ACP2E-1776: Creating customer(-s) via Async REST API ignores group_id

AnujNehra · AnujNehra · commit 3e100dd7ea91 · 2023-05-12T21:04:08.000+05:30
diff --git a/app/code/Magento/AsynchronousOperations/Model/MassSchedule.php b/app/code/Magento/AsynchronousOperations/Model/MassSchedule.php
@@ -21,7 +21,7 @@
 use Psr\Log\LoggerInterface;
 
 /**
- * Class MassSchedule used for adding multiple entities as Operations to Bulk Management with the status tracking
+ * Class MassSchedulePlugin used for adding multiple entities as Operations to Bulk Management with the status tracking
  *
  * @SuppressWarnings(PHPMD.CouplingBetweenObjects) Suppressed without refactoring to not introduce BiC
  */
diff --git a/app/code/Magento/Customer/Plugin/ValidateSyncCustomer.php b/app/code/Magento/Customer/Plugin/ValidateSyncCustomer.php
@@ -12,12 +12,12 @@
 use Magento\Framework\App\ObjectManager;
 use Magento\Framework\AuthorizationInterface;
 use Magento\Framework\Exception\AuthorizationException;
-use Magento\Customer\Model\AccountManagementApi as SubjectAccountManagementApi;
+use Magento\Customer\Model\AccountManagementApi;
 
 /**
- * Plugin to validate anonymous request for synchronous operations contains group id.
+ * Plugin to validate anonymous request for synchronous operations containing group id.
  */
-class AccountManagementApi
+class ValidateSyncCustomer
 {
     /**
      * Authorization level of a basic admin session
@@ -45,14 +45,14 @@ public function __construct(
     /**
      * Validate groupId for anonymous request
      *
-     * @param SubjectAccountManagementApi $subjectAccountManagementApi
+     * @param AccountManagementApi $accountManagementApi
      * @param CustomerInterface $customer
      * @return void
      * @SuppressWarnings(PHPMD.UnusedFormalParameter)
      * @throws AuthorizationException
      */
     public function beforeCreateAccount(
-        SubjectAccountManagementApi $subjectAccountManagementApi,
+        AccountManagementApi $accountManagementApi,
         CustomerInterface $customer
     ): void {
         $groupId = $customer->getGroupId();
diff --git a/app/code/Magento/Customer/etc/di.xml b/app/code/Magento/Customer/etc/di.xml
@@ -586,8 +586,8 @@
         </arguments>
     </type>
     <type name="Magento\Customer\Model\AccountManagementApi">
-        <plugin name="anonymousRequestForSynchronousOperations"
-                type="Magento\Customer\Plugin\AccountManagementApi"
+        <plugin name="validateSyncAnonymousRequestForCustomer"
+                type="Magento\Customer\Plugin\ValidateSyncCustomer"
         />
     </type>
 </config>
diff --git a/app/code/Magento/WebapiAsync/Plugin/AsynchronousOperations/ValidateAsyncCustomer.php b/app/code/Magento/WebapiAsync/Plugin/AsynchronousOperations/ValidateAsyncCustomer.php
@@ -8,16 +8,15 @@
 
 namespace Magento\WebapiAsync\Plugin\AsynchronousOperations;
 
-use Magento\Customer\Api\Data\CustomerInterface;
 use Magento\Framework\App\ObjectManager;
 use Magento\Framework\AuthorizationInterface;
 use Magento\Framework\Exception\AuthorizationException;
-use Magento\AsynchronousOperations\Model\MassSchedule as SubjectMassSchedule;
+use Magento\AsynchronousOperations\Model\MassSchedule;
 
 /**
- * Plugin to validate anonymous request for asynchronous operations contains group id.
+ * Plugin to validate anonymous request for asynchronous operations containing group id.
  */
-class MassSchedule
+class ValidateAsyncCustomer
 {
     /**
      * Authorization level of a basic admin session
@@ -45,21 +44,21 @@ public function __construct(
     /**
      * Validate groupId for anonymous request
      *
-     * @param SubjectMassSchedule $subjectMassSchedule
+     * @param MassSchedule $massSchedule
      * @param string $topic
      * @param array $entitiesArray
      * @return void
      * @throws AuthorizationException
      * @SuppressWarnings(PHPMD.UnusedFormalParameter)
      */
     public function beforePublishMass(
-        SubjectMassSchedule $subjectMassSchedule,
+        MassSchedule $massSchedule,
         string $topic,
         array $entitiesArray
     ): void {
         foreach ($entitiesArray as $entityParams) {
             foreach ($entityParams as $customer) {
-                if ($customer instanceof CustomerInterface) {
+                if (is_object($customer)) {
                     $groupId = $customer->getGroupId();
                     if (isset($groupId) && !$this->authorization->isAllowed(self::ADMIN_RESOURCE)) {
                         $params = ['resources' => self::ADMIN_RESOURCE];
diff --git a/app/code/Magento/WebapiAsync/composer.json b/app/code/Magento/WebapiAsync/composer.json
@@ -9,8 +9,7 @@
         "magento/framework": "*",
         "magento/module-webapi": "*",
         "magento/module-asynchronous-operations": "*",
-        "magento/module-store": "*",
-        "magento/module-customer": "*"
+        "magento/module-store": "*"
     },
     "suggest": {
         "magento/module-user": "*",
diff --git a/app/code/Magento/WebapiAsync/etc/di.xml b/app/code/Magento/WebapiAsync/etc/di.xml
@@ -75,8 +75,8 @@
         />
     </type>
     <type name="Magento\AsynchronousOperations\Model\MassSchedule">
-        <plugin name="anonymousRequestForAsynchronousOperationsMassSchedule"
-                type="Magento\WebapiAsync\Plugin\AsynchronousOperations\MassSchedule"
+        <plugin name="validateAsyncAnonymousRequestForCustomer"
+                type="Magento\WebapiAsync\Plugin\AsynchronousOperations\ValidateAsyncCustomer"
         />
     </type>
 </config>

Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,7 @@`
`21`	`21`	`use Psr\Log\LoggerInterface;`
`22`	`22`
`23`	`23`	`/**`
`24`		`- * Class MassSchedule used for adding multiple entities as Operations to Bulk Management with the status tracking`
	`24`	`+ * Class MassSchedulePlugin used for adding multiple entities as Operations to Bulk Management with the status tracking`
`25`	`25`	`*`
`26`	`26`	`* @SuppressWarnings(PHPMD.CouplingBetweenObjects) Suppressed without refactoring to not introduce BiC`
`27`	`27`	`*/`