vendor/api-platform/core/src/EventListener/DeserializeListener.php line 69

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the API Platform project.
  5.  *
  6.  * (c) Kévin Dunglas <dunglas@gmail.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. declare(strict_types=1);
  14. namespace ApiPlatform\Core\EventListener;
  16. use ApiPlatform\Core\Api\FormatMatcher;
  17. use ApiPlatform\Core\Api\FormatsProviderInterface;
  18. use ApiPlatform\Core\Metadata\Resource\Factory\ResourceMetadataFactoryInterface;
  19. use ApiPlatform\Core\Metadata\Resource\ToggleableOperationAttributeTrait;
  20. use ApiPlatform\Core\Serializer\SerializerContextBuilderInterface;
  21. use ApiPlatform\Core\Util\RequestAttributesExtractor;
  22. use Symfony\Component\HttpFoundation\Request;
  23. use Symfony\Component\HttpKernel\Event\RequestEvent;
  24. use Symfony\Component\HttpKernel\Exception\UnsupportedMediaTypeHttpException;
  25. use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
  26. use Symfony\Component\Serializer\SerializerInterface;
  28. /**
  29.  * Updates the entity retrieved by the data provider with data contained in the request body.
  30.  *
  31.  * @author Kévin Dunglas <dunglas@gmail.com>
  32.  */
  33. final class DeserializeListener
  34. {
  35.     use ToggleableOperationAttributeTrait;
  37.     public const OPERATION_ATTRIBUTE_KEY 'deserialize';
  39.     private $serializer;
  40.     private $serializerContextBuilder;
  41.     private $formats;
  42.     private $formatsProvider;
  44.     /**
  45.      * @param ResourceMetadataFactoryInterface|FormatsProviderInterface|array $resourceMetadataFactory
  46.      */
  47.     public function __construct(SerializerInterface $serializerSerializerContextBuilderInterface $serializerContextBuilder$resourceMetadataFactoryResourceMetadataFactoryInterface $legacyResourceMetadataFactory null)
  48.     {
  49.         $this->serializer $serializer;
  50.         $this->serializerContextBuilder $serializerContextBuilder;
  51.         $this->resourceMetadataFactory $resourceMetadataFactory instanceof ResourceMetadataFactoryInterface $resourceMetadataFactory $legacyResourceMetadataFactory;
  53.         if (!$resourceMetadataFactory instanceof ResourceMetadataFactoryInterface) {
  54.             @trigger_error(sprintf('Passing an array or an instance of "%s" as 3rd parameter of the constructor of "%s" is deprecated since API Platform 2.5, pass an instance of "%s" instead'FormatsProviderInterface::class, __CLASS__ResourceMetadataFactoryInterface::class), \E_USER_DEPRECATED);
  55.         }
  57.         if (\is_array($resourceMetadataFactory)) {
  58.             $this->formats $resourceMetadataFactory;
  59.         } elseif ($resourceMetadataFactory instanceof FormatsProviderInterface) {
  60.             $this->formatsProvider $resourceMetadataFactory;
  61.         }
  62.     }
  64.     /**
  65.      * Deserializes the data sent in the requested format.
  66.      *
  67.      * @throws UnsupportedMediaTypeHttpException
  68.      */
  69.     public function onKernelRequest(RequestEvent $event): void
  70.     {
  71.         $request $event->getRequest();
  72.         $method $request->getMethod();
  74.         if (
  75.             'DELETE' === $method
  76.             || $request->isMethodSafe()
  77.             || !($attributes RequestAttributesExtractor::extractAttributes($request))
  78.             || !$attributes['receive']
  79.             || $this->isOperationAttributeDisabled($attributesself::OPERATION_ATTRIBUTE_KEY)
  80.         ) {
  81.             return;
  82.         }
  84.         $context $this->serializerContextBuilder->createFromRequest($requestfalse$attributes);
  86.         // BC check to be removed in 3.0
  87.         if ($this->resourceMetadataFactory) {
  88.             $formats $this
  89.                 ->resourceMetadataFactory
  90.                 ->create($attributes['resource_class'])
  91.                 ->getOperationAttribute($attributes'input_formats', [], true);
  92.         } elseif ($this->formatsProvider instanceof FormatsProviderInterface) {
  93.             $formats $this->formatsProvider->getFormatsFromAttributes($attributes);
  94.         } else {
  95.             $formats $this->formats;
  96.         }
  98.         $format $this->getFormat($request$formats);
  99.         $data $request->attributes->get('data');
  100.         if (null !== $data) {
  101.             $context[AbstractNormalizer::OBJECT_TO_POPULATE] = $data;
  102.         }
  104.         $request->attributes->set(
  105.             'data',
  106.             $this->serializer->deserialize($request->getContent(), $context['resource_class'], $format$context)
  107.         );
  108.     }
  110.     /**
  111.      * Extracts the format from the Content-Type header and check that it is supported.
  112.      *
  113.      * @throws UnsupportedMediaTypeHttpException
  114.      */
  115.     private function getFormat(Request $request, array $formats): string
  116.     {
  117.         /**
  118.          * @var string|null
  119.          */
  120.         $contentType $request->headers->get('CONTENT_TYPE');
  121.         if (null === $contentType) {
  122.             throw new UnsupportedMediaTypeHttpException('The "Content-Type" header must exist.');
  123.         }
  125.         $formatMatcher = new FormatMatcher($formats);
  126.         $format $formatMatcher->getFormat($contentType);
  127.         if (null === $format) {
  128.             $supportedMimeTypes = [];
  129.             foreach ($formats as $mimeTypes) {
  130.                 foreach ($mimeTypes as $mimeType) {
  131.                     $supportedMimeTypes[] = $mimeType;
  132.                 }
  133.             }
  135.             throw new UnsupportedMediaTypeHttpException(sprintf('The content-type "%s" is not supported. Supported MIME types are "%s".'$contentTypeimplode('", "'$supportedMimeTypes)));
  136.         }
  138.         return $format;
  139.     }
  140. }