vendor/shopware/storefront/Framework/Routing/ResponseHeaderListener.php line 43

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Storefront\Framework\Routing;
  5. use Shopware\Core\Framework\Routing\Annotation\RouteScope;
  6. use Shopware\Core\PlatformRequest;
  7. use Shopware\Storefront\Framework\Routing\Annotation\NoStore;
  8. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\HttpFoundation\Response;
  11. use Symfony\Component\HttpKernel\Event\ResponseEvent;
  13. class ResponseHeaderListener implements EventSubscriberInterface
  14. {
  15.     private const REMOVAL_HEADERS = [
  16.         PlatformRequest::HEADER_VERSION_ID,
  17.         PlatformRequest::HEADER_LANGUAGE_ID,
  18.         PlatformRequest::HEADER_CONTEXT_TOKEN,
  19.         'Access-Control-Allow-Origin',
  20.         'Access-Control-Allow-Methods',
  21.         'Access-Control-Allow-Headers',
  22.         'Access-Control-Expose-Headers',
  23.     ];
  25.     /**
  26.      * @deprecated tag:v6.5.0 - Will be removed, use onResponse() instead
  27.      */
  28.     public function __invoke(ResponseEvent $event): void
  29.     {
  30.         $this->onResponse($event);
  31.     }
  33.     /**
  34.      * @return array<string, array{0: string, 1: int}>
  35.      */
  36.     public static function getSubscribedEvents(): array
  37.     {
  38.         return [
  39.             ResponseEvent::class => ['onResponse', -10],
  40.         ];
  41.     }
  43.     public function onResponse(ResponseEvent $event): void
  44.     {
  45.         $response $event->getResponse();
  46.         /** @var RouteScope|list<string> $scopes */
  47.         $scopes $event->getRequest()->attributes->get(PlatformRequest::ATTRIBUTE_ROUTE_SCOPE, []);
  49.         if ($scopes instanceof RouteScope) {
  50.             $scopes $scopes->getScopes();
  51.         }
  53.         if (!\in_array(StorefrontRouteScope::ID$scopestrue) && !$response instanceof StorefrontResponse) {
  54.             return;
  55.         }
  57.         $this->manipulateStorefrontHeader($event->getRequest(), $response);
  58.     }
  60.     private function manipulateStorefrontHeader(Request $requestResponse $response): void
  61.     {
  62.         $this->removeHeaders($response);
  63.         $this->addNoStoreHeader($request$response);
  64.     }
  66.     private function removeHeaders(Response $response): void
  67.     {
  68.         foreach (self::REMOVAL_HEADERS as $headerKey) {
  69.             $response->headers->remove($headerKey);
  70.         }
  71.     }
  73.     private function addNoStoreHeader(Request $requestResponse $response): void
  74.     {
  75.         if (!$request->attributes->has('_' NoStore::ALIAS)) {
  76.             return;
  77.         }
  79.         $response->setMaxAge(0);
  80.         $response->headers->addCacheControlDirective('no-cache');
  81.         $response->headers->addCacheControlDirective('no-store');
  82.         $response->headers->addCacheControlDirective('must-revalidate');
  83.         $response->setExpires(new \DateTime('@0'));
  84.     }
  85. }