custom/plugins/SwagPlatformSecurity/src/SwagPlatformSecurity.php line 19

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Swag\Security;
  5. use Shopware\Core\Framework\Plugin;
  6. use Shopware\Core\Framework\Plugin\Context\InstallContext;
  7. use Shopware\Core\Framework\Plugin\Context\UpdateContext;
  8. use Shopware\Core\Kernel;
  9. use Swag\Security\Components\RemoveDisabledServicesCompilerPass;
  10. use Swag\Security\Components\State;
  11. use Swag\Security\Components\UpdateHtaccess;
  12. use Symfony\Component\Config\FileLocator;
  13. use Symfony\Component\DependencyInjection\ContainerBuilder;
  14. use Symfony\Component\DependencyInjection\Loader\PhpFileLoader;
  16. require_once __DIR__ '/Fixes/NEXT15858/init.php';
  17. require_once __DIR__ '/Fixes/NEXT21077/init.php';
  19. class SwagPlatformSecurity extends Plugin
  20. {
  21.     public const PLUGIN_NAME 'SwagPlatformSecurity';
  23.     public function build(ContainerBuilder $container): void
  24.     {
  25.         $loader = new PhpFileLoader($container, new FileLocator([__DIR__ '/Resources/config']));
  26.         $loader->load('services.php');
  28.         $this->fetchPluginConfig($container);
  29.         $container->addCompilerPass(new RemoveDisabledServicesCompilerPass());
  30.     }
  32.     public function boot(): void
  33.     {
  34.         parent::boot();
  36.         foreach ($this->container->getParameter('SwagPlatformSecurity.activeFixes') as $securityFix) {
  37.             $securityFix::boot($this->container);
  38.         }
  39.     }
  41.     public function install(InstallContext $installContext): void
  42.     {
  43.         $this->copyHtaccess();
  44.     }
  46.     public function update(UpdateContext $updateContext): void
  47.     {
  48.         $this->copyHtaccess();
  49.     }
  51.     private function fetchPluginConfig(ContainerBuilder $container): void
  52.     {
  53.         try {
  54.             $qb Kernel::getConnection()->createQueryBuilder();
  56.             $config $qb
  57.                 ->select(['ticket''active'])
  58.                 ->from('swag_security_config''config')
  59.                 ->execute()
  60.                 ->fetchAll(\PDO::FETCH_KEY_PAIR);
  62.         } catch (\Throwable $e) {
  63.             $config = [];
  64.         }
  66.         foreach ($config as &$item) {
  67.             $item = (bool) $item;
  68.         }
  69.         unset($item);
  71.         $shopwareVersion $_SERVER['SHOPWARE_FAKE_VERSION'] ?? $container->getParameter('kernel.shopware_version');
  72.         $availableFixes = [];
  73.         $activeFixes = [];
  75.         foreach (State::KNOWN_ISSUES as $knownIssue) {
  76.             if (!$knownIssue::isValidForVersion($shopwareVersion)) {
  77.                 continue;
  78.             }
  80.             $availableFixes[] = $knownIssue;
  82.             if (array_key_exists($knownIssue::getTicket(), $config) && !$config[$knownIssue::getTicket()]) {
  83.                 continue;
  84.             }
  86.             $knownIssue::buildContainer($container);
  88.             $activeFixes[] = $knownIssue;
  89.         }
  91.         $container->setParameter('SwagPlatformSecurity.activeFixes'$activeFixes);
  92.         $container->setParameter('SwagPlatformSecurity.availableFixes'$availableFixes);
  93.     }
  95.     private function copyHtaccess(): void
  96.     {
  97.         $projectDirHtaccess $this->container->getParameter('kernel.project_dir'). '/.htaccess';
  99.         copy(__DIR__ '/../root_htaccess.dist'$projectDirHtaccess);
  101.         $knownFolders = [
  102.             $this->container->getParameter('kernel.project_dir'). '/bin',
  103.             $this->container->getParameter('kernel.project_dir'). '/config',
  104.             $this->container->getParameter('kernel.project_dir'). '/custom',
  105.             $this->container->getParameter('kernel.project_dir'). '/files',
  106.             $this->container->getParameter('kernel.project_dir'). '/src',
  107.             $this->container->getParameter('kernel.project_dir'). '/var',
  108.             $this->container->getParameter('kernel.project_dir'). '/vendor',
  109.         ];
  111.         foreach ($knownFolders as $knownFolder) {
  112.             if (file_exists($knownFolder)) {
  113.                 copy(__DIR__ '/../block_directory_access_htaccess.dist'$knownFolder '/.htaccess');
  114.             }
  115.         }
  117.         $shopwareVersion $_SERVER['SHOPWARE_FAKE_VERSION'] ?? $this->container->getParameter('kernel.shopware_version');
  118.         $updateService = new UpdateHtaccess();
  120.         // Only update the .htaccess if we are on a older shopware version
  121.         if (version_compare($shopwareVersion$updateService->getMaxVersion(), '<')) {
  122.             $publicHtaccess $this->container->getParameter('kernel.project_dir'). '/public/.htaccess';
  123.             $updateService->updateHtaccess($publicHtaccess__DIR__ '/../current_public_htaccess.dist');
  124.         }
  125.     }
  126. }