vendor/shopware/core/Framework/Api/Acl/AclAnnotationValidator.php line 25

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Api\Acl;
  5. use Shopware\Core\Framework\Api\Exception\MissingPrivilegeException;
  6. use Shopware\Core\Framework\Context;
  7. use Shopware\Core\Framework\Routing\Annotation\Acl;
  8. use Shopware\Core\Framework\Routing\KernelListenerPriorities;
  9. use Shopware\Core\PlatformRequest;
  10. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  11. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  12. use Symfony\Component\HttpKernel\KernelEvents;
  14. class AclAnnotationValidator implements EventSubscriberInterface
  15. {
  16.     public static function getSubscribedEvents()
  17.     {
  18.         return [
  19.             KernelEvents::CONTROLLER => [
  20.                 ['validate'KernelListenerPriorities::KERNEL_CONTROLLER_EVENT_SCOPE_VALIDATE],
  21.             ],
  22.         ];
  23.     }
  25.     public function validate(ControllerEvent $event): void
  26.     {
  27.         $request $event->getRequest();
  29.         $acl $request->attributes->get('_acl');
  31.         if (!$acl || !($acl instanceof Acl)) {
  32.             return;
  33.         }
  35.         $privileges $acl->getValue();
  37.         $context $request->attributes->get(PlatformRequest::ATTRIBUTE_CONTEXT_OBJECT);
  38.         if ($context === null) {
  39.             throw new MissingPrivilegeException([]);
  40.         }
  42.         /* @var Context $context */
  43.         foreach ($privileges as $privilege) {
  44.             if (!$context->isAllowed($privilege)) {
  45.                 throw new MissingPrivilegeException([$privilege]);
  46.             }
  47.         }
  48.     }
  49. }