wip

tadhgboyle · tadhgboyle · commit 10057981c497 · 2025-06-08T19:29:32.000-07:00
diff --git a/core/classes/Middleware/AbstractMiddleware.php b/core/classes/Middleware/AbstractMiddleware.php
@@ -2,5 +2,7 @@
 
 abstract class AbstractMiddleware
 {
-    abstract public function type(): MiddlewareType;
+    public MiddlewareType $type = MiddlewareType::Global;
+
+    public array $exemptRoutes = [];
 }
diff --git a/core/classes/Middleware/MiddlewareHandler.php b/core/classes/Middleware/MiddlewareHandler.php
@@ -1,6 +1,7 @@
 <?php
 
 use DI\Container;
+use Symfony\Component\HttpFoundation\Request;
 
 class MiddlewareHandler extends Instanceable
 {
@@ -35,8 +36,15 @@ public function call(MiddlewareType $type, Container $container)
 
         foreach ($middlewareClasses as $class) {
             $middleware = $container->get($class);
+            $request = $container->get(Request::class);
 
-            if ($middleware->type() === $type) {
+            foreach ($middleware->exemptRoutes as $exemptedRoute) {
+                if (str_starts_with($request->get('route'), $exemptedRoute)) {
+                    continue 2; // Skip this middleware if the route is exempted
+                }
+            }
+
+            if ($middleware->type === $type) {
                 $container->call([$middleware, 'handle']);
             }
         }
diff --git a/modules/Core/classes/Middleware/Frontend/EnsureUserIntegrationsLinkedMiddleware.php b/modules/Core/classes/Middleware/Frontend/EnsureUserIntegrationsLinkedMiddleware.php
@@ -2,10 +2,7 @@
 
 class EnsureUserIntegrationsLinkedMiddleware extends AbstractMiddleware
 {
-    public function type(): MiddlewareType
-    {
-        return MiddlewareType::Frontend;
-    }
+    public MiddlewareType $type = MiddlewareType::Frontend;
 
     public function handle(User $user, Language $language): void
     {
diff --git a/modules/Core/classes/Middleware/Frontend/GlobalWarningsMiddleware.php b/modules/Core/classes/Middleware/Frontend/GlobalWarningsMiddleware.php
@@ -2,10 +2,7 @@
 
 class GlobalWarningsMiddleware extends AbstractMiddleware
 {
-    public function type(): MiddlewareType
-    {
-        return MiddlewareType::Frontend;
-    }
+    public MiddlewareType $type = MiddlewareType::Frontend;
 
     public function handle(User $user, Language $language, TemplateBase $template): void
     {
diff --git a/modules/Core/classes/Middleware/Global/BannedUserMiddleware.php b/modules/Core/classes/Middleware/Global/BannedUserMiddleware.php
@@ -11,11 +11,6 @@
  */
 class BannedUserMiddleware extends AbstractMiddleware
 {
-    public function type(): MiddlewareType
-    {
-        return MiddlewareType::Global;
-    }
-
     public function handle(User $user, Language $language): void
     {
         if (($user->isLoggedIn() && $user->data()->isbanned) || DB::getInstance()->get('ip_bans', ['ip', HttpUtils::getRemoteAddress()])->exists()) {
diff --git a/modules/Core/classes/Middleware/Global/MaintenanceModeMiddleware.php b/modules/Core/classes/Middleware/Global/MaintenanceModeMiddleware.php
@@ -1,7 +1,5 @@
 <?php
 
-use Symfony\Component\HttpFoundation\Request;
-
 /**
  * Maintenance Mode middleware hook.
  * Redirects non-admin users when maintenance mode is enabled.
@@ -13,7 +11,7 @@
  */
 class MaintenanceModeMiddleware extends AbstractMiddleware
 {
-    private const EXEMPTED_ROUTES = [
+    public array $exemptRoutes = [
         '/maintenance',
         '/login',
         '/forgot_password',
@@ -23,12 +21,7 @@ class MaintenanceModeMiddleware extends AbstractMiddleware
         '/store/listener',
     ];
 
-    public function type(): MiddlewareType
-    {
-        return MiddlewareType::Global;
-    }
-
-    public function handle(User $user, Request $request): void
+    public function handle(User $user): void
     {
         // Check if maintenance mode is enabled
         if (!Settings::get('maintenance')) {
@@ -42,13 +35,6 @@ public function handle(User $user, Request $request): void
             return;
         }
 
-        $route = $request->get('route');
-        foreach (self::EXEMPTED_ROUTES as $exempted_route) {
-            if (str_starts_with($route, $exempted_route)) {
-                return;
-            }
-        }
-
         Redirect::to(URL::build('/maintenance'));
     }
 }
diff --git a/modules/Core/classes/Middleware/Global/TFAMiddleware.php b/modules/Core/classes/Middleware/Global/TFAMiddleware.php
@@ -13,32 +13,18 @@
  */
 class TFAMiddleware extends AbstractMiddleware
 {
-    private const EXEMPTED_ROUTES = [
+    public array $exemptRoutes = [
         '/logout',
         '/user/settings' // Allow access to settings to enable TFA
     ];
 
-    public function type(): MiddlewareType
-    {
-        return MiddlewareType::Global;
-    }
-
     public function handle(User $user, Request $request, Language $language): void
     {
         // Only process for logged-in users
         if (!$user->isLoggedIn()) {
             return;
         }
 
-        // Allow access to exempted routes
-        $route = $request->get('route');
-        foreach (self::EXEMPTED_ROUTES as $exempted_route) {
-            // Ideally we can use $request->getPathInfo(), but our routing allows a following slash
-            if (str_starts_with($route, $exempted_route)) {
-                return;
-            }
-        }
-
         // Skip if AJAX request, such as Alert or PM checks
         if ($request->isXmlHttpRequest()) {
             return;

Original file line number	Diff line number	Diff line change
`@@ -2,5 +2,7 @@`
`2`	`2`
`3`	`3`	`abstract class AbstractMiddleware`
`4`	`4`	`{`
`5`		`- abstract public function type(): MiddlewareType;`
	`5`	`+ public MiddlewareType $type = MiddlewareType::Global;`
	`6`	`+`
	`7`	`+ public array $exemptRoutes = [];`
`6`	`8`	`}`
Original file line number	Diff line number	Diff line change
`@@ -2,10 +2,7 @@`
`2`	`2`
`3`	`3`	`class EnsureUserIntegrationsLinkedMiddleware extends AbstractMiddleware`
`4`	`4`	`{`
`5`		`- public function type(): MiddlewareType`
`6`		`- {`
`7`		`- return MiddlewareType::Frontend;`
`8`		`- }`
	`5`	`+ public MiddlewareType $type = MiddlewareType::Frontend;`
`9`	`6`
`10`	`7`	`public function handle(User $user, Language $language): void`
`11`	`8`	`{`
Original file line number	Diff line number	Diff line change
`@@ -2,10 +2,7 @@`
`2`	`2`
`3`	`3`	`class GlobalWarningsMiddleware extends AbstractMiddleware`
`4`	`4`	`{`
`5`		`- public function type(): MiddlewareType`
`6`		`- {`
`7`		`- return MiddlewareType::Frontend;`
`8`		`- }`
	`5`	`+ public MiddlewareType $type = MiddlewareType::Frontend;`
`9`	`6`
`10`	`7`	`public function handle(User $user, Language $language, TemplateBase $template): void`
`11`	`8`	`{`
Original file line number	Diff line number	Diff line change
`@@ -11,11 +11,6 @@`
`11`	`11`	`*/`
`12`	`12`	`class BannedUserMiddleware extends AbstractMiddleware`
`13`	`13`	`{`
`14`		`- public function type(): MiddlewareType`
`15`		`- {`
`16`		`- return MiddlewareType::Global;`
`17`		`- }`
`18`		`-`
`19`	`14`	`public function handle(User $user, Language $language): void`
`20`	`15`	`{`
`21`	`16`	`if (($user->isLoggedIn() && $user->data()->isbanned) \|\| DB::getInstance()->get('ip_bans', ['ip', HttpUtils::getRemoteAddress()])->exists()) {`