^ null

^ null

^ null

^ null
Symfony Profiler

vendor/symfony/web-profiler-bundle/Controller/ProfilerController.php line 201

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Bundle\WebProfilerBundle\Controller;
  14. use Symfony\Bundle\WebProfilerBundle\Csp\ContentSecurityPolicyHandler;
  15. use Symfony\Bundle\WebProfilerBundle\Profiler\TemplateManager;
  16. use Symfony\Component\HttpFoundation\RedirectResponse;
  17. use Symfony\Component\HttpFoundation\Request;
  18. use Symfony\Component\HttpFoundation\Response;
  19. use Symfony\Component\HttpFoundation\Session\Flash\AutoExpireFlashBag;
  20. use Symfony\Component\HttpKernel\DataCollector\DumpDataCollector;
  21. use Symfony\Component\HttpKernel\DataCollector\ExceptionDataCollector;
  22. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  23. use Symfony\Component\HttpKernel\Profiler\Profiler;
  24. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  25. use Twig\Environment;
  27. /**
  28.  * @author Fabien Potencier <fabien@symfony.com>
  29.  *
  30.  * @internal since Symfony 4.4
  31.  */
  32. class ProfilerController
  33. {
  34.     private $templateManager;
  35.     private $generator;
  36.     private $profiler;
  37.     private $twig;
  38.     private $templates;
  39.     private $cspHandler;
  40.     private $baseDir;
  42.     public function __construct(UrlGeneratorInterface $generatorProfiler $profiler nullEnvironment $twig, array $templatesContentSecurityPolicyHandler $cspHandler nullstring $baseDir null)
  43.     {
  44.         $this->generator $generator;
  45.         $this->profiler $profiler;
  46.         $this->twig $twig;
  47.         $this->templates $templates;
  48.         $this->cspHandler $cspHandler;
  49.         $this->baseDir $baseDir;
  50.     }
  52.     /**
  53.      * Redirects to the last profiles.
  54.      *
  55.      * @return RedirectResponse A RedirectResponse instance
  56.      *
  57.      * @throws NotFoundHttpException
  58.      */
  59.     public function homeAction()
  60.     {
  61.         $this->denyAccessIfProfilerDisabled();
  63.         return new RedirectResponse($this->generator->generate('_profiler_search_results', ['token' => 'empty''limit' => 10]), 302, ['Content-Type' => 'text/html']);
  64.     }
  66.     /**
  67.      * Renders a profiler panel for the given token.
  68.      *
  69.      * @param string $token The profiler token
  70.      *
  71.      * @return Response A Response instance
  72.      *
  73.      * @throws NotFoundHttpException
  74.      */
  75.     public function panelAction(Request $request$token)
  76.     {
  77.         $this->denyAccessIfProfilerDisabled();
  79.         if (null !== $this->cspHandler) {
  80.             $this->cspHandler->disableCsp();
  81.         }
  83.         $panel $request->query->get('panel');
  84.         $page $request->query->get('page''home');
  86.         if ('latest' === $token && $latest current($this->profiler->find(nullnull1nullnullnull))) {
  87.             $token $latest['token'];
  88.         }
  90.         if (!$profile $this->profiler->loadProfile($token)) {
  91.             return $this->renderWithCspNonces($request'@WebProfiler/Profiler/info.html.twig', ['about' => 'no_token''token' => $token'request' => $request]);
  92.         }
  94.         if (null === $panel) {
  95.             $panel 'request';
  97.             foreach ($profile->getCollectors() as $collector) {
  98.                 if ($collector instanceof ExceptionDataCollector && $collector->hasException()) {
  99.                     $panel $collector->getName();
  101.                     break;
  102.                 }
  104.                 if ($collector instanceof DumpDataCollector && $collector->getDumpsCount() > 0) {
  105.                     $panel $collector->getName();
  106.                 }
  107.             }
  108.         }
  110.         if (!$profile->hasCollector($panel)) {
  111.             throw new NotFoundHttpException(sprintf('Panel "%s" is not available for token "%s".'$panel$token));
  112.         }
  114.         return $this->renderWithCspNonces($request$this->getTemplateManager()->getName($profile$panel), [
  115.             'token' => $token,
  116.             'profile' => $profile,
  117.             'collector' => $profile->getCollector($panel),
  118.             'panel' => $panel,
  119.             'page' => $page,
  120.             'request' => $request,
  121.             'templates' => $this->getTemplateManager()->getNames($profile),
  122.             'is_ajax' => $request->isXmlHttpRequest(),
  123.             'profiler_markup_version' => 2// 1 = original profiler, 2 = Symfony 2.8+ profiler
  124.         ]);
  125.     }
  127.     /**
  128.      * Renders the Web Debug Toolbar.
  129.      *
  130.      * @param string $token The profiler token
  131.      *
  132.      * @return Response A Response instance
  133.      *
  134.      * @throws NotFoundHttpException
  135.      */
  136.     public function toolbarAction(Request $request$token)
  137.     {
  138.         if (null === $this->profiler) {
  139.             throw new NotFoundHttpException('The profiler must be enabled.');
  140.         }
  142.         if ($request->hasSession() && ($session $request->getSession())->isStarted() && $session->getFlashBag() instanceof AutoExpireFlashBag) {
  143.             // keep current flashes for one more request if using AutoExpireFlashBag
  144.             $session->getFlashBag()->setAll($session->getFlashBag()->peekAll());
  145.         }
  147.         if ('empty' === $token || null === $token) {
  148.             return new Response(''200, ['Content-Type' => 'text/html']);
  149.         }
  151.         $this->profiler->disable();
  153.         if (!$profile $this->profiler->loadProfile($token)) {
  154.             return new Response(''404, ['Content-Type' => 'text/html']);
  155.         }
  157.         $url null;
  158.         try {
  159.             $url $this->generator->generate('_profiler', ['token' => $token], UrlGeneratorInterface::ABSOLUTE_URL);
  160.         } catch (\Exception $e) {
  161.             // the profiler is not enabled
  162.         }
  164.         return $this->renderWithCspNonces($request'@WebProfiler/Profiler/toolbar.html.twig', [
  165.             'request' => $request,
  166.             'profile' => $profile,
  167.             'templates' => $this->getTemplateManager()->getNames($profile),
  168.             'profiler_url' => $url,
  169.             'token' => $token,
  170.             'profiler_markup_version' => 2// 1 = original toolbar, 2 = Symfony 2.8+ toolbar
  171.         ]);
  172.     }
  174.     /**
  175.      * Renders the profiler search bar.
  176.      *
  177.      * @return Response A Response instance
  178.      *
  179.      * @throws NotFoundHttpException
  180.      */
  181.     public function searchBarAction(Request $request)
  182.     {
  183.         $this->denyAccessIfProfilerDisabled();
  185.         if (null !== $this->cspHandler) {
  186.             $this->cspHandler->disableCsp();
  187.         }
  189.         if (!$request->hasSession()) {
  190.             $ip =
  191.             $method =
  192.             $statusCode =
  193.             $url =
  194.             $start =
  195.             $end =
  196.             $limit =
  197.             $token null;
  198.         } else {
  199.             $session $request->getSession();
  201.             $ip $request->query->get('ip'$session->get('_profiler_search_ip'));
  202.             $method $request->query->get('method'$session->get('_profiler_search_method'));
  203.             $statusCode $request->query->get('status_code'$session->get('_profiler_search_status_code'));
  204.             $url $request->query->get('url'$session->get('_profiler_search_url'));
  205.             $start $request->query->get('start'$session->get('_profiler_search_start'));
  206.             $end $request->query->get('end'$session->get('_profiler_search_end'));
  207.             $limit $request->query->get('limit'$session->get('_profiler_search_limit'));
  208.             $token $request->query->get('token'$session->get('_profiler_search_token'));
  209.         }
  211.         return new Response(
  212.             $this->twig->render('@WebProfiler/Profiler/search.html.twig', [
  213.                 'token' => $token,
  214.                 'ip' => $ip,
  215.                 'method' => $method,
  216.                 'status_code' => $statusCode,
  217.                 'url' => $url,
  218.                 'start' => $start,
  219.                 'end' => $end,
  220.                 'limit' => $limit,
  221.                 'request' => $request,
  222.             ]),
  223.             200,
  224.             ['Content-Type' => 'text/html']
  225.         );
  226.     }
  228.     /**
  229.      * Renders the search results.
  230.      *
  231.      * @param string $token The token
  232.      *
  233.      * @return Response A Response instance
  234.      *
  235.      * @throws NotFoundHttpException
  236.      */
  237.     public function searchResultsAction(Request $request$token)
  238.     {
  239.         $this->denyAccessIfProfilerDisabled();
  241.         if (null !== $this->cspHandler) {
  242.             $this->cspHandler->disableCsp();
  243.         }
  245.         $profile $this->profiler->loadProfile($token);
  247.         $ip $request->query->get('ip');
  248.         $method $request->query->get('method');
  249.         $statusCode $request->query->get('status_code');
  250.         $url $request->query->get('url');
  251.         $start $request->query->get('start'null);
  252.         $end $request->query->get('end'null);
  253.         $limit $request->query->get('limit');
  255.         return $this->renderWithCspNonces($request'@WebProfiler/Profiler/results.html.twig', [
  256.             'request' => $request,
  257.             'token' => $token,
  258.             'profile' => $profile,
  259.             'tokens' => $this->profiler->find($ip$url$limit$method$start$end$statusCode),
  260.             'ip' => $ip,
  261.             'method' => $method,
  262.             'status_code' => $statusCode,
  263.             'url' => $url,
  264.             'start' => $start,
  265.             'end' => $end,
  266.             'limit' => $limit,
  267.             'panel' => null,
  268.         ]);
  269.     }
  271.     /**
  272.      * Narrows the search bar.
  273.      *
  274.      * @return Response A Response instance
  275.      *
  276.      * @throws NotFoundHttpException
  277.      */
  278.     public function searchAction(Request $request)
  279.     {
  280.         $this->denyAccessIfProfilerDisabled();
  282.         $ip $request->query->get('ip');
  283.         $method $request->query->get('method');
  284.         $statusCode $request->query->get('status_code');
  285.         $url $request->query->get('url');
  286.         $start $request->query->get('start'null);
  287.         $end $request->query->get('end'null);
  288.         $limit $request->query->get('limit');
  289.         $token $request->query->get('token');
  291.         if ($request->hasSession()) {
  292.             $session $request->getSession();
  294.             $session->set('_profiler_search_ip'$ip);
  295.             $session->set('_profiler_search_method'$method);
  296.             $session->set('_profiler_search_status_code'$statusCode);
  297.             $session->set('_profiler_search_url'$url);
  298.             $session->set('_profiler_search_start'$start);
  299.             $session->set('_profiler_search_end'$end);
  300.             $session->set('_profiler_search_limit'$limit);
  301.             $session->set('_profiler_search_token'$token);
  302.         }
  304.         if (!empty($token)) {
  305.             return new RedirectResponse($this->generator->generate('_profiler', ['token' => $token]), 302, ['Content-Type' => 'text/html']);
  306.         }
  308.         $tokens $this->profiler->find($ip$url$limit$method$start$end$statusCode);
  310.         return new RedirectResponse($this->generator->generate('_profiler_search_results', [
  311.             'token' => $tokens $tokens[0]['token'] : 'empty',
  312.             'ip' => $ip,
  313.             'method' => $method,
  314.             'status_code' => $statusCode,
  315.             'url' => $url,
  316.             'start' => $start,
  317.             'end' => $end,
  318.             'limit' => $limit,
  319.         ]), 302, ['Content-Type' => 'text/html']);
  320.     }
  322.     /**
  323.      * Displays the PHP info.
  324.      *
  325.      * @return Response A Response instance
  326.      *
  327.      * @throws NotFoundHttpException
  328.      */
  329.     public function phpinfoAction()
  330.     {
  331.         $this->denyAccessIfProfilerDisabled();
  333.         if (null !== $this->cspHandler) {
  334.             $this->cspHandler->disableCsp();
  335.         }
  337.         ob_start();
  338.         phpinfo();
  339.         $phpinfo ob_get_clean();
  341.         return new Response($phpinfo200, ['Content-Type' => 'text/html']);
  342.     }
  344.     /**
  345.      * Displays the source of a file.
  346.      *
  347.      * @return Response A Response instance
  348.      *
  349.      * @throws NotFoundHttpException
  350.      */
  351.     public function openAction(Request $request)
  352.     {
  353.         if (null === $this->baseDir) {
  354.             throw new NotFoundHttpException('The base dir should be set.');
  355.         }
  357.         if ($this->profiler) {
  358.             $this->profiler->disable();
  359.         }
  361.         $file $request->query->get('file');
  362.         $line $request->query->get('line');
  364.         $filename $this->baseDir.\DIRECTORY_SEPARATOR.$file;
  366.         if (preg_match("'(^|[/\\\\])\.'"$file) || !is_readable($filename)) {
  367.             throw new NotFoundHttpException(sprintf('The file "%s" cannot be opened.'$file));
  368.         }
  370.         return $this->renderWithCspNonces($request'@WebProfiler/Profiler/open.html.twig', [
  371.             'filename' => $filename,
  372.             'file' => $file,
  373.             'line' => $line,
  374.         ]);
  375.     }
  377.     /**
  378.      * Gets the Template Manager.
  379.      *
  380.      * @return TemplateManager The Template Manager
  381.      */
  382.     protected function getTemplateManager()
  383.     {
  384.         if (null === $this->templateManager) {
  385.             $this->templateManager = new TemplateManager($this->profiler$this->twig$this->templates);
  386.         }
  388.         return $this->templateManager;
  389.     }
  391.     private function denyAccessIfProfilerDisabled()
  392.     {
  393.         if (null === $this->profiler) {
  394.             throw new NotFoundHttpException('The profiler must be enabled.');
  395.         }
  397.         $this->profiler->disable();
  398.     }
  400.     private function renderWithCspNonces(Request $requeststring $template, array $variablesint $code 200, array $headers = ['Content-Type' => 'text/html']): Response
  401.     {
  402.         $response = new Response(''$code$headers);
  404.         $nonces $this->cspHandler $this->cspHandler->getNonces($request$response) : [];
  406.         $variables['csp_script_nonce'] = $nonces['csp_script_nonce'] ?? null;
  407.         $variables['csp_style_nonce'] = $nonces['csp_style_nonce'] ?? null;
  409.         $response->setContent($this->twig->render($template$variables));
  411.         return $response;
  412.     }
  413. }