src/Api/ItemCallbackApi.php line 98

Open in your IDE?
  1. <?php
  3. namespace App\Api;
  4. use App\Middleware\ItemsMiddleware;
  5. use App\Middleware\UserMiddleware;
  6. use Exception;
  7. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  8. use Symfony\Component\HttpFoundation\JsonResponse;
  9. use Symfony\Component\HttpFoundation\RedirectResponse;
  10. use Symfony\Component\HttpFoundation\Request;
  11. use Symfony\Component\HttpKernel\Exception\MethodNotAllowedHttpException;
  12. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  13. use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
  14. use Symfony\Component\Routing\Annotation\Route;
  16. class ItemCallbackApi extends AbstractController
  17. {
  19.   private $store_id;
  20.   private $item_id;
  21.   private $user_id;
  22.   private $hmac;
  23.   private $postdata;
  24.   private $userMiddleware;
  26.   public function __construct(
  27.     UserMiddleware $userMiddleware
  28.   ) {
  29.     $this->userMiddleware $userMiddleware;
  30.     $this->store_id = isset($_SERVER['HTTP_X_SHOPIFY_SHOP_DOMAIN']) ? $_SERVER['HTTP_X_SHOPIFY_SHOP_DOMAIN'] : null;
  31.     $this->item_id = isset($_SERVER['HTTP_X_SHOPIFY_PRODUCT_ID']) ? $_SERVER['HTTP_X_SHOPIFY_PRODUCT_ID'] : null;
  32.     $this->hmac = isset($_SERVER['HTTP_X_SHOPIFY_HMAC_SHA256']) ? $_SERVER['HTTP_X_SHOPIFY_HMAC_SHA256'] : "";
  33.     $this->postdata file_get_contents("php://input");
  35.     // $log_path = '/var/www/symfony/src/Api/shopify.log';
  36.     // $fp = fopen($log_path, 'a');
  37.     // fwrite($fp, '--------------Item Callback Starts-------------- ');
  38.     // fwrite($fp, PHP_EOL);
  39.     // fwrite($fp, json_encode($this->postdata));
  40.     // fwrite($fp, PHP_EOL);
  41.     // fwrite($fp, json_encode($_SERVER));
  42.     // fwrite($fp, PHP_EOL);
  43.     // fwrite($fp, PHP_EOL);
  44.     // fwrite($fp, '--------------Item Callback Ends-------------- ');
  45.     // fclose($fp);
  46.   }
  48.   public function verifyWebhook($data$hmac)
  49.   {
  50.     $calculated_hmac base64_encode(hash_hmac('sha256'$data$this->getParameter('SHOPIFY_SECRET'), true));
  51.     return hash_equals($calculated_hmac$hmac);
  52.   }
  54.   /**
  55.    * @Route("/api/shopify/callback/create/item", name="api_shopify_callback_create_item", methods={"POST"})
  56.    */
  57.   public function createItem(Request $requestItemsMiddleware $itemsMiddleware): JsonResponse
  58.   {
  59.     if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
  60.       throw new MethodNotAllowedHttpException(["error" => "Invalid Request Method"], 405);
  61.     } else if (!$this->hmac) {
  62.       throw new UnauthorizedHttpException("Unauthorized Request"401);
  63.     } else if (!$this->postdata) {
  64.       throw new NotFoundHttpException("Request Body not present");
  65.     } else if (!$this->store_id) {
  66.       throw new NotFoundHttpException("Store Id not present");
  67.     } else if (!$this->item_id) {
  68.       throw new NotFoundHttpException("Item Id not present");
  69.     } else if (!$this->verifyWebhook($this->postdata$this->hmac)) {
  70.       throw new UnauthorizedHttpException("Unauthorized Request"401);
  71.     }
  73.     $shopifyUserData $this->userMiddleware->get(array('store' => $this->store_id));
  74.     if (!$shopifyUserData || !$shopifyUserData->getId()) {
  75.       throw new NotFoundHttpException("No user-id found in store");
  76.     }
  77.     $this->user_id $shopifyUserData->getId();
  79.     $parameter = array(
  80.       'storeId' => $this->store_id,
  81.       'itemId' => $this->item_id,
  82.       'json' => $this->postdata,
  83.       'userId' => $this->user_id,
  84.       'accessToken' => $shopifyUserData->getAccessToken(),
  85.       'aedSync' => 'TO_BE_SYNCED',
  86.       'isUpdate' => false,
  87.       'status' => 'ACTIVE',
  88.       'createdDate' => new \DateTime(),
  89.       'updatedDate' => new \DateTime()
  90.     );
  92.     return new JsonResponse($itemsMiddleware->webHookSave($parameter));
  93.   }
  95.   /**
  96.    * @Route("/api/shopify/callback/update/item", name="api_shopify_callback_update_item", methods={"POST"})
  97.    */
  98.   public function updateItem(Request $requestItemsMiddleware $itemsMiddleware): JsonResponse
  99.   {
  100.     if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
  101.       throw new MethodNotAllowedHttpException(["error" => "Invalid Request Method"], 405);
  102.     } else if (!$this->hmac) {
  103.       throw new UnauthorizedHttpException("Unauthorized Request"401);
  104.     } else if (!$this->postdata) {
  105.       throw new NotFoundHttpException("Request Body not present");
  106.     } else if (!$this->store_id) {
  107.       throw new NotFoundHttpException("Store Id not present");
  108.     } else if (!$this->item_id) {
  109.       throw new NotFoundHttpException("Item Id not present");
  110.     } else if (!$this->verifyWebhook($this->postdata$this->hmac)) {
  111.       throw new UnauthorizedHttpException("Unauthorized Request"401);
  112.     }
  114.     $shopifyUserData $this->userMiddleware->get(array('store' => $this->store_id));
  115.     if (!$shopifyUserData || !$shopifyUserData->getId()) {
  116.       throw new NotFoundHttpException("No user-id found in store");
  117.     }
  118.     $this->user_id $shopifyUserData->getId();
  120.     $parameter = array(
  121.       'storeId' => $this->store_id,
  122.       'itemId' => $this->item_id,
  123.       'json' => $this->postdata,
  124.       'userId' => $this->user_id,
  125.       'aedSync' => 'TO_BE_SYNCED',
  126.       'accessToken' => $shopifyUserData->getAccessToken(),
  127.       'isUpdate' => true,
  128.       'status' => 'ACTIVE',
  129.       'createdDate' => new \DateTime(),
  130.       'updatedDate' => new \DateTime()
  131.     );
  133.     return new JsonResponse($itemsMiddleware->webHookUpdate($parameter));
  134.   }
  136.   /**
  137.    * @Route("/api/shopify/callback/delete/item", name="api_shopify_callback_delete_item", methods={"POST"})
  138.    */
  139.   public function deleteItem(Request $requestItemsMiddleware $itemsMiddleware): JsonResponse
  140.   {
  141.     if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
  142.       throw new MethodNotAllowedHttpException(["error" => "Invalid Request Method"], 405);
  143.     } else if (!$this->hmac) {
  144.       throw new UnauthorizedHttpException("Unauthorized Request"401);
  145.     } else if (!$this->postdata) {
  146.       throw new NotFoundHttpException("Request Body not present");
  147.     } else if (!$this->store_id) {
  148.       throw new NotFoundHttpException("Store Id not present");
  149.     } else if (!$this->item_id) {
  150.       throw new NotFoundHttpException("Item Id not present");
  151.     } else if (!$this->verifyWebhook($this->postdata$this->hmac)) {
  152.       throw new UnauthorizedHttpException("Unauthorized Request"401);
  153.     }
  155.     $shopifyUserData $this->userMiddleware->get(array('store' => $this->store_id));
  156.     if (!$shopifyUserData || !$shopifyUserData->getId()) {
  157.       throw new NotFoundHttpException("No user-id found in store");
  158.     }
  159.     $this->user_id $shopifyUserData->getId();
  161.     $parameter = array(
  162.       'storeId' => $this->store_id,
  163.       'itemId' => $this->item_id,
  164.       'userId' => $this->user_id,
  165.       'isUpdate' => true,
  166.       'aedSync' => 'TO_BE_SYNCED',
  167.       'status' => 'DELETE',
  168.       'createdDate' => new \DateTime(),
  169.       'updatedDate' => new \DateTime()
  170.     );
  171.     return new JsonResponse($itemsMiddleware->save($parameter));
  172.   }
  173. }