vendor/shopware/core/Framework/Api/EventListener/Authentication/UserCredentialsChangedSubscriber.php line 54

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Api\EventListener\Authentication;
  5. use Doctrine\DBAL\Connection;
  6. use Shopware\Core\Defaults;
  7. use Shopware\Core\Framework\Api\OAuth\RefreshTokenRepository;
  8. use Shopware\Core\Framework\DataAbstractionLayer\Event\EntityDeletedEvent;
  9. use Shopware\Core\Framework\DataAbstractionLayer\Event\EntityWrittenEvent;
  10. use Shopware\Core\Framework\Log\Package;
  11. use Shopware\Core\Framework\Uuid\Uuid;
  12. use Shopware\Core\System\User\UserEvents;
  13. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. /**
  16.  * @deprecated tag:v6.5.0 - reason:becomes-internal - EventSubscribers will become internal in v6.5.0
  17.  */
  18. #[Package('system-settings')]
  19. class UserCredentialsChangedSubscriber implements EventSubscriberInterface
  20. {
  21.     private RefreshTokenRepository $refreshTokenRepository;
  23.     private Connection $connection;
  25.     /**
  26.      * @internal
  27.      */
  28.     public function __construct(RefreshTokenRepository $refreshTokenRepositoryConnection $connection)
  29.     {
  30.         $this->refreshTokenRepository $refreshTokenRepository;
  31.         $this->connection $connection;
  32.     }
  34.     public static function getSubscribedEvents(): array
  35.     {
  36.         return [
  37.             UserEvents::USER_WRITTEN_EVENT => 'onUserWritten',
  38.             UserEvents::USER_DELETED_EVENT => 'onUserDeleted',
  39.         ];
  40.     }
  42.     public function onUserWritten(EntityWrittenEvent $event): void
  43.     {
  44.         $payloads $event->getPayloads();
  46.         foreach ($payloads as $payload) {
  47.             if ($this->userCredentialsChanged($payload)) {
  48.                 $this->refreshTokenRepository->revokeRefreshTokensForUser($payload['id']);
  49.                 $this->updateLastUpdatedPasswordTimestamp($payload['id']);
  50.             }
  51.         }
  52.     }
  54.     public function onUserDeleted(EntityDeletedEvent $event): void
  55.     {
  56.         $ids $event->getIds();
  58.         foreach ($ids as $id) {
  59.             $this->refreshTokenRepository->revokeRefreshTokensForUser($id);
  60.         }
  61.     }
  63.     /**
  64.      * @param array<string, mixed> $payload
  65.      */
  66.     private function userCredentialsChanged(array $payload): bool
  67.     {
  68.         return isset($payload['password']);
  69.     }
  71.     private function updateLastUpdatedPasswordTimestamp(string $userId): void
  72.     {
  73.         $this->connection->update('user', [
  74.             'last_updated_password_at' => (new \DateTime())->format(Defaults::STORAGE_DATE_TIME_FORMAT),
  75.         ], [
  76.             'id' => Uuid::fromHexToBytes($userId),
  77.         ]);
  78.     }
  79. }