custom/plugins/PickwareWms/vendor/pickware/mobile-app-auth-bundle/src/Model/Subscriber/MobileAppAuthAclRoleWriteRestrictor.php line 36

Open in your IDE?
  1. <?php
  2. /*
  3.  * Copyright (c) Pickware GmbH. All rights reserved.
  4.  * This file is part of software that is released under a proprietary license.
  5.  * You must not copy, modify, distribute, make publicly available, or execute
  6.  * its contents or parts thereof without express permission by the copyright
  7.  * holder, unless otherwise permitted by law.
  8.  */
  10. declare(strict_types=1);
  12. namespace Pickware\MobileAppAuthBundle\Model\Subscriber;
  14. use Pickware\DalBundle\EntityPreWriteValidationEvent;
  15. use Pickware\DalBundle\EntityPreWriteValidationEventDispatcher;
  16. use Pickware\MobileAppAuthBundle\Installation\Steps\UpsertMobileAppAclRoleInstallationStep;
  17. use Shopware\Core\Framework\Api\Acl\Role\AclRoleDefinition;
  18. use Shopware\Core\Framework\Api\Acl\Role\AclUserRoleDefinition;
  19. use Shopware\Core\Framework\Validation\WriteConstraintViolationException;
  20. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  21. use Symfony\Component\Validator\ConstraintViolation;
  22. use Symfony\Component\Validator\ConstraintViolationList;
  24. class MobileAppAuthAclRoleWriteRestrictor implements EventSubscriberInterface
  25. {
  26.     private const ERROR_CODE_NAMESPACE 'PICKWARE_MOBILE_APP_AUTH_BUNDLE__WRITE_RESTRICTOR';
  28.     public static function getSubscribedEvents(): array
  29.     {
  30.         return [
  31.             EntityPreWriteValidationEventDispatcher::getEventName(AclRoleDefinition::ENTITY_NAME) => 'restrictWriteOnMobileAppAuthRole',
  32.             EntityPreWriteValidationEventDispatcher::getEventName(AclUserRoleDefinition::ENTITY_NAME) => 'restrictWriteOnMobileAppAuthRole',
  33.         ];
  34.     }
  36.     public function restrictWriteOnMobileAppAuthRole($event): void
  37.     {
  38.         if (!($event instanceof EntityPreWriteValidationEvent)) {
  39.             // The subscriber is probably instantiated in its old version (with the Shopware PreWriteValidationEvent) in
  40.             // the container and will be updated on the next container rebuild (next request). Early return.
  41.             return;
  42.         }
  44.         $commands $event->getCommands();
  45.         $violations = new ConstraintViolationList();
  47.         foreach ($commands as $command) {
  48.             $className $command->getDefinition()->getClass();
  49.             if (!(
  50.                     $className === AclRoleDefinition::class
  51.                     && $command->getPrimaryKey()['id'] === UpsertMobileAppAclRoleInstallationStep::MOBILE_APP_ACL_ROLE_ID_BIN
  52.                 ) && !(
  53.                     $className == AclUserRoleDefinition::class
  54.                     && $command->getPrimaryKey()['acl_role_id'] === UpsertMobileAppAclRoleInstallationStep::MOBILE_APP_ACL_ROLE_ID_BIN
  55.             )) {
  56.                 continue;
  57.             }
  59.             $entityName $command->getDefinition()->getEntityName();
  60.             $message 'The pickware mobile app auth acl role should not be deleted, updated or assigned to a user.';
  61.             $violations->add(new ConstraintViolation(
  62.                 $message,
  63.                 $message,
  64.                 [],
  65.                 null,
  66.                 '/',
  67.                 null,
  68.                 null,
  69.                 sprintf(
  70.                     '%s__%s',
  71.                     self::ERROR_CODE_NAMESPACE,
  72.                     mb_strtoupper($entityName),
  73.                 ),
  74.             ));
  75.         }
  77.         if ($violations->count() > 0) {
  78.             $event->addViolation(new WriteConstraintViolationException($violations));
  79.         }
  80.     }
  81. }