platform/src/Core/Framework/Webhook/WebhookDispatcher.php line 93

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Webhook;
  5. use Doctrine\DBAL\Connection;
  6. use GuzzleHttp\Client;
  7. use GuzzleHttp\Pool;
  8. use GuzzleHttp\Psr7\Request;
  9. use Shopware\Core\Framework\App\AppEntity;
  10. use Shopware\Core\Framework\App\AppLocaleProvider;
  11. use Shopware\Core\Framework\App\Event\AppChangedEvent;
  12. use Shopware\Core\Framework\App\Event\AppDeletedEvent;
  13. use Shopware\Core\Framework\App\Exception\AppUrlChangeDetectedException;
  14. use Shopware\Core\Framework\App\Hmac\Guzzle\AuthMiddleware;
  15. use Shopware\Core\Framework\App\Hmac\RequestSigner;
  16. use Shopware\Core\Framework\App\ShopId\ShopIdProvider;
  17. use Shopware\Core\Framework\Context;
  18. use Shopware\Core\Framework\DataAbstractionLayer\EntityRepositoryInterface;
  19. use Shopware\Core\Framework\DataAbstractionLayer\Event\EntityWrittenContainerEvent;
  20. use Shopware\Core\Framework\DataAbstractionLayer\Search\Criteria;
  21. use Shopware\Core\Framework\DataAbstractionLayer\Search\Filter\EqualsFilter;
  22. use Shopware\Core\Framework\Event\BusinessEventInterface;
  23. use Shopware\Core\Framework\Uuid\Uuid;
  24. use Shopware\Core\Framework\Webhook\EventLog\WebhookEventLogDefinition;
  25. use Shopware\Core\Framework\Webhook\Hookable\HookableEventFactory;
  26. use Shopware\Core\Framework\Webhook\Message\WebhookEventMessage;
  27. use Symfony\Component\DependencyInjection\ContainerInterface;
  28. use Symfony\Component\DependencyInjection\Exception\ServiceNotFoundException;
  29. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  30. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  31. use Symfony\Component\Messenger\MessageBusInterface;
  33. class WebhookDispatcher implements EventDispatcherInterface
  34. {
  35.     private EventDispatcherInterface $dispatcher;
  37.     private Connection $connection;
  39.     private ?WebhookCollection $webhooks null;
  41.     private Client $guzzle;
  43.     private string $shopUrl;
  45.     private ContainerInterface $container;
  47.     private array $privileges = [];
  49.     private HookableEventFactory $eventFactory;
  51.     private string $shopwareVersion;
  53.     private MessageBusInterface $bus;
  55.     private bool $isAdminWorkerEnabled;
  57.     /**
  58.      * @psalm-suppress ContainerDependency
  59.      */
  60.     public function __construct(
  61.         EventDispatcherInterface $dispatcher,
  62.         Connection $connection,
  63.         Client $guzzle,
  64.         string $shopUrl,
  65.         ContainerInterface $container,
  66.         HookableEventFactory $eventFactory,
  67.         string $shopwareVersion,
  68.         MessageBusInterface $bus,
  69.         bool $isAdminWorkerEnabled
  70.     ) {
  71.         $this->dispatcher $dispatcher;
  72.         $this->connection $connection;
  73.         $this->guzzle $guzzle;
  74.         $this->shopUrl $shopUrl;
  75.         // inject container, so we can later get the ShopIdProvider and the webhook repository
  76.         // ShopIdProvider, AppLocaleProvider and webhook repository can not be injected directly as it would lead to a circular reference
  77.         $this->container $container;
  78.         $this->eventFactory $eventFactory;
  79.         $this->shopwareVersion $shopwareVersion;
  80.         $this->bus $bus;
  81.         $this->isAdminWorkerEnabled $isAdminWorkerEnabled;
  82.     }
  84.     /**
  85.      * @template TEvent of object
  86.      *
  87.      * @param TEvent $event
  88.      *
  89.      * @return TEvent
  90.      */
  91.     public function dispatch($event, ?string $eventName null): object
  92.     {
  93.         $event $this->dispatcher->dispatch($event$eventName);
  95.         foreach ($this->eventFactory->createHookablesFor($event) as $hookable) {
  96.             $context Context::createDefaultContext();
  97.             if ($event instanceof BusinessEventInterface || $event instanceof AppChangedEvent || $event instanceof EntityWrittenContainerEvent) {
  98.                 $context $event->getContext();
  99.             }
  101.             $this->callWebhooks($hookable->getName(), $hookable$context);
  102.         }
  104.         // always return the original event and never our wrapped events
  105.         // this would lead to problems in the `BusinessEventDispatcher` from core
  106.         return $event;
  107.     }
  109.     /**
  110.      * @param string   $eventName
  111.      * @param callable $listener
  112.      * @param int      $priority
  113.      */
  114.     public function addListener($eventName$listener$priority 0): void
  115.     {
  116.         $this->dispatcher->addListener($eventName$listener$priority);
  117.     }
  119.     public function addSubscriber(EventSubscriberInterface $subscriber): void
  120.     {
  121.         $this->dispatcher->addSubscriber($subscriber);
  122.     }
  124.     /**
  125.      * @param string   $eventName
  126.      * @param callable $listener
  127.      */
  128.     public function removeListener($eventName$listener): void
  129.     {
  130.         $this->dispatcher->removeListener($eventName$listener);
  131.     }
  133.     public function removeSubscriber(EventSubscriberInterface $subscriber): void
  134.     {
  135.         $this->dispatcher->removeSubscriber($subscriber);
  136.     }
  138.     /**
  139.      * @param string|null $eventName
  140.      */
  141.     public function getListeners($eventName null): array
  142.     {
  143.         return $this->dispatcher->getListeners($eventName);
  144.     }
  146.     /**
  147.      * @param string   $eventName
  148.      * @param callable $listener
  149.      */
  150.     public function getListenerPriority($eventName$listener): ?int
  151.     {
  152.         return $this->dispatcher->getListenerPriority($eventName$listener);
  153.     }
  155.     /**
  156.      * @param string|null $eventName
  157.      */
  158.     public function hasListeners($eventName null): bool
  159.     {
  160.         return $this->dispatcher->hasListeners($eventName);
  161.     }
  163.     public function clearInternalWebhookCache(): void
  164.     {
  165.         $this->webhooks null;
  166.     }
  168.     public function clearInternalPrivilegesCache(): void
  169.     {
  170.         $this->privileges = [];
  171.     }
  173.     private function callWebhooks(string $eventNameHookable $eventContext $context): void
  174.     {
  175.         /** @var WebhookCollection $webhooksForEvent */
  176.         $webhooksForEvent $this->getWebhooks()->filterForEvent($eventName);
  178.         if ($webhooksForEvent->count() === 0) {
  179.             return;
  180.         }
  182.         $payload $event->getWebhookPayload();
  183.         $affectedRoleIds $webhooksForEvent->getAclRoleIdsAsBinary();
  184.         $requests = [];
  185.         $languageId $context->getLanguageId();
  186.         $userLocale $this->getAppLocaleProvider()->getLocaleFromContext($context);
  188.         foreach ($webhooksForEvent as $webhook) {
  189.             if ($webhook->getApp() !== null && !$this->isEventDispatchingAllowed($webhook->getApp(), $event$affectedRoleIds)) {
  190.                 continue;
  191.             }
  193.             $payload = ['data' => ['payload' => $payload]];
  194.             $payload['source']['url'] = $this->shopUrl;
  195.             $payload['data']['event'] = $eventName;
  197.             if ($webhook->getApp() !== null) {
  198.                 $payload['source']['appVersion'] = $webhook->getApp()->getVersion();
  199.                 $shopIdProvider $this->getShopIdProvider();
  201.                 try {
  202.                     $shopId $shopIdProvider->getShopId();
  203.                 } catch (AppUrlChangeDetectedException $e) {
  204.                     continue;
  205.                 }
  206.                 $payload['source']['shopId'] = $shopId;
  207.             }
  209.             if ($this->isAdminWorkerEnabled) {
  210.                 /** @var string $jsonPayload */
  211.                 $jsonPayload json_encode($payload);
  213.                 $request = new Request(
  214.                     'POST',
  215.                     $webhook->getUrl(),
  216.                     [
  217.                         'Content-Type' => 'application/json',
  218.                         'sw-version' => $this->shopwareVersion,
  219.                         AuthMiddleware::SHOPWARE_CONTEXT_LANGUAGE => $languageId,
  220.                         AuthMiddleware::SHOPWARE_USER_LANGUAGE => $userLocale,
  221.                     ],
  222.                     $jsonPayload
  223.                 );
  225.                 if ($webhook->getApp() !== null && $webhook->getApp()->getAppSecret() !== null) {
  226.                     $request $request->withHeader(
  227.                         RequestSigner::SHOPWARE_SHOP_SIGNATURE,
  228.                         (new RequestSigner())->signPayload($jsonPayload$webhook->getApp()->getAppSecret())
  229.                     );
  230.                 }
  232.                 $requests[] = $request;
  233.             } else {
  234.                 $webhookEventId Uuid::randomHex();
  236.                 $appId $webhook->getApp() !== null $webhook->getApp()->getId() : null;
  237.                 $secret $webhook->getApp() !== null $webhook->getApp()->getAppSecret() : null;
  238.                 $webhookEventMessage = new WebhookEventMessage($webhookEventId$payload$appId$webhook->getId(), $this->shopwareVersion$webhook->getUrl(), $secret$languageId$userLocale);
  240.                 if (!$this->container->has('webhook_event_log.repository')) {
  241.                     throw new ServiceNotFoundException('webhook_event_log.repository');
  242.                 }
  244.                 /** @var EntityRepositoryInterface $webhookEventLogRepository */
  245.                 $webhookEventLogRepository $this->container->get('webhook_event_log.repository');
  247.                 $webhookEventLogRepository->create([
  248.                     [
  249.                         'id' => $webhookEventId,
  250.                         'appName' => $webhook->getApp() !== null $webhook->getApp()->getName() : null,
  251.                         'deliveryStatus' => WebhookEventLogDefinition::STATUS_QUEUED,
  252.                         'webhookName' => $webhook->getName(),
  253.                         'eventName' => $webhook->getEventName(),
  254.                         'appVersion' => $webhook->getApp() !== null $webhook->getApp()->getVersion() : null,
  255.                         'url' => $webhook->getUrl(),
  256.                         'serializedWebhookMessage' => serialize($webhookEventMessage),
  257.                     ],
  258.                 ], Context::createDefaultContext());
  260.                 $this->bus->dispatch($webhookEventMessage);
  261.             }
  262.         }
  264.         if ($this->isAdminWorkerEnabled) {
  265.             $pool = new Pool($this->guzzle$requests);
  266.             $pool->promise()->wait();
  267.         }
  268.     }
  270.     private function getWebhooks(): WebhookCollection
  271.     {
  272.         if ($this->webhooks) {
  273.             return $this->webhooks;
  274.         }
  276.         $criteria = new Criteria();
  277.         $criteria->addFilter(new EqualsFilter('active'true));
  278.         $criteria->addAssociation('app');
  280.         if (!$this->container->has('webhook.repository')) {
  281.             throw new ServiceNotFoundException('webhook.repository');
  282.         }
  283.         /** @var WebhookCollection $webhooks */
  284.         $webhooks $this->container->get('webhook.repository')->search($criteriaContext::createDefaultContext())->getEntities();
  286.         return $this->webhooks $webhooks;
  287.     }
  289.     private function isEventDispatchingAllowed(AppEntity $appHookable $event, array $affectedRoles): bool
  290.     {
  291.         // Only app lifecycle hooks can be received if app is deactivated
  292.         if (!$app->isActive() && !($event instanceof AppChangedEvent || $event instanceof AppDeletedEvent)) {
  293.             return false;
  294.         }
  296.         if (!($this->privileges[$event->getName()] ?? null)) {
  297.             $this->loadPrivileges($event->getName(), $affectedRoles);
  298.         }
  300.         $privileges $this->privileges[$event->getName()][$app->getAclRoleId()]
  301.             ?? new AclPrivilegeCollection([]);
  303.         if (!$event->isAllowed($app->getId(), $privileges)) {
  304.             return false;
  305.         }
  307.         return true;
  308.     }
  310.     private function loadPrivileges(string $eventName, array $affectedRoleIds): void
  311.     {
  312.         $roles $this->connection->fetchAll('
  313.             SELECT `id`, `privileges`
  314.             FROM `acl_role`
  315.             WHERE `id` IN (:aclRoleIds)
  316.         ', ['aclRoleIds' => $affectedRoleIds], ['aclRoleIds' => Connection::PARAM_STR_ARRAY]);
  318.         if (!$roles) {
  319.             $this->privileges[$eventName] = [];
  320.         }
  322.         foreach ($roles as $privilege) {
  323.             $this->privileges[$eventName][Uuid::fromBytesToHex($privilege['id'])]
  324.                 = new AclPrivilegeCollection(json_decode($privilege['privileges'], true));
  325.         }
  326.     }
  328.     private function getShopIdProvider(): ShopIdProvider
  329.     {
  330.         if (!$this->container->has(ShopIdProvider::class)) {
  331.             throw new ServiceNotFoundException(ShopIdProvider::class);
  332.         }
  334.         return $this->container->get(ShopIdProvider::class);
  335.     }
  337.     private function getAppLocaleProvider(): AppLocaleProvider
  338.     {
  339.         if (!$this->container->has(AppLocaleProvider::class)) {
  340.             throw new ServiceNotFoundException(AppLocaleProvider::class);
  341.         }
  343.         return $this->container->get(AppLocaleProvider::class);
  344.     }
  345. }