<?php declare(strict_types=1);namespace App\StartPlatz\Bundle\UserBundle\EventSubscriber;use App\StartPlatz\Bundle\UserBundle\Entity\User;use Symfony\Component\EventDispatcher\EventSubscriberInterface;use Symfony\Component\HttpFoundation\RedirectResponse;use Symfony\Component\HttpKernel\Event\RequestEvent;use Symfony\Component\HttpKernel\KernelEvents;use Symfony\Component\Routing\RouterInterface;use Symfony\Component\Security\Core\Security;class ForcePasswordResetSubscriber implements EventSubscriberInterface{ private const ALLOWED_ROUTES = [ 'password_reset_set', 'password_reset_submit', 'logout', '_wdt', '_profiler', ]; public function __construct( private readonly Security $security, private readonly RouterInterface $router, ) { } public static function getSubscribedEvents(): array { return [ KernelEvents::REQUEST => ['onKernelRequest', -1], ]; } public function onKernelRequest(RequestEvent $event): void { if (!$event->isMainRequest()) { return; } $user = $this->security->getUser(); if (!$user instanceof User || !$user->getMustResetPassword()) { return; } $route = $event->getRequest()->attributes->get('_route'); if (in_array($route, self::ALLOWED_ROUTES, true)) { return; } $event->getRequest()->getSession()->getFlashBag()->add( 'notice', 'Aus Sicherheitsgründen musst du ein neues Passwort setzen.' ); $url = $this->router->generate('password_reset_set'); $event->setResponse(new RedirectResponse($url)); }}