vendor/contao/core-bundle/src/Resources/contao/controllers/FrontendIndex.php line 98

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of Contao.
  5. *
  6. * (c) Leo Feyer
  7. *
  8. * @license LGPL-3.0-or-later
  9. */
  11. namespace Contao;
  13. use Contao\CoreBundle\Exception\AccessDeniedException;
  14. use Contao\CoreBundle\Exception\InsufficientAuthenticationException;
  15. use Contao\CoreBundle\Exception\PageNotFoundException;
  16. use Contao\CoreBundle\Exception\ResponseException;
  17. use Contao\CoreBundle\Security\ContaoCorePermissions;
  18. use Contao\CoreBundle\Util\LocaleUtil;
  19. use Contao\Model\Collection;
  20. use Symfony\Component\HttpFoundation\Response;
  22. /**
  23. * Main front end controller.
  24. */
  25. class FrontendIndex extends Frontend
  26. {
  27. /**
  28. * Initialize the object
  29. */
  30. public function __construct()
  31. {
  32. // Load the user object before calling the parent constructor
  33. $this->import(FrontendUser::class, 'User');
  34. parent::__construct();
  35. }
  37. /**
  38. * Run the controller
  39. *
  40. * @return Response
  41. *
  42. * @throws PageNotFoundException
  43. */
  44. public function run()
  45. {
  46. trigger_deprecation('contao/core-bundle', '4.10', 'Using "Contao\FrontendIndex::run()" has been deprecated and will no longer work in Contao 5.0. Use the Symfony routing instead.');
  48. $pageId = $this->getPageIdFromUrl();
  50. // Load a website root page object if there is no page ID
  51. if ($pageId === null)
  52. {
  53. $objRootPage = $this->getRootPageFromUrl();
  55. /** @var PageRoot $objHandler */
  56. $objHandler = new $GLOBALS['TL_PTY']['root']();
  57. $pageId = $objHandler->generate($objRootPage->id, true, true);
  58. }
  60. // Throw a 404 error if the request is not a Contao request (see #2864)
  61. elseif ($pageId === false)
  62. {
  63. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  64. }
  66. $pageModel = PageModel::findPublishedByIdOrAlias($pageId);
  68. // Throw a 404 error if the page could not be found
  69. if ($pageModel === null)
  70. {
  71. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  72. }
  74. return $this->renderPage($pageModel);
  75. }
  77. /**
  78. * Render a page
  79. *
  80. * @param Collection|PageModel[]|PageModel $pageModel
  81. *
  82. * @return Response
  83. *
  84. * @throws \LogicException
  85. * @throws PageNotFoundException
  86. * @throws AccessDeniedException
  87. */
  88. public function renderPage($pageModel)
  89. {
  90. /** @var PageModel $objPage */
  91. global $objPage;
  93. $objPage = $pageModel;
  95. // Check the URL and language of each page if there are multiple results
  96. if ($objPage instanceof Collection && $objPage->count() > 1)
  97. {
  98. trigger_deprecation('contao/core-bundle', '4.7', 'Using "Contao\FrontendIndex::renderPage()" with a model collection has been deprecated and will no longer work Contao 5.0. Use the Symfony routing instead.');
  100. $arrPages = array();
  102. // Order by domain and language
  103. while ($objPage->next())
  104. {
  105. /** @var PageModel $objModel */
  106. $objModel = $objPage->current();
  107. $objCurrentPage = $objModel->loadDetails();
  109. $domain = $objCurrentPage->domain ?: '*';
  110. $arrPages[$domain][$objCurrentPage->rootLanguage] = $objCurrentPage;
  112. // Also store the fallback language
  113. if ($objCurrentPage->rootIsFallback)
  114. {
  115. $arrPages[$domain]['*'] = $objCurrentPage;
  116. }
  117. }
  119. $strHost = Environment::get('host');
  121. // Look for a root page whose domain name matches the host name
  122. $arrLangs = $arrPages[$strHost] ?? ($arrPages['*'] ?: array());
  124. // Throw an exception if there are no matches (see #1522)
  125. if (empty($arrLangs))
  126. {
  127. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  128. }
  130. // Use the first result (see #4872)
  131. if (!System::getContainer()->getParameter('contao.legacy_routing') || !System::getContainer()->getParameter('contao.prepend_locale'))
  132. {
  133. $objNewPage = current($arrLangs);
  134. }
  136. // Try to find a page matching the language parameter
  137. elseif (($lang = Input::get('language')) && isset($arrLangs[$lang]))
  138. {
  139. $objNewPage = $arrLangs[$lang];
  140. }
  142. // Use the fallback language (see #8142)
  143. elseif (isset($arrLangs['*']))
  144. {
  145. $objNewPage = $arrLangs['*'];
  146. }
  148. // Throw an exception if there is no matching page (see #1522)
  149. else
  150. {
  151. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  152. }
  154. // Store the page object
  155. if (\is_object($objNewPage))
  156. {
  157. $objPage = $objNewPage;
  158. }
  159. }
  161. // Throw a 500 error if the result is still ambiguous
  162. if ($objPage instanceof Collection && $objPage->count() > 1)
  163. {
  164. System::getContainer()->get('monolog.logger.contao.error')->error('More than one page matches ' . Environment::get('base') . Environment::get('request'));
  166. throw new \LogicException('More than one page found: ' . Environment::get('uri'));
  167. }
  169. // Make sure $objPage is a Model
  170. if ($objPage instanceof Collection)
  171. {
  172. $objPage = $objPage->current();
  173. }
  175. // If the page has an alias, it can no longer be called via ID (see #7661)
  176. if ($objPage->alias)
  177. {
  178. $language = $objPage->urlPrefix ? preg_quote($objPage->urlPrefix . '/', '#') : '';
  179. $suffix = preg_quote($objPage->urlSuffix, '#');
  181. if (preg_match('#^' . $language . $objPage->id . '(' . $suffix . '($|\?)|/)#', Environment::get('relativeRequest')))
  182. {
  183. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  184. }
  185. }
  187. // Trigger the 404 page if an item is required but not given (see #8361)
  188. if ($objPage->requireItem)
  189. {
  190. $hasItem = false;
  192. if (Config::get('useAutoItem'))
  193. {
  194. $hasItem = isset($_GET['auto_item']);
  195. }
  196. else
  197. {
  198. foreach ($GLOBALS['TL_AUTO_ITEM'] as $item)
  199. {
  200. if (isset($_GET[$item]))
  201. {
  202. $hasItem = true;
  203. break;
  204. }
  205. }
  206. }
  208. if (!$hasItem)
  209. {
  210. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  211. }
  212. }
  214. // Inherit the settings from the parent pages
  215. $objPage->loadDetails();
  216. $blnShowUnpublished = System::getContainer()->get('contao.security.token_checker')->isPreviewMode();
  218. // Trigger the 404 page if the page is not published and the front end preview is not active (see #374)
  219. if (!$blnShowUnpublished && !$objPage->isPublic)
  220. {
  221. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  222. }
  224. // Load a website root page object (will redirect to the first active regular page)
  225. if ($objPage->type == 'root')
  226. {
  227. /** @var PageRoot $objHandler */
  228. $objHandler = new $GLOBALS['TL_PTY']['root']();
  230. throw new ResponseException($objHandler->getResponse($objPage->id));
  231. }
  233. // Set the admin e-mail address
  234. if ($objPage->adminEmail)
  235. {
  236. list($GLOBALS['TL_ADMIN_NAME'], $GLOBALS['TL_ADMIN_EMAIL']) = StringUtil::splitFriendlyEmail($objPage->adminEmail);
  237. }
  238. else
  239. {
  240. list($GLOBALS['TL_ADMIN_NAME'], $GLOBALS['TL_ADMIN_EMAIL']) = StringUtil::splitFriendlyEmail(Config::get('adminEmail'));
  241. }
  243. // Exit if the root page has not been published (see #2425)
  244. // Do not try to load the 404 page, it can cause an infinite loop!
  245. if (!$blnShowUnpublished && !$objPage->rootIsPublic)
  246. {
  247. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  248. }
  250. // Check whether the language matches the root page language
  251. if (isset($_GET['language']) && $objPage->urlPrefix && Input::get('language') != LocaleUtil::formatAsLanguageTag($objPage->rootLanguage))
  252. {
  253. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  254. }
  256. // Check whether there are domain name restrictions
  257. if ($objPage->domain && $objPage->domain != Environment::get('host'))
  258. {
  259. System::getContainer()->get('monolog.logger.contao.error')->error('Page ID "' . $objPage->id . '" was requested via "' . Environment::get('host') . '" but can only be accessed via "' . $objPage->domain . '" (' . Environment::get('base') . Environment::get('request') . ')');
  261. throw new PageNotFoundException('Page not found: ' . Environment::get('uri'));
  262. }
  264. // Authenticate the user if the page is protected
  265. if ($objPage->protected)
  266. {
  267. $security = System::getContainer()->get('security.helper');
  269. if (!$security->isGranted(ContaoCorePermissions::MEMBER_IN_GROUPS, $objPage->groups))
  270. {
  271. if (($token = $security->getToken()) === null || System::getContainer()->get('security.authentication.trust_resolver')->isAnonymous($token))
  272. {
  273. throw new InsufficientAuthenticationException('Not authenticated: ' . Environment::get('uri'));
  274. }
  276. $user = $security->getUser();
  278. if ($user instanceof FrontendUser)
  279. {
  280. System::getContainer()->get('monolog.logger.contao.error')->error('Page ID "' . $objPage->id . '" can only be accessed by groups "' . implode(', ', $objPage->groups) . '" (current user groups: ' . implode(', ', StringUtil::deserialize($user->groups, true)) . ')');
  281. }
  283. throw new AccessDeniedException('Access denied: ' . Environment::get('uri'));
  284. }
  285. }
  287. // Backup some globals (see #7659)
  288. $arrBackup = array(
  289. $GLOBALS['TL_HEAD'] ?? array(),
  290. $GLOBALS['TL_BODY'] ?? array(),
  291. $GLOBALS['TL_MOOTOOLS'] ?? array(),
  292. $GLOBALS['TL_JQUERY'] ?? array(),
  293. $GLOBALS['TL_USER_CSS'] ?? array(),
  294. $GLOBALS['TL_FRAMEWORK_CSS'] ?? array()
  295. );
  297. try
  298. {
  299. $pageType = $GLOBALS['TL_PTY'][$objPage->type] ?? PageRegular::class;
  300. $objHandler = new $pageType();
  302. // Backwards compatibility
  303. if (!method_exists($objHandler, 'getResponse'))
  304. {
  305. ob_start();
  307. try
  308. {
  309. $objHandler->generate($objPage, true);
  310. $objResponse = new Response(ob_get_contents(), http_response_code());
  311. }
  312. finally
  313. {
  314. ob_end_clean();
  315. }
  317. return $objResponse;
  318. }
  320. return $objHandler->getResponse($objPage, true);
  321. }
  323. // Render the error page (see #5570)
  324. catch (UnusedArgumentsException $e)
  325. {
  326. // Restore the globals (see #7659)
  327. list(
  328. $GLOBALS['TL_HEAD'],
  329. $GLOBALS['TL_BODY'],
  330. $GLOBALS['TL_MOOTOOLS'],
  331. $GLOBALS['TL_JQUERY'],
  332. $GLOBALS['TL_USER_CSS'],
  333. $GLOBALS['TL_FRAMEWORK_CSS']
  334. ) = $arrBackup;
  336. throw $e;
  337. }
  338. }
  340. /**
  341. * Try to load the page from the cache
  342. *
  343. * @deprecated Deprecated since Contao 4.0, to be removed in Contao 5.0.
  344. * Use the kernel.request event instead.
  345. */
  346. protected function outputFromCache()
  347. {
  348. trigger_deprecation('contao/core-bundle', '4.0', 'Using "Contao\FrontendIndex::outputFromCache()" has been deprecated and will no longer work in Contao 5.0. Use the "kernel.request" event instead.');
  349. }
  350. }
  352. class_alias(FrontendIndex::class, 'FrontendIndex');