vendor/symfony/web-profiler-bundle/Controller/ProfilerController.php line 361

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Bundle\WebProfilerBundle\Controller;
  14. use Symfony\Bundle\WebProfilerBundle\Csp\ContentSecurityPolicyHandler;
  15. use Symfony\Bundle\WebProfilerBundle\Profiler\TemplateManager;
  16. use Symfony\Component\HttpFoundation\RedirectResponse;
  17. use Symfony\Component\HttpFoundation\Request;
  18. use Symfony\Component\HttpFoundation\Response;
  19. use Symfony\Component\HttpFoundation\Session\Flash\AutoExpireFlashBag;
  20. use Symfony\Component\HttpKernel\DataCollector\DumpDataCollector;
  21. use Symfony\Component\HttpKernel\DataCollector\ExceptionDataCollector;
  22. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  23. use Symfony\Component\HttpKernel\Profiler\Profiler;
  24. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  25. use Twig\Environment;
  27. /**
  28.  * @author Fabien Potencier <fabien@symfony.com>
  29.  *
  30.  * @internal
  31.  */
  32. class ProfilerController
  33. {
  34.     private $templateManager;
  35.     private $generator;
  36.     private $profiler;
  37.     private $twig;
  38.     private $templates;
  39.     private $cspHandler;
  40.     private $baseDir;
  42.     public function __construct(UrlGeneratorInterface $generatorProfiler $profiler nullEnvironment $twig, array $templatesContentSecurityPolicyHandler $cspHandler nullstring $baseDir null)
  43.     {
  44.         $this->generator $generator;
  45.         $this->profiler $profiler;
  46.         $this->twig $twig;
  47.         $this->templates $templates;
  48.         $this->cspHandler $cspHandler;
  49.         $this->baseDir $baseDir;
  50.     }
  52.     /**
  53.      * Redirects to the last profiles.
  54.      *
  55.      * @return RedirectResponse A RedirectResponse instance
  56.      *
  57.      * @throws NotFoundHttpException
  58.      */
  59.     public function homeAction()
  60.     {
  61.         $this->denyAccessIfProfilerDisabled();
  63.         return new RedirectResponse($this->generator->generate('_profiler_search_results', ['token' => 'empty''limit' => 10]), 302, ['Content-Type' => 'text/html']);
  64.     }
  66.     /**
  67.      * Renders a profiler panel for the given token.
  68.      *
  69.      * @return Response A Response instance
  70.      *
  71.      * @throws NotFoundHttpException
  72.      */
  73.     public function panelAction(Request $requeststring $token)
  74.     {
  75.         $this->denyAccessIfProfilerDisabled();
  77.         if (null !== $this->cspHandler) {
  78.             $this->cspHandler->disableCsp();
  79.         }
  81.         $panel $request->query->get('panel');
  82.         $page $request->query->get('page''home');
  84.         if ('latest' === $token && $latest current($this->profiler->find(nullnull1nullnullnull))) {
  85.             $token $latest['token'];
  86.         }
  88.         if (!$profile $this->profiler->loadProfile($token)) {
  89.             return new Response($this->twig->render('@WebProfiler/Profiler/info.html.twig', ['about' => 'no_token''token' => $token'request' => $request]), 200, ['Content-Type' => 'text/html']);
  90.         }
  92.         if (null === $panel) {
  93.             $panel 'request';
  95.             foreach ($profile->getCollectors() as $collector) {
  96.                 if ($collector instanceof ExceptionDataCollector && $collector->hasException()) {
  97.                     $panel $collector->getName();
  99.                     break;
  100.                 }
  102.                 if ($collector instanceof DumpDataCollector && $collector->getDumpsCount() > 0) {
  103.                     $panel $collector->getName();
  104.                 }
  105.             }
  106.         }
  108.         if (!$profile->hasCollector($panel)) {
  109.             throw new NotFoundHttpException(sprintf('Panel "%s" is not available for token "%s".'$panel$token));
  110.         }
  112.         return new Response($this->twig->render($this->getTemplateManager()->getName($profile$panel), [
  113.             'token' => $token,
  114.             'profile' => $profile,
  115.             'collector' => $profile->getCollector($panel),
  116.             'panel' => $panel,
  117.             'page' => $page,
  118.             'request' => $request,
  119.             'templates' => $this->getTemplateManager()->getNames($profile),
  120.             'is_ajax' => $request->isXmlHttpRequest(),
  121.             'profiler_markup_version' => 2// 1 = original profiler, 2 = Symfony 2.8+ profiler
  122.         ]), 200, ['Content-Type' => 'text/html']);
  123.     }
  125.     /**
  126.      * Renders the Web Debug Toolbar.
  127.      *
  128.      * @return Response A Response instance
  129.      *
  130.      * @throws NotFoundHttpException
  131.      */
  132.     public function toolbarAction(Request $requeststring $token null)
  133.     {
  134.         if (null === $this->profiler) {
  135.             throw new NotFoundHttpException('The profiler must be enabled.');
  136.         }
  138.         if ($request->hasSession() && ($session $request->getSession())->isStarted() && $session->getFlashBag() instanceof AutoExpireFlashBag) {
  139.             // keep current flashes for one more request if using AutoExpireFlashBag
  140.             $session->getFlashBag()->setAll($session->getFlashBag()->peekAll());
  141.         }
  143.         if ('empty' === $token || null === $token) {
  144.             return new Response(''200, ['Content-Type' => 'text/html']);
  145.         }
  147.         $this->profiler->disable();
  149.         if (!$profile $this->profiler->loadProfile($token)) {
  150.             return new Response(''404, ['Content-Type' => 'text/html']);
  151.         }
  153.         $url null;
  154.         try {
  155.             $url $this->generator->generate('_profiler', ['token' => $token], UrlGeneratorInterface::ABSOLUTE_URL);
  156.         } catch (\Exception $e) {
  157.             // the profiler is not enabled
  158.         }
  160.         return $this->renderWithCspNonces($request'@WebProfiler/Profiler/toolbar.html.twig', [
  161.             'request' => $request,
  162.             'profile' => $profile,
  163.             'templates' => $this->getTemplateManager()->getNames($profile),
  164.             'profiler_url' => $url,
  165.             'token' => $token,
  166.             'profiler_markup_version' => 2// 1 = original toolbar, 2 = Symfony 2.8+ toolbar
  167.         ]);
  168.     }
  170.     /**
  171.      * Renders the profiler search bar.
  172.      *
  173.      * @return Response A Response instance
  174.      *
  175.      * @throws NotFoundHttpException
  176.      */
  177.     public function searchBarAction(Request $request)
  178.     {
  179.         $this->denyAccessIfProfilerDisabled();
  181.         if (null !== $this->cspHandler) {
  182.             $this->cspHandler->disableCsp();
  183.         }
  185.         if (!$request->hasSession()) {
  186.             $ip =
  187.             $method =
  188.             $statusCode =
  189.             $url =
  190.             $start =
  191.             $end =
  192.             $limit =
  193.             $token null;
  194.         } else {
  195.             $session $request->getSession();
  197.             $ip $request->query->get('ip'$session->get('_profiler_search_ip'));
  198.             $method $request->query->get('method'$session->get('_profiler_search_method'));
  199.             $statusCode $request->query->get('status_code'$session->get('_profiler_search_status_code'));
  200.             $url $request->query->get('url'$session->get('_profiler_search_url'));
  201.             $start $request->query->get('start'$session->get('_profiler_search_start'));
  202.             $end $request->query->get('end'$session->get('_profiler_search_end'));
  203.             $limit $request->query->get('limit'$session->get('_profiler_search_limit'));
  204.             $token $request->query->get('token'$session->get('_profiler_search_token'));
  205.         }
  207.         return new Response(
  208.             $this->twig->render('@WebProfiler/Profiler/search.html.twig', [
  209.                 'token' => $token,
  210.                 'ip' => $ip,
  211.                 'method' => $method,
  212.                 'status_code' => $statusCode,
  213.                 'url' => $url,
  214.                 'start' => $start,
  215.                 'end' => $end,
  216.                 'limit' => $limit,
  217.                 'request' => $request,
  218.             ]),
  219.             200,
  220.             ['Content-Type' => 'text/html']
  221.         );
  222.     }
  224.     /**
  225.      * Renders the search results.
  226.      *
  227.      * @return Response A Response instance
  228.      *
  229.      * @throws NotFoundHttpException
  230.      */
  231.     public function searchResultsAction(Request $requeststring $token)
  232.     {
  233.         $this->denyAccessIfProfilerDisabled();
  235.         if (null !== $this->cspHandler) {
  236.             $this->cspHandler->disableCsp();
  237.         }
  239.         $profile $this->profiler->loadProfile($token);
  241.         $ip $request->query->get('ip');
  242.         $method $request->query->get('method');
  243.         $statusCode $request->query->get('status_code');
  244.         $url $request->query->get('url');
  245.         $start $request->query->get('start'null);
  246.         $end $request->query->get('end'null);
  247.         $limit $request->query->get('limit');
  249.         return new Response($this->twig->render('@WebProfiler/Profiler/results.html.twig', [
  250.             'request' => $request,
  251.             'token' => $token,
  252.             'profile' => $profile,
  253.             'tokens' => $this->profiler->find($ip$url$limit$method$start$end$statusCode),
  254.             'ip' => $ip,
  255.             'method' => $method,
  256.             'status_code' => $statusCode,
  257.             'url' => $url,
  258.             'start' => $start,
  259.             'end' => $end,
  260.             'limit' => $limit,
  261.             'panel' => null,
  262.         ]), 200, ['Content-Type' => 'text/html']);
  263.     }
  265.     /**
  266.      * Narrows the search bar.
  267.      *
  268.      * @return Response A Response instance
  269.      *
  270.      * @throws NotFoundHttpException
  271.      */
  272.     public function searchAction(Request $request)
  273.     {
  274.         $this->denyAccessIfProfilerDisabled();
  276.         $ip $request->query->get('ip');
  277.         $method $request->query->get('method');
  278.         $statusCode $request->query->get('status_code');
  279.         $url $request->query->get('url');
  280.         $start $request->query->get('start'null);
  281.         $end $request->query->get('end'null);
  282.         $limit $request->query->get('limit');
  283.         $token $request->query->get('token');
  285.         if ($request->hasSession()) {
  286.             $session $request->getSession();
  288.             $session->set('_profiler_search_ip'$ip);
  289.             $session->set('_profiler_search_method'$method);
  290.             $session->set('_profiler_search_status_code'$statusCode);
  291.             $session->set('_profiler_search_url'$url);
  292.             $session->set('_profiler_search_start'$start);
  293.             $session->set('_profiler_search_end'$end);
  294.             $session->set('_profiler_search_limit'$limit);
  295.             $session->set('_profiler_search_token'$token);
  296.         }
  298.         if (!empty($token)) {
  299.             return new RedirectResponse($this->generator->generate('_profiler', ['token' => $token]), 302, ['Content-Type' => 'text/html']);
  300.         }
  302.         $tokens $this->profiler->find($ip$url$limit$method$start$end$statusCode);
  304.         return new RedirectResponse($this->generator->generate('_profiler_search_results', [
  305.             'token' => $tokens $tokens[0]['token'] : 'empty',
  306.             'ip' => $ip,
  307.             'method' => $method,
  308.             'status_code' => $statusCode,
  309.             'url' => $url,
  310.             'start' => $start,
  311.             'end' => $end,
  312.             'limit' => $limit,
  313.         ]), 302, ['Content-Type' => 'text/html']);
  314.     }
  316.     /**
  317.      * Displays the PHP info.
  318.      *
  319.      * @return Response A Response instance
  320.      *
  321.      * @throws NotFoundHttpException
  322.      */
  323.     public function phpinfoAction()
  324.     {
  325.         $this->denyAccessIfProfilerDisabled();
  327.         if (null !== $this->cspHandler) {
  328.             $this->cspHandler->disableCsp();
  329.         }
  331.         ob_start();
  332.         phpinfo();
  333.         $phpinfo ob_get_clean();
  335.         return new Response($phpinfo200, ['Content-Type' => 'text/html']);
  336.     }
  338.     /**
  339.      * Displays the source of a file.
  340.      *
  341.      * @return Response A Response instance
  342.      *
  343.      * @throws NotFoundHttpException
  344.      */
  345.     public function openAction(Request $request)
  346.     {
  347.         if (null === $this->baseDir) {
  348.             throw new NotFoundHttpException('The base dir should be set.');
  349.         }
  351.         if ($this->profiler) {
  352.             $this->profiler->disable();
  353.         }
  355.         $file $request->query->get('file');
  356.         $line $request->query->get('line');
  358.         $filename $this->baseDir.\DIRECTORY_SEPARATOR.$file;
  360.         if (preg_match("'(^|[/\\\\])\.'"$file) || !is_readable($filename)) {
  361.             throw new NotFoundHttpException(sprintf('The file "%s" cannot be opened.'$file));
  362.         }
  364.         return new Response($this->twig->render('@WebProfiler/Profiler/open.html.twig', [
  365.             'filename' => $filename,
  366.             'file' => $file,
  367.             'line' => $line,
  368.          ]), 200, ['Content-Type' => 'text/html']);
  369.     }
  371.     /**
  372.      * Gets the Template Manager.
  373.      *
  374.      * @return TemplateManager The Template Manager
  375.      */
  376.     protected function getTemplateManager()
  377.     {
  378.         if (null === $this->templateManager) {
  379.             $this->templateManager = new TemplateManager($this->profiler$this->twig$this->templates);
  380.         }
  382.         return $this->templateManager;
  383.     }
  385.     private function denyAccessIfProfilerDisabled()
  386.     {
  387.         if (null === $this->profiler) {
  388.             throw new NotFoundHttpException('The profiler must be enabled.');
  389.         }
  391.         $this->profiler->disable();
  392.     }
  394.     private function renderWithCspNonces(Request $requeststring $template, array $variablesint $code 200, array $headers = ['Content-Type' => 'text/html']): Response
  395.     {
  396.         $response = new Response(''$code$headers);
  398.         $nonces $this->cspHandler $this->cspHandler->getNonces($request$response) : [];
  400.         $variables['csp_script_nonce'] = $nonces['csp_script_nonce'] ?? null;
  401.         $variables['csp_style_nonce'] = $nonces['csp_style_nonce'] ?? null;
  403.         $response->setContent($this->twig->render($template$variables));
  405.         return $response;
  406.     }
  407. }