vendor/shopware/core/Framework/Adapter/Twig/SecurityExtension.php line 110

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace Shopware\Core\Framework\Adapter\Twig;
  5. use Shopware\Core\Framework\Log\Package;
  6. use Twig\Extension\AbstractExtension;
  7. use Twig\TwigFilter;
  9. /**
  10.  * @internal
  11.  */
  12. #[Package('system-settings')]
  13. class SecurityExtension extends AbstractExtension
  14. {
  15.     /**
  16.      * @var array<string>
  17.      */
  18.     private array $allowedPHPFunctions;
  20.     /**
  21.      * @param array<string> $allowedPHPFunctions
  22.      */
  23.     public function __construct(array $allowedPHPFunctions)
  24.     {
  25.         $this->allowedPHPFunctions $allowedPHPFunctions;
  26.     }
  28.     /**
  29.      * @return TwigFilter[]
  30.      */
  31.     public function getFilters(): array
  32.     {
  33.         return [
  34.             new TwigFilter('map', [$this'map']),
  35.             new TwigFilter('reduce', [$this'reduce']),
  36.             new TwigFilter('filter', [$this'filter']),
  37.             new TwigFilter('sort', [$this'sort']),
  38.         ];
  39.     }
  41.     /**
  42.      * @param iterable<mixed> $array
  43.      * @param string|callable|\Closure $function
  44.      *
  45.      * @return array<mixed>
  46.      */
  47.     public function map(iterable $array$function): array
  48.     {
  49.         if (\is_string($function) && !\in_array($function$this->allowedPHPFunctionstrue)) {
  50.             throw new \RuntimeException(sprintf('Function "%s" is not allowed'$function));
  51.         }
  53.         $result = [];
  54.         foreach ($array as $key => $value) {
  55.             // @phpstan-ignore-next-line
  56.             $result[$key] = $function($value);
  57.         }
  59.         return $result;
  60.     }
  62.     /**
  63.      * @param iterable<mixed> $array
  64.      * @param string|callable|\Closure $function
  65.      * @param mixed $initial
  66.      *
  67.      * @return mixed
  68.      */
  69.     public function reduce(iterable $array$function$initial null)
  70.     {
  71.         if (\is_string($function) && !\in_array($function$this->allowedPHPFunctionstrue)) {
  72.             throw new \RuntimeException(sprintf('Function "%s" is not allowed'$function));
  73.         }
  75.         if (!\is_array($array)) {
  76.             $array iterator_to_array($array);
  77.         }
  79.         // @phpstan-ignore-next-line
  80.         return array_reduce($array$function$initial);
  81.     }
  83.     /**
  84.      * @param iterable<mixed> $array
  85.      * @param string|callable|\Closure $arrow
  86.      *
  87.      * @return iterable<mixed>
  88.      */
  89.     public function filter(iterable $array$arrow): iterable
  90.     {
  91.         if (\is_string($arrow) && !\in_array($arrow$this->allowedPHPFunctionstrue)) {
  92.             throw new \RuntimeException(sprintf('Function "%s" is not allowed'$arrow));
  93.         }
  95.         if (\is_array($array)) {
  96.             // @phpstan-ignore-next-line
  97.             return array_filter($array$arrow\ARRAY_FILTER_USE_BOTH);
  98.         }
  100.         // @phpstan-ignore-next-line
  101.         return new \CallbackFilterIterator(new \IteratorIterator($array), $arrow);
  102.     }
  104.     /**
  105.      * @param iterable<mixed> $array
  106.      * @param string|callable|\Closure|null $arrow
  107.      *
  108.      * @return array<mixed>
  109.      */
  110.     public function sort(iterable $array$arrow null): array
  111.     {
  112.         if (\is_string($arrow) && !\in_array($arrow$this->allowedPHPFunctionstrue)) {
  113.             throw new \RuntimeException(sprintf('Function "%s" is not allowed'$arrow));
  114.         }
  116.         if ($array instanceof \Traversable) {
  117.             $array iterator_to_array($array);
  118.         }
  120.         if ($arrow !== null) {
  121.             // @phpstan-ignore-next-line
  122.             uasort($array$arrow);
  123.         } else {
  124.             asort($array);
  125.         }
  127.         return $array;
  128.     }
  129. }