vendor/shopware/storefront/Framework/Routing/StorefrontSubscriber.php line 412

  1.             return;
  2.         }
  3.         if (!$master->attributes->get(SalesChannelRequest::ATTRIBUTE_IS_SALES_CHANNEL_REQUEST)) {
  4.             return;
  5.         }
  7.         if (!$master->hasSession()) {
  8.             return;
  9.         }
  11.         $session $master->getSession();
  13.         if (!$session->isStarted()) {
  14.             $session->setName('session-');
  15.             $session->start();
  16.             $session->set('sessionId'$session->getId());
  17.         }
  19.         $salesChannelId $master->attributes->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_ID);
  20.         if ($salesChannelId === null) {
  21.             /** @var SalesChannelContext|null $salesChannelContext */
  22.             $salesChannelContext $master->attributes->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_CONTEXT_OBJECT);
  23.             if ($salesChannelContext !== null) {
  24.                 $salesChannelId $salesChannelContext->getSalesChannel()->getId();
  25.             }
  26.         }
  28.         if ($this->shouldRenewToken($session$salesChannelId)) {
  29.             $token Random::getAlphanumericString(32);
  30.             $session->set(PlatformRequest::HEADER_CONTEXT_TOKEN$token);
  31.             $session->set(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_ID$salesChannelId);
  32.         }
  34.         $master->headers->set(
  35.             PlatformRequest::HEADER_CONTEXT_TOKEN,
  36.             $session->get(PlatformRequest::HEADER_CONTEXT_TOKEN)
  37.         );
  38.     }
  40.     public function updateSessionAfterLogin(CustomerLoginEvent $event): void
  41.     {
  42.         $token $event->getContextToken();
  44.         $this->updateSession($token);
  45.     }
  47.     public function updateSessionAfterLogout(): void
  48.     {
  49.         $newToken Random::getAlphanumericString(32);
  51.         $this->updateSession($newTokentrue);
  52.     }
  54.     public function updateSession(string $tokenbool $destroyOldSession false): void
  55.     {
  56.         $master $this->requestStack->getMainRequest();
  57.         if (!$master) {
  58.             return;
  59.         }
  60.         if (!$master->attributes->get(SalesChannelRequest::ATTRIBUTE_IS_SALES_CHANNEL_REQUEST)) {
  61.             return;
  62.         }
  64.         if (!$master->hasSession()) {
  65.             return;
  66.         }
  68.         $session $master->getSession();
  69.         $session->migrate($destroyOldSession);
  70.         $session->set('sessionId'$session->getId());
  72.         $session->set(PlatformRequest::HEADER_CONTEXT_TOKEN$token);
  73.         $master->headers->set(PlatformRequest::HEADER_CONTEXT_TOKEN$token);
  74.     }
  76.     public function customerNotLoggedInHandler(ExceptionEvent $event): void
  77.     {
  78.         if (!$event->getRequest()->attributes->has(SalesChannelRequest::ATTRIBUTE_IS_SALES_CHANNEL_REQUEST)) {
  79.             return;
  80.         }
  82.         if (!$event->getThrowable() instanceof CustomerNotLoggedInException) {
  83.             return;
  84.         }
  86.         $request $event->getRequest();
  88.         $parameters = [
  89.             'redirectTo' => $request->attributes->get('_route'),
  90.             'redirectParameters' => json_encode($request->attributes->get('_route_params'), \JSON_THROW_ON_ERROR),
  91.         ];
  93.         $redirectResponse = new RedirectResponse($this->router->generate('frontend.account.login.page'$parameters));
  95.         $event->setResponse($redirectResponse);
  96.     }
  98.     public function maintenanceResolver(RequestEvent $event): void
  99.     {
  100.         if ($this->maintenanceModeResolver->shouldRedirect($event->getRequest())) {
  101.             $event->setResponse(
  102.                 new RedirectResponse(
  103.                     $this->router->generate('frontend.maintenance.page'),
  104.                     RedirectResponse::HTTP_TEMPORARY_REDIRECT
  105.                 )
  106.             );
  107.         }
  108.     }
  110.     public function preventPageLoadingFromXmlHttpRequest(ControllerEvent $event): void
  111.     {
  112.         if (!$event->getRequest()->isXmlHttpRequest()) {
  113.             return;
  114.         }
  116.         /** @var list<string> $scope */
  117.         $scope $event->getRequest()->attributes->get(PlatformRequest::ATTRIBUTE_ROUTE_SCOPE, []);
  119.         if (!\in_array(StorefrontRouteScope::ID$scopetrue)) {
  120.             return;
  121.         }
  123.         /** @var callable(): Response $controller */
  124.         $controller $event->getController();
  126.         // happens if Controller is a closure
  127.         if (!\is_array($controller)) {
  128.             return;
  129.         }
  131.         $isAllowed $event->getRequest()->attributes->getBoolean('XmlHttpRequest');
  133.         if ($isAllowed) {
  134.             return;
  135.         }
  137.         throw new AccessDeniedHttpException('PageController can\'t be requested via XmlHttpRequest.');
  138.     }
  140.     // used to switch session token - when the context token expired
  141.     public function replaceContextToken(SalesChannelContextResolvedEvent $event): void
  142.     {
  143.         $context $event->getSalesChannelContext();
  145.         // only update session if token expired and switched
  146.         if ($event->getUsedToken() === $context->getToken()) {
  147.             return;
  148.         }
  150.         $this->updateSession($context->getToken());
  151.     }
  153.     public function addHreflang(StorefrontRenderEvent $event): void
  154.     {
  155.         $request $event->getRequest();
  156.         $route $request->attributes->get('_route');
  158.         if ($route === null) {
  159.             return;
  160.         }
  162.         $routeParams $request->attributes->get('_route_params', []);
  163.         $salesChannelContext $request->attributes->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_CONTEXT_OBJECT);
  164.         $parameter = new HreflangLoaderParameter($route$routeParams$salesChannelContext);
  165.         $event->setParameter('hrefLang'$this->hreflangLoader->load($parameter));
  166.     }
  168.     public function addShopIdParameter(StorefrontRenderEvent $event): void
  169.     {
  170.         if (!$this->activeAppsLoader->getActiveApps()) {
  171.             return;
  172.         }
  174.         try {
  175.             $shopId $this->shopIdProvider->getShopId();
  176.         } catch (AppUrlChangeDetectedException) {
  177.             return;
  178.         }
  180.         $event->setParameter('appShopId'$shopId);
  181.     }
  183.     public function addIconSetConfig(StorefrontRenderEvent $event): void
  184.     {
  185.         $request $event->getRequest();
  187.         // get name if theme is not inherited
  188.         $theme $request->attributes->get(SalesChannelRequest::ATTRIBUTE_THEME_NAME);
  190.         if (!$theme) {
  191.             // get theme name from base theme because for inherited themes the name is always null
  192.             $theme $request->attributes->get(SalesChannelRequest::ATTRIBUTE_THEME_BASE_NAME);
  193.         }
  195.         if (!$theme) {
  196.             return;
  197.         }
  199.         $themeConfig $this->themeRegistry->getConfigurations()->getByTechnicalName($theme);
  201.         if (!$themeConfig) {
  202.             return;
  203.         }
  205.         $iconConfig = [];
  206.         foreach ($themeConfig->getIconSets() as $pack => $path) {
  207.             $iconConfig[$pack] = [
  208.                 'path' => $path,
  209.                 'namespace' => $theme,
  210.             ];
  211.         }
  213.         $event->setParameter('themeIconConfig'$iconConfig);
  214.     }
  216.     private function shouldRenewToken(SessionInterface $session, ?string $salesChannelId null): bool
  217.     {
  218.         if (!$session->has(PlatformRequest::HEADER_CONTEXT_TOKEN) || $salesChannelId === null) {
  219.             return true;
  220.         }
  222.         if ($this->systemConfigService->get('core.systemWideLoginRegistration.isCustomerBoundToSalesChannel')) {
  223.             return $session->get(PlatformRequest::ATTRIBUTE_SALES_CHANNEL_ID) !== $salesChannelId;
  224.         }
  226.         return false;
  227.     }
  228. }