custom/plugins/StripeShopwarePayment/src/Webhook/StripeWebhookController.php line 91

Open in your IDE?
  1. <?php
  2. /*
  3.  * Copyright (c) Pickware GmbH. All rights reserved.
  4.  * This file is part of software that is released under a proprietary license.
  5.  * You must not copy, modify, distribute, make publicly available, or execute
  6.  * its contents or parts thereof without express permission by the copyright
  7.  * holder, unless otherwise permitted by law.
  8.  */
  10. declare(strict_types=1);
  12. namespace Stripe\ShopwarePayment\Webhook;
  14. use Psr\Log\LoggerInterface;
  15. use Shopware\Core\Framework\Context;
  16. use Shopware\Core\Framework\Routing\Annotation\RouteScope;
  17. use Stripe\Exception\ExceptionInterface as StripeExceptionInterface;
  18. use Stripe\ShopwarePayment\OrderTransactionLocking\OrderTransactionLockingException;
  19. use Stripe\ShopwarePayment\StripeApi\StripeApiFactory;
  20. use Symfony\Component\HttpFoundation\JsonResponse;
  21. use Symfony\Component\HttpFoundation\Request;
  22. use Symfony\Component\HttpFoundation\Response;
  23. use Symfony\Component\Routing\Annotation\Route;
  25. class StripeWebhookController
  26. {
  27.     /**
  28.      * @var StripeApiFactory
  29.      */
  30.     private $stripeApiFactory;
  32.     /**
  33.      * @var StripeWebhookEventDispatcher
  34.      */
  35.     private $stripeWebhookEventDispatcher;
  37.     /**
  38.      * @var StripeWebhookRegistrationService
  39.      */
  40.     private $stripeWebhookRegistrationService;
  42.     /**
  43.      * @var LoggerInterface
  44.      */
  45.     private $logger;
  47.     public function __construct(
  48.         StripeApiFactory $stripeApiFactory,
  49.         StripeWebhookEventDispatcher $stripeWebhookEventDispatcher,
  50.         StripeWebhookRegistrationService $stripeWebhookRegistrationService,
  51.         LoggerInterface $logger
  52.     ) {
  53.         $this->stripeApiFactory $stripeApiFactory;
  54.         $this->stripeWebhookEventDispatcher $stripeWebhookEventDispatcher;
  55.         $this->stripeWebhookRegistrationService $stripeWebhookRegistrationService;
  56.         $this->logger $logger;
  57.     }
  59.     /**
  60.      * @RouteScope(scopes={"api"})
  61.      * @Route(
  62.      *     "/api/_action/stripe-payment/register-webhook",
  63.      *     name="api.action.stripe-payment.register-webhook",
  64.      *     methods={"PUT"}
  65.      * )
  66.      */
  67.     public function registerWebhook(Request $requestContext $context): JsonResponse
  68.     {
  69.         $requestBody json_decode($request->getContent(), true);
  70.         try {
  71.             $result $this->stripeWebhookRegistrationService->registerWebhook(
  72.                 $context,
  73.                 $requestBody['salesChannelId'] ?? null,
  74.             );
  76.             return new JsonResponse(['result' => $result]);
  77.         } catch (StripeExceptionInterface $e) {
  78.             return new JsonResponse(['result' => $e->getMessage()], Response::HTTP_INTERNAL_SERVER_ERROR);
  79.         }
  80.     }
  82.     /**
  83.      * @RouteScope(scopes={"storefront"})
  84.      * @Route(
  85.      *     "/stripe-payment/webhook/execute",
  86.      *     name="frontend.stripe-payment.webhook.execute",
  87.      *     methods={"POST"},
  88.      *     defaults={"csrf_protected"=false}
  89.      * )
  90.      */
  91.     public function executeWebhook(Request $requestContext $context): Response
  92.     {
  93.         $webhookSignature $request->headers->get('stripe-signature');
  94.         if (!$webhookSignature) {
  95.             return new Response('Missing stripe-signature header'Response::HTTP_BAD_REQUEST);
  96.         }
  97.         $webhookPayload $request->getContent();
  98.         if (!$webhookPayload) {
  99.             return new Response('Missing webhook payload'Response::HTTP_BAD_REQUEST);
  100.         }
  102.         $salesChannelId $context->getSource()->getSalesChannelId();
  103.         $stripeApi $this->stripeApiFactory->createStripeApiForSalesChannel($context$salesChannelId);
  105.         try {
  106.             $event $stripeApi->createWebhookEvent($webhookPayload$webhookSignature);
  107.         } catch (StripeExceptionInterface $e) {
  108.             $this->logger->error(
  109.                 'Received an invalid Stripe webhook request and could not process the event because of the '
  110.                 'following error: ' $e->getMessage(),
  111.                 [
  112.                     'webhookPayload' => $webhookPayload,
  113.                     'webhookSignature' => $webhookSignature,
  114.                     'exceptionStackTrace' => $e->getTraceAsString(),
  115.                     'exception' => $e,
  116.                 ],
  117.             );
  119.             return new Response('Invalid stripe event'Response::HTTP_BAD_REQUEST);
  120.         }
  122.         try {
  123.             $this->stripeWebhookEventDispatcher->dispatch($event$context);
  124.         } catch (OrderTransactionLockingException WebhookException $e) {
  125.             $this->logger->error(
  126.                 $e->getMessage(),
  127.                 [
  128.                     'event' => $event,
  129.                     'exception' => $e,
  130.                 ],
  131.             );
  133.             // Return HTTP status 200 because Stripe expects Webhook delivery to always return 2XX
  134.             // https://stripe.com/docs/webhooks/build#return-a-2xx-status-code-quickly
  135.             return new Response($e->getMessage(), Response::HTTP_OK);
  136.         }
  138.         return new Response(''Response::HTTP_OK);
  139.     }
  140. }