Merge pull request #8 from webfactory/forward-cookies-and-headers

mpdude · mpdude · commit e3bbfa4601d1 · 2015-10-19T11:11:29.000+02:00
Add annotations to allow forwarding legacy headers/cookies
diff --git a/Integration/Annotation/KeepCookies.php b/Integration/Annotation/KeepCookies.php
@@ -0,0 +1,22 @@
+<?php
+/*
+ * (c) webfactory GmbH <info@webfactory.de>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Webfactory\Bundle\LegacyIntegrationBundle\Integration\Annotation;
+
+/**
+ * @Annotation
+ */
+class KeepCookies
+{
+    public $value;
+
+    public function shouldKeep($name) {
+        return $this->value === null || in_array($name, $this->value);
+    }
+
+}
diff --git a/Integration/Annotation/KeepHeaders.php b/Integration/Annotation/KeepHeaders.php
@@ -0,0 +1,21 @@
+<?php
+/*
+ * (c) webfactory GmbH <info@webfactory.de>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Webfactory\Bundle\LegacyIntegrationBundle\Integration\Annotation;
+
+/**
+ * @Annotation
+ */
+class KeepHeaders
+{
+    public $value;
+
+    public function shouldKeep($name) {
+        return $this->value === null || in_array($name, $this->value);
+    }
+}
diff --git a/Integration/Filter/KeepCookiesAndHeadersFilter.php b/Integration/Filter/KeepCookiesAndHeadersFilter.php
@@ -0,0 +1,87 @@
+<?php
+/*
+ * (c) webfactory GmbH <info@webfactory.de>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Webfactory\Bundle\LegacyIntegrationBundle\Integration\Filter;
+
+use Doctrine\Common\Annotations\Reader;
+use Symfony\Component\HttpFoundation\Cookie;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Event\FilterControllerEvent;
+use Symfony\Component\HttpKernel\Event\FilterResponseEvent;
+use Webfactory\Bundle\LegacyIntegrationBundle\Integration\Annotation\KeepCookies;
+use Webfactory\Bundle\LegacyIntegrationBundle\Integration\Annotation\KeepHeaders;
+use Webfactory\Bundle\LegacyIntegrationBundle\Integration\Filter as FilterInterface;
+
+class KeepCookiesAndHeadersFilter implements FilterInterface
+{
+    /** @var Reader */
+    private $reader;
+
+    /** @var Response */
+    private $legacyResponse;
+
+    /** @var KeepHeaders */
+    private $keepHeadersAnnotation;
+
+    /** @var KeepCookies */
+    private $keepCookiesAnnotation;
+
+    public function __construct(Reader $reader)
+    {
+        $this->reader = $reader;
+    }
+
+    public function filter(FilterControllerEvent $event, Response $response)
+    {
+        if (!is_array($controller = $event->getController())) {
+            return;
+        }
+
+        $this->legacyResponse = $response;
+
+        $object = new \ReflectionObject($controller[0]);
+        $method = $object->getMethod($controller[1]);
+
+        foreach ($this->reader->getMethodAnnotations($method) as $annotation) {
+            if ($annotation instanceof KeepHeaders) {
+                $this->keepHeadersAnnotation = $annotation;
+            } else if ($annotation instanceof KeepCookies) {
+                $this->keepCookiesAnnotation = $annotation;
+            }
+        }
+    }
+
+    public function onKernelResponse(FilterResponseEvent $event)
+    {
+        if (!$this->legacyResponse) {
+            return;
+        }
+
+        $response = $event->getResponse();
+        $legacyHeaders = $this->legacyResponse->headers;
+
+        if ($this->keepHeadersAnnotation) {
+            foreach ($legacyHeaders->all() as $name => $values) {
+                if ($this->keepHeadersAnnotation->shouldKeep($name)) {
+                    foreach ($values as $value) {
+                        $response->headers->set($name, $value);
+                    }
+                }
+            }
+        }
+
+        if ($this->keepCookiesAnnotation) {
+            foreach ($legacyHeaders->getCookies() as $cookie) {
+                /** @var Cookie $cookie */
+                if ($this->keepCookiesAnnotation->shouldKeep($cookie->getName())) {
+                    $response->headers->setCookie($cookie);
+                }
+            }
+        }
+    }
+}
diff --git a/Integration/LegacyCaptureResponseFactory.php b/Integration/LegacyCaptureResponseFactory.php
@@ -8,18 +8,27 @@
 
 namespace Webfactory\Bundle\LegacyIntegrationBundle\Integration;
 
+use Symfony\Component\HttpFoundation\Cookie;
 use Symfony\Component\HttpFoundation\RedirectResponse;
 
 use Symfony\Component\HttpFoundation\Response;
 
 class LegacyCaptureResponseFactory
 {
+    private static $dateFormats = array(
+        'D, d M Y H:i:s T',
+        'D, d-M-y H:i:s T',
+        'D, d-M-Y H:i:s T',
+        'D, d-m-y H:i:s T',
+        'D, d-m-Y H:i:s T',
+        'D M j G:i:s Y',
+        'D M d H:i:s Y T',
+    );
 
     public static function create($legacyExecutionCallback)
     {
         ob_start();
-
-        $statusCode = call_user_func($legacyExecutionCallback) ? : 200;
+        $statusCode = call_user_func($legacyExecutionCallback) ?: 200;
 
         if (function_exists('http_response_code')) {
             $statusCode = http_response_code();
@@ -36,19 +45,122 @@ public static function create($legacyExecutionCallback)
         header_remove();
 
         $responseHeaders = array();
+        $cookies = array();
 
         foreach ($headers as $header) {
             $header = preg_match('(^([^:]+):(.*)$)', $header, $matches);
-            $headerName = trim($matches[1]);
+            $headerName = strtolower(trim($matches[1]));
             $headerValue = trim($matches[2]);
-            $responseHeaders[$headerName][] = $headerValue;
+
+            if ($headerName == 'set-cookie') {
+                $cookies[] = self::createCookieFromString($headerValue);
+            } else {
+                $responseHeaders[$headerName][] = $headerValue;
+            }
+        }
+
+        if (isset($responseHeaders['location'])) {
+            unset($responseHeaders['expires']);
+            $response = new RedirectResponse($responseHeaders['location'][0], 302, $responseHeaders);
+        } else {
+            $response = new Response($content, $statusCode, $responseHeaders);
+        }
+
+        foreach ($cookies as $cookie) {
+            $response->headers->setCookie($cookie);
+        }
+
+        return $response;
+    }
+
+    private static function createCookieFromString($cookie, $url = null)
+    {
+        $parts = explode(';', $cookie);
+
+        if (false === strpos($parts[0], '=')) {
+            throw new \InvalidArgumentException(sprintf('The cookie string "%s" is not valid.', $parts[0]));
+        }
+
+        list($name, $value) = explode('=', array_shift($parts), 2);
+
+        $values = array(
+            'name'           => trim($name),
+            'value'          => trim($value),
+            'expires'        => 0,
+            'path'           => '/',
+            'domain'         => '',
+            'secure'         => false,
+            'httponly'       => false,
+            'passedRawValue' => true,
+        );
+
+        if (null !== $url) {
+            if ((false === $urlParts = parse_url($url)) || !isset($urlParts['host'])) {
+                throw new \InvalidArgumentException(sprintf('The URL "%s" is not valid.', $url));
+            }
+
+            $values['domain'] = $urlParts['host'];
+            $values['path'] = isset($urlParts['path']) ? substr($urlParts['path'], 0, strrpos($urlParts['path'], '/')) : '';
+        }
+
+        foreach ($parts as $part) {
+            $part = trim($part);
+
+            if ('secure' === strtolower($part)) {
+                // Ignore the secure flag if the original URI is not given or is not HTTPS
+                if (!$url || !isset($urlParts['scheme']) || 'https' != $urlParts['scheme']) {
+                    continue;
+                }
+
+                $values['secure'] = true;
+
+                continue;
+            }
+
+            if ('httponly' === strtolower($part)) {
+                $values['httponly'] = true;
+
+                continue;
+            }
+
+            if (2 === count($elements = explode('=', $part, 2))) {
+                if ('expires' === strtolower($elements[0])) {
+                    $elements[1] = self::parseDate($elements[1]);
+                }
+
+                $values[strtolower($elements[0])] = $elements[1];
+            }
+        }
+
+        return new Cookie(
+            $values['name'],
+            $values['value'],
+            $values['expires'],
+            $values['path'],
+            $values['domain'],
+            $values['secure'],
+            $values['httponly']
+        );
+    }
+
+    private static function parseDate($dateValue)
+    {
+        // trim single quotes around date if present
+        if (($length = strlen($dateValue)) > 1 && "'" === $dateValue[0] && "'" === $dateValue[$length - 1]) {
+            $dateValue = substr($dateValue, 1, -1);
+        }
+
+        foreach (self::$dateFormats as $dateFormat) {
+            if (false !== $date = \DateTime::createFromFormat($dateFormat, $dateValue, new \DateTimeZone('GMT'))) {
+                return $date->getTimestamp();
+            }
         }
 
-        if (isset($responseHeaders['Location'])) {
-            unset($responseHeaders['Expires']);
-            return new RedirectResponse($responseHeaders['Location'][0], 302, $responseHeaders);
+        // attempt a fallback for unusual formatting
+        if (false !== $date = date_create($dateValue, new \DateTimeZone('GMT'))) {
+            return $date->getTimestamp();
         }
 
-        return new Response($content, $statusCode, $responseHeaders);
+        throw new \InvalidArgumentException(sprintf('Could not parse date "%s".', $dateValue));
     }
 }
diff --git a/README.md b/README.md
@@ -51,8 +51,9 @@ You must provide a single file that can be `include()`ed in order to run your
 legacy applcation. Typically you will already have this - it should be your
 legacy application's front controller.
 
-This file should _return_ the HTTP status code sent by the legacy application.
-This is because the `http_response_code()` function is not available until PHP 5.4.
+If you are running PHP < 5.4, this file should _return_ the HTTP status code
+sent by the legacy application. Starting with PHP 5.4, `http_response_code()`
+will be used to detect it.
 
 Also, as this bundle will try to capture the response including headers using
 output buffering, you must not flush the response body or headers
@@ -83,8 +84,17 @@ class MyController ...
 }
 ```
 
-There are two ways of mixing your legacy world with your new world: Either you create a new layout and embed parts of
-the legacy application, or you retain your old layout and embed new parts in it.
+This will run your legacy application before entering the controller. The entire output including
+HTTP headers (repeat after me: including HTTP headers) will be captured and saved. *Nothing* will
+be sent to the client unless you take care of doing so. 
+
+Regarding the legacy response body, there are two ways of mixing your legacy world with your new world: Either you create a new layout and embed parts of
+the legacy application, or you retain your old layout and embed new parts in it. The following sections 
+explain both of them.
+
+Regarding HTTP headers and especially cookies sent by the legacy application make sure
+you don't miss the filters explained further below. For example, if your legacy code uses `session_start()`
+you probably need to forward the session cookie.
 
 ### Using XPath to embed parts of the legacy response in your new layout
 
@@ -183,7 +193,8 @@ In particular,
 - @Legacy\Passthru will send the legacy application's response as-is, so the controller itself will never be run
 - @Legacy\IgnoreRedirect will bypass the controller if the legacy application sent a Location: redirect header.
 - @Legacy\IgnoreHeader("some-name") will bypass the controller if the legacy application sent "Some-Name:" header. This can be used to make the legacy application control execution of the Symfony2 controller (use with caution).
-
+- @Legacy\KeepHeaders will apply *all* HTTP headers found in the legacy response and add them to the response created by Symfony controller. You can also selectively pick headers via `@Legacy\KeepHeaders({"X-Some-Header", "X-Some-Other"})` 
+- @Legacy\KeepCookies works like `KeepHeaders` but peeks at cookie names.   
 
 Bugs
 ---
diff --git a/Resources/config/services.xml b/Resources/config/services.xml
@@ -24,6 +24,12 @@
             <tag name="webfactory_legacy_integration.filter"/>
         </service>
 
+        <service class="Webfactory\Bundle\LegacyIntegrationBundle\Integration\Filter\KeepCookiesAndHeadersFilter">
+            <argument type="service" id="annotation_reader"/>
+            <tag name="webfactory_legacy_integration.filter"/>
+            <tag name="kernel.event_listener" event="kernel.response"/>
+        </service>
+
         <service class="Webfactory\Bundle\LegacyIntegrationBundle\Twig\Extension">
             <argument type="service" id="service_container"/>
             <tag name="twig.extension"/>
