Merge branch 'AC-13833' into AC-13833-AC-13547

Author: dvoskoboinikov

app/code/Magento/Csp/Model/SubresourceIntegrity/Storage/File.php

@@ -0,0 +1,125 @@
+<?php
+/**
+ * Copyright 2025 Adobe
+ * All Rights Reserved.
+ */
+declare(strict_types=1);
+
+namespace Magento\Csp\Model\SubresourceIntegrity\Storage;
+
+use Psr\Log\LoggerInterface;
+use Magento\Framework\Filesystem;
+use Magento\Framework\App\Filesystem\DirectoryList;
+use Magento\Framework\Exception\FileSystemException;
+use Magento\Csp\Model\SubresourceIntegrity\StorageInterface;
+
+/**
+ * Filesystem based SRI hashed storage.
+ */
+class File implements StorageInterface
+{
+    /**
+     * Name of a storage file.
+     *
+     * @var string
+     */
+    private const FILENAME = 'sri-hashes.json';
+
+    /**
+     * @var Filesystem
+     */
+    private Filesystem $filesystem;
+
+    /**
+     * @var LoggerInterface
+     */
+    private LoggerInterface $logger;
+
+    /**
+     * @param Filesystem $filesystem
+     * @param LoggerInterface $logger
+     */
+    public function __construct(
+        Filesystem $filesystem,
+        LoggerInterface $logger
+    ) {
+        $this->filesystem = $filesystem;
+        $this->logger = $logger;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function load(?string $context): ?string
+    {
+        try {
+            $staticDir = $this->filesystem->getDirectoryRead(
+                DirectoryList::STATIC_VIEW
+            );
+
+            $path = $this->resolveFilePath($context);
+
+            if (!$staticDir->isFile($path)) {
+                return null;
+            }
+
+            return $staticDir->readFile($path);
+        } catch (FileSystemException $exception) {
+            $this->logger->critical($exception);
+
+            return null;
+        }
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function save(string $data, ?string $context): bool
+    {
+        try {
+            $staticDir = $this->filesystem->getDirectoryWrite(
+                DirectoryList::STATIC_VIEW
+            );
+
+            return (bool) $staticDir->writeFile(
+                $this->resolveFilePath($context),
+                $data,
+                'w'
+            );
+        } catch (FileSystemException $exception) {
+            $this->logger->critical($exception);
+
+            return false;
+        }
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function remove(?string $context): bool
+    {
+        try {
+            $staticDir = $this->filesystem->getDirectoryWrite(
+                DirectoryList::STATIC_VIEW
+            );
+
+            return $staticDir->delete($this->resolveFilePath($context));
+        } catch (FileSystemException $exception) {
+            $this->logger->critical($exception);
+
+            return false;
+        }
+    }
+
+    /**
+     * Resolves a storage file path for a given context.
+     *
+     * @param string|null $context
+     *
+     * @return string
+     */
+    private function resolveFilePath(?string $context): string
+    {
+        return ($context ? $context . DIRECTORY_SEPARATOR : '') . self::FILENAME;
+    }
+}

app/code/Magento/Csp/Model/SubresourceIntegrity/StorageInterface.php

@@ -0,0 +1,42 @@
+<?php
+/**
+ * Copyright 2025 Adobe
+ * All Rights Reserved.
+ */
+declare(strict_types=1);
+
+namespace Magento\Csp\Model\SubresourceIntegrity;
+
+/**
+ * Interface for an SRI hashes storage.
+ */
+interface StorageInterface
+{
+    /**
+     * Loads SRI hashes from a storage.
+     *
+     * @param string|null $context
+     *
+     * @return string|null
+     */
+    public function load(?string $context): ?string;
+
+    /**
+     * Saves SRI hashes to a storage.
+     *
+     * @param string $data
+     * @param string|null $context
+     *
+     * @return bool
+     */
+    public function save(string $data, ?string $context): bool;
+
+    /**
+     * Deletes all SRI hashes from a storage.
+     *
+     * @param string|null $context
+     *
+     * @return bool
+     */
+    public function remove(?string $context): bool;
+}

app/code/Magento/Csp/Model/SubresourceIntegrityRepository.php

@@ -1,27 +1,22 @@
 <?php
 /**
- * Copyright © Magento, Inc. All rights reserved.
- * See COPYING.txt for license details.
+ * Copyright 2024 Adobe
+ * All Rights Reserved.
  */
 declare(strict_types=1);
 
 namespace Magento\Csp\Model;
 
+use Magento\Framework\App\ObjectManager;
 use Magento\Framework\App\CacheInterface;
 use Magento\Framework\Serialize\SerializerInterface;
+use Magento\Csp\Model\SubresourceIntegrity\StorageInterface;
 
 /**
- * Class contains methods equivalent to repository design to manage SRI hashes in cache.
+ * Class contains methods equivalent to repository design to manage SRI hashes.
  */
 class SubresourceIntegrityRepository
 {
-    /**
-     * Cache prefix.
-     *
-     * @var string
-     */
-    private const CACHE_PREFIX = 'INTEGRITY';
-
     /**
      * @var array|null
      */
@@ -32,37 +27,38 @@ class SubresourceIntegrityRepository
      */
     private ?string $context;
 
-    /**
-     * @var CacheInterface
-     */
-    private CacheInterface $cache;
-
     /**
      * @var SerializerInterface
      */
     private SerializerInterface $serializer;
 
     /**
-     * @var SubresourceIntegrityFactory
+     * @var StorageInterface
      */
-    private SubresourceIntegrityFactory $integrityFactory;
+    private StorageInterface $storage;
 
     /**
      * @param CacheInterface $cache
      * @param SerializerInterface $serializer
      * @param SubresourceIntegrityFactory $integrityFactory
      * @param string|null $context
+     * @param StorageInterface|null $storage
+     *
+     * @SuppressWarnings(PHPMD.UnusedFormalParameter)
      */
     public function __construct(
         CacheInterface $cache,
         SerializerInterface $serializer,
         SubresourceIntegrityFactory $integrityFactory,
-        ?string $context = null
+        ?string $context = null,
+        ?StorageInterface $storage = null
     ) {
-        $this->cache = $cache;
         $this->serializer = $serializer;
-        $this->integrityFactory = $integrityFactory;
         $this->context = $context;
+
+        $this->storage = $storage ?? ObjectManager::getInstance()->get(
+            StorageInterface::class
+        );
     }
 
     /**
@@ -74,20 +70,7 @@ public function __construct(
      */
     public function getByPath(string $path): ?SubresourceIntegrity
     {
-        $data = $this->getData();
-
-        if (isset($data[$path])) {
-            return $this->integrityFactory->create(
-                [
-                    "data" => [
-                        "path" => $path,
-                        "hash" => $data[$path]
-                    ]
-                ]
-            );
-        }
-
-        return null;
+        return $this->getData()[$path] ?? null;
     }
 
     /**
@@ -97,20 +80,7 @@ public function getByPath(string $path): ?SubresourceIntegrity
      */
     public function getAll(): array
     {
-        $result = [];
-
-        foreach ($this->getData() as $path => $hash) {
-            $result[] = $this->integrityFactory->create(
-                [
-                    "data" => [
-                        "path" => $path,
-                        "hash" => $hash
-                    ]
-                ]
-            );
-        }
-
-        return $result;
+        return array_values($this->getData());
     }
 
     /**
@@ -124,14 +94,16 @@ public function save(SubresourceIntegrity $integrity): bool
     {
         $data = $this->getData();
 
-        $data[$integrity->getPath()] = $integrity->getHash();
+        $data[$integrity->getPath()] = $integrity;
 
         $this->data = $data;
 
-        return $this->cache->save(
-            $this->serializer->serialize($this->data),
-            $this->getCacheKey(),
-            [self::CACHE_PREFIX]
+        // Transform the data before saving.
+        $transformedData = array_map(fn($integrity) => $integrity->getHash(), $this->data);
+
+        return $this->storage->save(
+            $this->serializer->serialize($transformedData),
+            $this->context
         );
     }
 
@@ -147,15 +119,17 @@ public function saveBunch(array $bunch): bool
         $data = $this->getData();
 
         foreach ($bunch as $integrity) {
-            $data[$integrity->getPath()] = $integrity->getHash();
+            $data[$integrity->getPath()] = $integrity;
         }
 
         $this->data = $data;
 
-        return $this->cache->save(
-            $this->serializer->serialize($this->data),
-            $this->getCacheKey(),
-            [self::CACHE_PREFIX]
+        // Transform the data before saving.
+        $transformedData = array_map(fn($integrity) => $integrity->getHash(), $this->data);
+
+        return $this->storage->save(
+            $this->serializer->serialize($transformedData),
+            $this->context
         );
     }
 
@@ -168,9 +142,7 @@ public function deleteAll(): bool
     {
         $this->data = null;
 
-        return $this->cache->remove(
-            $this->getCacheKey()
-        );
+        return $this->storage->remove($this->context);
     }
 
     /**
@@ -181,27 +153,15 @@ public function deleteAll(): bool
     private function getData(): array
     {
         if ($this->data === null) {
-            $cache = $this->cache->load($this->getCacheKey());
-
-            $this->data = $cache ? $this->serializer->unserialize($cache) : [];
-        }
-
-        return $this->data;
-    }
+            $rawData = $this->storage->load($this->context);
 
-    /**
-     * Gets a cache key based on current context.
-     *
-     * @return string
-     */
-    private function getCacheKey(): string
-    {
-        $cacheKey = self::CACHE_PREFIX;
+            $this->data = $rawData ? $this->serializer->unserialize($rawData) : [];
 
-        if ($this->context) {
-            $cacheKey .= "_" . $this->context;
+            foreach ($this->data as $path => $hash) {
+                $this->data[$path] = new SubresourceIntegrity(["path" => $path, "hash" => $hash]);
+            }
         }
 
-        return $cacheKey;
+        return $this->data;
     }
 }