Merge branch 'AC-520' of github.com:magento-cia/magento2ce into cia-2.4.4-develop-bugfixes-04112021

Author: admanesachin

app/code/Magento/Integration/Model/Oauth/Token.php

@@ -59,7 +59,9 @@ class Token extends \Magento\Framework\Model\AbstractModel
 
     /**#@- */
 
-    /**#@- */
+    /**
+     * @var OauthHelper
+     */
     protected $_oauthHelper;
 
     /**
@@ -136,9 +138,10 @@ public function __construct(
         $this->_consumerFactory = $consumerFactory;
         $this->_oauthData = $oauthData;
         $this->_oauthHelper = $oauthHelper;
-        $this->reader = ObjectManager::getInstance()->get(UserTokenReaderInterface::class);
-        $this->issuer = ObjectManager::getInstance()->get(UserTokenIssuerInterface::class);
-        $this->tokenParamsFactory = ObjectManager::getInstance()->get(UserTokenParametersInterfaceFactory::class);
+        $this->reader = $reader ?? ObjectManager::getInstance()->get(UserTokenReaderInterface::class);
+        $this->issuer = $issuer ?? ObjectManager::getInstance()->get(UserTokenIssuerInterface::class);
+        $this->tokenParamsFactory = $paramsFactory ??
+            ObjectManager::getInstance()->get(UserTokenParametersInterfaceFactory::class);
     }
 
     /**
@@ -360,6 +363,7 @@ public function loadByConsumerIdAndUserType($consumerId, $userType)
     {
         $tokenData = $this->getResource()->selectTokenByConsumerIdAndUserType($consumerId, $userType);
         $this->setData($tokenData ? $tokenData : []);
+        $this->getResource()->afterLoad($this);
         return $this;
     }
 

app/code/Magento/Integration/Model/Oauth/Token/Provider.php

@@ -44,7 +44,7 @@ public function __construct(
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function validateConsumer($consumer)
     {
@@ -58,7 +58,7 @@ public function validateConsumer($consumer)
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function createRequestToken($consumer)
     {
@@ -73,7 +73,7 @@ public function createRequestToken($consumer)
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function validateRequestToken($requestToken, $consumer, $oauthVerifier)
     {
@@ -99,7 +99,7 @@ public function validateRequestToken($requestToken, $consumer, $oauthVerifier)
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function getAccessToken($consumer)
     {
@@ -118,7 +118,7 @@ public function getAccessToken($consumer)
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function validateAccessTokenRequest($accessToken, $consumer)
     {
@@ -144,7 +144,7 @@ public function validateAccessTokenRequest($accessToken, $consumer)
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function validateAccessToken($accessToken)
     {
@@ -168,15 +168,15 @@ public function validateAccessToken($accessToken)
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function validateOauthToken($oauthToken)
     {
         return strlen($oauthToken) == \Magento\Framework\Oauth\Helper\Oauth::LENGTH_TOKEN;
     }
 
     /**
-     * {@inheritdoc}
+     * @inheritdoc
      */
     public function getConsumerByKey($consumerKey)
     {

app/code/Magento/Integration/Model/ResourceModel/Oauth/Consumer.php

@@ -5,17 +5,29 @@
  */
 namespace Magento\Integration\Model\ResourceModel\Oauth;
 
+use Magento\Framework\App\ObjectManager;
+use Magento\Framework\Encryption\Encryptor;
+
 class Consumer extends \Magento\Framework\Model\ResourceModel\Db\AbstractDb
 {
+
+    /**
+     * @var Encryptor
+     */
+    private $encryptor;
+
     /**
      * @param \Magento\Framework\Model\ResourceModel\Db\Context $context
      * @param string $connectionName
+     * @param Encryptor $encryptor
      */
     public function __construct(
         \Magento\Framework\Model\ResourceModel\Db\Context $context,
-        $connectionName = null
+        $connectionName = null,
+        Encryptor $encryptor = null
     ) {
         parent::__construct($context, $connectionName);
+        $this->encryptor = $encryptor ?? ObjectManager::getInstance()->get(Encryptor::class);
     }
 
     /**
@@ -61,4 +73,40 @@ public function getTimeInSecondsSinceCreation($consumerId)
 
         return $connection->fetchOne($select);
     }
+
+    /**
+     * @inheritdoc
+     */
+    protected function _beforeSave(\Magento\Framework\Model\AbstractModel $object)
+    {
+        if ($object->getSecret()) {
+            $object->setSecret($this->encryptor->encrypt($object->getSecret()));
+        }
+
+        return parent::_beforeSave($object);
+    }
+
+    /**
+     * @inheritdoc
+     */
+    protected function _afterLoad(\Magento\Framework\Model\AbstractModel $object)
+    {
+        if ($object->getSecret()) {
+            $object->setSecret($this->encryptor->decrypt($object->getSecret()));
+        }
+
+        return parent::_afterLoad($object);
+    }
+
+    /**
+     * @inheritdoc
+     */
+    protected function _afterSave(\Magento\Framework\Model\AbstractModel $object)
+    {
+        if ($object->getSecret()) {
+            $object->setSecret($this->encryptor->decrypt($object->getSecret()));
+        }
+
+        return parent::_afterSave($object);
+    }
 }

app/code/Magento/Integration/Model/ResourceModel/Oauth/Token.php

@@ -6,6 +6,9 @@
 namespace Magento\Integration\Model\ResourceModel\Oauth;
 
 use Magento\Authorization\Model\UserContextInterface;
+use Magento\Framework\Encryption\Encryptor;
+use Magento\Framework\Oauth\Helper\Oauth as OauthHelper;
+use Magento\Framework\App\ObjectManager;
 
 /**
  * OAuth token resource model
@@ -24,20 +27,28 @@ class Token extends \Magento\Framework\Model\ResourceModel\Db\AbstractDb
      */
     protected $date;
 
+    /**
+     * @var Encryptor
+     */
+    private $encryptor;
+
     /**
      * @param \Magento\Framework\Model\ResourceModel\Db\Context $context
      * @param \Magento\Framework\Stdlib\DateTime $dateTime
      * @param \Magento\Framework\Stdlib\DateTime\DateTime $date
      * @param string $connectionName
+     * @param Encryptor $encryptor
      */
     public function __construct(
         \Magento\Framework\Model\ResourceModel\Db\Context $context,
         \Magento\Framework\Stdlib\DateTime $dateTime,
         \Magento\Framework\Stdlib\DateTime\DateTime $date,
-        $connectionName = null
+        $connectionName = null,
+        $encryptor = null
     ) {
         $this->_dateTime = $dateTime;
         $this->date = $date;
+        $this->encryptor = $encryptor ?? ObjectManager::getInstance()->get(Encryptor::class);
         parent::__construct($context, $connectionName);
     }
 
@@ -195,4 +206,42 @@ public function selectTokenByCustomerId($customerId)
             ->where('user_type = ?', UserContextInterface::USER_TYPE_CUSTOMER);
         return $connection->fetchRow($select);
     }
+
+    /**
+     * @inheritdoc
+     */
+    protected function _beforeSave(\Magento\Framework\Model\AbstractModel $object)
+    {
+        if ($object->getType() === \Magento\Integration\Model\Oauth\Token::TYPE_ACCESS) {
+
+            if (!empty($object->getSecret())) {
+                $object->setSecret($this->encryptor->encrypt($object->getSecret()));
+            }
+        }
+            return parent::_beforeSave($object);
+    }
+
+    /**
+     * @inheritdoc
+     */
+    protected function _afterLoad(\Magento\Framework\Model\AbstractModel $object)
+    {
+        if ($object->getType() === \Magento\Integration\Model\Oauth\Token::TYPE_ACCESS) {
+            $object->setSecret($this->encryptor->decrypt($object->getSecret()));
+        }
+
+        return parent::_afterLoad($object);
+    }
+
+    /**
+     * @inheritdoc
+     */
+    protected function _afterSave(\Magento\Framework\Model\AbstractModel $object)
+    {
+        if ($object->getType() === \Magento\Integration\Model\Oauth\Token::TYPE_ACCESS) {
+            $object->setSecret($this->encryptor->decrypt($object->getSecret()));
+        }
+
+        return parent::_afterSave($object);
+    }
 }

app/code/Magento/Integration/Setup/Patch/Data/UpgradeConsumerSecret.php

@@ -0,0 +1,133 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types=1);
+namespace Magento\Integration\Setup\Patch\Data;
+
+use Magento\Framework\Encryption\Encryptor;
+use Magento\Framework\Oauth\Helper\Oauth as OauthHelper;
+use Magento\Framework\Setup\Patch\DataPatchInterface;
+use Magento\Framework\Setup\Patch\PatchVersionInterface;
+use Magento\Integration\Model\ResourceModel\Oauth\Consumer\Collection as ConsumerCollection;
+use Magento\Integration\Model\ResourceModel\Oauth\Consumer\CollectionFactory as ConsumerCollectionFactory;
+use Magento\Integration\Model\ResourceModel\Oauth\Consumer;
+use Psr\Log\LoggerInterface;
+
+/**
+ * Upgrades Oauth Consumer Secret if not encrypted
+ */
+class UpgradeConsumerSecret implements DataPatchInterface, PatchVersionInterface
+{
+
+    /**
+     * @var ConsumerCollection
+     */
+    private $consumerCollection;
+
+    /**
+     * @var Encryptor
+     */
+    private $encryptor;
+
+    /**
+     * @var Consumer
+     */
+    private $consumerResourceModel;
+
+    /**
+     * @var \Psr\Log\LoggerInterface
+     */
+    private $logger;
+
+    /**#@+
+     * Constant for batch size limit
+     */
+    private const BATCH_SIZE = 100;
+    /**#@-*/
+
+    /**
+     * Constructor
+     *
+     * @param ConsumerCollectionFactory $consumerCollectionFactory
+     * @param Encryptor $encryptor
+     * @param Consumer $consumerResourceModel
+     * @param LoggerInterface $logger
+     */
+    public function __construct(
+        ConsumerCollectionFactory $consumerCollectionFactory,
+        Encryptor $encryptor,
+        Consumer $consumerResourceModel,
+        LoggerInterface $logger
+    ) {
+
+        $this->consumerCollection= $consumerCollectionFactory->create();
+        $this->encryptor = $encryptor;
+        $this->consumerResourceModel = $consumerResourceModel;
+        $this->logger = $logger;
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function apply()
+    {
+        $this->consumerCollection->addFieldToSelect('entity_id');
+        $this->consumerCollection->addFieldToSelect('secret');
+        $connection = $this->consumerResourceModel->getConnection();
+        $this->consumerCollection->setPageSize(self::BATCH_SIZE);
+        $pages = $this->consumerCollection->getLastPageNumber();
+        $tableName = $this->consumerResourceModel->getMainTable();
+
+        for ($currentPage = 1; $currentPage <= $pages; $currentPage++) {
+            $this->consumerCollection->setCurPage($currentPage);
+
+            /** @var $consumer Consumer */
+            foreach ($this->consumerCollection as $consumer) {
+                $existingSecret = $consumer->getSecret();
+                $entityId = $consumer->getEntityId();
+
+                if ($entityId && $existingSecret) {
+                    if (strlen($existingSecret) <= OauthHelper::LENGTH_TOKEN_SECRET) {
+                        $data = ['secret' => $this->encryptor->encrypt($existingSecret)];
+                        $where = ['entity_id = ?' => $entityId];
+                        try {
+                            $connection->update($tableName, $data, $where);
+                        } catch (\Exception $exception) {
+                            $this->logger->critical($exception->getMessage());
+                            return $this;
+                        }
+                    }
+                }
+            }
+            $this->consumerCollection->clear();
+        }
+
+        return $this;
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public static function getDependencies()
+    {
+        return [];
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public static function getVersion()
+    {
+        return '2.0.0';
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function getAliases()
+    {
+        return [];
+    }
+}