaperKite\Common\EventSubscriber;
  5. use Psr\Log\LoggerInterface;
  6. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  7. use Symfony\Component\HttpFoundation\Request;
  8. use Symfony\Component\HttpKernel\Event\ExceptionEvent;
  9. use Symfony\Component\HttpKernel\Event\RequestEvent;
  10. use Symfony\Component\HttpKernel\KernelEvents;
  11. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  13. class AccessLogSubscriber implements EventSubscriberInterface
  14. {
  15.     public function __construct(
  16.         private LoggerInterface $auditLogger,
  17.     ) {
  18.     }
  20.     public static function getSubscribedEvents(): array
  21.     {
  22.         return [
  23.             KernelEvents::REQUEST => 'onKernelRequest',
  24.             KernelEvents::EXCEPTION => ['onKernelException'2],
  25.         ];
  26.     }
  28.     public function onKernelRequest(RequestEvent $event): void
  29.     {
  30.         if (!$event->isMainRequest()) {
  31.             return;
  32.         }
  34.         $mainRequest $event->getRequest();
  36.         $this->buildLogBasedOnRequest('Access requested.'$mainRequest);
  37.     }
  39.     public function onKernelException(ExceptionEvent $event): void
  40.     {
  41.         if (!$event->isMainRequest()) {
  42.             return;
  43.         }
  45.         $exception $event->getThrowable();
  46.         if (!$exception instanceof AccessDeniedException) {
  47.             return;
  48.         }
  50.         $mainRequest $event->getRequest();
  52.         $this->buildLogBasedOnRequest('Access refused.'$mainRequest);
  53.     }
  55.     private function buildLogBasedOnRequest(string $messageRequest $request): void
  56.     {
  57.         $routeName $request->attributes->get('_route');
  59.         if (false === $this->isListenedRoute($routeName)) {
  60.             return;
  61.         }
  63.         $context = [
  64.             'uri' => $request->getRequestUri(),
  65.             'method' => $request->getMethod(),
  66.         ];
  68.         $relatedObjects $this->getRelatedObjectsFromRequest($request);
  69.         if (count($relatedObjects) > 0) {
  70.             $context[] = $relatedObjects;
  71.         }
  73.         $this->auditLogger->info($message$context);
  74.     }
  76.     private function isListenedRoute(string $routeName): bool
  77.     {
  78.         // Use symfony console debug:router command to get full routes list.
  79.         if (
  80.             str_starts_with($routeName'mycmcm_')
  81.             ||
  82.             str_starts_with($routeName'public_')
  83.             ||
  84.             str_starts_with($routeName'_profiler')
  85.             ||
  86.             true === in_array($routeName, [
  87.                 '_preview_error',
  88.                 '_wdt',
  89.                 'admin_dashboard',
  90.                 'company_get_api_version',
  91.                 'company_show_apidoc',
  92.                 'health_mutual_get_api_version',
  93.                 'health_mutual_show_apidoc',
  94.                 'employee_get_api_version',
  95.                 'employee_get_companies',
  96.                 'employee_get_departments',
  97.                 'employee_get_inquiry_statuses',
  98.                 'employee_get_health_insurances',
  99.                 'employee_get_health_mutuals',
  100.                 'employee_get_dossier_types',
  101.                 'employee_get_dossier_statuses',
  102.                 'employee_get_api_version',
  103.                 'employee_list_subscription_plans',
  104.                 'employee_show_apidoc',
  105.                 'employee_support_predefined_templates',
  106.             ])
  107.         ) {
  108.             return false;
  109.         }
  111.         return true;
  112.     }
  114.     private function getRelatedObjectsFromRequest(Request $request): array
  115.     {
  116.         $relatedObject array_merge($request->attributes->get('_route_params'), $request->query->all());
  118.         unset($relatedObject['schemes']);
  119.         unset($relatedObject['_locale']);
  121.         // To log information from post parameter/content - use $request->getContent()
  123.         $relatedObject array_merge($relatedObject, ['Request Content' => json_decode($request->getContent(), true)]);
  125.         return $relatedObject;
  126.     }
  127. }