102 lines
3.5 KiB
PHP
102 lines
3.5 KiB
PHP
<?php
|
|
|
|
/*
|
|
* This file is part of the Symfony package.
|
|
*
|
|
* (c) Fabien Potencier <fabien@symfony.com>
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Symfony\Component\HttpClient;
|
|
|
|
use Psr\Log\LoggerAwareInterface;
|
|
use Psr\Log\LoggerInterface;
|
|
use Symfony\Component\HttpClient\Exception\InvalidArgumentException;
|
|
use Symfony\Component\HttpClient\Exception\TransportException;
|
|
use Symfony\Component\HttpFoundation\IpUtils;
|
|
use Symfony\Contracts\HttpClient\HttpClientInterface;
|
|
use Symfony\Contracts\HttpClient\ResponseInterface;
|
|
use Symfony\Contracts\HttpClient\ResponseStreamInterface;
|
|
use Symfony\Contracts\Service\ResetInterface;
|
|
|
|
/**
|
|
* Decorator that blocks requests to private networks by default.
|
|
*
|
|
* @author Hallison Boaventura <hallisonboaventura@gmail.com>
|
|
*/
|
|
final class NoPrivateNetworkHttpClient implements HttpClientInterface, LoggerAwareInterface, ResetInterface
|
|
{
|
|
use HttpClientTrait;
|
|
|
|
private HttpClientInterface $client;
|
|
private string|array|null $subnets;
|
|
|
|
/**
|
|
* @param string|array|null $subnets String or array of subnets using CIDR notation that will be used by IpUtils.
|
|
* If null is passed, the standard private subnets will be used.
|
|
*/
|
|
public function __construct(HttpClientInterface $client, string|array|null $subnets = null)
|
|
{
|
|
if (!class_exists(IpUtils::class)) {
|
|
throw new \LogicException(sprintf('You cannot use "%s" if the HttpFoundation component is not installed. Try running "composer require symfony/http-foundation".', __CLASS__));
|
|
}
|
|
|
|
$this->client = $client;
|
|
$this->subnets = $subnets;
|
|
}
|
|
|
|
public function request(string $method, string $url, array $options = []): ResponseInterface
|
|
{
|
|
$onProgress = $options['on_progress'] ?? null;
|
|
if (null !== $onProgress && !\is_callable($onProgress)) {
|
|
throw new InvalidArgumentException(sprintf('Option "on_progress" must be callable, "%s" given.', get_debug_type($onProgress)));
|
|
}
|
|
|
|
$subnets = $this->subnets;
|
|
|
|
$options['on_progress'] = function (int $dlNow, int $dlSize, array $info) use ($onProgress, $subnets): void {
|
|
static $lastPrimaryIp = '';
|
|
if ($info['primary_ip'] !== $lastPrimaryIp) {
|
|
if ($info['primary_ip'] && IpUtils::checkIp($info['primary_ip'], $subnets ?? IpUtils::PRIVATE_SUBNETS)) {
|
|
throw new TransportException(sprintf('IP "%s" is blocked for "%s".', $info['primary_ip'], $info['url']));
|
|
}
|
|
|
|
$lastPrimaryIp = $info['primary_ip'];
|
|
}
|
|
|
|
null !== $onProgress && $onProgress($dlNow, $dlSize, $info);
|
|
};
|
|
|
|
return $this->client->request($method, $url, $options);
|
|
}
|
|
|
|
public function stream(ResponseInterface|iterable $responses, ?float $timeout = null): ResponseStreamInterface
|
|
{
|
|
return $this->client->stream($responses, $timeout);
|
|
}
|
|
|
|
public function setLogger(LoggerInterface $logger): void
|
|
{
|
|
if ($this->client instanceof LoggerAwareInterface) {
|
|
$this->client->setLogger($logger);
|
|
}
|
|
}
|
|
|
|
public function withOptions(array $options): static
|
|
{
|
|
$clone = clone $this;
|
|
$clone->client = $this->client->withOptions($options);
|
|
|
|
return $clone;
|
|
}
|
|
|
|
public function reset(): void
|
|
{
|
|
if ($this->client instanceof ResetInterface) {
|
|
$this->client->reset();
|
|
}
|
|
}
|
|
}
|