summaryrefslogtreecommitdiff
path: root/src/Middleware/RequestHandler.php
blob: ce3fb718c7ac9ff2e4d761dccf764df24c3a189e (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
<?php

namespace Engelsystem\Middleware;

use Engelsystem\Application;
use Engelsystem\Controllers\BaseController;
use Engelsystem\Helpers\Authenticator;
use Engelsystem\Http\Exceptions\HttpForbidden;
use InvalidArgumentException;
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;
use Psr\Http\Server\MiddlewareInterface;
use Psr\Http\Server\RequestHandlerInterface;

class RequestHandler implements MiddlewareInterface
{
    use ResolvesMiddlewareTrait;

    /** @var Application */
    protected $container;

    /**
     * @param Application $container
     */
    public function __construct(Application $container)
    {
        $this->container = $container;
    }

    /**
     * Process an incoming server request and return a response, optionally delegating
     * response creation to a handler.
     *
     * @param ServerRequestInterface  $request
     * @param RequestHandlerInterface $handler
     * @return ResponseInterface
     */
    public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
    {
        $requestHandler = $request->getAttribute('route-request-handler');
        $requestHandler = $this->resolveRequestHandler($requestHandler);

        if ($requestHandler instanceof CallableHandler) {
            $callable = $requestHandler->getCallable();

            if (is_array($callable) && $callable[0] instanceof BaseController) {
                $this->checkPermissions($callable[0], $callable[1]);
            }
        }

        if ($requestHandler instanceof MiddlewareInterface) {
            return $requestHandler->process($request, $handler);
        }

        if ($requestHandler instanceof RequestHandlerInterface) {
            return $requestHandler->handle($request);
        }

        throw new InvalidArgumentException('Unable to process request handler of type ' . gettype($requestHandler));
    }

    /**
     * Resolve the given class
     *
     * @param string|callable|MiddlewareInterface|RequestHandlerInterface $handler
     * @return MiddlewareInterface|RequestHandlerInterface
     */
    protected function resolveRequestHandler($handler)
    {
        if (is_string($handler) && mb_strpos($handler, '@') !== false) {
            list($class, $method) = explode('@', $handler, 2);
            if (!class_exists($class) && !$this->container->has($class)) {
                $class = sprintf('Engelsystem\\Controllers\\%s', $class);
            }

            $handler = [$class, $method];
        }

        if (
            is_array($handler)
            && is_string($handler[0])
            && (
                class_exists($handler[0])
                || $this->container->has($handler[0])
            )
        ) {
            $handler[0] = $this->container->make($handler[0]);
        }

        return $this->resolveMiddleware($handler);
    }

    /**
     * Check required page permissions
     *
     * @param BaseController $controller
     * @param string         $method
     * @return bool
     */
    protected function checkPermissions(BaseController $controller, string $method): bool
    {
        /** @var Authenticator $auth */
        $auth = $this->container->get('auth');
        $permissions = $controller->getPermissions();

        // Merge action permissions
        if (isset($permissions[$method])) {
            $permissions = array_merge($permissions, (array)$permissions[$method]);
        }

        foreach ($permissions as $key => $permission) {
            // Skip all action permission entries
            if (!is_int($key)) {
                continue;
            }

            if (!$auth->can($permission)) {
                throw new HttpForbidden();
            }
        }

        return true;
    }
}