app/Plugin/AccessRateLimiter42/Event.php line 36

Open in your IDE?
  1. <?php
  3. namespace Plugin\AccessRateLimiter42;
  5. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  6. use Symfony\Component\HttpKernel\Event\RequestEvent;
  7. use Symfony\Component\HttpKernel\KernelEvents;
  8. use Symfony\Component\HttpFoundation\Response;
  9. use Plugin\AccessRateLimiter42\Service\RateLimiterService;
  10. use Eccube\Event\TemplateEvent;
  11. use Symfony\Component\HttpFoundation\RequestStack;
  13. class Event implements EventSubscriberInterface{
  14.     /** @var RateLimiterService */
  15.     private $rateLimiterService;
  16.     /** @var RequestStack */
  17.     private $requestStack;
  19.     public function __construct(
  20.         RateLimiterService $rateLimiterService,
  21.         RequestStack $requestStack
  22.     ){
  23.         $this->rateLimiterService $rateLimiterService;
  24.         $this->requestStack $requestStack;
  25.     }
  27.     public static function getSubscribedEvents(){
  28.         return [
  29.             KernelEvents::REQUEST   => ['onKernelRequest'1024],
  30.             'index.twig'            => 'onRender',
  31.             'default_frame.twig'    => 'onRender',
  32.             'error.twig'            => 'onRender',
  33.         ];
  34.     }
  36.     public function onKernelRequest(RequestEvent $event){
  37.         if (!$event->isMainRequest()) {
  38.             return;
  39.         }
  41.         $request $event->getRequest();
  43.         $path $request->getPathInfo();
  44.         $adminRouteDir $request->server->get('ECCUBE_ADMIN_ROUTE');
  45.         if(strpos($path$adminRouteDir) !== false){
  46.             return;
  47.         }
  49.         $ip $this->getClientIp($request);
  51.         if ($this->rateLimiterService->checkRateLimit($ip)) {
  52.             $this->rateLimiterService->recordAccess($ip);
  54.             $this->rateLimiterService->recordBlockedIp($ip);
  56.             $template $this->rateLimiterService->getBlockTemplate();
  58.             $response = new Response(
  59.                 $template,
  60.                 429,
  61.                 ['Content-Type' => 'text/html; charset=UTF-8']
  62.             );
  63.             
  64.             $event->setResponse($response);
  65.             return;
  66.         }
  67.     }
  69.     public function onRender(TemplateEvent $event){
  70.         $request $this->requestStack->getCurrentRequest();
  71.         $ip $this->getClientIp($request);
  72.         $this->rateLimiterService->recordAccess($ip);
  73.         $this->rateLimiterService->cleanupOldLogs();
  74.     }
  76.     /**
  77.      * クライアントIPアドレス取得
  78.      */
  79.     private function getClientIp($request){
  80.         $ip $request->getClientIp();
  81.         
  82.         if ($request->headers->has('X-Forwarded-For')) {
  83.             $ips explode(','$request->headers->get('X-Forwarded-For'));
  84.             $ip trim($ips[0]);
  85.         }
  86.         
  87.         return $ip;
  88.     }
  90. }