vendor/shopware/storefront/Framework/Routing/StorefrontSubscriber.php line 424

  1.             ],
  2.         ];
  3.     }
  5.     public function startSession(): void
  6.     {
  7.         $master $this->requestStack->getMainRequest();
  9.         if (!$master) {
  10.             return;
  11.         }
  12.         if (!$master->attributes->get(SalesChannelRequest::ATTRIBUTE_IS_SALES_CHANNEL_REQUEST)) {
  13.             return;
  14.         }
  16.         if (!$master->hasSession()) {
  17.             return;
  18.         }
  20.         $session $master->getSession();
  22.         if (!$session->isStarted()) {
  23.             $session->setName('session-');
  24.             $session->start();
  25.             $session->set('sessionId'$session->getId());
  26.         }
  28.         $salesChannelId $master->attributes->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_ID);
  29.         if ($salesChannelId === null) {
  30.             /** @var SalesChannelContext|null $salesChannelContext */
  31.             $salesChannelContext $master->attributes->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_CONTEXT_OBJECT);
  32.             if ($salesChannelContext !== null) {
  33.                 $salesChannelId $salesChannelContext->getSalesChannel()->getId();
  34.             }
  35.         }
  37.         if ($this->shouldRenewToken($session$salesChannelId)) {
  38.             $token Random::getAlphanumericString(32);
  39.             $session->set(PlatformRequest::HEADER_CONTEXT_TOKEN$token);
  40.             $session->set(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_ID$salesChannelId);
  41.         }
  43.         $master->headers->set(
  44.             PlatformRequest::HEADER_CONTEXT_TOKEN,
  45.             $session->get(PlatformRequest::HEADER_CONTEXT_TOKEN)
  46.         );
  47.     }
  49.     public function updateSessionAfterLogin(CustomerLoginEvent $event): void
  50.     {
  51.         $token $event->getContextToken();
  53.         $this->updateSession($token);
  54.     }
  56.     public function updateSessionAfterLogout(): void
  57.     {
  58.         $newToken Random::getAlphanumericString(32);
  60.         $this->updateSession($newTokentrue);
  61.     }
  63.     public function updateSession(string $tokenbool $destroyOldSession false): void
  64.     {
  65.         $master $this->requestStack->getMainRequest();
  66.         if (!$master) {
  67.             return;
  68.         }
  69.         if (!$master->attributes->get(SalesChannelRequest::ATTRIBUTE_IS_SALES_CHANNEL_REQUEST)) {
  70.             return;
  71.         }
  73.         if (!$master->hasSession()) {
  74.             return;
  75.         }
  77.         $session $master->getSession();
  78.         $session->migrate($destroyOldSession);
  79.         $session->set('sessionId'$session->getId());
  81.         $session->set(PlatformRequest::HEADER_CONTEXT_TOKEN$token);
  82.         $master->headers->set(PlatformRequest::HEADER_CONTEXT_TOKEN$token);
  83.     }
  85.     public function customerNotLoggedInHandler(ExceptionEvent $event): void
  86.     {
  87.         if (!$event->getRequest()->attributes->has(SalesChannelRequest::ATTRIBUTE_IS_SALES_CHANNEL_REQUEST)) {
  88.             return;
  89.         }
  91.         if (!$event->getThrowable() instanceof CustomerNotLoggedInException) {
  92.             return;
  93.         }
  95.         $request $event->getRequest();
  97.         $parameters = [
  98.             'redirectTo' => $request->attributes->get('_route'),
  99.             'redirectParameters' => json_encode($request->attributes->get('_route_params'), \JSON_THROW_ON_ERROR),
  100.         ];
  102.         $redirectResponse = new RedirectResponse($this->router->generate('frontend.account.login.page'$parameters));
  104.         $event->setResponse($redirectResponse);
  105.     }
  107.     public function maintenanceResolver(RequestEvent $event): void
  108.     {
  109.         if ($this->maintenanceModeResolver->shouldRedirect($event->getRequest())) {
  110.             $event->setResponse(
  111.                 new RedirectResponse(
  112.                     $this->router->generate('frontend.maintenance.page'),
  113.                     RedirectResponse::HTTP_TEMPORARY_REDIRECT
  114.                 )
  115.             );
  116.         }
  117.     }
  119.     public function preventPageLoadingFromXmlHttpRequest(ControllerEvent $event): void
  120.     {
  121.         if (!$event->getRequest()->isXmlHttpRequest()) {
  122.             return;
  123.         }
  125.         /** @var list<string> $scope */
  126.         $scope $event->getRequest()->attributes->get(PlatformRequest::ATTRIBUTE_ROUTE_SCOPE, []);
  128.         if (!\in_array(StorefrontRouteScope::ID$scopetrue)) {
  129.             return;
  130.         }
  132.         /** @var callable(): Response $controller */
  133.         $controller $event->getController();
  135.         // happens if Controller is a closure
  136.         if (!\is_array($controller)) {
  137.             return;
  138.         }
  140.         $isAllowed $event->getRequest()->attributes->getBoolean('XmlHttpRequest');
  142.         if ($isAllowed) {
  143.             return;
  144.         }
  146.         throw new AccessDeniedHttpException('PageController can\'t be requested via XmlHttpRequest.');
  147.     }
  149.     // used to switch session token - when the context token expired
  150.     public function replaceContextToken(SalesChannelContextResolvedEvent $event): void
  151.     {
  152.         $context $event->getSalesChannelContext();
  154.         // only update session if token expired and switched
  155.         if ($event->getUsedToken() === $context->getToken()) {
  156.             return;
  157.         }
  159.         $this->updateSession($context->getToken());
  160.     }
  162.     public function setCanonicalUrl(BeforeSendResponseEvent $event): void
  163.     {
  164.         if (!$event->getResponse()->isSuccessful()) {
  165.             return;
  166.         }
  168.         if ($canonical $event->getRequest()->attributes->get(SalesChannelRequest::ATTRIBUTE_CANONICAL_LINK)) {
  169.             \assert(\is_string($canonical));
  170.             $canonical sprintf('<%s>; rel="canonical"'$canonical);
  171.             $event->getResponse()->headers->set('Link'$canonical);
  172.         }
  173.     }
  175.     public function addHreflang(StorefrontRenderEvent $event): void
  176.     {
  177.         $request $event->getRequest();
  178.         $route $request->attributes->get('_route');
  180.         if ($route === null) {
  181.             return;
  182.         }
  184.         $routeParams $request->attributes->get('_route_params', []);
  185.         $salesChannelContext $request->attributes->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_CONTEXT_OBJECT);
  186.         $parameter = new HreflangLoaderParameter($route$routeParams$salesChannelContext);
  187.         $event->setParameter('hrefLang'$this->hreflangLoader->load($parameter));
  188.     }
  190.     public function addShopIdParameter(StorefrontRenderEvent $event): void
  191.     {
  192.         if (!$this->activeAppsLoader->getActiveApps()) {
  193.             return;
  194.         }
  196.         try {
  197.             $shopId $this->shopIdProvider->getShopId();
  198.         } catch (AppUrlChangeDetectedException) {
  199.             return;
  200.         }
  202.         $event->setParameter('appShopId'$shopId);
  203.     }
  205.     public function addIconSetConfig(StorefrontRenderEvent $event): void
  206.     {
  207.         $request $event->getRequest();
  209.         // get name if theme is not inherited
  210.         $theme $request->attributes->get(SalesChannelRequest::ATTRIBUTE_THEME_NAME);
  212.         if (!$theme) {
  213.             // get theme name from base theme because for inherited themes the name is always null
  214.             $theme $request->attributes->get(SalesChannelRequest::ATTRIBUTE_THEME_BASE_NAME);
  215.         }
  217.         if (!$theme) {
  218.             return;
  219.         }
  221.         $themeConfig $this->themeRegistry->getConfigurations()->getByTechnicalName($theme);
  223.         if (!$themeConfig) {
  224.             return;
  225.         }
  227.         $iconConfig = [];
  228.         foreach ($themeConfig->getIconSets() as $pack => $path) {
  229.             $iconConfig[$pack] = [
  230.                 'path' => $path,
  231.                 'namespace' => $theme,
  232.             ];
  233.         }
  235.         $event->setParameter('themeIconConfig'$iconConfig);
  236.     }
  238.     private function shouldRenewToken(SessionInterface $session, ?string $salesChannelId null): bool
  239.     {
  240.         if (!$session->has(PlatformRequest::HEADER_CONTEXT_TOKEN) || $salesChannelId === null) {
  241.             return true;
  242.         }
  244.         if ($this->systemConfigService->get('core.systemWideLoginRegistration.isCustomerBoundToSalesChannel')) {
  245.             return $session->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_ID) !== $salesChannelId;
  246.         }
  248.         return false;
  249.     }
  250. }