Главная Обзор Помощь
Регистрация Вход
chengwenliang
/
newsupernova
2
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: c9405dd336
Ветки Метки
newsupernova
/
vendor
/
magento
/
module-webapi-security
/
Model
/
Plugin
/
AnonymousResourceSecurity.php

AnonymousResourceSecurity.php 2.6 KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Copyright © Magento, Inc. All rights reserved.
    4. 

  4.  * See COPYING.txt for license details.
    5. 

  5.  */
    6. 

  6. namespace Magento\WebapiSecurity\Model\Plugin;
    7. 

  7. 

  8. use Magento\Webapi\Model\Config\Converter;
    9. 

  9. 

  10. class AnonymousResourceSecurity
    11. 

  11. {
    12. 

  12.     /**
    13. 

  13.      * Config path
    14. 

  14.      */
    15. 

  15.     const XML_ALLOW_INSECURE = 'webapi/webapisecurity/allow_insecure';
    16. 

  16. 

  17.     /**
    18. 

  18.      * @var \Magento\Framework\App\Config\ReinitableConfigInterface
    19. 

  19.      */
    20. 

  20.     protected $config;
    21. 

  21. 

  22.     /**
    23. 

  23.      * @var array
    24. 

  24.      */
    25. 

  25.     protected $resources;
    26. 

  26. 

  27.     /**
    28. 

  28.      * AnonymousResourceSecurity constructor.
    29. 

  29.      *
    30. 

  30.      * @param \Magento\Framework\App\Config\ReinitableConfigInterface $config
    31. 

  31.      * @param array $resources
    32. 

  32.      */
    33. 

  33.     public function __construct(\Magento\Framework\App\Config\ReinitableConfigInterface $config, $resources)
    34. 

  34.     {
    35. 

  35.         $this->config = $config;
    36. 

  36.         $this->resources = $resources;
    37. 

  37.     }
    38. 

  38. 

  39.     /**
    40. 

  40.      * Filter config values.
    41. 

  41.      *
    42. 

  42.      * @param Converter $subject
    43. 

  43.      * @param array $nodes
    44. 

  44.      * @return array
    45. 

  45.      * @SuppressWarnings(PHPMD.UnusedFormalParameter)
    46. 

  46.      */
    47. 

  47.     public function afterConvert(Converter $subject, $nodes)
    48. 

  48.     {
    49. 

  49.         if (empty($nodes)) {
    50. 

  50.             return $nodes;
    51. 

  51.         }
    52. 

  52.         $useInsecure = $this->config->getValue(self::XML_ALLOW_INSECURE);
    53. 

  53.         if ($useInsecure) {
    54. 

  54.             foreach (array_keys($this->resources) as $resource) {
    55. 

  55.                 list($route, $requestType) = explode("::", $resource);
    56. 

  56.                 if ($result = $this->getNode($route, $requestType, $nodes["routes"])) {
    57. 

  57.                     if (isset($result[$requestType]['resources'])) {
    58. 

  58.                         $result[$requestType]['resources'] = ['anonymous' => true];
    59. 

  59.                         $nodes['routes'][$route] = $result;
    60. 

  60.                     }
    61. 

  61. 

  62.                     if (isset($result[$requestType]['service']['class'])
    63. 

  63.                         && isset($result[$requestType]['service']['method'])
    64. 

  64.                     ) {
    65. 

  65.                         $serviceName = $result[$requestType]['service']['class'];
    66. 

  66.                         $serviceMethod = $result[$requestType]['service']['method'];
    67. 

  67.                         $nodes['services'][$serviceName]['V1']['methods'][$serviceMethod]['resources'] = ['anonymous'];
    68. 

  68.                     }
    69. 

  69.                 }
    70. 

  70.             }
    71. 

  71.         }
    72. 

  72. 

  73.         return $nodes;
    74. 

  74.     }
    75. 

  75. 

  76.     /**
    77. 

  77.      * Get node by path.
    78. 

  78.      *
    79. 

  79.      * @param string $route
    80. 

  80.      * @param string $requestType
    81. 

  81.      * @param array $source
    82. 

  82.      * @return array|null
    83. 

  83.      */
    84. 

  84.     private function getNode($route, $requestType, $source)
    85. 

  85.     {
    86. 

  86.         if (isset($source[$route][$requestType])) {
    87. 

  87.             return $source[$route];
    88. 

  88.         }
    89. 

  89.         return null;
    90. 

  90.     }
    91. 

  91. }
    92.