Merge branch '2.4-develop' of https://github.com/magento/magento2ce into ACP2E-257

Author: dhorytskyi

app/code/Magento/Analytics/Plugin/BearerTokenValidatorPlugin.php

@@ -0,0 +1,49 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+declare(strict_types=1);
+
+namespace Magento\Analytics\Plugin;
+
+use Magento\Framework\App\Config\ScopeConfigInterface;
+use Magento\Integration\Model\Integration;
+use Magento\Integration\Model\Validator\BearerTokenValidator;
+
+/**
+ * Overrides authorization config to always allow analytics token to be used as bearer
+ */
+class BearerTokenValidatorPlugin
+{
+    /**
+     * @var ScopeConfigInterface
+     */
+    private ScopeConfigInterface $config;
+
+    /**
+     * @param ScopeConfigInterface $config
+     */
+    public function __construct(ScopeConfigInterface $config)
+    {
+        $this->config = $config;
+    }
+
+    /***
+     * Always allow access token for analytics to be used as bearer
+     *
+     * @param BearerTokenValidator $subject
+     * @param bool $result
+     * @param Integration $integration
+     * @return bool
+     * @SuppressWarnings(PHPMD.UnusedFormalParameter)
+     */
+    public function afterIsIntegrationAllowedAsBearerToken(
+        BearerTokenValidator $subject,
+        bool $result,
+        Integration $integration
+    ): bool {
+        return $result || $integration->getName() === $this->config->getValue('analytics/integration_name');
+    }
+}

app/code/Magento/Analytics/Test/Unit/Plugin/BearerTokenValidatorPluginTest.php

@@ -0,0 +1,72 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+declare(strict_types=1);
+
+namespace Magento\Analytics\Test\Unit\Plugin;
+
+use Magento\Analytics\Plugin\BearerTokenValidatorPlugin;
+use Magento\Framework\App\Config\ScopeConfigInterface;
+use Magento\Integration\Model\Integration;
+use Magento\Integration\Model\Validator\BearerTokenValidator;
+use PHPUnit\Framework\MockObject\MockObject;
+use PHPUnit\Framework\TestCase;
+
+class BearerTokenValidatorPluginTest extends TestCase
+{
+    /**
+     * @var BearerTokenValidatorPlugin
+     */
+    private BearerTokenValidatorPlugin $plugin;
+
+    /**
+     * @var BearerTokenValidator|MockObject
+     */
+    private $validator;
+
+    public function setUp(): void
+    {
+        $config = $this->createMock(ScopeConfigInterface::class);
+        $config->method('getValue')
+            ->with('analytics/integration_name')
+            ->willReturn('abc');
+        $this->plugin = new BearerTokenValidatorPlugin($config);
+        $this->validator = $this->createMock(BearerTokenValidator::class);
+    }
+
+    public function testTrueIsPassedThrough()
+    {
+        $integration = $this->createMock(Integration::class);
+        $integration->method('__call')
+            ->with('getName')
+            ->willReturn('invalid');
+
+        $result = $this->plugin->afterIsIntegrationAllowedAsBearerToken($this->validator, true, $integration);
+        self::assertTrue($result);
+    }
+
+    public function testFalseWhenIntegrationDoesntMatch()
+    {
+        $integration = $this->createMock(Integration::class);
+        $integration->method('__call')
+            ->with('getName')
+            ->willReturn('invalid');
+
+        $result = $this->plugin->afterIsIntegrationAllowedAsBearerToken($this->validator, false, $integration);
+        self::assertFalse($result);
+    }
+
+    public function testTrueWhenIntegrationMatches()
+    {
+        $integration = $this->createMock(Integration::class);
+        $integration->method('__call')
+            ->with('getName')
+            ->willReturn('abc');
+
+        $result = $this->plugin->afterIsIntegrationAllowedAsBearerToken($this->validator, true, $integration);
+        self::assertTrue($result);
+    }
+}

app/code/Magento/Analytics/etc/di.xml

@@ -271,4 +271,7 @@
             <argument name="connectionFactory" xsi:type="object">Magento\Framework\Model\ResourceModel\Type\Db\ConnectionFactory</argument>
         </arguments>
     </type>
+    <type name="Magento\Integration\Model\Validator\BearerTokenValidator">
+        <plugin name="allow_bearer_token" type="Magento\Analytics\Plugin\BearerTokenValidatorPlugin"/>
+    </type>
 </config>

app/code/Magento/Catalog/etc/acl.xml

@@ -12,7 +12,7 @@
                 <resource id="Magento_Catalog::catalog" title="Catalog" translate="title" sortOrder="30">
                     <resource id="Magento_Catalog::catalog_inventory" title="Inventory" translate="title" sortOrder="10">
                         <resource id="Magento_Catalog::products" title="Products" translate="title" sortOrder="10">
-                            <resource id="Magento_Catalog::update_attributes" title="Update Attributes" translate="title" sortOrder="10" />
+                            <resource id="Magento_Catalog::update_attributes" title="Mass Update Attributes" translate="title" sortOrder="10" />
                             <resource id="Magento_Catalog::edit_product_design" title="Edit Product Design" translate="title" sortOrder="20" />
                         </resource>
                         <resource id="Magento_Catalog::categories" title="Categories" translate="title" sortOrder="20">
@@ -27,7 +27,7 @@
                         </resource>
                     </resource>
                     <resource id="Magento_Backend::stores_attributes">
-                        <resource id="Magento_Catalog::attributes_attributes" title="Product" translate="title" sortOrder="30" />
+                        <resource id="Magento_Catalog::attributes_attributes" title="Product" translate="title" sortOrder="30"/>
                         <resource id="Magento_Catalog::sets" title="Attribute Set" translate="title" sortOrder="40"/>
                     </resource>
                 </resource>

app/code/Magento/Catalog/i18n/en_US.csv

@@ -148,7 +148,7 @@ Quantity,Quantity
 Edit,Edit
 "Are you sure?","Are you sure?"
 "Change Status","Change Status"
-"Update Attributes","Update Attributes"
+"Mass Update Attributes","Mass Update Attributes"
 "start typing to search category","start typing to search category"
 "New Category","New Category"
 "Images (.gif, .jpg, .png)","Images (.gif, .jpg, .png)"

app/code/Magento/Integration/Model/CompositeTokenReader.php

@@ -0,0 +1,48 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+declare(strict_types=1);
+
+namespace Magento\Integration\Model;
+
+use Magento\Integration\Api\Data\UserToken;
+use Magento\Integration\Api\Exception\UserTokenException;
+use Magento\Integration\Api\UserTokenReaderInterface;
+
+/**
+ * Checks multiple sources for reading a token
+ */
+class CompositeTokenReader implements UserTokenReaderInterface
+{
+    /**
+     * @var UserTokenReaderInterface[]
+     */
+    private $readers;
+
+    /**
+     * @param UserTokenReaderInterface[] $readers
+     */
+    public function __construct(array $readers)
+    {
+        $this->readers = $readers;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function read(string $token): UserToken
+    {
+        foreach ($this->readers as $reader) {
+            try {
+                return $reader->read($token);
+            } catch (UserTokenException $exception) {
+                continue;
+            }
+        }
+
+        throw new UserTokenException('Composite reader could not read a token');
+    }
+}

app/code/Magento/Integration/Model/Config/AuthorizationConfig.php

@@ -0,0 +1,49 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+declare(strict_types=1);
+
+namespace Magento\Integration\Model\Config;
+
+use Magento\Framework\App\Config\ScopeConfigInterface;
+use Magento\Store\Model\ScopeInterface;
+
+/**
+ * Represents configuration related to WebAPI Authorization
+ */
+class AuthorizationConfig
+{
+    /**
+     * XML Path for Enable Integration as Bearer
+     */
+    private const CONFIG_PATH_INTEGRATION_BEARER = 'oauth/consumer/enable_integration_as_bearer';
+
+    /**
+     * @var ScopeConfigInterface
+     */
+    private ScopeConfigInterface $scopeConfig;
+
+    /**
+     * @param ScopeConfigInterface $scopeConfig
+     */
+    public function __construct(ScopeConfigInterface $scopeConfig)
+    {
+        $this->scopeConfig = $scopeConfig;
+    }
+
+    /**
+     * Return if integration access tokens can be used as bearer tokens
+     *
+     * @return bool
+     */
+    public function isIntegrationAsBearerEnabled(): bool
+    {
+        return $this->scopeConfig->isSetFlag(
+            self::CONFIG_PATH_INTEGRATION_BEARER,
+            ScopeInterface::SCOPE_STORE
+        );
+    }
+}