vendor/shopware/core/Checkout/Promotion/Validator/PromotionValidator.php line 62

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Checkout\Promotion\Validator;
  5. use Doctrine\DBAL\Connection;
  6. use Shopware\Core\Checkout\Promotion\Aggregate\PromotionDiscount\PromotionDiscountDefinition;
  7. use Shopware\Core\Checkout\Promotion\Aggregate\PromotionDiscount\PromotionDiscountEntity;
  8. use Shopware\Core\Checkout\Promotion\PromotionDefinition;
  9. use Shopware\Core\Framework\Api\Exception\ResourceNotFoundException;
  10. use Shopware\Core\Framework\DataAbstractionLayer\Write\Command\InsertCommand;
  11. use Shopware\Core\Framework\DataAbstractionLayer\Write\Command\UpdateCommand;
  12. use Shopware\Core\Framework\DataAbstractionLayer\Write\Command\WriteCommand;
  13. use Shopware\Core\Framework\DataAbstractionLayer\Write\Validation\PreWriteValidationEvent;
  14. use Shopware\Core\Framework\Validation\WriteConstraintViolationException;
  15. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  16. use Symfony\Component\Validator\ConstraintViolation;
  17. use Symfony\Component\Validator\ConstraintViolationInterface;
  18. use Symfony\Component\Validator\ConstraintViolationList;
  20. class PromotionValidator implements EventSubscriberInterface
  21. {
  22.     /**
  23.      * this is the min value for all types
  24.      * (absolute, percentage, ...)
  25.      */
  26.     private const DISCOUNT_MIN_VALUE 0.00;
  28.     /**
  29.      * this is used for the maximum allowed
  30.      * percentage discount.
  31.      */
  32.     private const DISCOUNT_PERCENTAGE_MAX_VALUE 100.0;
  34.     private Connection $connection;
  36.     private array $databasePromotions;
  38.     private array $databaseDiscounts;
  40.     /**
  41.      * @internal
  42.      */
  43.     public function __construct(Connection $connection)
  44.     {
  45.         $this->connection $connection;
  46.     }
  48.     public static function getSubscribedEvents(): array
  49.     {
  50.         return [
  51.             PreWriteValidationEvent::class => 'preValidate',
  52.         ];
  53.     }
  55.     /**
  56.      * This function validates our incoming delta-values for promotions
  57.      * and its aggregation. It does only check for business relevant rules and logic.
  58.      * All primitive "required" constraints are done inside the definition of the entity.
  59.      *
  60.      * @throws WriteConstraintViolationException
  61.      */
  62.     public function preValidate(PreWriteValidationEvent $event): void
  63.     {
  64.         $this->collect($event->getCommands());
  66.         $violationList = new ConstraintViolationList();
  67.         $writeCommands $event->getCommands();
  69.         foreach ($writeCommands as $index => $command) {
  70.             if (!$command instanceof InsertCommand && !$command instanceof UpdateCommand) {
  71.                 continue;
  72.             }
  74.             switch (\get_class($command->getDefinition())) {
  75.                 case PromotionDefinition::class:
  77.                     /** @var string $promotionId */
  78.                     $promotionId $command->getPrimaryKey()['id'];
  80.                     try {
  81.                         /** @var array $promotion */
  82.                         $promotion $this->getPromotionById($promotionId);
  83.                     } catch (ResourceNotFoundException $ex) {
  84.                         $promotion = [];
  85.                     }
  87.                     $this->validatePromotion(
  88.                         $promotion,
  89.                         $command->getPayload(),
  90.                         $violationList,
  91.                         $index
  92.                     );
  94.                     break;
  96.                 case PromotionDiscountDefinition::class:
  98.                     /** @var string $discountId */
  99.                     $discountId $command->getPrimaryKey()['id'];
  101.                     try {
  102.                         /** @var array $discount */
  103.                         $discount $this->getDiscountById($discountId);
  104.                     } catch (ResourceNotFoundException $ex) {
  105.                         $discount = [];
  106.                     }
  108.                     $this->validateDiscount(
  109.                         $discount,
  110.                         $command->getPayload(),
  111.                         $violationList,
  112.                         $index
  113.                     );
  115.                     break;
  116.             }
  117.         }
  119.         if ($violationList->count() > 0) {
  120.             $event->getExceptions()->add(new WriteConstraintViolationException($violationList));
  121.         }
  122.     }
  124.     /**
  125.      * This function collects all database data that might be
  126.      * required for any of the received entities and values.
  127.      *
  128.      * @throws ResourceNotFoundException
  129.      * @throws \Doctrine\DBAL\DBALException
  130.      */
  131.     private function collect(array $writeCommands): void
  132.     {
  133.         $promotionIds = [];
  134.         $discountIds = [];
  136.         /** @var WriteCommand $command */
  137.         foreach ($writeCommands as $command) {
  138.             if (!$command instanceof InsertCommand && !$command instanceof UpdateCommand) {
  139.                 continue;
  140.             }
  142.             switch (\get_class($command->getDefinition())) {
  143.                 case PromotionDefinition::class:
  144.                     $promotionIds[] = $command->getPrimaryKey()['id'];
  146.                     break;
  148.                 case PromotionDiscountDefinition::class:
  149.                     $discountIds[] = $command->getPrimaryKey()['id'];
  151.                     break;
  152.             }
  153.         }
  155.         // why do we have inline sql queries in here?
  156.         // because we want to avoid any other private functions that accidentally access
  157.         // the database. all private getters should only access the local in-memory list
  158.         // to avoid additional database queries.
  159.         $this->databasePromotions = [];
  160.         if (!empty($promotionIds)) {
  161.             $promotionQuery $this->connection->executeQuery(
  162.                 'SELECT * FROM `promotion` WHERE `id` IN (:ids)',
  163.                 ['ids' => $promotionIds],
  164.                 ['ids' => Connection::PARAM_STR_ARRAY]
  165.             );
  167.             $this->databasePromotions $promotionQuery->fetchAll();
  168.         }
  170.         $this->databaseDiscounts = [];
  171.         if (!empty($discountIds)) {
  172.             $discountQuery $this->connection->executeQuery(
  173.                 'SELECT * FROM `promotion_discount` WHERE `id` IN (:ids)',
  174.                 ['ids' => $discountIds],
  175.                 ['ids' => Connection::PARAM_STR_ARRAY]
  176.             );
  178.             $this->databaseDiscounts $discountQuery->fetchAll();
  179.         }
  180.     }
  182.     /**
  183.      * Validates the provided Promotion data and adds
  184.      * violations to the provided list of violations, if found.
  185.      *
  186.      * @param array                   $promotion     the current promotion from the database as array type
  187.      * @param array                   $payload       the incoming delta-data
  188.      * @param ConstraintViolationList $violationList the list of violations that needs to be filled
  189.      * @param int                     $index         the index of this promotion in the command queue
  190.      *
  191.      * @throws \Exception
  192.      */
  193.     private function validatePromotion(array $promotion, array $payloadConstraintViolationList $violationListint $index): void
  194.     {
  195.         /** @var string|null $validFrom */
  196.         $validFrom $this->getValue($payload'valid_from'$promotion);
  198.         /** @var string|null $validUntil */
  199.         $validUntil $this->getValue($payload'valid_until'$promotion);
  201.         /** @var bool $useCodes */
  202.         $useCodes $this->getValue($payload'use_codes'$promotion);
  204.         /** @var bool $useCodesIndividual */
  205.         $useCodesIndividual $this->getValue($payload'use_individual_codes'$promotion);
  207.         /** @var string|null $pattern */
  208.         $pattern $this->getValue($payload'individual_code_pattern'$promotion);
  210.         /** @var string|null $promotionId */
  211.         $promotionId $this->getValue($payload'id'$promotion);
  213.         /** @var string|null $code */
  214.         $code $this->getValue($payload'code'$promotion);
  216.         if ($code === null) {
  217.             $code '';
  218.         }
  220.         if ($pattern === null) {
  221.             $pattern '';
  222.         }
  224.         $trimmedCode trim($code);
  226.         // if we have both a date from and until, make sure that
  227.         // the dateUntil is always in the future.
  228.         if ($validFrom !== null && $validUntil !== null) {
  229.             // now convert into real date times
  230.             // and start comparing them
  231.             $dateFrom = new \DateTime($validFrom);
  232.             $dateUntil = new \DateTime($validUntil);
  233.             if ($dateUntil $dateFrom) {
  234.                 $violationList->add($this->buildViolation(
  235.                     'Expiration Date of Promotion must be after Start of Promotion',
  236.                     $payload['valid_until'],
  237.                     'validUntil',
  238.                     'PROMOTION_VALID_UNTIL_VIOLATION',
  239.                     $index
  240.                 ));
  241.             }
  242.         }
  244.         // check if we use global codes
  245.         if ($useCodes && !$useCodesIndividual) {
  246.             // make sure the code is not empty
  247.             if ($trimmedCode === '') {
  248.                 $violationList->add($this->buildViolation(
  249.                     'Please provide a valid code',
  250.                     $code,
  251.                     'code',
  252.                     'PROMOTION_EMPTY_CODE_VIOLATION',
  253.                     $index
  254.                 ));
  255.             }
  257.             // if our code length is greater than the trimmed one,
  258.             // this means we have leading or trailing whitespaces
  259.             if (mb_strlen($code) > mb_strlen($trimmedCode)) {
  260.                 $violationList->add($this->buildViolation(
  261.                     'Code may not have any leading or ending whitespaces',
  262.                     $code,
  263.                     'code',
  264.                     'PROMOTION_CODE_WHITESPACE_VIOLATION',
  265.                     $index
  266.                 ));
  267.             }
  268.         }
  270.         if ($pattern !== '' && $this->isCodePatternAlreadyUsed($pattern$promotionId)) {
  271.             $violationList->add($this->buildViolation(
  272.                 'Code Pattern already exists in other promotion. Please provide a different pattern.',
  273.                 $pattern,
  274.                 'individualCodePattern',
  275.                 'PROMOTION_DUPLICATE_PATTERN_VIOLATION',
  276.                 $index
  277.             ));
  278.         }
  280.         // lookup global code if it does already exist in database
  281.         if ($trimmedCode !== '' && $this->isCodeAlreadyUsed($trimmedCode$promotionId)) {
  282.             $violationList->add($this->buildViolation(
  283.                 'Code already exists in other promotion. Please provide a different code.',
  284.                 $trimmedCode,
  285.                 'code',
  286.                 'PROMOTION_DUPLICATED_CODE_VIOLATION',
  287.                 $index
  288.             ));
  289.         }
  290.     }
  292.     /**
  293.      * Validates the provided PromotionDiscount data and adds
  294.      * violations to the provided list of violations, if found.
  295.      *
  296.      * @param array                   $discount      the discount as array from the database
  297.      * @param array                   $payload       the incoming delta-data
  298.      * @param ConstraintViolationList $violationList the list of violations that needs to be filled
  299.      */
  300.     private function validateDiscount(array $discount, array $payloadConstraintViolationList $violationListint $index): void
  301.     {
  302.         /** @var string $type */
  303.         $type $this->getValue($payload'type'$discount);
  305.         /** @var float|null $value */
  306.         $value $this->getValue($payload'value'$discount);
  308.         if ($value === null) {
  309.             return;
  310.         }
  312.         if ($value self::DISCOUNT_MIN_VALUE) {
  313.             $violationList->add($this->buildViolation(
  314.                 'Value must not be less than ' self::DISCOUNT_MIN_VALUE,
  315.                 $value,
  316.                 'value',
  317.                 'PROMOTION_DISCOUNT_MIN_VALUE_VIOLATION',
  318.                 $index
  319.             ));
  320.         }
  322.         switch ($type) {
  323.             case PromotionDiscountEntity::TYPE_PERCENTAGE:
  324.                 if ($value self::DISCOUNT_PERCENTAGE_MAX_VALUE) {
  325.                     $violationList->add($this->buildViolation(
  326.                         'Absolute value must not greater than ' self::DISCOUNT_PERCENTAGE_MAX_VALUE,
  327.                         $value,
  328.                         'value',
  329.                         'PROMOTION_DISCOUNT_MAX_VALUE_VIOLATION',
  330.                         $index
  331.                     ));
  332.                 }
  334.                 break;
  335.         }
  336.     }
  338.     /**
  339.      * Gets a value from an array. It also does clean checks if
  340.      * the key is set, and also provides the option for default values.
  341.      *
  342.      * @param array  $data  the data array
  343.      * @param string $key   the requested key in the array
  344.      * @param array  $dbRow the db row of from the database
  345.      *
  346.      * @return mixed the object found in the key, or the default value
  347.      */
  348.     private function getValue(array $datastring $key, array $dbRow)
  349.     {
  350.         // try in our actual data set
  351.         if (isset($data[$key])) {
  352.             return $data[$key];
  353.         }
  355.         // try in our db row fallback
  356.         if (isset($dbRow[$key])) {
  357.             return $dbRow[$key];
  358.         }
  360.         // use default
  361.         return null;
  362.     }
  364.     /**
  365.      * @throws ResourceNotFoundException
  366.      *
  367.      * @return array|mixed
  368.      */
  369.     private function getPromotionById(string $id)
  370.     {
  371.         /** @var array $promotion */
  372.         foreach ($this->databasePromotions as $promotion) {
  373.             if ($promotion['id'] === $id) {
  374.                 return $promotion;
  375.             }
  376.         }
  378.         throw new ResourceNotFoundException('promotion', [$id]);
  379.     }
  381.     /**
  382.      * @throws ResourceNotFoundException
  383.      *
  384.      * @return array|mixed
  385.      */
  386.     private function getDiscountById(string $id)
  387.     {
  388.         /** @var array $discount */
  389.         foreach ($this->databaseDiscounts as $discount) {
  390.             if ($discount['id'] === $id) {
  391.                 return $discount;
  392.             }
  393.         }
  395.         throw new ResourceNotFoundException('promotion_discount', [$id]);
  396.     }
  398.     /**
  399.      * This helper function builds an easy violation
  400.      * object for our validator.
  401.      *
  402.      * @param string $message      the error message
  403.      * @param mixed  $invalidValue the actual invalid value
  404.      * @param string $propertyPath the property path from the root value to the invalid value without initial slash
  405.      * @param string $code         the error code of the violation
  406.      * @param int    $index        the position of this entity in the command queue
  407.      *
  408.      * @return ConstraintViolationInterface the built constraint violation
  409.      */
  410.     private function buildViolation(string $message$invalidValuestring $propertyPathstring $codeint $index): ConstraintViolationInterface
  411.     {
  412.         $formattedPath "/{$index}/{$propertyPath}";
  414.         return new ConstraintViolation(
  415.             $message,
  416.             '',
  417.             [
  418.                 'value' => $invalidValue,
  419.             ],
  420.             $invalidValue,
  421.             $formattedPath,
  422.             $invalidValue,
  423.             null,
  424.             $code
  425.         );
  426.     }
  428.     /**
  429.      * True, if the provided pattern is already used in another promotion.
  430.      */
  431.     private function isCodePatternAlreadyUsed(string $pattern, ?string $promotionId): bool
  432.     {
  433.         $qb $this->connection->createQueryBuilder();
  435.         $query $qb
  436.             ->select('id')
  437.             ->from('promotion')
  438.             ->where($qb->expr()->eq('individual_code_pattern'':pattern'))
  439.             ->setParameter('pattern'$pattern);
  441.         $promotions $query->execute()->fetchAll();
  443.         /** @var array $p */
  444.         foreach ($promotions as $p) {
  445.             // if we have a promotion id to verify
  446.             // and a promotion with another id exists, then return that is used
  447.             if ($promotionId !== null && $p['id'] !== $promotionId) {
  448.                 return true;
  449.             }
  450.         }
  452.         return false;
  453.     }
  455.     /**
  456.      * True, if the provided code is already used as global
  457.      * or individual code in another promotion.
  458.      */
  459.     private function isCodeAlreadyUsed(string $code, ?string $promotionId): bool
  460.     {
  461.         $qb $this->connection->createQueryBuilder();
  463.         // check if individual code.
  464.         // if we dont have a promotion Id only
  465.         // check if its existing somewhere,
  466.         // if we have an Id, verify if it's existing in another promotion
  467.         $query $qb
  468.             ->select('id')
  469.             ->from('promotion_individual_code')
  470.             ->where($qb->expr()->eq('code'':code'))
  471.             ->setParameter('code'$code);
  473.         if ($promotionId !== null) {
  474.             $query->andWhere($qb->expr()->neq('promotion_id'':promotion_id'))
  475.                 ->setParameter('promotion_id'$promotionId);
  476.         }
  478.         $existingIndividual \count($query->execute()->fetchAll()) > 0;
  480.         if ($existingIndividual) {
  481.             return true;
  482.         }
  484.         $qb $this->connection->createQueryBuilder();
  486.         // check if it is a global promotion code.
  487.         // again with either an existing promotion Id
  488.         // or without one.
  489.         $query
  490.             $qb->select('id')
  491.             ->from('promotion')
  492.             ->where($qb->expr()->eq('code'':code'))
  493.             ->setParameter('code'$code);
  495.         if ($promotionId !== null) {
  496.             $query->andWhere($qb->expr()->neq('id'':id'))
  497.                 ->setParameter('id'$promotionId);
  498.         }
  500.         return \count($query->execute()->fetchAll()) > 0;
  501.     }
  502. }