Module.php

<?php

namespace deck\MockRequest;

use deck\MockRequest\models\Request;
use Yii;
use yii\base\Action;
use yii\base\BootstrapInterface;
use yii\caching\TagDependency;
use yii\helpers\IpHelper;
use yii\web\Application;
use yii\web\ForbiddenHttpException;
use yii\web\UrlRule;

class Module extends \yii\base\Module implements BootstrapInterface
{

    public $urlRuleClass = 'yii\web\UrlRule';

    public $layout = 'main.php';
    public $allowedIPs = ['127.0.0.1', '::1'];
    public $allowedHosts = [];
    public $checkAccessCallback;

    public $controllerNamespace = 'deck\MockRequest\controllers';

    /**
     * @param Application $app
     * @return void
     */
    public function bootstrap($app)
    {
        $routes = [];
        /** @var Request[] $requests */
        $requests = Yii::$app->cache->getOrSet('mock-requests', function () {
            return Request::find()->with(['method'])->where(['is_enabled' => true])->all();
        }, 3600, new TagDependency(['tags' => 'mock-request']));
        foreach ($requests as $request) {
            $routes[] = ['class' => UrlRule::class, 'pattern' => sprintf('%s', $request->url), 'route' => sprintf('%s/default/mock', $this->id), 'defaults' => ['id' => $request->id], 'verb' => $request->method->name];
        }
        $app->urlManager->addRules($routes, false);

        $app->getUrlManager()->addRules([
            [
                'class' => $this->urlRuleClass,
                'route' => $this->getUniqueId(),
                'pattern' => $this->getUniqueId(),
                'normalizer' => false,
                'suffix' => false
            ],
            [
                'class' => $this->urlRuleClass,
                'route' => $this->getUniqueId() . '/<controller>/<action>',
                'pattern' => $this->getUniqueId() . '/<controller:[\w\-]+>/<action:[\w\-]+>',
                'normalizer' => false,
                'suffix' => false
            ]
        ], false);
    }

    /**
     * @param $action
     * @return bool
     * @throws ForbiddenHttpException
     */
    public function beforeAction($action): bool
    {
        if (!parent::beforeAction($action)) {
            return false;
        }

        if (!$this->checkAccess($action)) {
            throw new ForbiddenHttpException('You are not allowed to access this page.');
        }
        return true;
    }

    protected function checkAccess(Action $action = null): bool
    {
        $allowed = $action->controller->id === 'default' && $action->id === 'mock';
        $ip = Yii::$app->getRequest()->getUserIP();
        foreach ($this->allowedIPs as $filter) {
            if ($filter === '*'
                || $filter === $ip
                || (
                    ($pos = strpos($filter, '*')) !== false
                    && !strncmp($ip, $filter, $pos)
                )
                || (
                    strpos($filter, '/') !== false
                    && IpHelper::inRange($ip, $filter)
                )
            ) {
                $allowed = true;
                break;
            }
        }

        if ($allowed === false) {
            foreach ($this->allowedHosts as $hostname) {
                $filter = gethostbyname($hostname);
                if ($filter === $ip) {
                    $allowed = true;
                    break;
                }
            }
        }

        if ($allowed === false) {
            return false;
        }

        if ($this->checkAccessCallback !== null && call_user_func($this->checkAccessCallback, $action) !== true) {

            return false;
        }

        return true;
    }
}