vendor/shopware/core/Checkout/Promotion/Validator/PromotionValidator.php line 74

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Checkout\Promotion\Validator;
  5. use Doctrine\DBAL\Connection;
  6. use Doctrine\DBAL\Exception;
  7. use Shopware\Core\Checkout\Promotion\Aggregate\PromotionDiscount\PromotionDiscountDefinition;
  8. use Shopware\Core\Checkout\Promotion\Aggregate\PromotionDiscount\PromotionDiscountEntity;
  9. use Shopware\Core\Checkout\Promotion\PromotionDefinition;
  10. use Shopware\Core\Framework\Api\Exception\ResourceNotFoundException;
  11. use Shopware\Core\Framework\DataAbstractionLayer\Write\Command\InsertCommand;
  12. use Shopware\Core\Framework\DataAbstractionLayer\Write\Command\UpdateCommand;
  13. use Shopware\Core\Framework\DataAbstractionLayer\Write\Command\WriteCommand;
  14. use Shopware\Core\Framework\DataAbstractionLayer\Write\Validation\PreWriteValidationEvent;
  15. use Shopware\Core\Framework\Log\Package;
  16. use Shopware\Core\Framework\Validation\WriteConstraintViolationException;
  17. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  18. use Symfony\Component\Validator\ConstraintViolation;
  19. use Symfony\Component\Validator\ConstraintViolationInterface;
  20. use Symfony\Component\Validator\ConstraintViolationList;
  22. /**
  23. * @deprecated tag:v6.5.0 - reason:becomes-internal - EventSubscribers will become internal in v6.5.0
  24. */
  25. #[Package('checkout')]
  26. class PromotionValidator implements EventSubscriberInterface
  27. {
  28. /**
  29. * this is the min value for all types
  30. * (absolute, percentage, ...)
  31. */
  32. private const DISCOUNT_MIN_VALUE = 0.00;
  34. /**
  35. * this is used for the maximum allowed
  36. * percentage discount.
  37. */
  38. private const DISCOUNT_PERCENTAGE_MAX_VALUE = 100.0;
  40. private Connection $connection;
  42. /**
  43. * @var list<array<string, mixed>>
  44. */
  45. private array $databasePromotions;
  47. /**
  48. * @var list<array<string, mixed>>
  49. */
  50. private array $databaseDiscounts;
  52. /**
  53. * @internal
  54. */
  55. public function __construct(Connection $connection)
  56. {
  57. $this->connection = $connection;
  58. }
  60. public static function getSubscribedEvents(): array
  61. {
  62. return [
  63. PreWriteValidationEvent::class => 'preValidate',
  64. ];
  65. }
  67. /**
  68. * This function validates our incoming delta-values for promotions
  69. * and its aggregation. It does only check for business relevant rules and logic.
  70. * All primitive "required" constraints are done inside the definition of the entity.
  71. *
  72. * @throws WriteConstraintViolationException
  73. */
  74. public function preValidate(PreWriteValidationEvent $event): void
  75. {
  76. $this->collect($event->getCommands());
  78. $violationList = new ConstraintViolationList();
  79. $writeCommands = $event->getCommands();
  81. foreach ($writeCommands as $index => $command) {
  82. if (!$command instanceof InsertCommand && !$command instanceof UpdateCommand) {
  83. continue;
  84. }
  86. switch (\get_class($command->getDefinition())) {
  87. case PromotionDefinition::class:
  89. /** @var string $promotionId */
  90. $promotionId = $command->getPrimaryKey()['id'];
  92. try {
  93. $promotion = $this->getPromotionById($promotionId);
  94. } catch (ResourceNotFoundException $ex) {
  95. $promotion = [];
  96. }
  98. $this->validatePromotion(
  99. $promotion,
  100. $command->getPayload(),
  101. $violationList,
  102. $index
  103. );
  105. break;
  107. case PromotionDiscountDefinition::class:
  109. /** @var string $discountId */
  110. $discountId = $command->getPrimaryKey()['id'];
  112. try {
  113. $discount = $this->getDiscountById($discountId);
  114. } catch (ResourceNotFoundException $ex) {
  115. $discount = [];
  116. }
  118. $this->validateDiscount(
  119. $discount,
  120. $command->getPayload(),
  121. $violationList,
  122. $index
  123. );
  125. break;
  126. }
  127. }
  129. if ($violationList->count() > 0) {
  130. $event->getExceptions()->add(new WriteConstraintViolationException($violationList));
  131. }
  132. }
  134. /**
  135. * This function collects all database data that might be
  136. * required for any of the received entities and values.
  137. *
  138. * @param list<WriteCommand> $writeCommands
  139. *
  140. * @throws ResourceNotFoundException
  141. * @throws Exception
  142. */
  143. private function collect(array $writeCommands): void
  144. {
  145. $promotionIds = [];
  146. $discountIds = [];
  148. foreach ($writeCommands as $command) {
  149. if (!$command instanceof InsertCommand && !$command instanceof UpdateCommand) {
  150. continue;
  151. }
  153. switch (\get_class($command->getDefinition())) {
  154. case PromotionDefinition::class:
  155. $promotionIds[] = $command->getPrimaryKey()['id'];
  157. break;
  159. case PromotionDiscountDefinition::class:
  160. $discountIds[] = $command->getPrimaryKey()['id'];
  162. break;
  163. }
  164. }
  166. // why do we have inline sql queries in here?
  167. // because we want to avoid any other private functions that accidentally access
  168. // the database. all private getters should only access the local in-memory list
  169. // to avoid additional database queries.
  170. $this->databasePromotions = [];
  171. if (!empty($promotionIds)) {
  172. $promotionQuery = $this->connection->executeQuery(
  173. 'SELECT * FROM `promotion` WHERE `id` IN (:ids)',
  174. ['ids' => $promotionIds],
  175. ['ids' => Connection::PARAM_STR_ARRAY]
  176. );
  178. $this->databasePromotions = $promotionQuery->fetchAllAssociative();
  179. }
  181. $this->databaseDiscounts = [];
  182. if (!empty($discountIds)) {
  183. $discountQuery = $this->connection->executeQuery(
  184. 'SELECT * FROM `promotion_discount` WHERE `id` IN (:ids)',
  185. ['ids' => $discountIds],
  186. ['ids' => Connection::PARAM_STR_ARRAY]
  187. );
  189. $this->databaseDiscounts = $discountQuery->fetchAllAssociative();
  190. }
  191. }
  193. /**
  194. * Validates the provided Promotion data and adds
  195. * violations to the provided list of violations, if found.
  196. *
  197. * @param array<string, mixed> $promotion the current promotion from the database as array type
  198. * @param array<string, mixed> $payload the incoming delta-data
  199. * @param ConstraintViolationList $violationList the list of violations that needs to be filled
  200. * @param int $index the index of this promotion in the command queue
  201. *
  202. * @throws \Exception
  203. */
  204. private function validatePromotion(array $promotion, array $payload, ConstraintViolationList $violationList, int $index): void
  205. {
  206. /** @var string|null $validFrom */
  207. $validFrom = $this->getValue($payload, 'valid_from', $promotion);
  209. /** @var string|null $validUntil */
  210. $validUntil = $this->getValue($payload, 'valid_until', $promotion);
  212. /** @var bool $useCodes */
  213. $useCodes = $this->getValue($payload, 'use_codes', $promotion);
  215. /** @var bool $useCodesIndividual */
  216. $useCodesIndividual = $this->getValue($payload, 'use_individual_codes', $promotion);
  218. /** @var string|null $pattern */
  219. $pattern = $this->getValue($payload, 'individual_code_pattern', $promotion);
  221. /** @var string|null $promotionId */
  222. $promotionId = $this->getValue($payload, 'id', $promotion);
  224. /** @var string|null $code */
  225. $code = $this->getValue($payload, 'code', $promotion);
  227. if ($code === null) {
  228. $code = '';
  229. }
  231. if ($pattern === null) {
  232. $pattern = '';
  233. }
  235. $trimmedCode = trim($code);
  237. // if we have both a date from and until, make sure that
  238. // the dateUntil is always in the future.
  239. if ($validFrom !== null && $validUntil !== null) {
  240. // now convert into real date times
  241. // and start comparing them
  242. $dateFrom = new \DateTime($validFrom);
  243. $dateUntil = new \DateTime($validUntil);
  244. if ($dateUntil < $dateFrom) {
  245. $violationList->add($this->buildViolation(
  246. 'Expiration Date of Promotion must be after Start of Promotion',
  247. $payload['valid_until'],
  248. 'validUntil',
  249. 'PROMOTION_VALID_UNTIL_VIOLATION',
  250. $index
  251. ));
  252. }
  253. }
  255. // check if we use global codes
  256. if ($useCodes && !$useCodesIndividual) {
  257. // make sure the code is not empty
  258. if ($trimmedCode === '') {
  259. $violationList->add($this->buildViolation(
  260. 'Please provide a valid code',
  261. $code,
  262. 'code',
  263. 'PROMOTION_EMPTY_CODE_VIOLATION',
  264. $index
  265. ));
  266. }
  268. // if our code length is greater than the trimmed one,
  269. // this means we have leading or trailing whitespaces
  270. if (mb_strlen($code) > mb_strlen($trimmedCode)) {
  271. $violationList->add($this->buildViolation(
  272. 'Code may not have any leading or ending whitespaces',
  273. $code,
  274. 'code',
  275. 'PROMOTION_CODE_WHITESPACE_VIOLATION',
  276. $index
  277. ));
  278. }
  279. }
  281. if ($pattern !== '' && $this->isCodePatternAlreadyUsed($pattern, $promotionId)) {
  282. $violationList->add($this->buildViolation(
  283. 'Code Pattern already exists in other promotion. Please provide a different pattern.',
  284. $pattern,
  285. 'individualCodePattern',
  286. 'PROMOTION_DUPLICATE_PATTERN_VIOLATION',
  287. $index
  288. ));
  289. }
  291. // lookup global code if it does already exist in database
  292. if ($trimmedCode !== '' && $this->isCodeAlreadyUsed($trimmedCode, $promotionId)) {
  293. $violationList->add($this->buildViolation(
  294. 'Code already exists in other promotion. Please provide a different code.',
  295. $trimmedCode,
  296. 'code',
  297. 'PROMOTION_DUPLICATED_CODE_VIOLATION',
  298. $index
  299. ));
  300. }
  301. }
  303. /**
  304. * Validates the provided PromotionDiscount data and adds
  305. * violations to the provided list of violations, if found.
  306. *
  307. * @param array<string, mixed> $discount the discount as array from the database
  308. * @param array<string, mixed> $payload the incoming delta-data
  309. * @param ConstraintViolationList $violationList the list of violations that needs to be filled
  310. */
  311. private function validateDiscount(array $discount, array $payload, ConstraintViolationList $violationList, int $index): void
  312. {
  313. /** @var string $type */
  314. $type = $this->getValue($payload, 'type', $discount);
  316. /** @var float|null $value */
  317. $value = $this->getValue($payload, 'value', $discount);
  319. if ($value === null) {
  320. return;
  321. }
  323. if ($value < self::DISCOUNT_MIN_VALUE) {
  324. $violationList->add($this->buildViolation(
  325. 'Value must not be less than ' . self::DISCOUNT_MIN_VALUE,
  326. $value,
  327. 'value',
  328. 'PROMOTION_DISCOUNT_MIN_VALUE_VIOLATION',
  329. $index
  330. ));
  331. }
  333. switch ($type) {
  334. case PromotionDiscountEntity::TYPE_PERCENTAGE:
  335. if ($value > self::DISCOUNT_PERCENTAGE_MAX_VALUE) {
  336. $violationList->add($this->buildViolation(
  337. 'Absolute value must not greater than ' . self::DISCOUNT_PERCENTAGE_MAX_VALUE,
  338. $value,
  339. 'value',
  340. 'PROMOTION_DISCOUNT_MAX_VALUE_VIOLATION',
  341. $index
  342. ));
  343. }
  345. break;
  346. }
  347. }
  349. /**
  350. * Gets a value from an array. It also does clean checks if
  351. * the key is set, and also provides the option for default values.
  352. *
  353. * @param array<string, mixed> $data the data array
  354. * @param string $key the requested key in the array
  355. * @param array<string, mixed> $dbRow the db row of from the database
  356. *
  357. * @return mixed the object found in the key, or the default value
  358. */
  359. private function getValue(array $data, string $key, array $dbRow)
  360. {
  361. // try in our actual data set
  362. if (isset($data[$key])) {
  363. return $data[$key];
  364. }
  366. // try in our db row fallback
  367. if (isset($dbRow[$key])) {
  368. return $dbRow[$key];
  369. }
  371. // use default
  372. return null;
  373. }
  375. /**
  376. * @throws ResourceNotFoundException
  377. *
  378. * @return array<string, mixed>
  379. */
  380. private function getPromotionById(string $id)
  381. {
  382. foreach ($this->databasePromotions as $promotion) {
  383. if ($promotion['id'] === $id) {
  384. return $promotion;
  385. }
  386. }
  388. throw new ResourceNotFoundException('promotion', [$id]);
  389. }
  391. /**
  392. * @throws ResourceNotFoundException
  393. *
  394. * @return array<string, mixed>
  395. */
  396. private function getDiscountById(string $id)
  397. {
  398. foreach ($this->databaseDiscounts as $discount) {
  399. if ($discount['id'] === $id) {
  400. return $discount;
  401. }
  402. }
  404. throw new ResourceNotFoundException('promotion_discount', [$id]);
  405. }
  407. /**
  408. * This helper function builds an easy violation
  409. * object for our validator.
  410. *
  411. * @param string $message the error message
  412. * @param mixed $invalidValue the actual invalid value
  413. * @param string $propertyPath the property path from the root value to the invalid value without initial slash
  414. * @param string $code the error code of the violation
  415. * @param int $index the position of this entity in the command queue
  416. *
  417. * @return ConstraintViolationInterface the built constraint violation
  418. */
  419. private function buildViolation(string $message, $invalidValue, string $propertyPath, string $code, int $index): ConstraintViolationInterface
  420. {
  421. $formattedPath = "/{$index}/{$propertyPath}";
  423. return new ConstraintViolation(
  424. $message,
  425. '',
  426. [
  427. 'value' => $invalidValue,
  428. ],
  429. $invalidValue,
  430. $formattedPath,
  431. $invalidValue,
  432. null,
  433. $code
  434. );
  435. }
  437. /**
  438. * True, if the provided pattern is already used in another promotion.
  439. */
  440. private function isCodePatternAlreadyUsed(string $pattern, ?string $promotionId): bool
  441. {
  442. $qb = $this->connection->createQueryBuilder();
  444. $query = $qb
  445. ->select('id')
  446. ->from('promotion')
  447. ->where($qb->expr()->eq('individual_code_pattern', ':pattern'))
  448. ->setParameter('pattern', $pattern);
  450. $promotions = $query->executeQuery()->fetchFirstColumn();
  452. /** @var string $id */
  453. foreach ($promotions as $id) {
  454. // if we have a promotion id to verify
  455. // and a promotion with another id exists, then return that is used
  456. if ($promotionId !== null && $id !== $promotionId) {
  457. return true;
  458. }
  459. }
  461. return false;
  462. }
  464. /**
  465. * True, if the provided code is already used as global
  466. * or individual code in another promotion.
  467. */
  468. private function isCodeAlreadyUsed(string $code, ?string $promotionId): bool
  469. {
  470. $qb = $this->connection->createQueryBuilder();
  472. // check if individual code.
  473. // if we dont have a promotion Id only
  474. // check if its existing somewhere,
  475. // if we have an Id, verify if it's existing in another promotion
  476. $query = $qb
  477. ->select('COUNT(*)')
  478. ->from('promotion_individual_code')
  479. ->where($qb->expr()->eq('code', ':code'))
  480. ->setParameter('code', $code);
  482. if ($promotionId !== null) {
  483. $query->andWhere($qb->expr()->neq('promotion_id', ':promotion_id'))
  484. ->setParameter('promotion_id', $promotionId);
  485. }
  487. $existingIndividual = ((int) $query->executeQuery()->fetchOne()) > 0;
  489. if ($existingIndividual) {
  490. return true;
  491. }
  493. $qb = $this->connection->createQueryBuilder();
  495. // check if it is a global promotion code.
  496. // again with either an existing promotion Id
  497. // or without one.
  498. $query
  499. = $qb->select('COUNT(*)')
  500. ->from('promotion')
  501. ->where($qb->expr()->eq('code', ':code'))
  502. ->setParameter('code', $code);
  504. if ($promotionId !== null) {
  505. $query->andWhere($qb->expr()->neq('id', ':id'))
  506. ->setParameter('id', $promotionId);
  507. }
  509. return ((int) $query->executeQuery()->fetchOne()) > 0;
  510. }
  511. }