vendor/shopware/platform/src/Core/Framework/Webhook/WebhookDispatcher.php line 91

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Webhook;
  5. use Doctrine\DBAL\Connection;
  6. use GuzzleHttp\Client;
  7. use GuzzleHttp\Pool;
  8. use GuzzleHttp\Psr7\Request;
  9. use Shopware\Core\Framework\App\AppEntity;
  10. use Shopware\Core\Framework\App\Event\AppChangedEvent;
  11. use Shopware\Core\Framework\App\Event\AppDeletedEvent;
  12. use Shopware\Core\Framework\App\Exception\AppUrlChangeDetectedException;
  13. use Shopware\Core\Framework\App\ShopId\ShopIdProvider;
  14. use Shopware\Core\Framework\Context;
  15. use Shopware\Core\Framework\DataAbstractionLayer\Search\Criteria;
  16. use Shopware\Core\Framework\Uuid\Uuid;
  17. use Shopware\Core\Framework\Webhook\Hookable\HookableEventFactory;
  18. use Symfony\Component\DependencyInjection\ContainerInterface;
  19. use Symfony\Component\DependencyInjection\Exception\ServiceNotFoundException;
  20. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  21. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  23. class WebhookDispatcher implements EventDispatcherInterface
  24. {
  25.     /**
  26.      * @var EventDispatcherInterface
  27.      */
  28.     private $dispatcher;
  30.     /**
  31.      * @var Connection
  32.      */
  33.     private $connection;
  35.     /**
  36.      * @var WebhookCollection|null
  37.      */
  38.     private $webhooks;
  40.     /**
  41.      * @var Client
  42.      */
  43.     private $guzzle;
  45.     /**
  46.      * @var string
  47.      */
  48.     private $shopUrl;
  50.     /**
  51.      * @var ContainerInterface
  52.      */
  53.     private $container;
  55.     /**
  56.      * @var array
  57.      */
  58.     private $privileges = [];
  60.     /**
  61.      * @var HookableEventFactory
  62.      */
  63.     private $eventFactory;
  65.     /**
  66.      * @psalm-suppress ContainerDependency
  67.      */
  68.     public function __construct(
  69.         EventDispatcherInterface $dispatcher,
  70.         Connection $connection,
  71.         Client $guzzle,
  72.         string $shopUrl,
  73.         ContainerInterface $container,
  74.         HookableEventFactory $eventFactory
  75.     ) {
  76.         $this->dispatcher $dispatcher;
  77.         $this->connection $connection;
  78.         $this->guzzle $guzzle;
  79.         $this->shopUrl $shopUrl;
  80.         // inject container, so we can later get the ShopIdProvider and the webhook repository
  81.         // ShopIdProvider and webhook repository can not be injected directly as it would lead to a circular reference
  82.         $this->container $container;
  83.         $this->eventFactory $eventFactory;
  84.     }
  86.     /**
  87.      * @param object $event
  88.      */
  89.     public function dispatch($event, ?string $eventName null): object
  90.     {
  91.         $event $this->dispatcher->dispatch($event$eventName);
  93.         foreach ($this->eventFactory->createHookablesFor($event) as $hookable) {
  94.             $this->callWebhooks($hookable->getName(), $hookable);
  95.         }
  97.         // always return the original event and never our wrapped events
  98.         // this would lead to problems in the `BusinessEventDispatcher` from core
  99.         return $event;
  100.     }
  102.     /**
  103.      * @param string   $eventName
  104.      * @param callable $listener
  105.      * @param int      $priority
  106.      */
  107.     public function addListener($eventName$listener$priority 0): void
  108.     {
  109.         $this->dispatcher->addListener($eventName$listener$priority);
  110.     }
  112.     public function addSubscriber(EventSubscriberInterface $subscriber): void
  113.     {
  114.         $this->dispatcher->addSubscriber($subscriber);
  115.     }
  117.     /**
  118.      * @param string   $eventName
  119.      * @param callable $listener
  120.      */
  121.     public function removeListener($eventName$listener): void
  122.     {
  123.         $this->dispatcher->removeListener($eventName$listener);
  124.     }
  126.     public function removeSubscriber(EventSubscriberInterface $subscriber): void
  127.     {
  128.         $this->dispatcher->removeSubscriber($subscriber);
  129.     }
  131.     /**
  132.      * @param string|null $eventName
  133.      */
  134.     public function getListeners($eventName null): array
  135.     {
  136.         return $this->dispatcher->getListeners($eventName);
  137.     }
  139.     /**
  140.      * @param string   $eventName
  141.      * @param callable $listener
  142.      */
  143.     public function getListenerPriority($eventName$listener): ?int
  144.     {
  145.         return $this->dispatcher->getListenerPriority($eventName$listener);
  146.     }
  148.     /**
  149.      * @param string|null $eventName
  150.      */
  151.     public function hasListeners($eventName null): bool
  152.     {
  153.         return $this->dispatcher->hasListeners($eventName);
  154.     }
  156.     public function clearInternalWebhookCache(): void
  157.     {
  158.         $this->webhooks null;
  159.     }
  161.     public function clearInternalPrivilegesCache(): void
  162.     {
  163.         $this->privileges = [];
  164.     }
  166.     private function callWebhooks(string $eventNameHookable $event): void
  167.     {
  168.         /** @var WebhookCollection $webhooksForEvent */
  169.         $webhooksForEvent $this->getWebhooks()->filterForEvent($eventName);
  171.         if ($webhooksForEvent->count() === 0) {
  172.             return;
  173.         }
  175.         $payload $event->getWebhookPayload();
  176.         $affectedRoleIds $webhooksForEvent->getAclRoleIdsAsBinary();
  177.         $requests = [];
  179.         foreach ($webhooksForEvent as $webhook) {
  180.             if ($webhook->getApp()) {
  181.                 if (!$this->isEventDispatchingAllowed($webhook->getApp(), $event$affectedRoleIds)) {
  182.                     continue;
  183.                 }
  184.             }
  186.             $payload = ['data' => ['payload' => $payload]];
  187.             $payload['source']['url'] = $this->shopUrl;
  188.             $payload['data']['event'] = $eventName;
  190.             if ($webhook->getApp()) {
  191.                 $payload['source']['appVersion'] = $webhook->getApp()->getVersion();
  192.                 $shopIdProvider $this->getShopIdProvider();
  194.                 try {
  195.                     $shopId $shopIdProvider->getShopId();
  196.                 } catch (AppUrlChangeDetectedException $e) {
  197.                     continue;
  198.                 }
  199.                 $payload['source']['shopId'] = $shopId;
  200.             }
  202.             /** @var string $jsonPayload */
  203.             $jsonPayload json_encode($payload);
  205.             $request = new Request(
  206.                 'POST',
  207.                 $webhook->getUrl(),
  208.                 [
  209.                     'Content-Type' => 'application/json',
  210.                 ],
  211.                 $jsonPayload
  212.             );
  214.             if ($webhook->getApp() && $webhook->getApp()->getAppSecret()) {
  215.                 $request $request->withHeader(
  216.                     'shopware-shop-signature',
  217.                     hash_hmac('sha256'$jsonPayload$webhook->getApp()->getAppSecret())
  218.                 );
  219.             }
  221.             $requests[] = $request;
  222.         }
  224.         $pool = new Pool($this->guzzle$requests);
  225.         $pool->promise()->wait();
  226.     }
  228.     private function getWebhooks(): WebhookCollection
  229.     {
  230.         if ($this->webhooks) {
  231.             return $this->webhooks;
  232.         }
  234.         $criteria = new Criteria();
  235.         $criteria->addAssociation('app');
  237.         if (!$this->container->has('webhook.repository')) {
  238.             throw new ServiceNotFoundException('webhook.repository');
  239.         }
  240.         /** @var WebhookCollection $webhooks */
  241.         $webhooks $this->container->get('webhook.repository')->search($criteriaContext::createDefaultContext())->getEntities();
  243.         return $this->webhooks $webhooks;
  244.     }
  246.     private function isEventDispatchingAllowed(AppEntity $appHookable $event, array $affectedRoles): bool
  247.     {
  248.         // Only app lifecycle hooks can be received if app is deactivated
  249.         if (!$app->isActive() && !($event instanceof AppChangedEvent || $event instanceof AppDeletedEvent)) {
  250.             return false;
  251.         }
  253.         if (!($this->privileges[$event->getName()] ?? null)) {
  254.             $this->loadPrivileges($event->getName(), $affectedRoles);
  255.         }
  257.         $privileges $this->privileges[$event->getName()][$app->getAclRoleId()]
  258.             ?? new AclPrivilegeCollection([]);
  260.         if (!$event->isAllowed($app->getId(), $privileges)) {
  261.             return false;
  262.         }
  264.         return true;
  265.     }
  267.     private function loadPrivileges(string $eventName, array $affectedRoleIds): void
  268.     {
  269.         $roles $this->connection->fetchAll('
  270.             SELECT `id`, `privileges`
  271.             FROM `acl_role`
  272.             WHERE `id` IN (:aclRoleIds)
  273.         ', ['aclRoleIds' => $affectedRoleIds], ['aclRoleIds' => Connection::PARAM_STR_ARRAY]);
  275.         if (!$roles) {
  276.             $this->privileges[$eventName] = [];
  277.         }
  279.         foreach ($roles as $privilege) {
  280.             $this->privileges[$eventName][Uuid::fromBytesToHex($privilege['id'])]
  281.                 = new AclPrivilegeCollection(json_decode($privilege['privileges'], true));
  282.         }
  283.     }
  285.     private function getShopIdProvider(): ShopIdProvider
  286.     {
  287.         if (!$this->container->has(ShopIdProvider::class)) {
  288.             throw new ServiceNotFoundException(ShopIdProvider::class);
  289.         }
  291.         return $this->container->get(ShopIdProvider::class);
  292.     }
  293. }