vendor/pimcore/pimcore/bundles/CoreBundle/Controller/PublicServicesController.php line 184

Open in your IDE?
  1. <?php
  3. /**
  4. * Pimcore
  5. *
  6. * This source file is available under two different licenses:
  7. * - GNU General Public License version 3 (GPLv3)
  8. * - Pimcore Commercial License (PCL)
  9. * Full copyright and license information is available in
  10. * LICENSE.md which is distributed with this source code.
  11. *
  12. * @copyright Copyright (c) Pimcore GmbH (http://www.pimcore.org)
  13. * @license http://www.pimcore.org/license GPLv3 and PCL
  14. */
  16. namespace Pimcore\Bundle\CoreBundle\Controller;
  18. use function date;
  19. use function fstat;
  20. use function is_array;
  21. use Pimcore\Config;
  22. use Pimcore\Controller\Controller;
  23. use Pimcore\File;
  24. use Pimcore\Logger;
  25. use Pimcore\Model\Asset;
  26. use Pimcore\Model\Site;
  27. use Pimcore\Model\Tool\TmpStore;
  28. use Pimcore\Tool\Storage;
  29. use Symfony\Component\HttpFoundation\BinaryFileResponse;
  30. use Symfony\Component\HttpFoundation\Cookie;
  31. use Symfony\Component\HttpFoundation\RedirectResponse;
  32. use Symfony\Component\HttpFoundation\Request;
  33. use Symfony\Component\HttpFoundation\Response;
  34. use Symfony\Component\HttpFoundation\StreamedResponse;
  35. use Symfony\Component\HttpKernel\EventListener\AbstractSessionListener;
  36. use function time;
  38. /**
  39. * @internal
  40. */
  41. class PublicServicesController extends Controller
  42. {
  43. /**
  44. * @param Request $request
  45. *
  46. * @return BinaryFileResponse|StreamedResponse
  47. */
  48. public function thumbnailAction(Request $request)
  49. {
  50. $assetId = $request->get('assetId');
  51. $thumbnailName = $request->get('thumbnailName');
  52. $filename = $request->get('filename');
  53. $requestedFileExtension = strtolower(File::getFileExtension($filename));
  54. $asset = Asset::getById($assetId);
  56. $prefix = preg_replace('@^cache-buster\-[\d]+\/@', '', $request->get('prefix'));
  58. if ($asset && $asset->getPath() === ('/' . $prefix)) {
  59. // we need to check the path as well, this is important in the case you have restricted the public access to
  60. // assets via rewrite rules
  61. try {
  62. $imageThumbnail = null;
  63. $thumbnailStream = null;
  65. // just check if the thumbnail exists -> throws exception otherwise
  66. $thumbnailConfig = Asset\Image\Thumbnail\Config::getByName($thumbnailName);
  68. if (!$thumbnailConfig) {
  69. // check if there's an item in the TmpStore
  70. // remove an eventually existing cache-buster prefix first (eg. when using with a CDN)
  71. $pathInfo = preg_replace('@^/cache-buster\-[\d]+@', '', $request->getPathInfo());
  72. $deferredConfigId = 'thumb_' . $assetId . '__' . md5(urldecode($pathInfo));
  73. if ($thumbnailConfigItem = TmpStore::get($deferredConfigId)) {
  74. $thumbnailConfig = $thumbnailConfigItem->getData();
  75. TmpStore::delete($deferredConfigId);
  77. if (!$thumbnailConfig instanceof Asset\Image\Thumbnail\Config) {
  78. throw new \Exception("Deferred thumbnail config file doesn't contain a valid \\Asset\\Image\\Thumbnail\\Config object");
  79. }
  80. }
  81. }
  83. if (!$thumbnailConfig) {
  84. throw $this->createNotFoundException("Thumbnail '" . $thumbnailName . "' file doesn't exist");
  85. }
  87. if (strcasecmp($thumbnailConfig->getFormat(), 'SOURCE') === 0) {
  88. $formatOverride = $requestedFileExtension;
  89. if (in_array($requestedFileExtension, ['jpg', 'jpeg'])) {
  90. $formatOverride = 'pjpeg';
  91. }
  92. $thumbnailConfig->setFormat($formatOverride);
  93. }
  95. if ($asset instanceof Asset\Video) {
  96. $time = 1;
  97. if (preg_match("|~\-~time\-(\d+)\.|", $filename, $matchesThumbs)) {
  98. $time = (int)$matchesThumbs[1];
  99. }
  101. $imageThumbnail = $asset->getImageThumbnail($thumbnailConfig, $time);
  102. $thumbnailStream = $imageThumbnail->getStream();
  103. } elseif ($asset instanceof Asset\Document) {
  104. $page = 1;
  105. if (preg_match("|~\-~page\-(\d+)\.|", $filename, $matchesThumbs)) {
  106. $page = (int)$matchesThumbs[1];
  107. }
  109. $thumbnailConfig->setName(preg_replace("/\-[\d]+/", '', $thumbnailConfig->getName()));
  110. $thumbnailConfig->setName(str_replace('document_', '', $thumbnailConfig->getName()));
  112. $imageThumbnail = $asset->getImageThumbnail($thumbnailConfig, $page);
  113. $thumbnailStream = $imageThumbnail->getStream();
  114. } elseif ($asset instanceof Asset\Image) {
  115. //check if high res image is called
  117. preg_match("@([^\@]+)(\@[0-9.]+x)?\.([a-zA-Z]{2,5})@", $filename, $matches);
  119. if (array_key_exists(2, $matches) && $matches[2]) {
  120. $highResFactor = (float) str_replace(['@', 'x'], '', $matches[2]);
  121. $thumbnailConfig->setHighResolution($highResFactor);
  122. }
  124. // check if a media query thumbnail was requested
  125. if (preg_match("#~\-~media\-\-(.*)\-\-query#", $matches[1], $mediaQueryResult)) {
  126. $thumbnailConfig->selectMedia($mediaQueryResult[1]);
  127. }
  129. $imageThumbnail = $asset->getThumbnail($thumbnailConfig);
  130. $thumbnailStream = $imageThumbnail->getStream();
  131. }
  133. if ($imageThumbnail && $thumbnailStream) {
  134. $pathReference = $imageThumbnail->getPathReference();
  135. $actualFileExtension = File::getFileExtension($pathReference['src']);
  137. if ($actualFileExtension !== $requestedFileExtension) {
  138. // create a copy/symlink to the file with the original file extension
  139. // this can be e.g. the case when the thumbnail is called as foo.png but the thumbnail config
  140. // is set to auto-optimized format so the resulting thumbnail can be jpeg
  141. $requestedFile = preg_replace('/\.' . $actualFileExtension . '$/', '.' . $requestedFileExtension, $pathReference['src']);
  142. Storage::get('thumbnail')->writeStream($requestedFile, $thumbnailStream);
  143. }
  145. // set appropriate caching headers
  146. // see also: https://github.com/pimcore/pimcore/blob/1931860f0aea27de57e79313b2eb212dcf69ef13/.htaccess#L86-L86
  147. $lifetime = 86400 * 7; // 1 week lifetime, same as direct delivery in .htaccess
  149. $headers = [
  150. 'Cache-Control' => 'public, max-age=' . $lifetime,
  151. 'Expires' => date('D, d M Y H:i:s T', time() + $lifetime),
  152. 'Content-Type' => $imageThumbnail->getMimeType(),
  153. ];
  155. $stats = fstat($thumbnailStream);
  156. if (is_array($stats)) {
  157. $headers['Content-Length'] = $stats['size'];
  158. }
  160. $headers[AbstractSessionListener::NO_AUTO_CACHE_CONTROL_HEADER] = true;
  162. return new StreamedResponse(function () use ($thumbnailStream) {
  163. fpassthru($thumbnailStream);
  164. }, 200, $headers);
  165. }
  167. throw new \Exception('Unable to generate thumbnail, see logs for details.');
  168. } catch (\Exception $e) {
  169. $message = "Thumbnail with name '" . $thumbnailName . "' doesn't exist";
  170. Logger::error($message);
  172. return new BinaryFileResponse(PIMCORE_WEB_ROOT . '/bundles/pimcoreadmin/img/filetype-not-supported.svg', 200);
  173. }
  174. }
  176. throw $this->createNotFoundException('Asset not found');
  177. }
  179. /**
  180. * @param Request $request
  181. *
  182. * @return Response
  183. */
  184. public function robotsTxtAction(Request $request)
  185. {
  186. // check for site
  187. $domain = \Pimcore\Tool::getHostname();
  188. $site = Site::getByDomain($domain);
  190. $config = Config::getRobotsConfig()->toArray();
  192. $siteId = 'default';
  193. if ($site instanceof Site) {
  194. $siteId = $site->getId();
  195. }
  197. // send correct headers
  198. header('Content-Type: text/plain; charset=utf8');
  199. while (@ob_end_flush()) ;
  201. // check for configured robots.txt in pimcore
  202. $content = '';
  203. if (array_key_exists($siteId, $config)) {
  204. $content = $config[$siteId];
  205. }
  207. if (empty($content)) {
  208. // default behavior, allow robots to index everything
  209. $content = "User-agent: *\nDisallow:";
  210. }
  212. return new Response($content, Response::HTTP_OK, [
  213. 'Content-Type' => 'text/plain',
  214. ]);
  215. }
  217. /**
  218. * @param Request $request
  219. *
  220. * @return Response
  221. */
  222. public function commonFilesAction(Request $request)
  223. {
  224. return new Response("HTTP/1.1 404 Not Found\nFiltered by common files filter", 404);
  225. }
  227. /**
  228. * @param Request $request
  229. *
  230. * @return \Symfony\Component\HttpFoundation\RedirectResponse
  231. */
  232. public function customAdminEntryPointAction(Request $request)
  233. {
  234. $params = $request->query->all();
  235. if (isset($params['token'])) {
  236. $url = $this->generateUrl('pimcore_admin_login_check', $params);
  237. } else {
  238. $url = $this->generateUrl('pimcore_admin_login', $params);
  239. }
  241. $redirect = new RedirectResponse($url);
  243. $customAdminPathIdentifier = $this->getParameter('pimcore_admin.custom_admin_path_identifier');
  244. if (!empty($customAdminPathIdentifier) && $request->cookies->get('pimcore_custom_admin') != $customAdminPathIdentifier) {
  245. $redirect->headers->setCookie(new Cookie('pimcore_custom_admin', $customAdminPathIdentifier, strtotime('+1 year'), '/', null, false, true));
  246. }
  248. return $redirect;
  249. }
  250. }