1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
<?php
namespace Engelsystem\Middleware;
use Engelsystem\Application;
use Engelsystem\Controllers\BaseController;
use Engelsystem\Helpers\Authenticator;
use Engelsystem\Http\Exceptions\HttpForbidden;
use InvalidArgumentException;
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;
use Psr\Http\Server\MiddlewareInterface;
use Psr\Http\Server\RequestHandlerInterface;
class RequestHandler implements MiddlewareInterface
{
use ResolvesMiddlewareTrait;
/** @var Application */
protected $container;
/**
* @param Application $container
*/
public function __construct(Application $container)
{
$this->container = $container;
}
/**
* Process an incoming server request and return a response, optionally delegating
* response creation to a handler.
*
* @param ServerRequestInterface $request
* @param RequestHandlerInterface $handler
* @return ResponseInterface
*/
public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
{
$requestHandler = $request->getAttribute('route-request-handler');
$requestHandler = $this->resolveRequestHandler($requestHandler);
if ($requestHandler instanceof CallableHandler) {
$callable = $requestHandler->getCallable();
if (is_array($callable) && $callable[0] instanceof BaseController) {
$this->checkPermissions($callable[0], $callable[1]);
}
}
if ($requestHandler instanceof MiddlewareInterface) {
return $requestHandler->process($request, $handler);
}
if ($requestHandler instanceof RequestHandlerInterface) {
return $requestHandler->handle($request);
}
throw new InvalidArgumentException('Unable to process request handler of type ' . gettype($requestHandler));
}
/**
* Resolve the given class
*
* @param string|callable|MiddlewareInterface|RequestHandlerInterface $handler
* @return MiddlewareInterface|RequestHandlerInterface
*/
protected function resolveRequestHandler($handler)
{
if (is_string($handler) && mb_strpos($handler, '@') !== false) {
list($class, $method) = explode('@', $handler, 2);
if (!class_exists($class) && !$this->container->has($class)) {
$class = sprintf('Engelsystem\\Controllers\\%s', $class);
}
$handler = [$class, $method];
}
if (
is_array($handler)
&& is_string($handler[0])
&& (
class_exists($handler[0])
|| $this->container->has($handler[0])
)
) {
$handler[0] = $this->container->make($handler[0]);
}
return $this->resolveMiddleware($handler);
}
/**
* Check required page permissions
*
* @param BaseController $controller
* @param string $method
* @return bool
*/
protected function checkPermissions(BaseController $controller, string $method): bool
{
/** @var Authenticator $auth */
$auth = $this->container->get('auth');
$permissions = $controller->getPermissions();
// Merge action permissions
if (isset($permissions[$method])) {
$permissions = array_merge($permissions, (array)$permissions[$method]);
}
foreach ($permissions as $key => $permission) {
// Skip all action permission entries
if (!is_int($key)) {
continue;
}
if (!$auth->can($permission)) {
throw new HttpForbidden();
}
}
return true;
}
}
|
