| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748 |
- <?php
- /**
- * Copyright © Magento, Inc. All rights reserved.
- * See COPYING.txt for license details.
- */
- namespace Magento\Integration\Plugin\Model;
- use Magento\Integration\Model\AdminTokenService;
- /**
- * Plugin to delete admin tokens when admin becomes inactive
- */
- class AdminUser
- {
- /**
- * @var AdminTokenService
- */
- private $adminTokenService;
- /**
- * @param AdminTokenService $adminTokenService
- */
- public function __construct(
- AdminTokenService $adminTokenService
- ) {
- $this->adminTokenService = $adminTokenService;
- }
- /**
- * Check if admin is inactive - if so, invalidate their tokens
- *
- * @param \Magento\User\Model\User $subject
- * @param \Magento\Framework\DataObject $object
- * @return \Magento\User\Model\User
- * @throws \Magento\Framework\Exception\LocalizedException
- */
- public function afterSave(
- \Magento\User\Model\User $subject,
- \Magento\Framework\DataObject $object
- ): \Magento\User\Model\User {
- $isActive = $object->getIsActive();
- if ($isActive !== null && $isActive == 0) {
- $this->adminTokenService->revokeAdminAccessToken($object->getId());
- }
- return $subject;
- }
- }
|
