vendor/easycorp/easyadmin-bundle/src/EventListener/AdminRouterSubscriber.php line 144

Open in your IDE?
  1. <?php
  3. namespace EasyCorp\Bundle\EasyAdminBundle\EventListener;
  5. use EasyCorp\Bundle\EasyAdminBundle\Config\Option\EA;
  6. use EasyCorp\Bundle\EasyAdminBundle\Contracts\Controller\CrudControllerInterface;
  7. use EasyCorp\Bundle\EasyAdminBundle\Contracts\Controller\DashboardControllerInterface;
  8. use EasyCorp\Bundle\EasyAdminBundle\Factory\AdminContextFactory;
  9. use EasyCorp\Bundle\EasyAdminBundle\Factory\ControllerFactory;
  10. use EasyCorp\Bundle\EasyAdminBundle\Registry\CrudControllerRegistry;
  11. use EasyCorp\Bundle\EasyAdminBundle\Registry\DashboardControllerRegistry;
  12. use EasyCorp\Bundle\EasyAdminBundle\Router\UrlSigner;
  13. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  14. use Symfony\Component\HttpFoundation\RedirectResponse;
  15. use Symfony\Component\HttpFoundation\Request;
  16. use Symfony\Component\HttpKernel\Controller\ControllerResolverInterface;
  17. use Symfony\Component\HttpKernel\Event\ControllerEvent;
  18. use Symfony\Component\HttpKernel\Event\RequestEvent;
  19. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  20. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  21. use Symfony\Component\Routing\Matcher\RequestMatcherInterface;
  22. use Twig\Environment;
  24. /**
  25.  * This subscriber acts as a "proxy" of all backend requests. First, if the
  26.  * request is related to EasyAdmin, it creates the AdminContext variable and
  27.  * stores it in the Request as an attribute.
  28.  *
  29.  * Second, it uses Symfony events to serve all backend requests using a single
  30.  * route. The trick is to change dynamically the controller to execute when
  31.  * the request is related to a CRUD action or a normal Symfony route/action.
  32.  *
  33.  * @author Javier Eguiluz <javier.eguiluz@gmail.com>
  34.  * @author Maxime Steinhausser <maxime.steinhausser@gmail.com>
  35.  * @author Yonel Ceruto <yonelceruto@gmail.com>
  36.  */
  37. class AdminRouterSubscriber implements EventSubscriberInterface
  38. {
  39.     private $adminContextFactory;
  40.     private $dashboardControllerRegistry;
  41.     private $crudControllerRegistry;
  42.     private $controllerFactory;
  43.     private $controllerResolver;
  44.     private $urlGenerator;
  45.     private $requestMatcher;
  46.     private $twig;
  47.     private $urlSigner;
  49.     public function __construct(AdminContextFactory $adminContextFactoryDashboardControllerRegistry $dashboardControllerRegistryCrudControllerRegistry $crudControllerRegistryControllerFactory $controllerFactoryControllerResolverInterface $controllerResolverUrlGeneratorInterface $urlGeneratorRequestMatcherInterface $requestMatcherEnvironment $twigUrlSigner $urlSigner)
  50.     {
  51.         $this->adminContextFactory $adminContextFactory;
  52.         $this->dashboardControllerRegistry $dashboardControllerRegistry;
  53.         $this->crudControllerRegistry $crudControllerRegistry;
  54.         $this->controllerFactory $controllerFactory;
  55.         $this->controllerResolver $controllerResolver;
  56.         $this->urlGenerator $urlGenerator;
  57.         $this->requestMatcher $requestMatcher;
  58.         $this->twig $twig;
  59.         $this->urlSigner $urlSigner;
  60.     }
  62.     public static function getSubscribedEvents(): array
  63.     {
  64.         return [
  65.             RequestEvent::class => [
  66.                 ['handleLegacyEaContext'10],
  67.                 ['onKernelRequest'0],
  68.             ],
  69.             // the priority must be higher than 0 to run it before ParamConverterListener
  70.             ControllerEvent::class => ['onKernelController'128],
  71.         ];
  72.     }
  74.     /**
  75.      * It adds support to legacy EasyAdmin requests that include the EA::CONTEXT_NAME query
  76.      * parameter. It creates the new equivalent URL and redirects to it transparently.
  77.      */
  78.     public function handleLegacyEaContext(RequestEvent $event): void
  79.     {
  80.         $request $event->getRequest();
  81.         if (null === $eaContext $request->query->get(EA::CONTEXT_NAME)) {
  82.             return;
  83.         }
  85.         trigger_deprecation('easycorp/easyadmin-bundle''3.2.0''The "%s" query parameter is deprecated and you no longer need to add it when using custom actions inside EasyAdmin. Read the UPGRADE guide at https://github.com/EasyCorp/EasyAdminBundle/blob/master/UPGRADE.md.'EA::CONTEXT_NAME);
  87.         if (null === $dashboardControllerFqcn $this->dashboardControllerRegistry->getControllerFqcnByContextId($eaContext)) {
  88.             return;
  89.         }
  91.         $dashboardControllerRoute $this->dashboardControllerRegistry->getRouteByControllerFqcn($dashboardControllerFqcn);
  92.         $request->query->remove(EA::CONTEXT_NAME);
  93.         $request->query->set(EA::ROUTE_NAME$request->attributes->get('_route'));
  94.         $request->query->set(EA::ROUTE_PARAMS$request->attributes->all()['_route_params'] ?? []);
  95.         $newUrl $this->urlGenerator->generate($dashboardControllerRoute$request->query->all());
  97.         $dashboardControllerInstance $this->getDashboardControllerInstance($dashboardControllerFqcn$request);
  98.         $adminContext $this->adminContextFactory->create($request$dashboardControllerInstancenull);
  99.         if ($adminContext->getSignedUrls()) {
  100.             $newUrl $this->urlSigner->sign($newUrl);
  101.         }
  103.         $event->setResponse(new RedirectResponse($newUrl));
  104.     }
  106.     /**
  107.      * If this is an EasyAdmin request, it creates the AdminContext variable, stores it
  108.      * in the Request as an attribute and injects it as a global Twig variable.
  109.      */
  110.     public function onKernelRequest(RequestEvent $event): void
  111.     {
  112.         $request $event->getRequest();
  113.         if (null === $dashboardControllerFqcn $this->getDashboardControllerFqcn($request)) {
  114.             return;
  115.         }
  117.         if (null === $dashboardControllerInstance $this->getDashboardControllerInstance($dashboardControllerFqcn$request)) {
  118.             return;
  119.         }
  121.         // creating the context is expensive, so it's created once and stored in the request
  122.         // if the current request already has an AdminContext object, do nothing
  123.         if (null === $adminContext $request->attributes->get(EA::CONTEXT_REQUEST_ATTRIBUTE)) {
  124.             $crudControllerInstance $this->getCrudControllerInstance($request);
  125.             $adminContext $this->adminContextFactory->create($request$dashboardControllerInstance$crudControllerInstance);
  126.         }
  128.         $request->attributes->set(EA::CONTEXT_REQUEST_ATTRIBUTE$adminContext);
  130.         // this makes the AdminContext available in all templates as a short named variable
  131.         $this->twig->addGlobal('ea'$adminContext);
  133.         if ($adminContext->getSignedUrls() && false === $this->urlSigner->check($request->getUri())) {
  134.             throw new AccessDeniedHttpException('The signature of the URL is not valid.');
  135.         }
  136.     }
  138.     /**
  139.      * In EasyAdmin all backend requests are served via the same route (that allows to
  140.      * detect under which dashboard you want to process the request). This method handles
  141.      * the requests related to "CRUD controller actions" and "custom Symfony actions".
  142.      * The trick used is to change dynamically the controller executed by Symfony.
  143.      */
  144.     public function onKernelController(ControllerEvent $event): void
  145.     {
  146.         $request $event->getRequest();
  147.         if (null === $request->attributes->get(EA::CONTEXT_REQUEST_ATTRIBUTE)) {
  148.             return;
  149.         }
  151.         // if the request is related to a CRUD controller, change the controller to be executed
  152.         if (null !== $crudControllerInstance $this->getCrudControllerInstance($request)) {
  153.             $symfonyControllerFqcnCallable = [$crudControllerInstance$request->query->get(EA::CRUD_ACTION)];
  154.             $symfonyControllerStringCallable = [\get_class($crudControllerInstance), $request->query->get(EA::CRUD_ACTION)];
  156.             // this makes Symfony believe that another controller is being executed
  157.             // (e.g. this is needed for the autowiring of controller action arguments)
  158.             // VERY IMPORTANT: here the Symfony controller must be passed as a string (['App\Controller\Foo', 'index'])
  159.             // Otherwise, the param converter of the controller method doesn't work
  160.             $event->getRequest()->attributes->set('_controller'$symfonyControllerStringCallable);
  162.             // this actually makes Symfony to execute the other controller
  163.             $event->setController($symfonyControllerFqcnCallable);
  164.         }
  166.         // if the request is related to a custom action, change the controller to be executed
  167.         if (null !== $request->query->get(EA::ROUTE_NAME)) {
  168.             $symfonyControllerAsString $this->getSymfonyControllerFqcn($request);
  169.             $symfonyControllerCallable $this->getSymfonyControllerInstance($symfonyControllerAsString$request->query->all()[EA::ROUTE_PARAMS] ?? []);
  170.             if (false !== $symfonyControllerCallable) {
  171.                 // this makes Symfony believe that another controller is being executed
  172.                 // (e.g. this is needed for the autowiring of controller action arguments)
  173.                 // VERY IMPORTANT: here the Symfony controller must be passed as a string ('App\Controller\Foo::index')
  174.                 // Otherwise, the param converter of the controller method doesn't work
  175.                 $event->getRequest()->attributes->set('_controller'$symfonyControllerAsString);
  176.                 // route params must be added as route attribute; otherwise, param converters don't work
  177.                 $event->getRequest()->attributes->replace(array_merge(
  178.                     $request->query->all()[EA::ROUTE_PARAMS] ?? [],
  179.                     $event->getRequest()->attributes->all()
  180.                 ));
  182.                 // this actually makes Symfony to execute the other controller
  183.                 $event->setController($symfonyControllerCallable);
  184.             }
  185.         }
  186.     }
  188.     /**
  189.      * It returns the FQCN of the EasyAdmin Dashboard controller used to serve this
  190.      * request or null if this is not an EasyAdmin request.
  191.      * Because of how EasyAdmin works, all backend requests are handled via the
  192.      * Dashboard controller, so its enough to check if the request controller implements
  193.      * the DashboardControllerInterface.
  194.      */
  195.     private function getDashboardControllerFqcn(Request $request): ?string
  196.     {
  197.         $controller $request->attributes->get('_controller');
  198.         $controllerFqcn null;
  200.         if (\is_string($controller)) {
  201.             [$controllerFqcn, ] = explode('::'$controller);
  202.         }
  204.         if (\is_array($controller)) {
  205.             $controllerFqcn $controller[0];
  206.         }
  208.         if (\is_object($controller)) {
  209.             $controllerFqcn \get_class($controller);
  210.         }
  212.         return is_subclass_of($controllerFqcnDashboardControllerInterface::class) ? $controllerFqcn null;
  213.     }
  215.     private function getDashboardControllerInstance(string $dashboardControllerFqcnRequest $request): ?DashboardControllerInterface
  216.     {
  217.         return $this->controllerFactory->getDashboardControllerInstance($dashboardControllerFqcn$request);
  218.     }
  220.     private function getCrudControllerInstance(Request $request): ?CrudControllerInterface
  221.     {
  222.         if (null !== $crudId $request->query->get(EA::CRUD_ID)) {
  223.             $crudControllerFqcn $this->crudControllerRegistry->findCrudFqcnByCrudId($crudId);
  224.         } else {
  225.             $crudControllerFqcn $request->query->get(EA::CRUD_CONTROLLER_FQCN);
  226.         }
  228.         $crudAction $request->query->get(EA::CRUD_ACTION);
  230.         return $this->controllerFactory->getCrudControllerInstance($crudControllerFqcn$crudAction$request);
  231.     }
  233.     private function getSymfonyControllerFqcn(Request $request): ?string
  234.     {
  235.         $routeName $request->query->get(EA::ROUTE_NAME);
  236.         $routeParams $request->query->all()[EA::ROUTE_PARAMS] ?? [];
  237.         $url $this->urlGenerator->generate($routeName$routeParams);
  239.         $newRequest $request->duplicate();
  240.         $newRequest->attributes->remove('_controller');
  241.         $newRequest->attributes->set('_route'$routeName);
  242.         $newRequest->attributes->add($routeParams);
  243.         $newRequest->server->set('REQUEST_URI'$url);
  245.         $parameters $this->requestMatcher->matchRequest($newRequest);
  247.         return $parameters['_controller'] ?? null;
  248.     }
  250.     /**
  251.      * @return callable|false
  252.      */
  253.     private function getSymfonyControllerInstance(string $controllerFqcn, array $routeParams)
  254.     {
  255.         $newRequest = new Request([], [], ['_controller' => $controllerFqcn'_route_params' => $routeParams], [], [], []);
  257.         return $this->controllerResolver->getController($newRequest);
  258.     }
  259. }