vendor/pimcore/pimcore/bundles/AdminBundle/EventListener/UsageStatisticsListener.php line 64

Open in your IDE?
  1. <?php
  3. /**
  4.  * Pimcore
  5.  *
  6.  * This source file is available under two different licenses:
  7.  * - GNU General Public License version 3 (GPLv3)
  8.  * - Pimcore Commercial License (PCL)
  9.  * Full copyright and license information is available in
  10.  * LICENSE.md which is distributed with this source code.
  11.  *
  12.  *  @copyright  Copyright (c) Pimcore GmbH (http://www.pimcore.org)
  13.  *  @license    http://www.pimcore.org/license     GPLv3 and PCL
  14.  */
  16. namespace Pimcore\Bundle\AdminBundle\EventListener;
  18. use Pimcore\Bundle\AdminBundle\Security\User\TokenStorageUserResolver;
  19. use Pimcore\Bundle\CoreBundle\EventListener\Traits\PimcoreContextAwareTrait;
  20. use Pimcore\Config;
  21. use Pimcore\Http\Request\Resolver\PimcoreContextResolver;
  22. use Pimcore\Log\Simple;
  23. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  24. use Symfony\Component\HttpFoundation\Request;
  25. use Symfony\Component\HttpKernel\Event\RequestEvent;
  26. use Symfony\Component\HttpKernel\KernelEvents;
  28. /**
  29.  * @internal
  30.  */
  31. class UsageStatisticsListener implements EventSubscriberInterface
  32. {
  33.     use PimcoreContextAwareTrait;
  35.     /**
  36.      * @var TokenStorageUserResolver
  37.      */
  38.     protected $userResolver;
  40.     /**
  41.      * @var Config
  42.      */
  43.     protected $config;
  45.     /**
  46.      * @param TokenStorageUserResolver $userResolver
  47.      */
  48.     public function __construct(TokenStorageUserResolver $userResolverConfig $config)
  49.     {
  50.         $this->userResolver $userResolver;
  51.         $this->config $config;
  52.     }
  54.     /**
  55.      * {@inheritdoc}
  56.      */
  57.     public static function getSubscribedEvents()
  58.     {
  59.         return [
  60.             KernelEvents::REQUEST => 'onKernelRequest',
  61.         ];
  62.     }
  64.     public function onKernelRequest(RequestEvent $event)
  65.     {
  66.         $request $event->getRequest();
  68.         if (!$event->isMainRequest()) {
  69.             return;
  70.         }
  72.         if (!$this->matchesPimcoreContext($requestPimcoreContextResolver::CONTEXT_ADMIN)) {
  73.             return;
  74.         }
  76.         $this->logUsageStatistics($request);
  77.     }
  79.     /**
  80.      * @param Request $request
  81.      */
  82.     protected function logUsageStatistics(Request $request)
  83.     {
  84.         if (!empty($this->config['general']['disable_usage_statistics'])) {
  85.             return;
  86.         }
  88.         $params $this->getParams($request);
  89.         $user $this->userResolver->getUser();
  91.         $parts = [
  92.             $user $user->getId() : '0',
  93.             $request->attributes->get('_controller'),
  94.             $request->attributes->get('_route'),
  95.             @json_encode($request->attributes->get('_route_params')),
  96.             @json_encode($params),
  97.         ];
  99.         Simple::log('usagelog'implode('|'$parts));
  100.     }
  102.     /**
  103.      * @param Request $request
  104.      *
  105.      * @return array
  106.      */
  107.     protected function getParams(Request $request)
  108.     {
  109.         $params = [];
  110.         $disallowedKeys = ['_dc''module''controller''action''password'];
  112.         // TODO is this enough?
  113.         $requestParams array_merge(
  114.             $request->query->all(),
  115.             $request->request->all()
  116.         );
  118.         foreach ($requestParams as $key => $value) {
  119.             if (is_json($value)) {
  120.                 $value json_decode($value);
  121.                 if (is_array($value)) {
  122.                     array_walk_recursive($value, function (&$item$key) {
  123.                         if (strpos($key'pass') !== false) {
  124.                             $item '*************';
  125.                         }
  126.                     });
  127.                 }
  129.                 $value json_encode($value);
  130.             }
  132.             if (!in_array($key$disallowedKeys) && is_string($value)) {
  133.                 $params[$key] = (strlen($value) > 40) ? substr($value040) . '...' $value;
  134.             }
  135.         }
  137.         return $params;
  138.     }
  139. }