src/CoreBundle/EventSubscriber/AnonymousUserSubscriber.php line 89

  1. <?php
  3. /* For licensing terms, see /license.txt */
  5. declare(strict_types=1);
  7. namespace Chamilo\CoreBundle\EventSubscriber;
  9. use Chamilo\CoreBundle\Entity\TrackELogin;
  10. use Chamilo\CoreBundle\Entity\User;
  11. use Chamilo\CoreBundle\Settings\SettingsManager;
  12. use DateTime;
  13. use Doctrine\ORM\EntityManagerInterface;
  14. use Symfony\Bundle\SecurityBundle\Security;
  15. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  16. use Symfony\Component\HttpKernel\Event\RequestEvent;
  17. use Symfony\Component\HttpKernel\KernelEvents;
  19. class AnonymousUserSubscriber implements EventSubscriberInterface
  20. {
  21.     private const MAX_ANONYMOUS_USERS 5;
  23.     public function __construct(
  24.         private readonly Security $security,
  25.         private readonly EntityManagerInterface $entityManager,
  26.         private readonly SettingsManager $settingsManager
  27.     ) {}
  29.     public function onKernelRequest(RequestEvent $event): void
  30.     {
  31.         if (null !== $this->security->getUser()) {
  32.             return;
  33.         }
  35.         $request $event->getRequest();
  36.         $userIp $request->getClientIp() ?: '127.0.0.1';
  38.         $anonymousUserId $this->getOrCreateAnonymousUserId($userIp);
  39.         if (null !== $anonymousUserId) {
  40.             $trackLoginRepository $this->entityManager->getRepository(TrackELogin::class);
  42.             // Check if a login record already exists for this user and IP
  43.             $existingLogin $trackLoginRepository->findOneBy(['userIp' => $userIp'user' => $anonymousUserId]);
  44.             if (!$existingLogin) {
  45.                 // Record the access if it does not exist
  46.                 $trackLogin = new TrackELogin();
  47.                 $trackLogin->setUserIp($userIp)
  48.                     ->setLoginDate(new DateTime())
  49.                     ->setUser($this->entityManager->getReference(User::class, $anonymousUserId))
  50.                 ;
  52.                 $this->entityManager->persist($trackLogin);
  53.                 $this->entityManager->flush();
  54.             }
  56.             $userRepository $this->entityManager->getRepository(User::class);
  57.             $user $userRepository->find($anonymousUserId);
  59.             if ($user) {
  60.                 // Store user information in the session
  61.                 $userInfo = [
  62.                     'user_id' => $user->getId(),
  63.                     'username' => $user->getUsername(),
  64.                     'firstname' => $user->getFirstname(),
  65.                     'lastname' => $user->getLastname(),
  66.                     'firstName' => $user->getFirstname(),
  67.                     'lastName' => $user->getLastname(),
  68.                     'email' => $user->getEmail(),
  69.                     'official_code' => $user->getOfficialCode(),
  70.                     'picture_uri' => $user->getPictureUri(),
  71.                     'status' => $user->getStatus(),
  72.                     'active' => $user->isActive(),
  73.                     'auth_source' => $user->getAuthSource(),
  74.                     'theme' => $user->getTheme(),
  75.                     'language' => $user->getLocale(),
  76.                     'registration_date' => $user->getRegistrationDate()->format('Y-m-d H:i:s'),
  77.                     'expiration_date' => $user->getExpirationDate() ? $user->getExpirationDate()->format('Y-m-d H:i:s') : null,
  78.                     'last_login' => $user->getLastLogin() ? $user->getLastLogin()->format('Y-m-d H:i:s') : null,
  79.                     'is_anonymous' => true,
  80.                 ];
  82.                 $request->getSession()->set('_user'$userInfo);
  83.             }
  84.         }
  85.     }
  87.     public static function getSubscribedEvents(): array
  88.     {
  89.         return [
  90.             KernelEvents::REQUEST => 'onKernelRequest',
  91.         ];
  92.     }
  94.     private function getOrCreateAnonymousUserId(string $userIp): ?int
  95.     {
  96.         $userRepository $this->entityManager->getRepository(User::class);
  97.         $trackLoginRepository $this->entityManager->getRepository(TrackELogin::class);
  98.         $anonymousAutoProvisioning 'true' === $this->settingsManager->getSetting('security.anonymous_autoprovisioning');
  100.         if (!$anonymousAutoProvisioning) {
  101.             $anonymousUser $userRepository->findOneBy(['status' => User::ANONYMOUS], ['registrationDate' => 'ASC']);
  102.             if ($anonymousUser) {
  103.                 return $anonymousUser->getId();
  104.             }
  106.             return $this->createAnonymousUser()->getId();
  107.         }
  109.         $maxAnonymousUsers = (int) $this->settingsManager->getSetting('admin.max_anonymous_users');
  110.         if (=== $maxAnonymousUsers) {
  111.             $maxAnonymousUsers self::MAX_ANONYMOUS_USERS;
  112.         }
  113.         $anonymousUsers $userRepository->findBy(['status' => User::ANONYMOUS], ['registrationDate' => 'ASC']);
  115.         // Check in TrackELogin if there is an anonymous user with the same IP
  116.         foreach ($anonymousUsers as $user) {
  117.             $loginRecord $trackLoginRepository->findOneBy(['userIp' => $userIp'user' => $user]);
  118.             if ($loginRecord) {
  119.                 return $user->getId();
  120.             }
  121.         }
  123.         // Delete excess anonymous users
  124.         while (\count($anonymousUsers) >= $maxAnonymousUsers) {
  125.             $oldestAnonymousUser array_shift($anonymousUsers);
  126.             if ($oldestAnonymousUser) {
  127.                 error_log('Deleting oldest anonymous user: '.$oldestAnonymousUser->getId());
  129.                 $this->entityManager->remove($oldestAnonymousUser);
  130.                 $this->entityManager->flush();
  131.             }
  132.         }
  134.         return $this->createAnonymousUser()->getId();
  135.     }
  137.     private function createAnonymousUser(): User
  138.     {
  139.         $uniqueId uniqid('anon_');
  140.         $email $uniqueId.'@localhost.local';
  142.         if ('true' === $this->settingsManager->getSetting('profile.login_is_email')) {
  143.             $uniqueId $email;
  144.         }
  146.         $anonymousUser = (new User())
  147.             ->setSkipResourceNode(true)
  148.             ->setLastname('Joe')
  149.             ->setFirstname('Anonymous')
  150.             ->setUsername('anon_'.$uniqueId)
  151.             ->setStatus(User::ANONYMOUS)
  152.             ->setPlainPassword('anon')
  153.             ->setEmail($email)
  154.             ->setOfficialCode('anonymous')
  155.             ->setCreatorId(1)
  156.             ->addRole('ROLE_ANONYMOUS')
  157.         ;
  159.         $this->entityManager->persist($anonymousUser);
  160.         $this->entityManager->flush();
  162.         return $anonymousUser;
  163.     }
  164. }