custom/plugins/SwagPlatformSecurity/src/SwagPlatformSecurity.php line 22

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Swag\Security;
  5. use Shopware\Core\Framework\Plugin;
  6. use Shopware\Core\Framework\Plugin\Context\InstallContext;
  7. use Shopware\Core\Framework\Plugin\Context\UpdateContext;
  8. use Shopware\Core\Kernel;
  9. use Swag\Security\Components\RemoveDisabledServicesCompilerPass;
  10. use Swag\Security\DependencyInjection\Configuration;
  11. use Swag\Security\DependencyInjection\FrameworkExtension;
  12. use Swag\Security\Components\State;
  13. use Swag\Security\Components\UpdateHtaccess;
  14. use Symfony\Component\Config\FileLocator;
  15. use Symfony\Component\DependencyInjection\ContainerBuilder;
  16. use Symfony\Component\DependencyInjection\Extension\ExtensionInterface;
  17. use Symfony\Component\DependencyInjection\Loader\PhpFileLoader;
  19. require_once __DIR__ '/Fixes/NEXT15858/init.php';
  20. require_once __DIR__ '/Fixes/NEXT21077/init.php';
  22. class SwagPlatformSecurity extends Plugin
  23. {
  24.     public const PLUGIN_NAME 'SwagPlatformSecurity';
  26.     public function build(ContainerBuilder $container): void
  27.     {
  28.         $loader = new PhpFileLoader($container, new FileLocator([__DIR__ '/Resources/config']));
  29.         $loader->load('services.php');
  31.         $this->fetchPluginConfig($container);
  32.         $container->addCompilerPass(new RemoveDisabledServicesCompilerPass());
  33.     }
  35.     public function boot(): void
  36.     {
  37.         parent::boot();
  39.         foreach ($this->container->getParameter('SwagPlatformSecurity.activeFixes') as $securityFix) {
  40.             $securityFix::boot($this->container);
  41.         }
  42.     }
  44.     public function getContainerExtension(): ?ExtensionInterface
  45.     {
  46.         // Decide if we should override the Shopware config because we have a missing configuration
  47.         $shouldOverrideShopwareConfig = !Configuration::hasSearchSection();
  49.         if ($shouldOverrideShopwareConfig) {
  50.             return new FrameworkExtension();
  51.         }
  53.         return null;
  54.     }
  56.     public function install(InstallContext $installContext): void
  57.     {
  58.         $this->copyHtaccess();
  59.     }
  61.     public function update(UpdateContext $updateContext): void
  62.     {
  63.         $this->copyHtaccess();
  64.     }
  66.     private function fetchPluginConfig(ContainerBuilder $container): void
  67.     {
  68.         try {
  69.             $qb Kernel::getConnection()->createQueryBuilder();
  71.             $config $qb
  72.                 ->select(['ticket''active'])
  73.                 ->from('swag_security_config''config')
  74.                 ->execute()
  75.                 ->fetchAll(\PDO::FETCH_KEY_PAIR);
  77.         } catch (\Throwable $e) {
  78.             $config = [];
  79.         }
  81.         foreach ($config as &$item) {
  82.             $item = (bool) $item;
  83.         }
  84.         unset($item);
  86.         $shopwareVersion $_SERVER['SHOPWARE_FAKE_VERSION'] ?? $container->getParameter('kernel.shopware_version');
  87.         $availableFixes = [];
  88.         $activeFixes = [];
  90.         foreach (State::KNOWN_ISSUES as $knownIssue) {
  91.             if (!$knownIssue::isValidForVersion($shopwareVersion)) {
  92.                 continue;
  93.             }
  95.             $availableFixes[] = $knownIssue;
  97.             if (array_key_exists($knownIssue::getTicket(), $config) && !$config[$knownIssue::getTicket()]) {
  98.                 continue;
  99.             }
  101.             $knownIssue::buildContainer($container);
  103.             $activeFixes[] = $knownIssue;
  104.         }
  106.         $container->setParameter('SwagPlatformSecurity.activeFixes'$activeFixes);
  107.         $container->setParameter('SwagPlatformSecurity.availableFixes'$availableFixes);
  108.     }
  110.     private function copyHtaccess(): void
  111.     {
  112.         $projectDirHtaccess $this->container->getParameter('kernel.project_dir'). '/.htaccess';
  114.         copy(__DIR__ '/../root_htaccess.dist'$projectDirHtaccess);
  116.         $knownFolders = [
  117.             $this->container->getParameter('kernel.project_dir'). '/bin',
  118.             $this->container->getParameter('kernel.project_dir'). '/config',
  119.             $this->container->getParameter('kernel.project_dir'). '/custom',
  120.             $this->container->getParameter('kernel.project_dir'). '/files',
  121.             $this->container->getParameter('kernel.project_dir'). '/src',
  122.             $this->container->getParameter('kernel.project_dir'). '/var',
  123.             $this->container->getParameter('kernel.project_dir'). '/vendor',
  124.         ];
  126.         foreach ($knownFolders as $knownFolder) {
  127.             if (file_exists($knownFolder)) {
  128.                 copy(__DIR__ '/../block_directory_access_htaccess.dist'$knownFolder '/.htaccess');
  129.             }
  130.         }
  132.         $shopwareVersion $_SERVER['SHOPWARE_FAKE_VERSION'] ?? $this->container->getParameter('kernel.shopware_version');
  133.         $updateService = new UpdateHtaccess();
  135.         // Only update the .htaccess if we are on a older shopware version
  136.         if (version_compare($shopwareVersion$updateService->getMaxVersion(), '<')) {
  137.             $publicHtaccess $this->container->getParameter('kernel.project_dir'). '/public/.htaccess';
  138.             $updateService->updateHtaccess($publicHtaccess__DIR__ '/../current_public_htaccess.dist');
  139.         }
  140.     }
  141. }