vendor/shopware/core/Framework/Api/EventListener/Authentication/SalesChannelAuthenticationListener.php line 42

  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Api\EventListener\Authentication;
  5. use Doctrine\DBAL\Connection;
  6. use Shopware\Core\Framework\Api\Util\AccessKeyHelper;
  7. use Shopware\Core\Framework\Log\Package;
  8. use Shopware\Core\Framework\Routing\Exception\SalesChannelNotFoundException;
  9. use Shopware\Core\Framework\Routing\KernelListenerPriorities;
  10. use Shopware\Core\Framework\Routing\RouteScopeCheckTrait;
  11. use Shopware\Core\Framework\Routing\RouteScopeRegistry;
  12. use Shopware\Core\Framework\Routing\StoreApiRouteScope;
  13. use Shopware\Core\Framework\Uuid\Uuid;
  14. use Shopware\Core\PlatformRequest;
  15. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  16. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  17. use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
  18. use Symfony\Component\HttpKernel\KernelEvents;
  20. /**
  21.  * @internal
  22.  */
  23. #[Package('core')]
  24. class SalesChannelAuthenticationListener implements EventSubscriberInterface
  25. {
  26.     use RouteScopeCheckTrait;
  28.     /**
  29.      * @internal
  30.      */
  31.     public function __construct(private readonly Connection $connection, private readonly RouteScopeRegistry $routeScopeRegistry)
  32.     {
  33.     }
  35.     public static function getSubscribedEvents(): array
  36.     {
  37.         return [
  38.             KernelEvents::CONTROLLER => ['validateRequest'KernelListenerPriorities::KERNEL_CONTROLLER_EVENT_PRIORITY_AUTH_VALIDATE],
  39.         ];
  40.     }
  42.     public function validateRequest(ControllerEvent $event): void
  43.     {
  44.         $request $event->getRequest();
  46.         if (!$request->attributes->get('auth_required'true)) {
  47.             return;
  48.         }
  50.         if (!$this->isRequestScoped($requestStoreApiRouteScope::class)) {
  51.             return;
  52.         }
  54.         $accessKey $request->headers->get(PlatformRequest::HEADER_ACCESS_KEY);
  55.         if (!$accessKey) {
  56.             throw new UnauthorizedHttpException('header'sprintf('Header "%s" is required.'PlatformRequest::HEADER_ACCESS_KEY));
  57.         }
  59.         $origin AccessKeyHelper::getOrigin($accessKey);
  60.         if ($origin !== 'sales-channel') {
  61.             throw new SalesChannelNotFoundException();
  62.         }
  64.         $salesChannelId $this->getSalesChannelId($accessKey);
  66.         $request->attributes->set(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_ID$salesChannelId);
  67.     }
  69.     protected function getScopeRegistry(): RouteScopeRegistry
  70.     {
  71.         return $this->routeScopeRegistry;
  72.     }
  74.     private function getSalesChannelId(string $accessKey): string
  75.     {
  76.         $builder $this->connection->createQueryBuilder();
  78.         $salesChannelId $builder->select(['sales_channel.id'])
  79.             ->from('sales_channel')
  80.             ->where('sales_channel.access_key = :accessKey')
  81.             ->setParameter('accessKey'$accessKey)
  82.             ->executeQuery()
  83.             ->fetchOne();
  85.         if (!$salesChannelId) {
  86.             throw new SalesChannelNotFoundException();
  87.         }
  89.         return Uuid::fromBytesToHex($salesChannelId);
  90.     }
  91. }