vendor/shopware/core/Framework/Webhook/WebhookDispatcher.php line 88

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Webhook;
  5. use Doctrine\DBAL\Connection;
  6. use GuzzleHttp\Client;
  7. use GuzzleHttp\Pool;
  8. use GuzzleHttp\Psr7\Request;
  9. use Shopware\Core\Framework\App\Exception\AppUrlChangeDetectedException;
  10. use Shopware\Core\Framework\App\ShopId\ShopIdProvider;
  11. use Shopware\Core\Framework\Context;
  12. use Shopware\Core\Framework\DataAbstractionLayer\EntityRepositoryInterface;
  13. use Shopware\Core\Framework\DataAbstractionLayer\Search\Criteria;
  14. use Shopware\Core\Framework\DataAbstractionLayer\Search\Filter\EqualsFilter;
  15. use Shopware\Core\Framework\DataAbstractionLayer\Search\Filter\MultiFilter;
  16. use Shopware\Core\Framework\Uuid\Uuid;
  17. use Shopware\Core\Framework\Webhook\Hookable\HookableEventFactory;
  18. use Symfony\Component\DependencyInjection\ContainerInterface;
  19. use Symfony\Component\DependencyInjection\Exception\ServiceNotFoundException;
  20. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  21. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  23. class WebhookDispatcher implements EventDispatcherInterface
  24. {
  25.     /**
  26.      * @var EventDispatcherInterface
  27.      */
  28.     private $dispatcher;
  30.     /**
  31.      * @var Connection
  32.      */
  33.     private $connection;
  35.     /**
  36.      * @var WebhookCollection|null
  37.      */
  38.     private $webhooks;
  40.     /**
  41.      * @var Client
  42.      */
  43.     private $guzzle;
  45.     /**
  46.      * @var string
  47.      */
  48.     private $shopUrl;
  50.     /**
  51.      * @var ContainerInterface
  52.      */
  53.     private $container;
  55.     /**
  56.      * @var array
  57.      */
  58.     private $privileges = [];
  60.     /**
  61.      * @var HookableEventFactory
  62.      */
  63.     private $eventFactory;
  65.     public function __construct(
  66.         EventDispatcherInterface $dispatcher,
  67.         Connection $connection,
  68.         Client $guzzle,
  69.         string $shopUrl,
  70.         ContainerInterface $container,
  71.         HookableEventFactory $eventFactory
  72.     ) {
  73.         $this->dispatcher $dispatcher;
  74.         $this->connection $connection;
  75.         $this->guzzle $guzzle;
  76.         $this->shopUrl $shopUrl;
  77.         // inject container, so we can later get the ShopIdProvider
  78.         // ShopIdProvider can not be injected directly as it would lead to a circular reference
  79.         $this->container $container;
  80.         $this->eventFactory $eventFactory;
  81.     }
  83.     /**
  84.      * @param object $event
  85.      */
  86.     public function dispatch($event, ?string $eventName null): object
  87.     {
  88.         $event $this->dispatcher->dispatch($event$eventName);
  90.         foreach ($this->eventFactory->createHookablesFor($event) as $hookable) {
  91.             $this->callWebhooks($hookable->getName(), $hookable);
  92.         }
  94.         // always return the original event and never our wrapped events
  95.         // this would lead to problems in the `BusinessEventDispatcher` from core
  96.         return $event;
  97.     }
  99.     /**
  100.      * @param string   $eventName
  101.      * @param callable $listener
  102.      * @param int      $priority
  103.      */
  104.     public function addListener($eventName$listener$priority 0): void
  105.     {
  106.         $this->dispatcher->addListener($eventName$listener$priority);
  107.     }
  109.     public function addSubscriber(EventSubscriberInterface $subscriber): void
  110.     {
  111.         $this->dispatcher->addSubscriber($subscriber);
  112.     }
  114.     /**
  115.      * @param string   $eventName
  116.      * @param callable $listener
  117.      */
  118.     public function removeListener($eventName$listener): void
  119.     {
  120.         $this->dispatcher->removeListener($eventName$listener);
  121.     }
  123.     public function removeSubscriber(EventSubscriberInterface $subscriber): void
  124.     {
  125.         $this->dispatcher->removeSubscriber($subscriber);
  126.     }
  128.     /**
  129.      * @param string|null $eventName
  130.      */
  131.     public function getListeners($eventName null): array
  132.     {
  133.         return $this->dispatcher->getListeners($eventName);
  134.     }
  136.     /**
  137.      * @param string   $eventName
  138.      * @param callable $listener
  139.      */
  140.     public function getListenerPriority($eventName$listener): ?int
  141.     {
  142.         return $this->dispatcher->getListenerPriority($eventName$listener);
  143.     }
  145.     /**
  146.      * @param string|null $eventName
  147.      */
  148.     public function hasListeners($eventName null): bool
  149.     {
  150.         return $this->dispatcher->hasListeners($eventName);
  151.     }
  153.     public function clearInternalWebhookCache(): void
  154.     {
  155.         $this->webhooks null;
  156.     }
  158.     public function clearInternalPrivilegesCache(): void
  159.     {
  160.         $this->privileges = [];
  161.     }
  163.     private function callWebhooks(string $eventNameHookable $event): void
  164.     {
  165.         /** @var WebhookCollection $webhooksForEvent */
  166.         $webhooksForEvent $this->getWebhooks()->filterForEvent($eventName);
  168.         if ($webhooksForEvent->count() === 0) {
  169.             return;
  170.         }
  172.         $payload $event->getWebhookPayload();
  173.         $affectedRoleIds $webhooksForEvent->getAclRoleIdsAsBinary();
  174.         $requests = [];
  176.         foreach ($webhooksForEvent as $webhook) {
  177.             if ($webhook->getApp()) {
  178.                 if (!$this->isEventDispatchingAllowed($webhook$event$affectedRoleIds)) {
  179.                     continue;
  180.                 }
  181.             }
  183.             $payload = ['data' => ['payload' => $payload]];
  184.             $payload['source']['url'] = $this->shopUrl;
  185.             $payload['data']['event'] = $eventName;
  187.             if ($webhook->getApp()) {
  188.                 $payload['source']['appVersion'] = $webhook->getApp()->getVersion();
  189.                 $shopIdProvider $this->getShopIdProvider();
  191.                 try {
  192.                     $shopId $shopIdProvider->getShopId();
  193.                 } catch (AppUrlChangeDetectedException $e) {
  194.                     continue;
  195.                 }
  196.                 $payload['source']['shopId'] = $shopId;
  197.             }
  199.             /** @var string $jsonPayload */
  200.             $jsonPayload json_encode($payload);
  202.             $request = new Request(
  203.                 'POST',
  204.                 $webhook->getUrl(),
  205.                 [
  206.                     'Content-Type' => 'application/json',
  207.                 ],
  208.                 $jsonPayload
  209.             );
  211.             if ($webhook->getApp() && $webhook->getApp()->getAppSecret()) {
  212.                 $request $request->withHeader(
  213.                     'shopware-shop-signature',
  214.                     hash_hmac('sha256'$jsonPayload$webhook->getApp()->getAppSecret())
  215.                 );
  216.             }
  218.             $requests[] = $request;
  219.         }
  221.         $pool = new Pool($this->guzzle$requests);
  222.         $pool->promise()->wait();
  223.     }
  225.     private function getWebhooks(): WebhookCollection
  226.     {
  227.         if ($this->webhooks) {
  228.             return $this->webhooks;
  229.         }
  231.         $criteria = new Criteria();
  232.         $criteria->addAssociation('app')
  233.             ->addFilter(new MultiFilter(MultiFilter::CONNECTION_OR, [
  234.                 new EqualsFilter('app.active'true),
  235.                 new EqualsFilter('appId'null),
  236.             ]));
  238.         if (!$this->container->has('webhook.repository')) {
  239.             throw new ServiceNotFoundException('webhook.repository');
  240.         }
  241.         /**
  242.          * @var EntityRepositoryInterface $webhookRepository
  243.          */
  244.         $webhookRepository $this->container->get('webhook.repository');
  246.         /** @var WebhookCollection $webhooks */
  247.         $webhooks $webhookRepository->search($criteriaContext::createDefaultContext())->getEntities();
  249.         return $this->webhooks $webhooks;
  250.     }
  252.     private function isEventDispatchingAllowed(WebhookEntity $webhookHookable $event, array $affectedRoles): bool
  253.     {
  254.         if (!($this->privileges[$event->getName()] ?? null)) {
  255.             $this->loadPrivileges($event->getName(), $affectedRoles);
  256.         }
  258.         $privileges $this->privileges[$event->getName()][$webhook->getApp()->getAclRoleId()]
  259.             ?? new AclPrivilegeCollection([]);
  261.         if (!$event->isAllowed($webhook->getAppId(), $privileges)) {
  262.             return false;
  263.         }
  265.         return true;
  266.     }
  268.     private function loadPrivileges(string $eventName, array $affectedRoleIds): void
  269.     {
  270.         $roles $this->connection->fetchAll('
  271.             SELECT `id`, `privileges`
  272.             FROM `acl_role`
  273.             WHERE `id` IN (:aclRoleIds)
  274.         ', ['aclRoleIds' => $affectedRoleIds], ['aclRoleIds' => Connection::PARAM_STR_ARRAY]);
  276.         if (!$roles) {
  277.             $this->privileges[$eventName] = [];
  278.         }
  280.         foreach ($roles as $privilege) {
  281.             $this->privileges[$eventName][Uuid::fromBytesToHex($privilege['id'])]
  282.                 = new AclPrivilegeCollection(json_decode($privilege['privileges'], true));
  283.         }
  284.     }
  286.     private function getShopIdProvider(): ShopIdProvider
  287.     {
  288.         if (!$this->container->has(ShopIdProvider::class)) {
  289.             throw new ServiceNotFoundException(ShopIdProvider::class);
  290.         }
  292.         /** @var ShopIdProvider $shopIdProvider */
  293.         $shopIdProvider $this->container->get(ShopIdProvider::class);
  295.         return $shopIdProvider;
  296.     }
  297. }