vendor/symfony/http-kernel/EventListener/SessionListener.php line 31

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Symfony package.
  5. *
  6. * (c) Fabien Potencier <fabien@symfony.com>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Component\HttpKernel\EventListener;
  14. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  15. use Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage;
  16. use Symfony\Component\HttpKernel\Event\RequestEvent;
  18. /**
  19. * Sets the session in the request.
  20. *
  21. * When the passed container contains a "session_storage" entry which
  22. * holds a NativeSessionStorage instance, the "cookie_secure" option
  23. * will be set to true whenever the current main request is secure.
  24. *
  25. * @author Fabien Potencier <fabien@symfony.com>
  26. *
  27. * @final
  28. */
  29. class SessionListener extends AbstractSessionListener
  30. {
  31. public function onKernelRequest(RequestEvent $event)
  32. {
  33. parent::onKernelRequest($event);
  35. if (!$event->isMainRequest() || (!$this->container->has('session') && !$this->container->has('session_factory'))) {
  36. return;
  37. }
  39. if ($this->container->has('session_storage')
  40. && ($storage = $this->container->get('session_storage')) instanceof NativeSessionStorage
  41. && ($mainRequest = $this->container->get('request_stack')->getMainRequest())
  42. && $mainRequest->isSecure()
  43. ) {
  44. $storage->setOptions(['cookie_secure' => true]);
  45. }
  46. }
  48. protected function getSession(): ?SessionInterface
  49. {
  50. if ($this->container->has('session')) {
  51. return $this->container->get('session');
  52. }
  54. if ($this->container->has('session_factory')) {
  55. return $this->container->get('session_factory')->createSession();
  56. }
  58. return null;
  59. }
  60. }