TPS
/
ORIENT
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add header and cookie support to ResponseMaker

This commit is contained in:
Samuel Georges 2019-11-02 18:57:32 +11:00
parent ff8f899fbe
commit 9d120ad66b
2 changed files with 61 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
modules/backend/controllers/Auth.php
View File

@ -35,11 +35,6 @@ class Auth extends Controller
{
parent::__construct();
// $this->middleware(function ($request, $response) {
// // Clear Cache and any previous data to fix Invalid security token issue, see github: #3707
// $response->headers->set('Cache-Control', 'no-cache, no-store, must-revalidate');
// })->only('signin');
$this->layout = 'auth';
}
@ -58,6 +53,9 @@ class Auth extends Controller
{
$this->bodyClass = 'signin';
// Clear Cache and any previous data to fix invalid security token issue
$this->setResponseHeader('Cache-Control', 'no-cache, no-store, must-revalidate');
try {
if (post('postback')) {
return $this->signin_onSubmit();
@ -122,14 +120,12 @@ class Auth extends Controller
BackendAuth::logout();
}
$redirect = Backend::redirect('backend');
// Add HTTP Header 'Clear Site Data' to purge all sensitive data upon signout
if (Request::secure()) {
$redirect->header('Clear-Site-Data', 'cache, cookies, storage, executionContexts');
$this->setResponseHeader('Clear-Site-Data', 'cache, cookies, storage, executionContexts');
}
return $redirect;
return Backend::redirect('backend');
}
/**

60
modules/system/traits/ResponseMaker.php
View File

@ -1,6 +1,8 @@
<?php namespace System\Traits;
use Response;
use Symfony\Component\HttpFoundation\HeaderBag;
use Symfony\Component\HttpFoundation\Response as BaseResponse;
/**
* Response Maker Trait
@ -21,10 +23,15 @@ trait ResponseMaker
*/
protected $responseOverride = null;
/**
* @var Symfony\Component\HttpFoundation\HeaderBag
*/
protected $responseHeaderBag = null;
/**
* Sets the status code for the current web response.
* @param int $code Status code
* @return self
* @return $this
*/
public function setStatusCode($code)
{
@ -45,6 +52,7 @@ trait ResponseMaker
* Sets the response for the current page request cycle, this value takes priority
* over the standard response prepared by the controller.
* @param mixed $response Response object or string
* @return $this
*/
public function setResponse($response)
{
@ -52,6 +60,46 @@ trait ResponseMaker
return $this;
}
/**
* Set a header on the Response.
*
* @param string $key
* @param array|string $values
* @param bool $replace
* @return $this
*/
public function setResponseHeader($key, $values, $replace = true)
{
if ($this->responseHeaderBag === null) {
$this->responseHeaderBag = new HeaderBag;
}
$this->responseHeaderBag->set($key, $values, $replace);
return $this;
}
/**
* Add a cookie to the response.
*
* @param \Symfony\Component\HttpFoundation\Cookie|mixed $cookie
* @return $this
*/
public function setResponseCookie($cookie)
{
if ($this->responseHeaderBag === null) {
$this->responseHeaderBag = new HeaderBag;
}
if (is_string($cookie) && function_exists('cookie')) {
$cookie = call_user_func_array('cookie', func_get_args());
}
$this->responseHeaderBag->setCookie($cookie);
return $this;
}
/**
* Prepares a response that considers overrides and custom responses.
* @param mixed $contents
@ -63,10 +111,14 @@ trait ResponseMaker
$contents = $this->responseOverride;
}
if (!is_string($contents)) {
return $contents;
if (is_string($contents)) {
$contents = Response::make($contents, $this->statusCode);
}
return Response::make($contents, $this->statusCode);
if ($contents instanceof BaseResponse && $this->responseHeaderBag !== null) {
$contents = $contents->withHeaders($this->responseHeaderBag);
}
return $contents;
}
}