custom/plugins/CioCustomerPermissionGroups/src/Subscriber/CategoriesPermissionsSubscriber.php line 70

Open in your IDE?
  1. <?php
  3. namespace CioCustomerPermissionGroups\Subscriber;
  5. use CioCustomerPermissionGroups\Service\CustomerPermissionService;
  6. use Shopware\Core\Checkout\Cart\Exception\CustomerNotLoggedInException;
  7. use Shopware\Core\Checkout\Customer\CustomerEntity;
  8. use Shopware\Core\Checkout\Customer\SalesChannel\AbstractLoginRoute;
  9. use Shopware\Core\Checkout\Customer\SalesChannel\AbstractLogoutRoute;
  10. use Shopware\Core\Checkout\Customer\SalesChannel\LogoutRoute;
  11. use Shopware\Core\Content\Category\CategoryEntity;
  12. use Shopware\Core\Content\Category\Event\CategoryRouteCacheKeyEvent;
  13. use Shopware\Core\Content\Category\Event\NavigationLoadedEvent;
  14. use Shopware\Core\Content\Category\Exception\CategoryNotFoundException;
  15. use Shopware\Core\Content\Category\Tree\TreeItem;
  16. use Shopware\Core\Content\Product\Events\ProductListingResultEvent;
  17. use Shopware\Core\Content\Product\Events\ProductListingRouteCacheKeyEvent;
  18. use Shopware\Core\Content\Product\Events\ProductSuggestCriteriaEvent;
  19. use Shopware\Core\Content\Product\Exception\ProductNotFoundException;
  20. use Shopware\Core\Content\Product\SalesChannel\SalesChannelProductEntity;
  21. use Shopware\Core\Framework\DataAbstractionLayer\EntityRepository;
  22. use Shopware\Core\Framework\DataAbstractionLayer\Search\Criteria;
  23. use Shopware\Core\Framework\DataAbstractionLayer\Search\Filter\EqualsFilter;
  24. use Shopware\Core\Framework\Validation\DataBag\DataBag;
  25. use Shopware\Core\Framework\Validation\DataBag\RequestDataBag;
  26. use Shopware\Storefront\Event\StorefrontRenderEvent;
  27. use Shopware\Storefront\Page\Navigation\NavigationPageLoadedEvent;
  28. use Shopware\Storefront\Page\Product\ProductPage;
  29. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  30. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  32. class CategoriesPermissionsSubscriber implements EventSubscriberInterface
  33. {
  34.     private EntityRepository $categoryRepository;
  35.     private EventDispatcherInterface $eventDispatcher;
  36.     private CustomerPermissionService $customerPermissionService;
  37.     private AbstractLogoutRoute $logoutRoute;
  39.     public function __construct(EntityRepository $categoryRepositoryEventDispatcherInterface $eventDispatcherCustomerPermissionService $customerPermissionServiceAbstractLogoutRoute $logoutRoute)
  40.     {
  41.         $this->categoryRepository $categoryRepository;
  42.         $this->eventDispatcher $eventDispatcher;
  43.         $this->customerPermissionService $customerPermissionService;
  44.         $this->logoutRoute $logoutRoute;
  45.     }
  47.     public static function getSubscribedEvents(): array
  48.     {
  49.         // Return the events to listen to as array like this:  <event to listen to> => <method to execute>
  50.         return [
  51.             NavigationLoadedEvent::class => 'onNavigationLoadedEvent',
  52.             NavigationPageLoadedEvent::class => 'onNavigationPageLoadedEvent',
  53.             StorefrontRenderEvent::class => 'onSalesChannelProductLoaded',
  54.             CategoryRouteCacheKeyEvent::class => 'onCategoryRouteCacheKey',
  55.             ProductListingRouteCacheKeyEvent::class => 'onProductListingRouteCacheKey',
  56.             ProductSuggestCriteriaEvent::class => 'onProductSuggestCriteriaEvent'
  57.         ];
  58.     }
  60.     public function onProductListingRouteCacheKey(ProductListingRouteCacheKeyEvent $event)
  61.     {
  62.         $event->addPart(session_id());
  63.     }
  65.     public function onCategoryRouteCacheKey(CategoryRouteCacheKeyEvent $categoryRouteCacheKeyEvent)
  66.     {
  67.         $categoryRouteCacheKeyEvent->addPart(session_id());
  68.     }
  70.     public function onNavigationLoadedEvent(NavigationLoadedEvent $event)
  71.     {
  72.         $event->getNavigation()->setTree(array_filter($event->getNavigation()->getTree(), function (TreeItem $treeItem) use ($event) {
  73.             $category $treeItem->getCategory();
  75.             if ($this->categoryAccessAllowedByEntities($category$event->getSalesChannelContext()->getCustomer())) {
  76.                 $this->filterTreeChilds($treeItem$event->getSalesChannelContext()->getCustomer());
  78.                 return true;
  79.             }
  81.             return false;
  83.         }));
  84.     }
  86.     public function onNavigationPageLoadedEvent(NavigationPageLoadedEvent $event)
  87.     {
  88.         $customer $event->getSalesChannelContext()->getCustomer();
  90.         if ($customer === null) {
  91.             throw new CustomerNotLoggedInException();
  92.         }
  94.         if (!$this->categoryAccessAllowed($event->getSalesChannelContext()->getSalesChannel()->getNavigationCategoryId(), $event->getSalesChannelContext()->getCustomer(), $event->getContext())) {
  95.             $this->logoutRoute->logout($event->getSalesChannelContext(), new RequestDataBag());
  96.             throw new CustomerNotLoggedInException();
  97.         }
  99.         if (!$this->categoryAccessAllowed($event->getPage()->getNavigationId(), $customer$event->getContext())) {
  100.             throw new CategoryNotFoundException($event->getPage()->getNavigationId());
  101.         }
  103.     }
  105.     public function onSalesChannelProductLoaded(StorefrontRenderEvent $event)
  106.     {
  107.         if ($event->getSalesChannelContext()->getCustomer() !== null) {
  108.             if (!$this->categoryAccessAllowed($event->getSalesChannelContext()->getSalesChannel()->getNavigationCategoryId(), $event->getSalesChannelContext()->getCustomer(), $event->getContext())) {
  109.                 $this->logoutRoute->logout($event->getSalesChannelContext(), new RequestDataBag());
  110.                 throw new CustomerNotLoggedInException();
  111.             }
  112.         }
  114.         $page array_key_exists('page'$event->getParameters()) ? $event->getParameters()['page'] : null;
  116.         if ($page instanceof ProductPage) {
  117.             $product $page->getProduct();
  119.             if ($product instanceof SalesChannelProductEntity) {
  120.                 if ($event->getSalesChannelContext()->getCustomer() === null) {
  121.                     throw new CustomerNotLoggedInException();
  122.                 }
  124.                 foreach ($product->getCategoryIds() as $id) {
  125.                     if ($this->categoryAccessAllowed($id$event->getSalesChannelContext()->getCustomer(), $event->getContext())) {
  126.                         return;
  127.                     }
  128.                 }
  130.                 throw new ProductNotFoundException($page->getProduct()->getId());
  132.             }
  134.         }
  135.     }
  137.     protected function categoryAccessAllowed(string $categoryId$customer$context): bool
  138.     {
  139.         $customerGroups = [];
  141.         if ($customer instanceof CustomerEntity) {
  142.             $customerGroups $this->customerPermissionService->getCustomerPermissionGroupIds($customer);
  143.         }
  145.         if ($categoryId) {
  146.             $categoryCriteria = new Criteria([$categoryId]);
  147.             $category $this->categoryRepository->search($categoryCriteria$context);
  149.             /** @var CategoryEntity $category */
  150.             if ($category $category->first()) {
  151.                 $categoryGroups is_array($category->getCustomFields()) && array_key_exists('custom_acl_groups'$category->getCustomFields()) ? $category->getCustomFields()['custom_acl_groups'] : [];
  153.                 if (count(array_intersect($customerGroups$categoryGroups)) < && count($categoryGroups) > 0) {
  154.                     return false;
  156.                 }
  158.             }
  160.         }
  162.         return true;
  163.     }
  165.     protected function categoryAccessAllowedByEntities($category$customer): bool
  166.     {
  167.         $customerGroups = [];
  169.         if ($customer instanceof CustomerEntity) {
  170.             $customerGroups $this->customerPermissionService->getCustomerPermissionGroupIds($customer);
  171.         }
  173.         if ($category) {
  174.             $categoryGroups is_array($category->getCustomFields()) && array_key_exists('custom_acl_groups'$category->getCustomFields()) ? $category->getCustomFields()['custom_acl_groups'] : [];
  176.             if (count(array_intersect($customerGroups$categoryGroups)) < && count($categoryGroups) > 0) {
  177.                 return false;
  179.             }
  181.         }
  183.         return true;
  184.     }
  186.     protected function filterTreeChilds(TreeItem $treeItem$customer)
  187.     {
  188.         if (is_null($treeItem->getChildren()) || count($treeItem->getChildren()) < 1) {
  189.             return;
  190.         }
  192.         $treeItem->setChildren(array_filter($treeItem->getChildren(), function (TreeItem $treeItem) use ($customer) {
  193.             $category $treeItem->getCategory();
  195.             if ($this->categoryAccessAllowedByEntities($category$customer)) {
  196.                 $this->filterTreeChilds($treeItem$customer);
  198.                 return true;
  199.             }
  201.             return false;
  203.         }));
  204.     }
  206.     public function onProductListingResultEvent(ProductListingResultEvent $event)
  207.     {
  208.         $customerRoleGroups = [];
  209.         $removedProducts = [];
  210.         $customer $event->getSalesChannelContext()->getCustomer();
  212.         if ($customer instanceof CustomerEntity) {
  213.             $customerRoleGroups $this->customerPermissionService->getCustomerPermissionGroupIds($customer);
  214.         }
  216.         /** @var SalesChannelProductEntity $product */
  217.         foreach ($event->getResult()->getElements() as $key => $product) {
  218.             //dd($product->getCategoryIds());
  219.             $categoryIds $product->getCategoryIds();
  220.             /** @var CategoryEntity $lowestCategory */
  221.             //$lowestCategory = $this->categoryRepository->search(new Criteria([$lowestCategoryId]), $event->getContext())->first();
  223.             if ($this->removeProductFromResult($categoryIds$customerRoleGroups$event->getContext())) {
  224.                 $removedProducts[] = $key;
  225.             }
  226.         }
  228.         foreach ($removedProducts as $removedProduct) {
  229.             //$event->getResult()->remove($removedProduct);
  230.         }
  231.     }
  233.     protected function removeProductFromResult(array $categoryIds, array $customerRoleGroups$context)
  234.     {
  235.         foreach ($categoryIds as $categoryId) {
  236.             $category $this->categoryRepository->search(new Criteria([$categoryId]), $context)->first();
  238.             if ($category && is_array($category->getCustomFields()) && array_key_exists('custom_acl_groups'$category->getCustomFields()) && is_array($category->getCustomFields()['custom_acl_groups'])) {
  239.                 if (count(array_intersect($category->getCustomFields()['custom_acl_groups'], $customerRoleGroups)) !== || count($category->getCustomFields()['custom_acl_groups']) === 0) {
  240.                     return false;
  241.                 }
  242.             }
  244.         }
  246.         return true;
  248.     }
  250.     public function onProductSuggestCriteriaEvent(ProductSuggestCriteriaEvent $event)
  251.     {
  252.         $event->getCriteria()->setTitle('search::product::suggestion');
  253.     }
  254. }