custom/plugins/SwagPlatformSecurity/src/SwagPlatformSecurity.php line 19

  1. <?php declare(strict_types=1);
  3. namespace Swag\Security;
  5. use Shopware\Core\Framework\Log\Package;
  6. use Shopware\Core\Framework\Plugin;
  7. use Shopware\Core\Kernel;
  8. use Swag\Security\Components\AbstractSecurityFix;
  9. use Swag\Security\Components\RemoveDisabledServicesCompilerPass;
  10. use Swag\Security\DependencyInjection\Configuration;
  11. use Swag\Security\DependencyInjection\FrameworkExtension;
  12. use Symfony\Component\Config\FileLocator;
  13. use Symfony\Component\DependencyInjection\ContainerBuilder;
  14. use Symfony\Component\DependencyInjection\ContainerInterface;
  15. use Symfony\Component\DependencyInjection\Extension\ExtensionInterface;
  16. use Symfony\Component\Routing\Loader\YamlFileLoader;
  18. #[Package('services-settings')]
  19. class SwagPlatformSecurity extends Plugin
  20. {
  21.     final public const PLUGIN_NAME 'SwagPlatformSecurity';
  23.     public function build(ContainerBuilder $container): void
  24.     {
  25.         parent::build($container);
  27.         $this->fetchPluginConfig($container);
  28.         $container->addCompilerPass(new RemoveDisabledServicesCompilerPass());
  29.     }
  31.     public function getContainerExtension(): ?ExtensionInterface
  32.     {
  33.         // Decide if we should override the Shopware config because we have a missing configuration
  34.         $shouldOverrideShopwareConfig = !Configuration::hasSearchSection();
  36.         if ($shouldOverrideShopwareConfig) {
  37.             return new FrameworkExtension();
  38.         }
  40.         return null;
  41.     }
  43.     public function boot(): void
  44.     {
  45.         parent::boot();
  47.         \assert($this->container instanceof ContainerInterface'Container is not set yet, please call setContainer() before calling boot(), see `platform/Core/Kernel.php:186`.');
  49.         foreach ((array) $this->container->getParameter('SwagPlatformSecurity.activeFixes') as $securityFix) {
  50.             $securityFix::boot($this->container);
  51.         }
  52.     }
  54.     private function fetchPluginConfig(ContainerBuilder $container): void
  55.     {
  56.         try {
  57.             $qb Kernel::getConnection();
  59.             $config $qb->fetchAllKeyValue('SELECT ticket, active FROM swag_security_config');
  60.         } catch (\Throwable $e) {
  61.             $config = [];
  62.         }
  64.         foreach ($config as &$item) {
  65.             $item = (bool) $item;
  66.         }
  67.         unset($item);
  69.         $shopwareVersion $_SERVER['SHOPWARE_FAKE_VERSION'] ?? $container->getParameter('kernel.shopware_version');
  70.         /** @var class-string<AbstractSecurityFix>[] $knownIssues */
  71.         $knownIssues $container->getParameter('SwagPlatformSecurity.knownIssues');
  72.         $availableFixes = [];
  73.         $activeFixes = [];
  75.         foreach ($knownIssues as $knownIssue) {
  76.             if (!$knownIssue::isValidForVersion($shopwareVersion)) {
  77.                 continue;
  78.             }
  80.             $availableFixes[] = $knownIssue;
  82.             if (\array_key_exists($knownIssue::getTicket(), $config) && !$config[$knownIssue::getTicket()]) {
  83.                 continue;
  84.             }
  86.             $knownIssue::buildContainer($container);
  88.             $activeFixes[] = $knownIssue;
  89.         }
  91.         $container->setParameter('SwagPlatformSecurity.activeFixes'$activeFixes);
  92.         $container->setParameter('SwagPlatformSecurity.availableFixes'$availableFixes);
  93.     }
  94. }