Added listeners for authentication and data validation

Author: fpapadopou

Symfony/app/config/config.yml

@@ -3,8 +3,6 @@ imports:
     - { resource: security.yml }
 
 framework:
-    #esi:             ~
-    #translator:      { fallback: "%locale%" }
     secret:          "%secret%"
     router:
         resource: "%kernel.root_dir%/config/routing.yml"
@@ -14,13 +12,24 @@ framework:
     validation:      { enable_annotations: true }
     templating:
         engines: ['twig']
-        #assets_version: SomeVersionScheme
     default_locale:  "%locale%"
     trusted_proxies: ~
     session:         ~
     fragments:       ~
     http_method_override: true
 
+# Services configuration
+services:
+    kernel.listener.auth_listener:
+        class: Codebender\BuilderBundle\EventListener\AuthListener
+        tags:
+            - { name: kernel.event_listener, event: kernel.request, method: onKernelRequest, priority: 1 }
+        arguments: [ "%authorizationKey%", "%version%" ]
+    kernel.listener.data_validation_listener:
+        class: Codebender\BuilderBundle\EventListener\DataValidationListener
+        tags:
+            - { name: kernel.event_listener, event: kernel.request, method: onKernelRequest, priority: 0 }
+
 # Twig Configuration
 twig:
     debug:            "%kernel.debug%"

Symfony/src/Codebender/BuilderBundle/EventListener/AuthListener.php

@@ -0,0 +1,40 @@
+<?php
+
+namespace Codebender\BuilderBundle\EventListener;
+
+use Symfony\Component\HttpKernel\Event\GetResponseEvent;
+use Symfony\Component\HttpFoundation\JsonResponse;
+
+class AuthListener
+{
+    protected $authorizationKey;
+
+    protected $apiVersion;
+
+    public function __construct($authorizationKey, $apiVersion)
+    {
+        $this->authorizationKey = $authorizationKey;
+        $this->apiVersion = $apiVersion;
+    }
+
+    public function onKernelRequest(GetResponseEvent $event)
+    {
+        $request = $event->getRequest();
+        // don't execute on status action
+        if ($request->get('_route') == 'CodebenderBuilderBundle_status_check') {
+            return;
+        }
+        $providedAuthKey = $request->attributes->get('authKey');
+        $providedApiVersion = $request->attributes->get('version');
+
+        if ($providedAuthKey !== $this->authorizationKey) {
+            $event->setResponse(new JsonResponse(['success' => false, 'message' => 'Invalid authorization key.']));
+            return;
+        }
+
+        if ($providedApiVersion !== $this->apiVersion) {
+            $event->setResponse(new JsonResponse(['success' => false, 'message' => 'Invalid api version.']));
+            return;
+        }
+    }
+}

Symfony/src/Codebender/BuilderBundle/EventListener/DataValidationListener.php

@@ -0,0 +1,22 @@
+<?php
+
+namespace Codebender\BuilderBundle\EventListener;
+
+use Symfony\Component\HttpKernel\Event\GetResponseEvent;
+use Symfony\Component\HttpFoundation\JsonResponse;
+
+class DataValidationListener
+{
+    public function onKernelRequest(GetResponseEvent $event)
+    {
+        $request = $event->getRequest();
+        // don't execute on status action
+        if ($request->get('_route') == 'CodebenderBuilderBundle_status_check') {
+            return;
+        }
+        $requestContent = json_decode($request->getContent(), true);
+        if ($requestContent === null || json_last_error() != JSON_ERROR_NONE) {
+            $event->setResponse(new JsonResponse(['success' => false, 'message' => 'Invalid input.']));
+        }
+    }
+}