src/Core/Framework/Store/Api/StoreController.php line 85

  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Store\Api;
  5. use GuzzleHttp\Exception\ClientException;
  6. use Shopware\Core\Framework\Api\Context\AdminApiSource;
  7. use Shopware\Core\Framework\Api\Context\Exception\InvalidContextSourceException;
  8. use Shopware\Core\Framework\Api\Context\Exception\InvalidContextSourceUserException;
  9. use Shopware\Core\Framework\Context;
  10. use Shopware\Core\Framework\DataAbstractionLayer\EntityRepository;
  11. use Shopware\Core\Framework\DataAbstractionLayer\Search\Criteria;
  12. use Shopware\Core\Framework\Log\Package;
  13. use Shopware\Core\Framework\Store\Exception\StoreApiException;
  14. use Shopware\Core\Framework\Store\Exception\StoreInvalidCredentialsException;
  15. use Shopware\Core\Framework\Store\Exception\StoreTokenMissingException;
  16. use Shopware\Core\Framework\Store\Services\AbstractExtensionDataProvider;
  17. use Shopware\Core\Framework\Store\Services\StoreClient;
  18. use Shopware\Core\System\User\UserEntity;
  19. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  20. use Symfony\Component\HttpFoundation\JsonResponse;
  21. use Symfony\Component\HttpFoundation\Request;
  22. use Symfony\Component\HttpFoundation\Response;
  23. use Symfony\Component\Routing\Annotation\Route;
  25. /**
  26.  * @internal
  27.  */
  28. #[Route(defaults: ['_routeScope' => ['api']])]
  29. #[Package('merchant-services')]
  30. class StoreController extends AbstractController
  31. {
  32.     public function __construct(private readonly StoreClient $storeClient, private readonly EntityRepository $userRepository, private readonly AbstractExtensionDataProvider $extensionDataProvider)
  33.     {
  34.     }
  36.     #[Route(path'/api/_action/store/login'name'api.custom.store.login'methods: ['POST'])]
  37.     public function login(Request $requestContext $context): JsonResponse
  38.     {
  39.         $shopwareId $request->request->get('shopwareId');
  40.         $password $request->request->get('password');
  42.         if (!\is_string($shopwareId) || !\is_string($password)) {
  43.             throw new StoreInvalidCredentialsException();
  44.         }
  46.         try {
  47.             $this->storeClient->loginWithShopwareId($shopwareId$password$context);
  48.         } catch (ClientException $exception) {
  49.             throw new StoreApiException($exception);
  50.         }
  52.         return new JsonResponse();
  53.     }
  55.     #[Route(path'/api/_action/store/checklogin'name'api.custom.store.checklogin'methods: ['POST'])]
  56.     public function checkLogin(Context $context): Response
  57.     {
  58.         try {
  59.             // Throws StoreTokenMissingException if no token is present
  60.             $this->getUserStoreToken($context);
  62.             $userInfo $this->storeClient->userInfo($context);
  64.             return new JsonResponse([
  65.                 'userInfo' => $userInfo,
  66.             ]);
  67.         } catch (StoreTokenMissingException|ClientException) {
  68.             return new JsonResponse([
  69.                 'userInfo' => null,
  70.             ]);
  71.         }
  72.     }
  74.     #[Route(path'/api/_action/store/logout'name'api.custom.store.logout'methods: ['POST'])]
  75.     public function logout(Context $context): Response
  76.     {
  77.         $context->scope(Context::SYSTEM_SCOPE, function ($context): void {
  78.             $this->userRepository->update([['id' => $context->getSource()->getUserId(), 'storeToken' => null]], $context);
  79.         });
  81.         return new Response();
  82.     }
  84.     #[Route(path'/api/_action/store/updates'name'api.custom.store.updates'methods: ['GET'])]
  85.     public function getUpdateList(Context $context): JsonResponse
  86.     {
  87.         $extensions $this->extensionDataProvider->getInstalledExtensions($contextfalse);
  89.         try {
  90.             $updatesList $this->storeClient->getExtensionUpdateList($extensions$context);
  91.         } catch (ClientException $exception) {
  92.             throw new StoreApiException($exception);
  93.         }
  95.         return new JsonResponse([
  96.             'items' => $updatesList,
  97.             'total' => \count($updatesList),
  98.         ]);
  99.     }
  101.     #[Route(path'/api/_action/store/license-violations'name'api.custom.store.license-violations'methods: ['POST'])]
  102.     public function getLicenseViolations(Request $requestContext $context): JsonResponse
  103.     {
  104.         $extensions $this->extensionDataProvider->getInstalledExtensions($contextfalse);
  106.         $indexedExtensions = [];
  108.         foreach ($extensions as $extension) {
  109.             $name $extension->getName();
  110.             $indexedExtensions[$name] = [
  111.                 'name' => $name,
  112.                 'version' => $extension->getVersion(),
  113.                 'active' => $extension->getActive(),
  114.             ];
  115.         }
  117.         try {
  118.             $violations $this->storeClient->getLicenseViolations($context$indexedExtensions$request->getHost());
  119.         } catch (ClientException $exception) {
  120.             throw new StoreApiException($exception);
  121.         }
  123.         return new JsonResponse([
  124.             'items' => $violations,
  125.             'total' => \count($violations),
  126.         ]);
  127.     }
  129.     #[Route(path'/api/_action/store/plugin/search'name'api.action.store.plugin.search'methods: ['POST'])]
  130.     public function searchPlugins(Request $requestContext $context): Response
  131.     {
  132.         $extensions $this->extensionDataProvider->getInstalledExtensions($contextfalse);
  134.         try {
  135.             $this->storeClient->checkForViolations($context$extensions$request->getHost());
  136.         } catch (\Exception) {
  137.         }
  139.         return new JsonResponse([
  140.             'total' => $extensions->count(),
  141.             'items' => $extensions,
  142.         ]);
  143.     }
  145.     protected function getUserStoreToken(Context $context): string
  146.     {
  147.         $contextSource $context->getSource();
  149.         if (!$contextSource instanceof AdminApiSource) {
  150.             throw new InvalidContextSourceException(AdminApiSource::class, $contextSource::class);
  151.         }
  153.         $userId $contextSource->getUserId();
  154.         if ($userId === null) {
  155.             throw new InvalidContextSourceUserException($contextSource::class);
  156.         }
  158.         /** @var UserEntity|null $user */
  159.         $user $this->userRepository->search(new Criteria([$userId]), $context)->first();
  161.         if ($user === null) {
  162.             throw new StoreTokenMissingException();
  163.         }
  165.         $storeToken $user->getStoreToken();
  166.         if ($storeToken === null) {
  167.             throw new StoreTokenMissingException();
  168.         }
  170.         return $storeToken;
  171.     }
  172. }