vendor/shopware/core/Framework/Api/EventListener/Authentication/UserCredentialsChangedSubscriber.php line 40

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Api\EventListener\Authentication;
  5. use Doctrine\DBAL\Connection;
  6. use Shopware\Core\Defaults;
  7. use Shopware\Core\Framework\Api\OAuth\RefreshTokenRepository;
  8. use Shopware\Core\Framework\DataAbstractionLayer\Event\EntityDeletedEvent;
  9. use Shopware\Core\Framework\DataAbstractionLayer\Event\EntityWrittenEvent;
  10. use Shopware\Core\Framework\Uuid\Uuid;
  11. use Shopware\Core\System\User\UserEvents;
  12. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  14. /**
  15.  * @deprecated tag:v6.5.0 - reason:becomes-internal - EventSubscribers will become internal in v6.5.0
  16.  */
  17. class UserCredentialsChangedSubscriber implements EventSubscriberInterface
  18. {
  19.     private RefreshTokenRepository $refreshTokenRepository;
  21.     private Connection $connection;
  23.     /**
  24.      * @internal
  25.      */
  26.     public function __construct(RefreshTokenRepository $refreshTokenRepositoryConnection $connection)
  27.     {
  28.         $this->refreshTokenRepository $refreshTokenRepository;
  29.         $this->connection $connection;
  30.     }
  32.     public static function getSubscribedEvents(): array
  33.     {
  34.         return [
  35.             UserEvents::USER_WRITTEN_EVENT => 'onUserWritten',
  36.             UserEvents::USER_DELETED_EVENT => 'onUserDeleted',
  37.         ];
  38.     }
  40.     public function onUserWritten(EntityWrittenEvent $event): void
  41.     {
  42.         $payloads $event->getPayloads();
  44.         foreach ($payloads as $payload) {
  45.             if ($this->userCredentialsChanged($payload)) {
  46.                 $this->refreshTokenRepository->revokeRefreshTokensForUser($payload['id']);
  47.                 $this->updateLastUpdatedPasswordTimestamp($payload['id']);
  48.             }
  49.         }
  50.     }
  52.     public function onUserDeleted(EntityDeletedEvent $event): void
  53.     {
  54.         $ids $event->getIds();
  56.         foreach ($ids as $id) {
  57.             $this->refreshTokenRepository->revokeRefreshTokensForUser($id);
  58.         }
  59.     }
  61.     /**
  62.      * @param array<string, mixed> $payload
  63.      */
  64.     private function userCredentialsChanged(array $payload): bool
  65.     {
  66.         return isset($payload['password']);
  67.     }
  69.     private function updateLastUpdatedPasswordTimestamp(string $userId): void
  70.     {
  71.         $this->connection->update('user', [
  72.             'last_updated_password_at' => (new \DateTime())->format(Defaults::STORAGE_DATE_TIME_FORMAT),
  73.         ], [
  74.             'id' => Uuid::fromHexToBytes($userId),
  75.         ]);
  76.     }
  77. }