islandora/src/EventSubscriber/StompHeaderEventSubscriber.php

<?php

namespace Drupal\islandora\EventSubscriber;

use Drupal\islandora\Event\StompHeaderEventInterface;
use Drupal\jwt\Authentication\Provider\JwtAuth;

use Drupal\Core\StringTranslation\StringTranslationTrait;

use Symfony\Component\EventDispatcher\EventSubscriberInterface;

/**
 * Base STOMP header listener.
 */
class StompHeaderEventSubscriber implements EventSubscriberInterface {

  use StringTranslationTrait;

  /**
   * The JWT auth service.
   *
   * @var \Drupal\jwt\Authentication\Provider\JwtAuth
   */
  protected $auth;

  /**
   * Constructor.
   */
  public function __construct(
    JwtAuth $auth
  ) {
    $this->auth = $auth;
  }

  /**
   * {@inheritdoc}
   */
  public static function getSubscribedEvents() {
    return [
      StompHeaderEventInterface::EVENT_NAME => ['baseAuth', -100],
    ];
  }

  /**
   * Event callback; generate and add base authorization header if none is set.
   */
  public function baseAuth(StompHeaderEventInterface $stomp_event) {
    $headers = $stomp_event->getHeaders();
    if (!$headers->has('Authorization')) {
      $token = $this->auth->generateToken();
      if (empty($token)) {
        // JWT does not seem to be properly configured.
        // phpcs:ignore DrupalPractice.General.ExceptionT.ExceptionT
        throw new StompHeaderEventException($this->t('Error getting JWT token for message. Check JWT Configuration.'));
      }
      else {
        $headers->set('Authorization', "Bearer $token");
      }
    }

  }

}
Event-based STOMP header generation (#839) * More flexible headers for STOMP messages, theoretically. * Lower the priority of the base implementation. * More context. * Add in the "aud" claim. ... ensure we're dealing with our tokens. * Rectify the other base class. * Remove some chaff intro'd from merge conflicts. * Return after failing to find the "aud" claim. * Permissively allow without the "aud" claim... ... _could_ roll more conditionally, with some state set during an update hook; however, seems like unnecessary complexity. * Couple of coding standards things. * Add the use of the class back in. 3 years ago			`<?php`

			`namespace Drupal\islandora\EventSubscriber;`

			`use Drupal\islandora\Event\StompHeaderEventInterface;`
			`use Drupal\jwt\Authentication\Provider\JwtAuth;`

			`use Drupal\Core\StringTranslation\StringTranslationTrait;`

			`use Symfony\Component\EventDispatcher\EventSubscriberInterface;`

			`/**`
			`* Base STOMP header listener.`
			`*/`
			`class StompHeaderEventSubscriber implements EventSubscriberInterface {`

			`use StringTranslationTrait;`

			`/**`
			`* The JWT auth service.`
			`*`
			`* @var \Drupal\jwt\Authentication\Provider\JwtAuth`
			`*/`
			`protected $auth;`

			`/**`
			`* Constructor.`
			`*/`
			`public function __construct(`
			`JwtAuth $auth`
			`) {`
			`$this->auth = $auth;`
			`}`

			`/**`
			`* {@inheritdoc}`
			`*/`
			`public static function getSubscribedEvents() {`
			`return [`
			`StompHeaderEventInterface::EVENT_NAME => ['baseAuth', -100],`
			`];`
			`}`

			`/**`
			`* Event callback; generate and add base authorization header if none is set.`
			`*/`
			`public function baseAuth(StompHeaderEventInterface $stomp_event) {`
			`$headers = $stomp_event->getHeaders();`
			`if (!$headers->has('Authorization')) {`
			`$token = $this->auth->generateToken();`
			`if (empty($token)) {`
			`// JWT does not seem to be properly configured.`
			`// phpcs:ignore DrupalPractice.General.ExceptionT.ExceptionT`
			`throw new StompHeaderEventException($this->t('Error getting JWT token for message. Check JWT Configuration.'));`
			`}`
			`else {`
			`$headers->set('Authorization', "Bearer $token");`
			`}`
			`}`

			`}`

			`}`