vendor/shopware/core/Framework/Webhook/WebhookDispatcher.php line 89

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Webhook;
  5. use Doctrine\DBAL\Connection;
  6. use GuzzleHttp\Client;
  7. use GuzzleHttp\Pool;
  8. use GuzzleHttp\Psr7\Request;
  9. use Shopware\Core\Framework\App\AppEntity;
  10. use Shopware\Core\Framework\App\Event\AppChangedEvent;
  11. use Shopware\Core\Framework\App\Event\AppDeletedEvent;
  12. use Shopware\Core\Framework\App\Exception\AppUrlChangeDetectedException;
  13. use Shopware\Core\Framework\App\Hmac\RequestSigner;
  14. use Shopware\Core\Framework\App\ShopId\ShopIdProvider;
  15. use Shopware\Core\Framework\Context;
  16. use Shopware\Core\Framework\DataAbstractionLayer\EntityRepositoryInterface;
  17. use Shopware\Core\Framework\DataAbstractionLayer\Search\Criteria;
  18. use Shopware\Core\Framework\DataAbstractionLayer\Search\Filter\EqualsFilter;
  19. use Shopware\Core\Framework\Uuid\Uuid;
  20. use Shopware\Core\Framework\Webhook\EventLog\WebhookEventLogDefinition;
  21. use Shopware\Core\Framework\Webhook\Hookable\HookableEventFactory;
  22. use Shopware\Core\Framework\Webhook\Message\WebhookEventMessage;
  23. use Symfony\Component\DependencyInjection\ContainerInterface;
  24. use Symfony\Component\DependencyInjection\Exception\ServiceNotFoundException;
  25. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  26. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  27. use Symfony\Component\Messenger\MessageBusInterface;
  29. class WebhookDispatcher implements EventDispatcherInterface
  30. {
  31.     private EventDispatcherInterface $dispatcher;
  33.     private Connection $connection;
  35.     private ?WebhookCollection $webhooks null;
  37.     private Client $guzzle;
  39.     private string $shopUrl;
  41.     private ContainerInterface $container;
  43.     private array $privileges = [];
  45.     private HookableEventFactory $eventFactory;
  47.     private string $shopwareVersion;
  49.     private MessageBusInterface $bus;
  51.     private bool $isAdminWorkerEnabled;
  53.     /**
  54.      * @psalm-suppress ContainerDependency
  55.      */
  56.     public function __construct(
  57.         EventDispatcherInterface $dispatcher,
  58.         Connection $connection,
  59.         Client $guzzle,
  60.         string $shopUrl,
  61.         ContainerInterface $container,
  62.         HookableEventFactory $eventFactory,
  63.         string $shopwareVersion,
  64.         MessageBusInterface $bus,
  65.         bool $isAdminWorkerEnabled
  66.     ) {
  67.         $this->dispatcher $dispatcher;
  68.         $this->connection $connection;
  69.         $this->guzzle $guzzle;
  70.         $this->shopUrl $shopUrl;
  71.         // inject container, so we can later get the ShopIdProvider and the webhook repository
  72.         // ShopIdProvider and webhook repository can not be injected directly as it would lead to a circular reference
  73.         $this->container $container;
  74.         $this->eventFactory $eventFactory;
  75.         $this->shopwareVersion $shopwareVersion;
  76.         $this->bus $bus;
  77.         $this->isAdminWorkerEnabled $isAdminWorkerEnabled;
  78.     }
  80.     /**
  81.      * @template TEvent of object
  82.      *
  83.      * @param TEvent $event
  84.      *
  85.      * @return TEvent
  86.      */
  87.     public function dispatch($event, ?string $eventName null): object
  88.     {
  89.         $event $this->dispatcher->dispatch($event$eventName);
  91.         foreach ($this->eventFactory->createHookablesFor($event) as $hookable) {
  92.             $this->callWebhooks($hookable->getName(), $hookable);
  93.         }
  95.         // always return the original event and never our wrapped events
  96.         // this would lead to problems in the `BusinessEventDispatcher` from core
  97.         return $event;
  98.     }
  100.     /**
  101.      * @param string   $eventName
  102.      * @param callable $listener
  103.      * @param int      $priority
  104.      */
  105.     public function addListener($eventName$listener$priority 0): void
  106.     {
  107.         $this->dispatcher->addListener($eventName$listener$priority);
  108.     }
  110.     public function addSubscriber(EventSubscriberInterface $subscriber): void
  111.     {
  112.         $this->dispatcher->addSubscriber($subscriber);
  113.     }
  115.     /**
  116.      * @param string   $eventName
  117.      * @param callable $listener
  118.      */
  119.     public function removeListener($eventName$listener): void
  120.     {
  121.         $this->dispatcher->removeListener($eventName$listener);
  122.     }
  124.     public function removeSubscriber(EventSubscriberInterface $subscriber): void
  125.     {
  126.         $this->dispatcher->removeSubscriber($subscriber);
  127.     }
  129.     /**
  130.      * @param string|null $eventName
  131.      */
  132.     public function getListeners($eventName null): array
  133.     {
  134.         return $this->dispatcher->getListeners($eventName);
  135.     }
  137.     /**
  138.      * @param string   $eventName
  139.      * @param callable $listener
  140.      */
  141.     public function getListenerPriority($eventName$listener): ?int
  142.     {
  143.         return $this->dispatcher->getListenerPriority($eventName$listener);
  144.     }
  146.     /**
  147.      * @param string|null $eventName
  148.      */
  149.     public function hasListeners($eventName null): bool
  150.     {
  151.         return $this->dispatcher->hasListeners($eventName);
  152.     }
  154.     public function clearInternalWebhookCache(): void
  155.     {
  156.         $this->webhooks null;
  157.     }
  159.     public function clearInternalPrivilegesCache(): void
  160.     {
  161.         $this->privileges = [];
  162.     }
  164.     private function callWebhooks(string $eventNameHookable $event): void
  165.     {
  166.         /** @var WebhookCollection $webhooksForEvent */
  167.         $webhooksForEvent $this->getWebhooks()->filterForEvent($eventName);
  169.         if ($webhooksForEvent->count() === 0) {
  170.             return;
  171.         }
  173.         $payload $event->getWebhookPayload();
  174.         $affectedRoleIds $webhooksForEvent->getAclRoleIdsAsBinary();
  175.         $requests = [];
  177.         foreach ($webhooksForEvent as $webhook) {
  178.             if ($webhook->getApp() !== null && !$this->isEventDispatchingAllowed($webhook->getApp(), $event$affectedRoleIds)) {
  179.                 continue;
  180.             }
  182.             $payload = ['data' => ['payload' => $payload]];
  183.             $payload['source']['url'] = $this->shopUrl;
  184.             $payload['data']['event'] = $eventName;
  186.             if ($webhook->getApp() !== null) {
  187.                 $payload['source']['appVersion'] = $webhook->getApp()->getVersion();
  188.                 $shopIdProvider $this->getShopIdProvider();
  190.                 try {
  191.                     $shopId $shopIdProvider->getShopId();
  192.                 } catch (AppUrlChangeDetectedException $e) {
  193.                     continue;
  194.                 }
  195.                 $payload['source']['shopId'] = $shopId;
  196.             }
  198.             if ($this->isAdminWorkerEnabled) {
  199.                 /** @var string $jsonPayload */
  200.                 $jsonPayload json_encode($payload);
  202.                 $request = new Request(
  203.                     'POST',
  204.                     $webhook->getUrl(),
  205.                     [
  206.                         'Content-Type' => 'application/json',
  207.                         'sw-version' => $this->shopwareVersion,
  208.                     ],
  209.                     $jsonPayload
  210.                 );
  212.                 if ($webhook->getApp() !== null && $webhook->getApp()->getAppSecret() !== null) {
  213.                     $request $request->withHeader(
  214.                         RequestSigner::SHOPWARE_SHOP_SIGNATURE,
  215.                         (new RequestSigner())->signPayload($jsonPayload$webhook->getApp()->getAppSecret())
  216.                     );
  217.                 }
  219.                 $requests[] = $request;
  220.             } else {
  221.                 $webhookEventId Uuid::randomHex();
  223.                 $appId $webhook->getApp() !== null $webhook->getApp()->getId() : null;
  224.                 $secret $webhook->getApp() !== null $webhook->getApp()->getAppSecret() : null;
  225.                 $webhookEventMessage = new WebhookEventMessage($webhookEventId$payload$appId$webhook->getId(), $this->shopwareVersion$webhook->getUrl(), $secret);
  227.                 if (!$this->container->has('webhook_event_log.repository')) {
  228.                     throw new ServiceNotFoundException('webhook_event_log.repository');
  229.                 }
  231.                 /** @var EntityRepositoryInterface $webhookEventLogRepository */
  232.                 $webhookEventLogRepository $this->container->get('webhook_event_log.repository');
  234.                 $webhookEventLogRepository->create([
  235.                     [
  236.                         'id' => $webhookEventId,
  237.                         'appName' => $webhook->getApp() !== null $webhook->getApp()->getName() : null,
  238.                         'deliveryStatus' => WebhookEventLogDefinition::STATUS_QUEUED,
  239.                         'webhookName' => $webhook->getName(),
  240.                         'eventName' => $webhook->getEventName(),
  241.                         'appVersion' => $webhook->getApp() !== null $webhook->getApp()->getVersion() : null,
  242.                         'url' => $webhook->getUrl(),
  243.                         'serializedWebhookMessage' => serialize($webhookEventMessage),
  244.                     ],
  245.                 ], Context::createDefaultContext());
  247.                 $this->bus->dispatch($webhookEventMessage);
  248.             }
  249.         }
  251.         if ($this->isAdminWorkerEnabled) {
  252.             $pool = new Pool($this->guzzle$requests);
  253.             $pool->promise()->wait();
  254.         }
  255.     }
  257.     private function getWebhooks(): WebhookCollection
  258.     {
  259.         if ($this->webhooks) {
  260.             return $this->webhooks;
  261.         }
  263.         $criteria = new Criteria();
  264.         $criteria->addFilter(new EqualsFilter('active'true));
  265.         $criteria->addAssociation('app');
  267.         if (!$this->container->has('webhook.repository')) {
  268.             throw new ServiceNotFoundException('webhook.repository');
  269.         }
  270.         /** @var WebhookCollection $webhooks */
  271.         $webhooks $this->container->get('webhook.repository')->search($criteriaContext::createDefaultContext())->getEntities();
  273.         return $this->webhooks $webhooks;
  274.     }
  276.     private function isEventDispatchingAllowed(AppEntity $appHookable $event, array $affectedRoles): bool
  277.     {
  278.         // Only app lifecycle hooks can be received if app is deactivated
  279.         if (!$app->isActive() && !($event instanceof AppChangedEvent || $event instanceof AppDeletedEvent)) {
  280.             return false;
  281.         }
  283.         if (!($this->privileges[$event->getName()] ?? null)) {
  284.             $this->loadPrivileges($event->getName(), $affectedRoles);
  285.         }
  287.         $privileges $this->privileges[$event->getName()][$app->getAclRoleId()]
  288.             ?? new AclPrivilegeCollection([]);
  290.         if (!$event->isAllowed($app->getId(), $privileges)) {
  291.             return false;
  292.         }
  294.         return true;
  295.     }
  297.     private function loadPrivileges(string $eventName, array $affectedRoleIds): void
  298.     {
  299.         $roles $this->connection->fetchAll('
  300.             SELECT `id`, `privileges`
  301.             FROM `acl_role`
  302.             WHERE `id` IN (:aclRoleIds)
  303.         ', ['aclRoleIds' => $affectedRoleIds], ['aclRoleIds' => Connection::PARAM_STR_ARRAY]);
  305.         if (!$roles) {
  306.             $this->privileges[$eventName] = [];
  307.         }
  309.         foreach ($roles as $privilege) {
  310.             $this->privileges[$eventName][Uuid::fromBytesToHex($privilege['id'])]
  311.                 = new AclPrivilegeCollection(json_decode($privilege['privileges'], true));
  312.         }
  313.     }
  315.     private function getShopIdProvider(): ShopIdProvider
  316.     {
  317.         if (!$this->container->has(ShopIdProvider::class)) {
  318.             throw new ServiceNotFoundException(ShopIdProvider::class);
  319.         }
  321.         return $this->container->get(ShopIdProvider::class);
  322.     }
  323. }