logout after erasure

Author: thomas-kl1

Model/Customer/Anonymize/AccountBlocker.php

@@ -11,12 +11,14 @@
 use Magento\Customer\Model\CustomerRegistry;
 use Magento\Framework\Api\SearchCriteriaBuilder;
 use Magento\Framework\App\Config\ScopeConfigInterface;
+use Magento\Framework\Exception\InputException;
 use Magento\Framework\Exception\LocalizedException;
 use Magento\Framework\Exception\NoSuchEntityException;
+use Magento\Framework\Exception\State\InputMismatchException;
 use Magento\Sales\Api\Data\OrderInterface;
+use Magento\Sales\Api\Data\OrderSearchResultInterface;
 use Magento\Sales\Api\OrderRepositoryInterface;
 use Magento\Store\Model\ScopeInterface;
-use Opengento\Gdpr\Model\Customer\Anonymize\AccountBlocker;
 use Opengento\Gdpr\Service\Anonymize\AnonymizerInterface;
 use Opengento\Gdpr\Service\Erase\ProcessorInterface;
 
@@ -29,11 +31,6 @@ final class CustomerDataProcessor implements ProcessorInterface
      */
     private $anonymizer;
 
-    /**
-     * @var AccountBlocker
-     */
-    private $accountBlocker;
-
     /**
      * @var CustomerRepositoryInterface
      */
@@ -61,15 +58,13 @@ final class CustomerDataProcessor implements ProcessorInterface
 
     public function __construct(
         AnonymizerInterface $anonymizer,
-        AccountBlocker $accountBlocker,
         CustomerRepositoryInterface $customerRepository,
         OrderRepositoryInterface $orderRepository,
         SearchCriteriaBuilder $criteriaBuilder,
         CustomerRegistry $customerRegistry,
         ScopeConfigInterface $scopeConfig
     ) {
         $this->anonymizer = $anonymizer;
-        $this->accountBlocker = $accountBlocker;
         $this->customerRepository = $customerRepository;
         $this->orderRepository = $orderRepository;
         $this->criteriaBuilder = $criteriaBuilder;
@@ -84,40 +79,45 @@ public function __construct(
     public function execute(int $customerId): bool
     {
         $isRemoved = false;
-        try {
-            if ($this->shouldRemoveCustomerWithoutOrders()) {
-                $this->criteriaBuilder->addFilter(OrderInterface::CUSTOMER_ID, $customerId);
-                $orderList = $this->orderRepository->getList($this->criteriaBuilder->create());
 
-                if (!$orderList->getTotalCount()) {
-                    $isRemoved = $this->customerRepository->deleteById($customerId);
-                }
+        try {
+            if ($this->shouldRemoveCustomerWithoutOrders() && !$this->fetchOrdersList($customerId)->getTotalCount()) {
+                $isRemoved = $this->customerRepository->deleteById($customerId);
             }
-
-            // Make sure, we don't work with cached customer data, because
-            // saving cached customers may "de-anonymize" related data
-            // like addresses
-            $this->customerRegistry->remove($customerId);
-
             if (!$isRemoved) {
-                $this->accountBlocker->invalid($customerId);
-                $this->customerRepository->save(
-                    $this->anonymizer->anonymize($this->customerRepository->getById($customerId))
-                );
+                $this->anonymizeCustomer($customerId);
             }
-
         } catch (NoSuchEntityException $e) {
             return false;
         }
 
         return true;
     }
 
-    private function shouldRemoveCustomerWithoutOrders(): bool
+    private function fetchOrdersList(int $customerId): OrderSearchResultInterface
+    {
+        $this->criteriaBuilder->addFilter(OrderInterface::CUSTOMER_ID, $customerId);
+
+        return $this->orderRepository->getList($this->criteriaBuilder->create());
+    }
+
+    /**
+     * @param int $customerId
+     * @throws LocalizedException
+     * @throws NoSuchEntityException
+     * @throws InputException
+     * @throws InputMismatchException
+     */
+    private function anonymizeCustomer(int $customerId): void
     {
-        return $this->scopeConfig->isSetFlag(
-            self::CONFIG_PATH_ERASURE_REMOVE_CUSTOMER,
-            ScopeInterface::SCOPE_STORE
+        $this->customerRegistry->remove($customerId);
+        $this->customerRepository->save(
+            $this->anonymizer->anonymize($this->customerRepository->getById($customerId))
         );
     }
+
+    private function shouldRemoveCustomerWithoutOrders(): bool
+    {
+        return $this->scopeConfig->isSetFlag(self::CONFIG_PATH_ERASURE_REMOVE_CUSTOMER, ScopeInterface::SCOPE_STORE);
+    }
 }

Model/Customer/Anonymize/Processor/CustomerDataProcessor.php

@@ -0,0 +1,102 @@
+<?php
+/**
+ * Copyright © OpenGento, All rights reserved.
+ * See LICENSE bundled with this library for license details.
+ */
+declare(strict_types=1);
+
+namespace Opengento\Gdpr\Plugin;
+
+use Magento\Customer\Controller\AccountInterface;
+use Magento\Customer\Model\Session;
+use Magento\Framework\App\ActionInterface;
+use Magento\Framework\Exception\LocalizedException;
+use Magento\Framework\Message\ManagerInterface;
+use Magento\Framework\Phrase;
+use Magento\Framework\Stdlib\Cookie\CookieMetadataFactory;
+use Magento\Framework\Stdlib\CookieManagerInterface;
+use Opengento\Gdpr\Api\Data\EraseEntityInterface;
+use Opengento\Gdpr\Model\ResourceModel\EraseEntity\CollectionFactory;
+use Psr\Log\LoggerInterface;
+
+final class SessionChecker
+{
+    private $collectionFactory;
+
+    /**
+     * @var Session
+     */
+    private $session;
+
+    /**
+     * @var CookieManagerInterface
+     */
+    private $cookieManager;
+
+    /**
+     * @var CookieMetadataFactory
+     */
+    private $cookieMetadataFactory;
+
+    private $messageManager;
+
+    /**
+     * @var LoggerInterface
+     */
+    private $logger;
+
+    public function __construct(
+        CollectionFactory $collectionFactory,
+        Session $session,
+        CookieManagerInterface $cookieManager,
+        CookieMetadataFactory $cookieMetadataFactory,
+        ManagerInterface $messageManager,
+        LoggerInterface $logger
+    ) {
+        $this->collectionFactory = $collectionFactory;
+        $this->session = $session;
+        $this->cookieManager = $cookieManager;
+        $this->cookieMetadataFactory = $cookieMetadataFactory;
+        $this->messageManager = $messageManager;
+        $this->logger = $logger;
+    }
+
+    public function aroundExecute(ActionInterface $action, callable $proceed, ...$arguments)
+    {
+        if ($this->session->isLoggedIn() && $this->isErased()) {
+            $this->messageManager->addNoticeMessage(
+                new Phrase('Your account have been erased and you have signed out.')
+            );
+            $this->logout();
+
+            if ($action instanceof AccountInterface) {
+                return $this->session->authenticate();
+            }
+        }
+
+        return $proceed(...$arguments);
+    }
+
+    private function logout(): void
+    {
+        $this->session->logout();
+        $metadata = $this->cookieMetadataFactory->createCookieMetadata();
+        $metadata->setPath('/');
+
+        try {
+            $this->cookieManager->deleteCookie('mage-cache-sessid', $metadata);
+        } catch (LocalizedException $e) {
+            $this->logger->error($e->getLogMessage(), $e->getTrace());
+        }
+    }
+
+    private function isErased(): bool
+    {
+        $collection = $this->collectionFactory->create();
+        $collection->addFieldToFilter(EraseEntityInterface::ENTITY_ID, $this->session->getCustomerId());
+        $collection->addFieldToFilter(EraseEntityInterface::ENTITY_TYPE, 'customer');
+        $collection->addFieldToFilter(EraseEntityInterface::STATE, EraseEntityInterface::STATE_COMPLETE);
+
+        return (bool) $collection->getSize();
+    }
+}

Plugin/SessionChecker.php

@@ -32,7 +32,7 @@
             </field>
             <field id="delay" type="text" translate="label comment" showInDefault="1" showInWebsite="1" showInStore="1" sortOrder="30" canRestore="1">
                 <label>Erasure Delay</label>
-                <comment>Erasure delay in minute before the execution by the cron.</comment>
+                <comment>Erasure delay in minute before the execution by the cron. From 60 to 43800.</comment>
                 <validate>validate-number validate-number-range number-range-60-43800</validate>
                 <depends>
                     <field id="gdpr/erasure/enabled">1</field>

etc/adminhtml/system/erasure.xml

@@ -78,4 +78,7 @@
             <argument name="action" xsi:type="object">Opengento\Gdpr\Model\Action\ExportCreateAction</argument>
         </arguments>
     </type>
+    <type name="Magento\Framework\App\ActionInterface">
+        <plugin name="opengento_gdpr_customer_session_checker" type="Opengento\Gdpr\Plugin\SessionChecker" sortOrder="10"/>
+    </type>
 </config>

etc/frontend/di.xml

@@ -44,6 +44,7 @@ Failed,Failed
 "Impossible to process the erasure: %1","Impossible to process the erasure: %1"
 "An export entity already exists for the entity type ""%1"" with ID ""%2"".","An export entity already exists for the entity type ""%1"" with ID ""%2""."
 "State ""%1"" does not exists.","State ""%1"" does not exists."
+"Your account have been erased and you have signed out.","Your account have been erased and you have signed out."
 "* Required Fields","* Required Fields"
 "Confirm password to continue","Confirm password to continue"
 Password,Password
@@ -96,7 +97,7 @@ Accept,Accept
 Erasure,Erasure
 "It will enable the erase action to the storefront.","It will enable the erase action to the storefront."
 "Erasure Delay","Erasure Delay"
-"Erasure delay in minute before the execution by the cron.","Erasure delay in minute before the execution by the cron."
+"Erasure delay in minute before the execution by the cron. From 60 to 43800.","Erasure delay in minute before the execution by the cron. From 60 to 43800."
 "Erase Entity Cron Schedule","Erase Entity Cron Schedule"
 "Entities Lifetime","Entities Lifetime"
 "The time is in days.","The time is in days."