/**
* Middleware execution:
+ * - run updates
+ * - if not logged in open shaarli, redirect to login
* - execute the controller
* - return the response
*
*
* @return Response response.
*/
- public function __invoke(Request $request, Response $response, callable $next)
+ public function __invoke(Request $request, Response $response, callable $next): Response
{
+ $this->container->basePath = rtrim($request->getUri()->getBasePath(), '/');
+
try {
- $this->container->basePath = rtrim($request->getUri()->getBasePath(), '/');
+ if (!is_file($this->container->conf->getConfigFileExt())
+ && !in_array($next->getName(), ['displayInstall', 'saveInstall'], true)
+ ) {
+ return $response->withRedirect($this->container->basePath . '/install');
+ }
- $response = $next($request, $response);
+ $this->runUpdates();
+ $this->checkOpenShaarli($request, $response, $next);
+
+ return $next($request, $response);
} catch (ShaarliFrontException $e) {
- $this->container->pageBuilder->assign('message', $e->getMessage());
+ // Possible functional error
+ $this->container->pageBuilder->reset();
+ $this->container->pageBuilder->assign('message', nl2br($e->getMessage()));
+
+ $response = $response->withStatus($e->getCode());
+
+ return $response->write($this->container->pageBuilder->render('error', $this->container->basePath));
+ } catch (UnauthorizedException $e) {
+ $returnUrl = urlencode($this->container->environment['REQUEST_URI']);
+
+ return $response->withRedirect($this->container->basePath . '/login?returnurl=' . $returnUrl);
+ } catch (\Throwable $e) {
+ // Unknown error encountered
+ $this->container->pageBuilder->reset();
if ($this->container->conf->get('dev.debug', false)) {
+ $this->container->pageBuilder->assign('message', $e->getMessage());
$this->container->pageBuilder->assign(
'stacktrace',
- nl2br(get_class($this) .': '. $e->getTraceAsString())
+ nl2br(get_class($e) .': '. PHP_EOL . $e->getTraceAsString())
);
+ } else {
+ $this->container->pageBuilder->assign('message', t('An unexpected error occurred.'));
}
- $response = $response->withStatus($e->getCode());
- $response = $response->write($this->container->pageBuilder->render('error'));
- } catch (UnauthorizedException $e) {
- return $response->withRedirect($request->getUri()->getBasePath() . '/login');
+ $response = $response->withStatus(500);
+
+ return $response->write($this->container->pageBuilder->render('error', $this->container->basePath));
+ }
+ }
+
+ /**
+ * Run the updater for every requests processed while logged in.
+ */
+ protected function runUpdates(): void
+ {
+ if ($this->container->loginManager->isLoggedIn() !== true) {
+ return;
+ }
+
+ $this->container->updater->setBasePath($this->container->basePath);
+ $newUpdates = $this->container->updater->update();
+ if (!empty($newUpdates)) {
+ $this->container->updater->writeUpdates(
+ $this->container->conf->get('resource.updates'),
+ $this->container->updater->getDoneUpdates()
+ );
+
+ $this->container->pageCacheManager->invalidateCaches();
+ }
+ }
+
+ /**
+ * Access is denied to most pages with `hide_public_links` + `force_login` settings.
+ */
+ protected function checkOpenShaarli(Request $request, Response $response, callable $next): bool
+ {
+ if (// if the user isn't logged in
+ !$this->container->loginManager->isLoggedIn()
+ // and Shaarli doesn't have public content...
+ && $this->container->conf->get('privacy.hide_public_links')
+ // and is configured to enforce the login
+ && $this->container->conf->get('privacy.force_login')
+ // and the current page isn't already the login page
+ // and the user is not requesting a feed (which would lead to a different content-type as expected)
+ && !in_array($next->getName(), ['login', 'atom', 'rss'], true)
+ ) {
+ throw new UnauthorizedException();
}
- return $response;
+ return true;
}
}