Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /home/corals/old/vendor/magento/module-cms/Controller/Adminhtml/Wysiwyg/ |
<?php
/**
*
* Copyright © Magento, Inc. All rights reserved.
* See COPYING.txt for license details.
*/
declare(strict_types=1);
namespace Magento\Cms\Controller\Adminhtml\Wysiwyg;
use Magento\Backend\App\Action;
use Magento\Cms\Model\Template\Filter;
use Magento\Cms\Model\Wysiwyg\Config;
use Magento\Framework\App\Action\HttpGetActionInterface;
use Magento\Framework\App\Filesystem\DirectoryList;
use Magento\Framework\Filesystem;
use Magento\Framework\Image\Adapter\AdapterInterface;
use Magento\Framework\Image\AdapterFactory;
use Psr\Log\LoggerInterface;
use Magento\Framework\Url\DecoderInterface;
use Magento\Framework\Controller\Result\Raw;
use Magento\Framework\Controller\Result\RawFactory;
use Magento\Backend\App\Action\Context;
use Magento\Framework\App\ObjectManager;
use Magento\Framework\Filesystem\Driver\File;
/**
* Process template text for wysiwyg editor.
*
* Class Directive
* @SuppressWarnings(PHPMD.CouplingBetweenObjects) usage of $this->file eliminated, but it's still there due to BC
*/
class Directive extends Action implements HttpGetActionInterface
{
/**
* Authorization level of a basic admin session
*
* @see _isAllowed()
*/
const ADMIN_RESOURCE = 'Magento_Cms::media_gallery';
/**
* @var DecoderInterface
*/
protected $urlDecoder;
/**
* @var RawFactory
*/
protected $resultRawFactory;
/**
* @var LoggerInterface
*/
private $logger;
/**
* @var AdapterFactory
*/
private $adapterFactory;
/**
* @var Config
*/
private $config;
/**
* @var Filter
*/
private $filter;
/**
* @var File
* @deprecated use $filesystem instead
*/
private $file;
/**
* @var Filesystem|null
*/
private $filesystem;
/**
* Constructor
*
* @param Context $context
* @param DecoderInterface $urlDecoder
* @param RawFactory $resultRawFactory
* @param AdapterFactory|null $adapterFactory
* @param LoggerInterface|null $logger
* @param Config|null $config
* @param Filter|null $filter
* @param File|null $file
* @param Filesystem|null $filesystem
*/
public function __construct(
Context $context,
DecoderInterface $urlDecoder,
RawFactory $resultRawFactory,
AdapterFactory $adapterFactory = null,
LoggerInterface $logger = null,
Config $config = null,
Filter $filter = null,
File $file = null,
Filesystem $filesystem = null
) {
parent::__construct($context);
$this->urlDecoder = $urlDecoder;
$this->resultRawFactory = $resultRawFactory;
$this->adapterFactory = $adapterFactory ?: ObjectManager::getInstance()->get(AdapterFactory::class);
$this->logger = $logger ?: ObjectManager::getInstance()->get(LoggerInterface::class);
$this->config = $config ?: ObjectManager::getInstance()->get(Config::class);
$this->filter = $filter ?: ObjectManager::getInstance()->get(Filter::class);
$this->file = $file ?: ObjectManager::getInstance()->get(File::class);
$this->filesystem = $filesystem ?: ObjectManager::getInstance()->get(Filesystem::class);
}
/**
* Template directives callback
*
* @return Raw
* @throws \Magento\Framework\Exception\FileSystemException
*/
public function execute()
{
$directive = $this->getRequest()->getParam('___directive');
$directive = $this->urlDecoder->decode($directive);
$image = null;
$resultRaw = null;
try {
/** @var Filter $filter */
$imagePath = $this->filter->filter($directive);
/** @var AdapterInterface $image */
$image = $this->adapterFactory->create();
/** @var Raw $resultRaw */
$resultRaw = $this->resultRawFactory->create();
$image->open($imagePath);
$resultRaw->setHeader('Content-Type', $image->getMimeType());
$resultRaw->setContents($image->getImage());
} catch (\Exception $e) {
/** @var Config $config */
$imagePath = $this->config->getSkinImagePlaceholderPath();
try {
$image->open($imagePath);
$resultRaw->setHeader('Content-Type', $image->getMimeType());
$resultRaw->setContents($image->getImage());
$this->logger->warning($e);
} catch (\Exception $e) {
$this->logger->warning($e);
}
}
$mimeType = $image->getMimeType();
unset($image);
// To avoid issues with PNG images with alpha blending we return raw file
// after validation as an image source instead of generating the new PNG image
// with image adapter
$content = $this->filesystem->getDirectoryWrite(DirectoryList::MEDIA)->getDriver()
->fileGetContents($imagePath);
$resultRaw->setHeader('Content-Type', $mimeType);
$resultRaw->setContents($content);
return $resultRaw;
}
}