public function execute($filterChain)
{
$context = $this->getContext();
$session_user = $context->getUser();
$cookie_name = sfConfig::get('app_remember_key_cookie_name', 'c2corg_remember');
$cookie_value = $context->getRequest()->getCookie($cookie_name);
if ($this->isFirstCall() && !$session_user->isConnected() && !is_null($cookie_value)) {
c2cTools::log('{rememberFilter} user has a cookie, trying to auto login');
$remember_key = RememberKey::getKey($cookie_value);
if ($remember_key) {
c2cTools::log('{rememberFilter} user found from his cookie');
$user = $remember_key->getUser();
if ($user->exists()) {
$session_user->signIn($user->get('private_data')->getLoginName(), $user->get('private_data')->getPassword(), true, true);
}
// User has signed in, and is now correctly in symfony session. However, forums
// and several personnalization functions rely on cookies, that will be sent with the request,
// but are not yet 'available' from javascript if the value expired from previous sessions (they will be on next page)
// easiest solution is to force the browser to reload the current page
// we only do this for GET requests
$request = $this->getContext()->getRequest();
if ($request->getMethod() == sfRequest::GET) {
// symfony 1.0 getUriPrefix is not working well with https on haproxy
// it then tries to redirect to https://site.org:80, which is wrong
$proto = $request->isSecure() ? 'https' : 'http';
$request_uri = $proto . '://' . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
$this->getContext()->getController()->redirect($request_uri);
exit;
}
} else {
// delete cookie value in client so that no more requests are made to the db
sfContext::getInstance()->getResponse()->setCookie($cookie_name, '');
// log this
c2cTools::log('{rememberFilter} user has unknown remember key!');
c2cActions::statsdIncrement('bad_remember_cookie', 'symfony.' . sfConfig::get('sf_environment') . '.users.');
}
}
$filterChain->execute();
}
