ProklUng
diff --git a/‎.gitignore‎
Lines changed: 4 additions & 0 deletions b/‎.gitignore‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎Controller/ControllerMetadata.php‎
Lines changed: 49 additions & 0 deletions b/‎Controller/ControllerMetadata.php‎
Lines changed: 49 additions & 0 deletions
diff --git a/‎Controller/ControllerParser.php‎
Lines changed: 23 additions & 0 deletions b/‎Controller/ControllerParser.php‎
Lines changed: 23 additions & 0 deletions
diff --git a/‎Controller/ControllerParserInterface.php‎
Lines changed: 18 additions & 0 deletions b/‎Controller/ControllerParserInterface.php‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎ControllersMiddleware/CsrfMiddleware.php‎
Lines changed: 59 additions & 0 deletions b/‎ControllersMiddleware/CsrfMiddleware.php‎
Lines changed: 59 additions & 0 deletions
diff --git a/‎ControllersMiddleware/ExampleMiddleware.php‎
Lines changed: 24 additions & 0 deletions b/‎ControllersMiddleware/ExampleMiddleware.php‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎ControllersMiddleware/Exceptions/NotAllowedTypeRequestException.php‎
Lines changed: 15 additions & 0 deletions b/‎ControllersMiddleware/Exceptions/NotAllowedTypeRequestException.php‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎ControllersMiddleware/Exceptions/WrongCsrfException.php‎
Lines changed: 16 additions & 0 deletions b/‎ControllersMiddleware/Exceptions/WrongCsrfException.php‎
Lines changed: 16 additions & 0 deletions
diff --git a/‎ControllersMiddleware/OnlyAjaxMiddleware.php‎
Lines changed: 34 additions & 0 deletions b/‎ControllersMiddleware/OnlyAjaxMiddleware.php‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎ControllersMiddleware/StaticFileMiddleware.php‎
Lines changed: 129 additions & 0 deletions b/‎ControllersMiddleware/StaticFileMiddleware.php‎
Lines changed: 129 additions & 0 deletions
@@ -0,0 +1,4 @@
+.idea
+/vendor/
+composer.lock
+.phpunit.result.cache
@@ -0,0 +1,49 @@
+<?php
+declare(strict_types=1);
+
+namespace Prokl\SymfonyMiddlewareBundle\Controller;
+
+/**
+ * Class ControllerMetadata
+ * @package Prokl\SymfonyMiddlewareBundle\Controller
+ */
+final class ControllerMetadata
+{
+    /**
+     * @var string $controllerFqcn
+     */
+    private $controllerFqcn;
+
+    /**
+     * @var string $controllerAction
+     */
+    private $controllerAction;
+
+    /**
+     * ControllerMetadata constructor.
+     *
+     * @param string $controllerFqcn
+     * @param string $controllerAction
+     */
+    public function __construct(string $controllerFqcn, string $controllerAction)
+    {
+        $this->controllerFqcn = $controllerFqcn;
+        $this->controllerAction = $controllerAction;
+    }
+
+    /**
+     * @return string
+     */
+    public function getControllerFqcn(): string
+    {
+        return $this->controllerFqcn;
+    }
+
+    /**
+     * @return string
+     */
+    public function getControllerAction(): string
+    {
+        return $this->controllerAction;
+    }
+}
@@ -0,0 +1,23 @@
+<?php
+declare(strict_types=1);
+
+namespace Prokl\SymfonyMiddlewareBundle\Controller;
+
+/**
+ * Class ControllerParser
+ * @package Prokl\SymfonyMiddlewareBundle\Controller
+ */
+final class ControllerParser implements ControllerParserInterface
+{
+    /**
+     * @inheritDoc
+     */
+    public function parse(callable $controller): ControllerMetadata
+    {
+        if (is_array($controller)) {
+            return new ControllerMetadata(get_class($controller[0]), $controller[1]);
+        }
+
+        return new ControllerMetadata(get_class($controller), '__invoke');
+    }
+}
@@ -0,0 +1,18 @@
+<?php
+declare(strict_types=1);
+
+namespace Prokl\SymfonyMiddlewareBundle\Controller;
+
+/**
+ * Interface ControllerParserInterface
+ * @package Prokl\SymfonyMiddlewareBundle\Controller
+ */
+interface ControllerParserInterface
+{
+    /**
+     * @param callable $controller
+     *
+     * @return ControllerMetadata
+     */
+    public function parse(callable $controller): ControllerMetadata;
+}
@@ -0,0 +1,59 @@
+<?php
+
+namespace Prokl\SymfonyMiddlewareBundle\ControllersMiddleware;
+
+use Prokl\SymfonyMiddlewareBundle\ControllersMiddleware\Exceptions\WrongCsrfException;
+use Prokl\SymfonyMiddlewareBundle\MiddlewareInterface;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Security\Csrf\CsrfToken;
+use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
+
+/**
+ * Class CsrfMiddleware
+ * @package Local\Services\ControllerMiddleware
+ *
+ * @since 19.11.2020
+ */
+class CsrfMiddleware implements MiddlewareInterface
+{
+    /**
+     * @var CsrfTokenManagerInterface $csrfTokenManager CSRF токен менеджер.
+     */
+    private $csrfTokenManager;
+
+    /**
+     * CsrfMiddleware constructor.
+     *
+     * @param CsrfTokenManagerInterface $csrfTokenManager CSRF токен менеджер.
+     */
+    public function __construct(CsrfTokenManagerInterface $csrfTokenManager)
+    {
+        $this->csrfTokenManager = $csrfTokenManager;
+    }
+
+    /**
+     * @inheritDoc
+     *
+     * @throws WrongCsrfException Невалидный токен.
+     */
+    public function handle(Request $request): ?Response
+    {
+        $typeRequest = $request->server->get('REQUEST_METHOD');
+        $token = $request->query->get('csrf_token');
+
+        if ($typeRequest !== 'GET') {
+            $token = $request->request->get('csrf_token');
+        }
+
+        $bValidToken = $this->csrfTokenManager->isTokenValid(
+            new CsrfToken('app', $token)
+        );
+
+        if (!$bValidToken) {
+            throw new WrongCsrfException('Security error: Invalid CSRF token.');
+        }
+
+        return null;
+    }
+}
@@ -0,0 +1,24 @@
+<?php
+
+namespace Prokl\SymfonyMiddlewareBundle\ControllersMiddleware;
+
+use Prokl\SymfonyMiddlewareBundle\MiddlewareInterface;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+
+/**
+ * Class ExampleMiddleware
+ * @package Local\Services\ControllerMiddleware
+ *
+ * @since 19.11.2020
+ */
+class ExampleMiddleware implements MiddlewareInterface
+{
+    public function handle(Request $request): ?Response
+    {
+        if ($request->query->get('test')) {
+            return new Response('OK2');
+        }
+        return null;
+    }
+}
@@ -0,0 +1,15 @@
+<?php
+
+namespace Prokl\SymfonyMiddlewareBundle\ControllersMiddleware\Exceptions;
+
+use Prokl\BaseException\BaseException;
+
+/**
+ * Class NotAllowedTypeRequestException
+ * @package Local\Services\ControllerMiddleware\Exceptions
+ *
+ * @since 19.11.2020
+ */
+class NotAllowedTypeRequestException extends BaseException
+{
+}
@@ -0,0 +1,16 @@
+<?php
+
+namespace Prokl\SymfonyMiddlewareBundle\ControllersMiddleware\Exceptions;
+
+use Prokl\BaseException\BaseException;
+use Symfony\Component\HttpFoundation\Exception\RequestExceptionInterface;
+
+/**
+ * Class WrongCsrfException
+ * @package Local\Services\ControllerMiddleware\Exceptions
+ *
+ * @since 19.11.2020
+ */
+class WrongCsrfException extends BaseException implements RequestExceptionInterface
+{
+}
@@ -0,0 +1,34 @@
+<?php
+
+namespace Prokl\SymfonyMiddlewareBundle\ControllersMiddleware;
+
+use Prokl\SymfonyMiddlewareBundle\MiddlewareInterface;
+use Prokl\SymfonyMiddlewareBundle\ControllersMiddleware\Exceptions\NotAllowedTypeRequestException;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+
+/**
+ * Class OnlyAjaxMiddleware
+ * Only AJAX call allowed.
+ * @package Local\Services\ControllerMiddleware
+ *
+ * @since 19.11.2020
+ */
+class OnlyAjaxMiddleware implements MiddlewareInterface
+{
+    /**
+     * @inheritDoc
+     *
+     * @throws NotAllowedTypeRequestException
+     */
+    public function handle(Request $request): ?Response
+    {
+        if (!$request->isXmlHttpRequest()) {
+            throw new NotAllowedTypeRequestException(
+                'Only AJAX call allowed.'
+            );
+        }
+
+        return null;
+    }
+}
@@ -0,0 +1,129 @@
+<?php
+
+namespace Prokl\SymfonyMiddlewareBundle\ControllersMiddleware;
+
+use Prokl\SymfonyMiddlewareBundle\ControllersMiddleware\Utils\ContentTypeMapping;
+use Prokl\SymfonyMiddlewareBundle\MiddlewareInterface;
+use LogicException;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpFoundation\StreamedResponse;
+
+/**
+ * Class StaticFileMiddleware
+ * @package Local\Services\ControllerMiddleware
+ *
+ * @since 23.02.2021
+ */
+class StaticFileMiddleware implements MiddlewareInterface
+{
+    /**
+     * @var string $publicDirectory Директория, где лежат файлы.
+     */
+    private $publicDirectory;
+
+    /**
+     * @var string $hashAlgorithm Алгоритм хэширования.
+     */
+    private $hashAlgorithm;
+
+    /**
+     * StaticFileMiddleware constructor.
+     *
+     * @param string $publicDirectory Директория, где лежат файлы.
+     * @param string $hashAlgorithm   Алгоритм хэширования.
+     */
+    public function __construct(
+        string $publicDirectory = '',
+        string $hashAlgorithm = 'md5'
+    ) {
+        $this->publicDirectory = $publicDirectory;
+        $this->hashAlgorithm = $hashAlgorithm;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function handle(Request $request): ?Response
+    {
+        if (!in_array($this->hashAlgorithm, hash_algos(), true)) {
+            throw new LogicException(sprintf('Invalid or not supported hash algorithm: "%s"', $this->hashAlgorithm));
+        }
+
+        if ($this->publicDirectory === '') {
+            throw new LogicException(
+                sprintf('Public upload directory not configured. You forget initialize StaticFileMiddleware as service?')
+            );
+        }
+
+        $target = $this->getRequestTarget($request);
+        if ($target === '') {
+            return null;
+        }
+
+        $filename = $this->publicDirectory . $target;
+
+        $hash = hash_file($this->hashAlgorithm, $filename);
+
+        if (!is_readable($filename)) {
+            return null;
+        }
+
+        $response = new StreamedResponse();
+
+        if ($request->headers->get('If-None-Match') === $hash) {
+            $response->setStatusCode(304);
+        }
+
+        $response->headers->set('Content-Length', (string) filesize($filename));
+        $response->headers->set(
+            'Content-Disposition',
+            'attachment; filename="'.$target.'"'
+        );
+        $response->headers->set('ETag', $hash);
+
+        $this->addContentType($response, $target);
+
+        $response->setCallback(function () use ($filename) {
+            echo (string)file_get_contents($filename);
+        });
+
+        return $response;
+    }
+
+    /**
+     * @param Request $request Request.
+     *
+     * @return string
+     */
+    private function getRequestTarget(Request $request) : string
+    {
+        $target = '';
+
+        if ($request->getQueryString()) {
+            $target = $request->getQueryString();
+            parse_str($target, $result);
+            $target = (string)$result['file'];
+        }
+
+        return $target;
+    }
+
+    /**
+     * Добавить content type.
+     *
+     * @param Response $response Response.
+     * @param string   $filename Имя файла.
+     *
+     * @return Response
+     */
+    private function addContentType(Response $response, string $filename): Response
+    {
+        $extension = pathinfo($filename, PATHINFO_EXTENSION);
+        if (array_key_exists($extension, ContentTypeMapping::CONTENT_TYPE_MAPPING)) {
+            $response->headers->set('Content-Type', ContentTypeMapping::CONTENT_TYPE_MAPPING[$extension]);
+        }
+
+        return $response;
+    }
+}