[FEATURE] Enforce cHash argument for Extbase actions
[Packages/TYPO3.CMS.git] / typo3 / sysext / extbase / Classes / Mvc / Web / FrontendRequestHandler.php
1 <?php
2 namespace TYPO3\CMS\Extbase\Mvc\Web;
3
4 /*
5 * This file is part of the TYPO3 CMS project.
6 *
7 * It is free software; you can redistribute it and/or modify it under
8 * the terms of the GNU General Public License, either version 2
9 * of the License, or any later version.
10 *
11 * For the full copyright and license information, please read the
12 * LICENSE.txt file that was distributed with this source code.
13 *
14 * The TYPO3 project - inspiring people to share!
15 */
16
17 /**
18 * A request handler which can handle web requests invoked by the frontend.
19 */
20 class FrontendRequestHandler extends AbstractRequestHandler
21 {
22 /**
23 * @var \TYPO3\CMS\Extbase\Configuration\ConfigurationManagerInterface
24 */
25 protected $configurationManager;
26
27 /**
28 * @var \TYPO3\CMS\Extbase\Service\ExtensionService
29 */
30 protected $extensionService;
31
32 /**
33 * @var \TYPO3\CMS\Extbase\Mvc\Web\CacheHashEnforcer
34 */
35 protected $cacheHashEnforcer;
36
37 /**
38 * @param \TYPO3\CMS\Extbase\Configuration\ConfigurationManagerInterface $configurationManager
39 */
40 public function injectConfigurationManager(\TYPO3\CMS\Extbase\Configuration\ConfigurationManagerInterface $configurationManager)
41 {
42 $this->configurationManager = $configurationManager;
43 }
44
45 /**
46 * @param \TYPO3\CMS\Extbase\Service\ExtensionService $extensionService
47 */
48 public function injectExtensionService(\TYPO3\CMS\Extbase\Service\ExtensionService $extensionService)
49 {
50 $this->extensionService = $extensionService;
51 }
52
53 /**
54 * @param \TYPO3\CMS\Extbase\Mvc\Web\CacheHashEnforcer $cacheHashEnforcer
55 */
56 public function injectCacheHashEnforcer(\TYPO3\CMS\Extbase\Mvc\Web\CacheHashEnforcer $cacheHashEnforcer)
57 {
58 $this->cacheHashEnforcer = $cacheHashEnforcer;
59 }
60
61 /**
62 * Handles the web request. The response will automatically be sent to the client.
63 *
64 * @return \TYPO3\CMS\Extbase\Mvc\ResponseInterface|NULL
65 */
66 public function handleRequest()
67 {
68 $request = $this->requestBuilder->build();
69 if ($this->extensionService->isActionCacheable(null, null, $request->getControllerName(), $request->getControllerActionName())) {
70 $request->setIsCached(true);
71 } else {
72 $contentObject = $this->configurationManager->getContentObject();
73 if ($contentObject->getUserObjectType() === \TYPO3\CMS\Frontend\ContentObject\ContentObjectRenderer::OBJECTTYPE_USER) {
74 $contentObject->convertToUserIntObject();
75 // \TYPO3\CMS\Frontend\ContentObject\ContentObjectRenderer::convertToUserIntObject() will recreate the object, so we have to stop the request here
76 return null;
77 }
78 $request->setIsCached(false);
79 }
80
81 if ($this->configurationManager->isFeatureEnabled('requireCHashArgumentForActionArguments')) {
82 $pluginNamespace = $this->extensionService->getPluginNamespace(
83 $request->getControllerExtensionName(),
84 $request->getPluginName()
85 );
86 $this->cacheHashEnforcer->enforceForRequest($request, $pluginNamespace);
87 }
88
89 /** @var $response \TYPO3\CMS\Extbase\Mvc\ResponseInterface */
90 $response = $this->objectManager->get(\TYPO3\CMS\Extbase\Mvc\Web\Response::class);
91 $this->dispatcher->dispatch($request, $response);
92 return $response;
93 }
94
95 /**
96 * This request handler can handle any web request.
97 *
98 * @return bool If the request is a web request, TRUE otherwise FALSE
99 */
100 public function canHandleRequest()
101 {
102 return $this->environmentService->isEnvironmentInFrontendMode();
103 }
104 }