Home Explore Help
Register Sign In
chengwenliang
/
newsupernova
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c9405dd336
Branches Tags
newsupernova
/
vendor
/
magento
/
module-webapi
/
Controller
/
Rest
/
RequestValidator.php

RequestValidator.php 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Copyright © Magento, Inc. All rights reserved.
    4. 

  4.  * See COPYING.txt for license details.
    5. 

  5.  */
    6. 

  6. 

  7. namespace Magento\Webapi\Controller\Rest;
    8. 

  8. 

  9. use Magento\Framework\Exception\AuthorizationException;
    10. 

  10. use Magento\Framework\Webapi\Authorization;
    11. 

  11. use Magento\Framework\Webapi\Rest\Request as RestRequest;
    12. 

  12. use Magento\Store\Model\StoreManagerInterface;
    13. 

  13. 

  14. /**
    15. 

  15.  * This class is responsible for validating the request
    16. 

  16.  */
    17. 

  17. class RequestValidator
    18. 

  18. {
    19. 

  19.     /**
    20. 

  20.      * @var RestRequest
    21. 

  21.      */
    22. 

  22.     private $request;
    23. 

  23. 

  24.     /**
    25. 

  25.      * @var Router
    26. 

  26.      */
    27. 

  27.     private $router;
    28. 

  28. 

  29.     /**
    30. 

  30.      * @var StoreManagerInterface
    31. 

  31.      */
    32. 

  32.     private $storeManager;
    33. 

  33. 

  34.     /**
    35. 

  35.      * @var Authorization
    36. 

  36.      */
    37. 

  37.     private $authorization;
    38. 

  38. 

  39.     /**
    40. 

  40.      * Initialize dependencies
    41. 

  41.      *
    42. 

  42.      * @param RestRequest $request
    43. 

  43.      * @param Router $router
    44. 

  44.      * @param StoreManagerInterface $storeManager
    45. 

  45.      * @param Authorization $authorization
    46. 

  46.      */
    47. 

  47.     public function __construct(
    48. 

  48.         RestRequest $request,
    49. 

  49.         Router $router,
    50. 

  50.         StoreManagerInterface $storeManager,
    51. 

  51.         Authorization $authorization
    52. 

  52.     ) {
    53. 

  53.         $this->request = $request;
    54. 

  54.         $this->router = $router;
    55. 

  55.         $this->storeManager = $storeManager;
    56. 

  56.         $this->authorization = $authorization;
    57. 

  57.     }
    58. 

  58. 

  59.     /**
    60. 

  60.      * Validate request
    61. 

  61.      *
    62. 

  62.      * @throws AuthorizationException
    63. 

  63.      * @throws \Magento\Framework\Webapi\Exception
    64. 

  64.      * @return void
    65. 

  65.      */
    66. 

  66.     public function validate()
    67. 

  67.     {
    68. 

  68.         $this->checkPermissions();
    69. 

  69.         $route = $this->router->match($this->request);
    70. 

  70.         if ($route->isSecure() && !$this->request->isSecure()) {
    71. 

  71.             throw new \Magento\Framework\Webapi\Exception(__('Operation allowed only in HTTPS'));
    72. 

  72.         }
    73. 

  73.     }
    74. 

  74. 

  75.     /**
    76. 

  76.      * Perform authentication and authorization.
    77. 

  77.      *
    78. 

  78.      * @throws \Magento\Framework\Exception\AuthorizationException
    79. 

  79.      * @return void
    80. 

  80.      */
    81. 

  81.     private function checkPermissions()
    82. 

  82.     {
    83. 

  83.         $route = $this->router->match($this->request);
    84. 

  84.         if (!$this->authorization->isAllowed($route->getAclResources())) {
    85. 

  85.             $params = ['resources' => implode(', ', $route->getAclResources())];
    86. 

  86.             throw new AuthorizationException(
    87. 

  87.                 __("The consumer isn't authorized to access %resources.", $params)
    88. 

  88.             );
    89. 

  89.         }
    90. 

  90.     }
    91. 

  91. }
    92.