src/InsuranceCompany/Bulins/SOAP/Subscriber/CredentialMaskingSubscriber.php line 20

Open in your IDE?
  1. <?php
  3. namespace App\InsuranceCompany\Bulins\SOAP\Subscriber;
  5. use App\SoapClient\Event\ResponseEvent as CustomResponseEvent;
  6. use Soap\Engine\HttpBinding\SoapResponse;
  7. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  9. class CredentialMaskingSubscriber implements EventSubscriberInterface
  10. {
  11.     public function __construct(
  12.         private readonly bool $isDebug,
  13.     )
  14.     {
  15.     }
  17.     /**
  18.      * @param CustomResponseEvent $event
  19.      */
  20.     public function onEngineResponse(CustomResponseEvent $event)
  21.     {
  22.         if ($this->isDebug) {
  23.             return;
  24.         }
  26.         // Bulins send back the plaintext credentials if they are incorrect. Hide them in prod exceptions.
  27.         $response $event->getResponse();
  28.         $payload $response->getPayload();
  30.         if (str_contains($payload'System.Security.SecurityException: Невалидни име/парола: ')) {
  31.             $newPayload preg_replace_callback(
  32.                 '%Невалидни име/парола(.*)\n%',
  33.                 static fn(array $matches): string => str_replace($matches[1], ''$matches[0]),
  34.                 $payload,
  35.             );
  36.             $newResponse = new SoapResponse($newPayload);
  37.             $event->setResponse($newResponse);
  38.         }
  39.     }
  41.     /**
  42.      * @return string[]
  43.      * @noinspection PhpArrayShapeAttributeCanBeAddedInspection
  44.      */
  45.     public static function getSubscribedEvents(): array
  46.     {
  47.         return [
  48.             CustomResponseEvent::class => 'onEngineResponse',
  49.         ];
  50.     }
  51. }