src/EventListener/KeycloakLogoutListener.php line 43

Open in your IDE?
  1. <?php
  3. namespace App\EventListener;
  5. use App\Security\Dto\TokensBag;
  6. use App\Model\User;
  7. use App\Service\KeycloakApiService;
  8. use App\Specification\KeycloakModeUsed;
  9. use Psr\Log\LoggerInterface;
  10. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  11. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  13. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  14. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  15. use Symfony\Component\Security\Http\Event\LogoutEvent;
  17. class KeycloakLogoutListener implements EventSubscriberInterface
  18. {
  19.     private ParameterBagInterface $param;
  20.     private LoggerInterface $logger;
  21.     private KeycloakApiService $keycloakApiService;
  22.     private TokenStorageInterface $tokenStorage;
  23.     private UrlGeneratorInterface $urlGenerator;
  24.     private string|bool $vistoryRedirect;
  25.     private string $mcotPortailRedirect;
  27.     public function __construct(
  28.         UrlGeneratorInterface $urlGenerator,
  29.         TokenStorageInterface $tokenStorage,
  30.         KeycloakApiService $keycloakApiService,
  31.         LoggerInterface $logger,
  32.         ParameterBagInterface $param,
  33.     ) {
  34.         $this->urlGenerator $urlGenerator;
  35.         $this->tokenStorage $tokenStorage;
  36.         $this->keycloakApiService $keycloakApiService;
  37.         $this->logger $logger;
  38.         $this->param $param;
  39.         $this->vistoryRedirect $this->param->get('vistory_redirect');
  40.         $this->mcotPortailRedirect $this->param->get('mcot_portail_domain_name');
  41.     }
  43.     public function logoutFromOidcProvider(LogoutEvent $event): void
  44.     {
  45.         if (KeycloakModeUsed::isSatisfiedBy($this->param)) {
  46.             $token $this->tokenStorage->getToken();
  48.             $user $token->getUser();
  49.             if (!$user instanceof User) {
  50.                 return;
  51.             }
  53.             $tokens $token->getAttribute(TokensBag::class);
  54.             if (null === $tokens) {
  55.                 throw new \LogicException(sprintf('%s token attribute is empty'TokensBag::class));
  56.             }
  57.             $this->logger->info("***** Keycloak logout *****");
  58.             $this->keycloakApiService->logout($tokens->getRefreshToken());
  59.             $redirect $this->vistoryRedirect == 'true' $this->urlGenerator->generate('login') : $this->mcotPortailRedirect;
  60.             $event->setResponse(new RedirectResponse($redirect));
  61.         }
  62.     }
  64.     public static function getSubscribedEvents(): array
  65.     {
  66.         return [LogoutEvent::class => 'logoutFromOidcProvider'];
  67.     }
  68. }