From f5baeaa06c44483886a017ea03932f9f6475505e Mon Sep 17 00:00:00 2001 From: Mat Date: Tue, 16 Oct 2018 09:56:36 +0200 Subject: [PATCH] init PrivacyEvent logger service --- Controller/PersonController.php | 19 ++- DependencyInjection/ChillPersonExtension.php | 1 + Privacy/PrivacyEvent.php | 117 +++++++++++++++++++ Privacy/PrivacyEventSubscriber.php | 99 ++++++++++++++++ Resources/config/services/controller.yml | 1 + Resources/config/services/privacyEvent.yml | 7 ++ 6 files changed, 241 insertions(+), 3 deletions(-) create mode 100644 Privacy/PrivacyEvent.php create mode 100644 Privacy/PrivacyEventSubscriber.php create mode 100644 Resources/config/services/privacyEvent.yml diff --git a/Controller/PersonController.php b/Controller/PersonController.php index 1ab1f5fa1..d89b55a75 100644 --- a/Controller/PersonController.php +++ b/Controller/PersonController.php @@ -22,10 +22,12 @@ namespace Chill\PersonBundle\Controller; +use Chill\PersonBundle\Privacy\PrivacyEvent; use Symfony\Bundle\FrameworkBundle\Controller\Controller; use Chill\PersonBundle\Entity\Person; use Chill\PersonBundle\Form\PersonType; use Chill\PersonBundle\Form\CreationPersonType; +use Symfony\Component\EventDispatcher\EventDispatcherInterface; use Symfony\Component\HttpFoundation\Request; use Symfony\Component\HttpFoundation\Response; use Symfony\Component\Security\Core\Role\Role; @@ -48,12 +50,20 @@ class PersonController extends Controller */ protected $translator; + + /** + * @var EventDispatcherInterface + */ + protected $eventDispatcher; + public function __construct( SimilarPersonMatcher $similarPersonMatcher, - TranslatorInterface $translator + TranslatorInterface $translator, + EventDispatcherInterface $eventDispatcher ) { $this->similarPersonMatcher = $similarPersonMatcher; $this->translator = $translator; + $this->eventDispatcher = $eventDispatcher; } public function getCFGroup() @@ -79,10 +89,13 @@ class PersonController extends Controller throw $this->createNotFoundException("Person with id $person_id not" . " found on this server"); } - + $this->denyAccessUnlessGranted('CHILL_PERSON_SEE', $person, "You are not allowed to see this person."); - + + $event = new PrivacyEvent($person); + $this->eventDispatcher->dispatch(PrivacyEvent::PERSON_PRIVACY_EVENT, $event); + return $this->render('ChillPersonBundle:Person:view.html.twig', array("person" => $person, "cFGroup" => $this->getCFGroup())); diff --git a/DependencyInjection/ChillPersonExtension.php b/DependencyInjection/ChillPersonExtension.php index b1fb57099..c6aa90d9d 100644 --- a/DependencyInjection/ChillPersonExtension.php +++ b/DependencyInjection/ChillPersonExtension.php @@ -62,6 +62,7 @@ class ChillPersonExtension extends Extension implements PrependExtensionInterfac $loader->load('services/controller.yml'); $loader->load('services/search.yml'); $loader->load('services/menu.yml'); + $loader->load('services/privacyEvent.yml'); } private function handlePersonFieldsParameters(ContainerBuilder $container, $config) diff --git a/Privacy/PrivacyEvent.php b/Privacy/PrivacyEvent.php new file mode 100644 index 000000000..2940de3bd --- /dev/null +++ b/Privacy/PrivacyEvent.php @@ -0,0 +1,117 @@ +, + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU Affero General Public License as + * published by the Free Software Foundation, either version 3 of the + * License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Affero General Public License for more details. + * + * You should have received a copy of the GNU Affero General Public License + * along with this program. If not, see . + */ + +use Symfony\Component\EventDispatcher\Event; +use Chill\PersonBundle\Entity\Person; + +class PrivacyEvent extends Event +{ + const PERSON_PRIVACY_EVENT = 'chill_person.privacy_event'; + + /** + * @var Person + */ + private $person; + + /** + * @var Object + */ + private $element; + + /** + * @var array + */ + private $args; + + /** + * @var array + */ + private $persons; + + /** + * PrivacyEvent constructor. + * + * @param Person $person + * @param object $element + * @param array $args + */ + public function __construct(Person $person, object $element = null, array $args) + { + $this->person = $person; + $this->element = $element; + $this->args = $args; + $this->persons = array(); + } + + /** + * @return Person + */ + public function getPerson() + { + return $this->person; + } + + /** + * @param Person $person + */ + public function addPerson(Person $person) + { + $this->persons[] = $person; + + return $this; + } + + /** + * @return array $persons + */ + public function getPersons() + { + return $this->persons; + } + + /** + * @return bool + */ + public function hasPersons() + { + return (count($this->persons) >= 1 ? true : false); + } + + /** + * @return Object + */ + public function getElement() + { + return $this->element; + } + + /** + * @return array + */ + public function getArgs() + { + return $this->args; + } + +} \ No newline at end of file diff --git a/Privacy/PrivacyEventSubscriber.php b/Privacy/PrivacyEventSubscriber.php new file mode 100644 index 000000000..0b83c42ef --- /dev/null +++ b/Privacy/PrivacyEventSubscriber.php @@ -0,0 +1,99 @@ +, + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU Affero General Public License as + * published by the Free Software Foundation, either version 3 of the + * License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Affero General Public License for more details. + * + * You should have received a copy of the GNU Affero General Public License + * along with this program. If not, see . + */ + +use Psr\Log\LoggerInterface; +use Symfony\Component\EventDispatcher\EventSubscriberInterface; +use Symfony\Component\HttpKernel\Event\GetResponseForExceptionEvent; +use Symfony\Component\HttpKernel\KernelEvents; +use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface; + +class PrivacyEventSubscriber implements EventSubscriberInterface +{ + + /** + * @var LoggerInterface + */ + protected $logger; + + /** + * @var TokenStorageInterface + */ + protected $token; + + /** + * PrivacyEventSubscriber constructor. + * + * @param LoggerInterface $logger + */ + public function __construct(LoggerInterface $logger, TokenStorageInterface $token) + { + $this->logger = $logger; + $this->token = $token; + } + + public static function getSubscribedEvents() + { + return array(PrivacyEvent::PERSON_PRIVACY_EVENT => array( + array('onPrivacyEvent') + )); + } + + public function onPrivacyEvent(PrivacyEvent $event) + { + $persons = array(); + + if ($event->hasPersons() === true) { + foreach ($event->getPersons() as $person) { + $persons[] = $person->getId(); + } + } + + $this->logger->notice("[Privacy Event] A Person Folder has been viewed", array( + 'by_user' => $this->token->getToken()->getUser()->getUsername(), + 'by_user_id' => $this->token->getToken()->getUser()->getId(), + 'person_id' => $event->getPerson()->getId(), + 'persons' => $persons, + 'element_class' => $event->getArgs()['element_class'], + 'element_id' => intval($event->getArgs()['element_id']), + 'action' => $event->getArgs()['action'] + )); + + dump($event); + } + + public function processException(GetResponseForExceptionEvent $event) + { + // ... + } + + public function logException(GetResponseForExceptionEvent $event) + { + // ... + } + + public function notifyException(GetResponseForExceptionEvent $event) + { + // ... + } +} \ No newline at end of file diff --git a/Resources/config/services/controller.yml b/Resources/config/services/controller.yml index d47ab2cbd..d4e232476 100644 --- a/Resources/config/services/controller.yml +++ b/Resources/config/services/controller.yml @@ -3,4 +3,5 @@ services: arguments: $similarPersonMatcher: '@Chill\PersonBundle\Search\SimilarPersonMatcher' $translator: '@Symfony\Component\Translation\TranslatorInterface' + $eventDispatcher: '@Symfony\Component\EventDispatcher\EventDispatcherInterface' tags: ['controller.service_arguments'] diff --git a/Resources/config/services/privacyEvent.yml b/Resources/config/services/privacyEvent.yml new file mode 100644 index 000000000..780601d9d --- /dev/null +++ b/Resources/config/services/privacyEvent.yml @@ -0,0 +1,7 @@ +services: + Chill\PersonBundle\Privacy\PrivacyEventSubscriber: + arguments: + $logger: '@chill.main.logger' + $token: '@Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface' + tags: + - { name: kernel.event_subscriber }