vendor/lnb/shopware6-fraud-prevention/src/Subscriber/CartConvertedSubscriber.php line 52

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace Lnb\Shopware6\FraudPrevention\Subscriber;
  7. use Lnb\Shopware6\FraudPrevention\Checkout\FraudPreventionCheckoutContext;
  8. use Lnb\Shopware6\FraudPrevention\Checkout\FraudPreventionCheckoutContextFactory;
  9. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\AddressIsPackstation\AddressIsPackstation;
  10. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\CustomerGroup\CustomerGroup;
  11. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\CustomerPhone\CustomerPhone;
  12. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\FraudContextValidation;
  13. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\LineItemCount\LineItemCount;
  14. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\OrderInPeriod\OrderInPeriod;
  15. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\QuantityValidator\LineItemQuantity;
  16. use Lnb\Shopware6\FraudPrevention\Checkout\Validation\ZipCode\Zipcode;
  17. use Lnb\Shopware6\FraudPrevention\Installer\StateInstaller;
  18. use Shopware\Core\Checkout\Cart\Order\CartConvertedEvent;
  19. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  20. use Symfony\Component\Validator\Constraint;
  21. use Symfony\Component\Validator\ConstraintViolation;
  22. use Symfony\Component\Validator\ConstraintViolationInterface;
  23. use Symfony\Component\Validator\ConstraintViolationListInterface;
  24. use Symfony\Component\Validator\Validator\ValidatorInterface;
  26. class CartConvertedSubscriber implements EventSubscriberInterface
  27. {
  28.     private FraudPreventionCheckoutContextFactory $checkoutStructFactory;
  30.     private ValidatorInterface $validator;
  32.     /**
  33.      * @var array<string>
  34.      */
  35.     private array $logMessage = [];
  37.     public function __construct(
  38.         FraudPreventionCheckoutContextFactory $checkoutStructFactory,
  39.         ValidatorInterface $validator
  40.     ) {
  41.         $this->checkoutStructFactory $checkoutStructFactory;
  42.         $this->validator $validator;
  43.     }
  45.     public static function getSubscribedEvents(): array
  46.     {
  47.         return [
  48.             CartConvertedEvent::class => 'onCartConvertedEvent',
  49.         ];
  50.     }
  52.     public function onCartConvertedEvent(CartConvertedEvent $event): void
  53.     {
  54.         $this->validator->startContext();
  55.         $this->logMessage = [];
  57.         $checkoutFraudStruct $this->checkoutStructFactory->createFromCartConvertedEvent($event);
  58.         $fraudContextValidation = new FraudContextValidation($checkoutFraudStruct);
  60.         if ($fraudContextValidation->hasFreePartnerMeetingRegistration()) {
  61.             $this->setOrderComplete($event$checkoutFraudStruct);
  62.             return;
  63.         }
  65.         //check countries on black list
  66.         if ($fraudContextValidation->hasCountryOnBlacklist()) {
  67.             $this->logError('The country is on blacklist''EmailBlackList');
  68.             $this->setFraudPreventedState($event$checkoutFraudStruct);
  69.         }
  71.         // check if transaction is open and payment has to be checked
  72.         if ($fraudContextValidation->isPaymentStateOpenAndHasToBeChecked()) {
  73.             $this->logError('The PaymentState is open and the PaymentMethod is configured to be checked''PaymentStateOpen');
  74.             $this->setFraudPreventedState($event$checkoutFraudStruct);
  75.         }
  77.         //fraud prevention is disabled
  78.         if (! $checkoutFraudStruct->getConfigServiceAdapter()->isFraudPreventionActive()) {
  79.             $this->saveLog($event);
  80.             return;
  81.         }
  83.         $validationBeforePrice $this->validator->validate(
  84.             $checkoutFraudStruct,
  85.             [
  86.                 new CustomerGroup(),
  87.                 new OrderInPeriod(),
  88.                 new LineItemQuantity(),
  89.                 new LineItemCount(),
  90.             ]
  91.         );
  93.         // check if paymentMethod has not to be checked extensive
  94.         if (! $fraudContextValidation->hasPaymentMethodForExtensiveCheck()) {
  95.             $this->saveValidatorLog($validationBeforePrice$event$checkoutFraudStruct);
  97.             return;
  98.         }
  100.         $validationBeforePrice->addAll($this->validator->validate(
  101.             $checkoutFraudStruct,
  102.             new Zipcode()
  103.         ));
  104.         $this->saveValidatorLog($validationBeforePrice$event$checkoutFraudStruct);
  106.         if ($checkoutFraudStruct->getPrice()->getTotalPrice() <= $checkoutFraudStruct->getConfigServiceAdapter()->getMiddleOrderPrice()) {
  107.             $this->saveLog($event);
  108.             return;
  109.         }
  111.         if ($checkoutFraudStruct->getPrice()->getTotalPrice() >= $checkoutFraudStruct->getConfigServiceAdapter()->getMaximalOrderPrice()) {
  112.             $this->logError('Total price is over maximal order price''TotalPriceOverMaximum');
  113.             $this->setFraudPreventedState($event$checkoutFraudStruct);
  114.             $this->saveLog($event);
  115.             return;
  116.         }
  118.         if (! $fraudContextValidation->hasEmailOnBlacklist()) {
  119.             $this->saveLog($event);
  120.             return;
  121.         }
  123.         $this->logError('Email domain on blacklist''emailDomainOnBlacklist');
  125.         $validationAfterPrice $this->validator->validate(
  126.             $checkoutFraudStruct,
  127.             [
  128.                 new CustomerPhone(),
  129.                 new AddressIsPackstation(),
  130.             ]
  131.         );
  133.         $this->saveValidatorLog($validationAfterPrice$event$checkoutFraudStruct);
  134.     }
  136.     protected function setFraudPreventedState(CartConvertedEvent $eventFraudPreventionCheckoutContext $context): void
  137.     {
  138.         if (empty($this->logMessage)) {
  139.             throw new \RuntimeException('Order ist set to fraud without a reason');
  140.         }
  141.         $converted $event->getConvertedCart();
  142.         $converted['stateId'] = strtolower(StateInstaller::FRAUD_PREVENTED_STATE_ID);
  144.         //todo check if a custom tag can be set to the order
  145.         //@todo add test for this
  146.         $tagId $context->getFraudOrderTag(); //@todo get tag id from config
  147.         if (! empty($tagId)) {
  148.             $converted['tags'] = [
  149.                 [
  150.                     'id' => $tagId,
  151.                 ],
  152.             ];
  153.         }
  154.         $event->setConvertedCart($converted);
  155.     }
  157.     protected function logError(string $messagestring $key null): void
  158.     {
  159.         if ($key === null) {
  160.             $this->logMessage[] = $message;
  161.             return;
  162.         }
  164.         $this->logMessage[$key] = $message;
  165.     }
  167.     protected function saveLog(CartConvertedEvent $event): void
  168.     {
  169.         if (empty($this->logMessage)) {
  170.             return;
  171.         }
  172.         $converted $event->getConvertedCart();
  173.         $converted['customFields']['fraudLog'] = $this->logMessage;
  174.         $event->setConvertedCart($converted);
  175.     }
  177.     private function setOrderComplete(CartConvertedEvent $eventFraudPreventionCheckoutContext $checkoutFraudStruct): void
  178.     {
  179.         $converted $event->getConvertedCart();
  180.         $openState $checkoutFraudStruct->getOrderCompleteStateId();
  181.         $converted['stateId'] = strtolower($openState);
  182.         $event->setConvertedCart($converted);
  183.     }
  185.     private function saveValidatorLog(ConstraintViolationListInterface $violationListCartConvertedEvent $eventFraudPreventionCheckoutContext $context): void
  186.     {
  187.         if ($violationList->count() > 0) {
  188.             foreach ($violationList as $error) {
  189.                 $this->logError((string) $error->getMessage(), $this->getConstraintNameOfViolation($error));
  190.             }
  191.             $this->setFraudPreventedState($event$context);
  192.         }
  194.         $this->saveLog($event);
  195.     }
  197.     private function getConstraintNameOfViolation(ConstraintViolationInterface $error): ?string
  198.     {
  199.         if ($error instanceof ConstraintViolation && $error->getConstraint() instanceof Constraint) {
  200.             return (new \ReflectionClass(get_class($error->getConstraint())))->getShortName();
  201.         }
  203.         return null;
  204.     }
  205. }