custom/plugins/b2bsellerscore/src/Components/B2bPlatform/Subscriber/ResponseSubscriber.php line 104

Open in your IDE?
  1. <?php
  3. namespace B2bSellersCore\Components\B2bPlatform\Subscriber;
  5. use B2bSellersCore\Components\B2bPlatform\Events\BeforeB2bRedirectAccountPageEvent;
  6. use B2bSellersCore\Components\B2bPlatform\Events\BeforeB2bRedirectEmployeeCreationPageEvent;
  7. use B2bSellersCore\Components\B2bPlatform\Events\BeforeB2bRedirectEmployeeFirstAdminEvent;
  8. use B2bSellersCore\Components\B2bPlatform\Events\BeforeB2bRedirectEvent;
  9. use B2bSellersCore\Components\B2bPlatform\Events\BeforeB2bRedirectSalesRepresentativeEvent;
  10. use B2bSellersCore\Components\B2bPlatform\Traits\B2bContextTrait;
  11. use B2bSellersCore\Components\Employee\Aggregate\EmployeeCustomer\EmployeeCustomerCollection;
  12. use B2bSellersCore\Storefront\Page\B2bCreateEmployee\B2bCreateEmployeePage;
  13. use B2bSellersCore\Storefront\Page\B2bPlatform\B2bPlatformPage;
  14. use B2bSellersCore\Storefront\Page\B2bSelectEmployeeAdministrator\B2bSelectEmployeeAdministratorPage;
  15. use Shopware\Core\Content\Cms\CmsPageEntity;
  16. use Shopware\Core\Framework\DataAbstractionLayer\EntityRepositoryInterface;
  17. use Shopware\Core\Framework\DataAbstractionLayer\Search\Criteria;
  18. use Shopware\Core\Framework\DataAbstractionLayer\Search\Filter\EqualsFilter;
  19. use Shopware\Core\System\SalesChannel\SalesChannelContext;
  20. use Shopware\Core\System\SystemConfig\SystemConfigService;
  21. use Shopware\Storefront\Framework\Routing\StorefrontResponse;
  22. use Shopware\Storefront\Page\Account\Order\AccountOrderPage;
  23. use Shopware\Storefront\Page\Account\Overview\AccountOverviewPage;
  24. use Shopware\Storefront\Page\Account\Profile\AccountProfilePage;
  25. use Shopware\Storefront\Page\Address\Detail\AddressDetailPage;
  26. use Shopware\Storefront\Page\Address\Listing\AddressListingPage;
  27. use Shopware\Storefront\Page\Checkout\Offcanvas\OffcanvasCartPage;
  28. use Shopware\Storefront\Page\Page;
  29. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  30. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  31. use Symfony\Component\HttpFoundation\RedirectResponse;
  32. use Symfony\Component\HttpFoundation\Request;
  33. use Symfony\Component\HttpKernel\Event\ResponseEvent;
  34. use Symfony\Component\HttpKernel\HttpKernelInterface;
  35. use Symfony\Component\HttpKernel\KernelEvents;
  36. use Symfony\Component\Routing\RouterInterface;
  38. class ResponseSubscriber implements EventSubscriberInterface
  39. {
  40.     use B2bContextTrait;
  42.     public const SALES_REPRESENTATIVE_PAGE_WHITELIST = [
  43.         B2bPlatformPage::class,
  44.         OffcanvasCartPage::class
  45.     ];
  47.     public const SW_LOGIN_PAGE_WHITELIST = [
  48.         'frontend.account.login',
  49.         'frontend.account.login.page',
  50.         'frontend.account.recover.page',
  51.         'frontend.b2b_create_employee_invitation.page'
  52.     ];
  54.     public const B2B_LOGIN_PAGE_WHITELIST = [
  55.         'frontend.b2b_account.login.page',
  56.         'frontend.b2b_account.login.login'
  57.     ];
  59.     public const B2B_GENERAL_PAGE_WHITELIST = [
  60.         'frontend.b2b_account_activation.page',
  61.         'frontend.b2b_employee.recover.password.page',
  62.         'frontend.b2b_employee.recover.password.reset',
  63.         'frontend.b2b_account.registration.page',
  64.         'frontend.b2b_account.registration.register',
  65.         'frontend.b2b_passwordless_login.page',
  66.         'frontend.b2b_passwordless_login.post',
  67.         'frontend.b2b_account.registration.register',
  68.         'frontend.b2b_account.registration.save',
  69.         'frontend.b2b_create_employee_invitation.page',
  70.         'frontend.b2b_passwordless_login.page'
  71.     ];
  73.     public const ROUTE_CREATE_EMPLOYEE 'frontend.b2b_create_employee';
  74.     public const ROUTE_B2B_PLATFORM 'frontend.b2b_platform.index';
  75.     public const ROUTE_B2B_PLATFORM_PATH 'frontend.b2b_platform.path';
  76.     public const ROUTE_SELECT_EMPLOYEE_ADMINISTRATOR 'frontend.b2b_select_employee_admin';
  78.     private RouterInterface $router;
  79.     private SystemConfigService $configService;
  80.     private array $config;
  81.     private EntityRepositoryInterface $employeeCustomerRepository;
  82.     private EventDispatcherInterface $eventDispatcher;
  84.     public function __construct(
  85.         EventDispatcherInterface  $eventDispatcher,
  86.         RouterInterface           $router,
  87.         SystemConfigService       $configService,
  88.         EntityRepositoryInterface $employeeCustomerRepository
  89.     )
  90.     {
  91.         $this->eventDispatcher $eventDispatcher;
  92.         $this->router $router;
  93.         $this->configService $configService;
  94.         $this->employeeCustomerRepository $employeeCustomerRepository;
  95.     }
  97.     public static function getSubscribedEvents(): array
  98.     {
  99.         return [
  100.             KernelEvents::RESPONSE => 'onKernelResponse',
  101.         ];
  102.     }
  104.     public function onKernelResponse(ResponseEvent $event)
  105.     {
  106.         if($this->isWatcherProxyRequest($event->getRequest())) {
  107.             return;
  108.         }
  110.         if($event->getRequestType() === HttpKernelInterface::SUB_REQUEST) {
  111.             return;
  112.         }
  114.         if (!$event->getResponse() instanceof StorefrontResponse) {
  115.             return;
  116.         }
  117.     
  118.         /** @var SalesChannelContext $context */
  119.         $context $event->getResponse()->getContext();
  121.         if (empty($context)) {
  122.             $this->config $this->getPluginConfig();
  123.         } else {
  124.             $this->config $this->getPluginConfig($context->getSalesChannelId());
  125.         }
  127.         if (empty($context) || empty($context->getCustomer())) {
  128.             $this->checkShopAccessibility($event);
  129.             return;
  130.         }
  132.         if (!$this->hasB2bPlatformContext($context)) {
  133.             return;
  134.         }
  136.         $responseData $event->getResponse()->getData();
  138.         if (!isset($responseData['page']) || !$responseData['page'] instanceof Page) {
  139.             return;
  140.         }
  142.         $this->eventDispatcher->dispatch(new BeforeB2bRedirectEvent($context));
  144.         $page $responseData['page'];
  146.         $b2bPlatformContext $this->getB2bPlatformContext($context);
  147.         $isSalesRepresentative = !$this->isSalesRepresentativeLoggedInAsCustomer($context) && $b2bPlatformContext->isSalesRepresentative();
  149.         /**
  150.          *  As B2b Customer select first employee administrator if not set
  151.          */
  152.         $this->eventDispatcher->dispatch(new BeforeB2bRedirectEmployeeFirstAdminEvent($context));
  154.         if (!$b2bPlatformContext->isEmployee() && !$isSalesRepresentative && $this->employeeExists($context)) {
  155.             if ($page instanceof B2bSelectEmployeeAdministratorPage || $page instanceof OffcanvasCartPage) {
  156.                 return;
  157.             }
  159.             if (!$this->employeeAdministratorExists($context)) {
  160.                 return;
  161.             }
  163.             $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_SELECT_EMPLOYEE_ADMINISTRATOR));
  164.             $event->setResponse($redirectResponse);
  165.             return;
  166.         }
  168.         /**
  169.          * Redirect B2b Customers without employees to the employee creation
  170.          */
  171.         $this->eventDispatcher->dispatch(new BeforeB2bRedirectEmployeeCreationPageEvent($context));
  173.         if (!$b2bPlatformContext->isEmployee() && !$isSalesRepresentative) {
  174.             if ($page instanceof B2bCreateEmployeePage || $page instanceof OffcanvasCartPage) {
  175.                 return;
  176.             }
  178.             $request $event->getRequest();
  179.             $params = [];
  181.             if(($route $request->attributes->get('_route')) !== self::ROUTE_CREATE_EMPLOYEE) {
  182.                 $params = [
  183.                     'redirectTo' => $route,
  184.                     'redirectParameters' => json_encode($request->attributes->get('_route_params'))
  185.                 ];
  186.             }
  188.             $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_CREATE_EMPLOYEE$params));
  189.             $event->setResponse($redirectResponse);
  190.             return;
  191.         }
  193.         /**
  194.          * Redirect b2b customer from the account page to the b2b platform page
  195.          */
  196.         $this->eventDispatcher->dispatch(new BeforeB2bRedirectAccountPageEvent($context));
  198.         if ($b2bPlatformContext->isEmployee() && !$b2bPlatformContext->isSalesRepresentative()) {
  199.             if ($page instanceof AccountOverviewPage) {
  200.                 $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_B2B_PLATFORM_PATH, [
  201.                     'path' => 'account'
  202.                 ]));
  203.                 $event->setResponse($redirectResponse);
  204.                 return;
  205.             }
  207.             if ($page instanceof AccountOrderPage) {
  208.                 $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_B2B_PLATFORM_PATH, [
  209.                     'path' => 'order'
  210.                 ]));
  211.                 $event->setResponse($redirectResponse);
  212.                 return;
  213.             }
  215.             if ($page instanceof AccountProfilePage) {
  216.                 $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_B2B_PLATFORM_PATH, [
  217.                     'path' => 'account'
  218.                 ]));
  219.                 $event->setResponse($redirectResponse);
  220.                 return;
  221.             }
  223.             if ($page instanceof AddressListingPage) {
  224.                 $request $event->getRequest();
  226.                 if ($request->getPathInfo() !== '/account/address') {
  227.                     return;
  228.                 }
  230.                 $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_B2B_PLATFORM_PATH, [
  231.                     'path' => 'address'
  232.                 ]));
  233.                 $event->setResponse($redirectResponse);
  234.                 return;
  235.             }
  237.             if ($page instanceof AddressDetailPage) {
  238.                 $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_B2B_PLATFORM_PATH, [
  239.                     'path' => 'address/' $page->getAddress()->getId()
  240.                 ]));
  242.                 $event->setResponse($redirectResponse);
  243.                 return;
  244.             }
  246.         }
  248.         /**
  249.          * Redirect sales representative to his allowed routes
  250.          */
  251.         $this->eventDispatcher->dispatch(new BeforeB2bRedirectSalesRepresentativeEvent($context));
  253.         if ($isSalesRepresentative) {
  254.             if (in_array(get_class($page), self::SALES_REPRESENTATIVE_PAGE_WHITELIST)) {
  255.                 return;
  256.             }
  258.             $redirectResponse = new RedirectResponse($this->router->generate(self::ROUTE_B2B_PLATFORM));
  259.             $event->setResponse($redirectResponse);
  260.         }
  261.     }
  263.     private function checkShopAccessibility(ResponseEvent $event)
  264.     {
  265.         $closedShopControllerWhitelist = [];
  267.         if (isset($this->config) && isset($this->config['closedShopControllerWhitelist'])) {
  268.             $closedShopControllerWhitelist preg_split("/\r\n|\n|\r/"$this->config['closedShopControllerWhitelist']);
  269.         }
  271.         if (in_array($event->getRequest()->get('_route'), self::SW_LOGIN_PAGE_WHITELIST)) {
  272.             if ($event->getRequest()->get('_route') === 'frontend.account.login.page' &&
  273.                 !in_array($this->config['closedShopRedirectTarget'], self::SW_LOGIN_PAGE_WHITELIST)
  274.             ) {
  275.                 if (isset($this->config['closedShop']) && $this->config['closedShop'] === true) {
  276.                     $this->generateRouteResponse($event);
  277.                 }
  278.             }
  279.             return;
  280.         }
  282.         if (!isset($this->config['closedShop']) || $this->config['closedShop'] !== true) {
  283.             if (in_array($event->getRequest()->get('_route'), self::B2B_LOGIN_PAGE_WHITELIST)) {
  284.                 $redirectResponse = new RedirectResponse($this->router->generate('frontend.account.login'));
  285.                 $event->setResponse($redirectResponse);
  286.             }
  288.             return;
  289.         }
  291.         if (in_array($event->getRequest()->get('_route'), self::B2B_LOGIN_PAGE_WHITELIST)) {
  292.             return;
  293.         }
  295.         if (in_array($event->getRequest()->get('_route'), self::B2B_GENERAL_PAGE_WHITELIST)) {
  296.             return;
  297.         }
  299.         if (in_array($event->getRequest()->get('_route'), $closedShopControllerWhitelist)) {
  300.             return;
  301.         }
  303.         if (isset($this->config['closedShopWhitelist'])) {
  304.             $responseData $event->getResponse()->getData();
  306.             /** @var Page|null $page */
  307.             $page $responseData['page'] ?? null;
  309.             /** @var CmsPageEntity $cmsPage */
  310.             $cmsPage $responseData['cmsPage'] ?? null;
  312.             if (empty($page) && empty($cmsPage)) {
  313.                 return;
  314.             }
  316.             // check if page is in whitelist
  317.             if (isset($page) && method_exists($page,
  318.                     'getCmsPage') && $page->getCmsPage() !== null && in_array($page->getCmsPage()->getId(),
  319.                     $this->config['closedShopWhitelist'])) {
  320.                 return;
  321.             }
  323.             // check if cms page is in whitelist
  324.             if (isset($cmsPage) && in_array($cmsPage->getId(), $this->config['closedShopWhitelist'])) {
  325.                 return;
  326.             }
  327.         }
  329.         if (isset($responseData['cookieGroups'])) {
  330.             return;
  331.         }
  333.         $this->generateRouteResponse($event);
  334.     }
  336.     private function generateRouteResponse(ResponseEvent $event)
  337.     {
  338.         $redirectResponse = new RedirectResponse($this->router->generate('frontend.account.login'));
  340.         if (isset($this->config['closedShopRedirectTarget'])) {
  341.             $redirectResponse = new RedirectResponse($this->router->generate($this->config['closedShopRedirectTarget']));
  342.         }
  344.         $event->setResponse($redirectResponse);
  345.     }
  347.     private function getPluginConfig(?string $salesChannelId null): array
  348.     {
  349.         return $this->configService->get('B2bSellersCore.config'$salesChannelId);
  350.     }
  352.     private function employeeAdministratorExists(SalesChannelContext $context): bool
  353.     {
  354.         $criteria = new Criteria();
  355.         $criteria->addFilter(new EqualsFilter('customerId'$context->getCustomer()->getId()));
  357.         /** @var EmployeeCustomerCollection $employeeCustomers */
  358.         $employeeCustomers $this->employeeCustomerRepository->search($criteria,
  359.             $context->getContext())->getEntities();
  361.         return $employeeCustomers->getAdmins()->count() <= 0;
  362.     }
  364.     private function employeeExists(SalesChannelContext $context): bool
  365.     {
  366.         $criteria = new Criteria();
  367.         $criteria->addFilter(new EqualsFilter('customerId'$context->getCustomer()->getId()));
  369.         /** @var EmployeeCustomerCollection $employeeCustomers */
  370.         $employeeCustomers $this->employeeCustomerRepository->search($criteria,
  371.             $context->getContext())->getEntities();
  373.         return $employeeCustomers->count() > 0;
  374.     }
  376.     private function isWatcherProxyRequest(Request $request): bool
  377.     {
  378.         if($request->headers->get('x-b2b-platform-watcher') !== '1') {
  379.             return false;
  380.         }
  382.         $referer $request->headers->get('referer');
  384.         if(empty($referer)) {
  385.             return false;
  386.         }
  388.         if(!filter_var($refererFILTER_VALIDATE_URL)) {
  389.             return false;
  390.         }
  392.         $port parse_url($referer)['port'] ?? null;
  394.         return $port === 9998;
  395.     }
  396. }