From a393b9de232258855ff92137b17423ec8d514d44 Mon Sep 17 00:00:00 2001 From: Paul Kepinski Date: Sat, 22 Jun 2024 12:34:06 +0200 Subject: [PATCH 1/4] feat: invalid form returns http 422 Fixes #383 --- Event/RequestListener.php | 33 ++++++++++++++++++++++++++++++++- Resources/config/services.xml | 1 + 2 files changed, 33 insertions(+), 1 deletion(-) diff --git a/Event/RequestListener.php b/Event/RequestListener.php index 7701c4b6..af06c5bf 100644 --- a/Event/RequestListener.php +++ b/Event/RequestListener.php @@ -17,7 +17,9 @@ use Sulu\Bundle\FormBundle\Form\HandlerInterface; use Symfony\Component\EventDispatcher\EventDispatcherInterface; use Symfony\Component\HttpFoundation\RedirectResponse; +use Symfony\Component\HttpFoundation\Response; use Symfony\Component\HttpKernel\Event\RequestEvent; +use Symfony\Component\HttpKernel\Event\ResponseEvent; class RequestListener { @@ -41,6 +43,14 @@ class RequestListener */ protected $eventDispatcher; + /** + * Flag set to true when an invalid form is submitted, + * so we can set the http return code to 422. + * + * @var bool + */ + protected $invalidSubmittedForm = false; + /** * RequestListener constructor. */ @@ -73,10 +83,16 @@ public function onKernelRequest(RequestEvent $event): void try { $form = $this->formBuilder->buildByRequest($request); - if (!$form || !$form->isSubmitted() || !$form->isValid()) { + if (!$form || !$form->isSubmitted()) { // do nothing when no form was found or not valid return; } + + if ($form && $form->isSubmitted() && !$form->isValid()) { + $this->invalidSubmittedForm = true; + + return; + } } catch (\Exception $e) { // Catch all exception on build form by request return; @@ -96,4 +112,19 @@ public function onKernelRequest(RequestEvent $event): void $event->setResponse($response); } } + + public function onKernelResponse(ResponseEvent $event): void + { + if (\method_exists($event, 'isMainRequest') ? !$event->isMainRequest() : !$event->isMasterRequest()) { + // do nothing if it's not the master request + return; + } + + if ($this->invalidSubmittedForm) { + $response = $event->getResponse() ?? new Response(); + $response->setStatusCode(Response::HTTP_UNPROCESSABLE_ENTITY); + + $event->setResponse($response); + } + } } diff --git a/Resources/config/services.xml b/Resources/config/services.xml index 751051a4..885566b4 100644 --- a/Resources/config/services.xml +++ b/Resources/config/services.xml @@ -104,6 +104,7 @@ + From 77bd82942d263b0b86cd3c4614c4ec3d0defa2d3 Mon Sep 17 00:00:00 2001 From: Paul Kepinski Date: Sat, 22 Jun 2024 13:00:07 +0200 Subject: [PATCH 2/4] Fix lint --- Event/RequestListener.php | 4 ++-- phpstan-baseline.neon | 5 +++++ 2 files changed, 7 insertions(+), 2 deletions(-) diff --git a/Event/RequestListener.php b/Event/RequestListener.php index af06c5bf..80a4670f 100644 --- a/Event/RequestListener.php +++ b/Event/RequestListener.php @@ -88,7 +88,7 @@ public function onKernelRequest(RequestEvent $event): void return; } - if ($form && $form->isSubmitted() && !$form->isValid()) { + if (!$form->isValid()) { $this->invalidSubmittedForm = true; return; @@ -121,7 +121,7 @@ public function onKernelResponse(ResponseEvent $event): void } if ($this->invalidSubmittedForm) { - $response = $event->getResponse() ?? new Response(); + $response = $event->getResponse(); $response->setStatusCode(Response::HTTP_UNPROCESSABLE_ENTITY); $event->setResponse($response); diff --git a/phpstan-baseline.neon b/phpstan-baseline.neon index 7ba44698..e2f04931 100644 --- a/phpstan-baseline.neon +++ b/phpstan-baseline.neon @@ -805,6 +805,11 @@ parameters: count: 1 path: Event/RequestListener.php + - + message: "#^Call to an undefined method Symfony\\\\Component\\\\HttpKernel\\\\Event\\\\ResponseEvent\\:\\:isMasterRequest\\(\\)\\.$#" + count: 1 + path: Event/RequestListener.php + - message: "#^In method \"Sulu\\\\Bundle\\\\FormBundle\\\\Event\\\\RequestListener\\:\\:onKernelRequest\", caught \"Exception\" must be rethrown\\. Either catch a more specific exception or add a \"throw\" clause in the \"catch\" block to propagate the exception\\. More info\\: http\\://bit\\.ly/failloud$#" count: 1 From fb1f6269a67afea128dcbe83287b86c694a80db2 Mon Sep 17 00:00:00 2001 From: Alexander Schranz Date: Wed, 24 Jul 2024 18:56:16 +0200 Subject: [PATCH 3/4] Reset the state of the service --- Event/RequestListener.php | 8 +++++++- Resources/config/services.xml | 1 + 2 files changed, 8 insertions(+), 1 deletion(-) diff --git a/Event/RequestListener.php b/Event/RequestListener.php index 80a4670f..76061716 100644 --- a/Event/RequestListener.php +++ b/Event/RequestListener.php @@ -20,8 +20,9 @@ use Symfony\Component\HttpFoundation\Response; use Symfony\Component\HttpKernel\Event\RequestEvent; use Symfony\Component\HttpKernel\Event\ResponseEvent; +use Symfony\Contracts\Service\ResetInterface; -class RequestListener +class RequestListener implements ResetInterface { /** * @var BuilderInterface @@ -127,4 +128,9 @@ public function onKernelResponse(ResponseEvent $event): void $event->setResponse($response); } } + + public function reset(): void + { + $this->invalidSubmittedForm = false; + } } diff --git a/Resources/config/services.xml b/Resources/config/services.xml index 885566b4..f1f69cdd 100644 --- a/Resources/config/services.xml +++ b/Resources/config/services.xml @@ -105,6 +105,7 @@ + From ba04c20ed1499e3eb5c3efd2f7eee5bb82bea0b0 Mon Sep 17 00:00:00 2001 From: Alexander Schranz Date: Wed, 24 Jul 2024 19:00:03 +0200 Subject: [PATCH 4/4] Add test for 422 --- Tests/Functional/Mail/HelperTestCase.php | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/Tests/Functional/Mail/HelperTestCase.php b/Tests/Functional/Mail/HelperTestCase.php index a6ab71f6..72340b26 100644 --- a/Tests/Functional/Mail/HelperTestCase.php +++ b/Tests/Functional/Mail/HelperTestCase.php @@ -72,13 +72,22 @@ protected function doSendForm(Form $form): void $formSelector = \sprintf('form[name=%s]', $formName); $this->assertEquals(1, $crawler->filter($formSelector)->count()); + $formElm = $crawler->filter($formSelector)->first()->form([ + $formName . '[email]' => '', + $formName . '[email1]' => '', + ]); + + $this->client->enableProfiler(); + $crawler = $this->client->submit($formElm); + $this->assertResponseStatusCodeSame(422); + $formElm = $crawler->filter($formSelector)->first()->form([ $formName . '[email]' => 'test@example.org', $formName . '[email1]' => 'jon@example.org', ]); - $this->client->enableProfiler(); $this->client->submit($formElm); + $this->assertResponseStatusCodeSame(302); $this->assertResponseRedirects('?send=true'); } }