src/Controller/Controller.php line 91

  1. <?php
  3. declare(strict_types=1);
  5. namespace App\Controller;
  7. use App\Dto\WlSettingsDto;
  8. use App\Enum\MirrorStatusEnum;
  9. use App\Exception\RotatorNotFoundException;
  10. use App\Service\MirrorService;
  11. use App\Service\PlayerTokenService;
  12. use App\Service\RotatorService;
  13. use App\Service\WlRotatorDomainService;
  14. use App\Service\WlSettingsService;
  15. use DateTimeImmutable;
  16. use Doctrine\DBAL\Exception as DbalException;
  17. use InfluxDB\Database\Exception as InfluxDatabaseException;
  18. use InfluxDB\Exception as InfluxException;
  19. use JsonException;
  20. use MarfaTech\Bundle\MetricBundle\Client\InfluxDb\InfluxDbClient;
  21. use Psr\Log\LoggerAwareInterface;
  22. use Psr\Log\LoggerAwareTrait;
  23. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  24. use Symfony\Component\HttpFoundation\Cookie;
  25. use Symfony\Component\HttpFoundation\JsonResponse;
  26. use Symfony\Component\HttpFoundation\RedirectResponse;
  27. use Symfony\Component\HttpFoundation\Request;
  28. use Symfony\Component\HttpFoundation\Response;
  29. use Symfony\Component\OptionsResolver\Exception\ExceptionInterface;
  30. use Symfony\Component\Routing\Annotation\Route;
  31. use Throwable;
  32. use App\Message\ApiRequestLog;
  33. use Symfony\Component\Messenger\MessageBusInterface;
  35. use function array_merge;
  36. use function base64_decode;
  37. use function http_build_query;
  38. use function is_string;
  39. use function json_decode;
  40. use function json_encode;
  41. use function sha1;
  42. use function sprintf;
  43. use function str_contains;
  44. use function time;
  45. use function urldecode;
  47. use const JSON_THROW_ON_ERROR;
  49. class Controller extends AbstractController implements LoggerAwareInterface
  50. {
  51.     use LoggerAwareTrait;
  53.     private const COOKIE_NAME 'rotatorId';
  54.     private const ROTATOR_TTL 30;
  55.     private const OLD_COOKIE_NAME '__router';
  56.     private const COUNTRY_CODE_HEADER_NAME 'X-GeoIP-Country-Code';
  58.     private const BACK_URL 'backurl';
  59.     private const RETURN_URL 'returnUrl';
  61.     private const MONITORING_USER_AGENT_LIST = [
  62.         'Better Uptime Bot',
  63.         'Zabbix',
  64.         'sentry',
  65.         'GuzzleHttp',
  66.         'Google-PageRenderer',
  67.     ];
  69.     public function __construct(
  70.         private readonly MirrorService $mirrorService,
  71.         private readonly RotatorService $rotatorService,
  72.         private readonly PlayerTokenService $playerTokenService,
  73.         private readonly WlSettingsService $wlSettingsService,
  74.         private readonly WlRotatorDomainService $wlRotatorDomainService,
  75.         private readonly InfluxDbClient $influxDbClient,
  76.         private readonly MessageBusInterface $bus,
  77.         private readonly ControllerV2 $controllerV2,
  78.         private readonly ?string $whitelabel,
  79.     ) {
  80.     }
  82.     /**
  83.      * @Route("{path}", requirements={"path"=".*"}, methods={"GET"}, priority=-2)
  84.      *
  85.      * @throws DbalException
  86.      * @throws ExceptionInterface
  87.      * @throws InfluxDatabaseException
  88.      * @throws InfluxException
  89.      * @throws JsonException
  90.      */
  91.     public function index(Request $request, ?string $path null): Response
  92.     {
  93.         if ($this->whitelabel === null) {
  94.             return new Response('Unknown whitelabel. Please, set <b>HTTP_X_WHITELABEL</b> fastcgi_param');
  95.         }
  97.         $wlSlug $this->wlSettingsService->getRealWlSlug($this->whitelabel);
  99.         if ($wlSlug === 'real-betonred') { // TODO need to hardcode to use v2 for brand
  100.             return $this->controllerV2->indexV2($request$path);
  101.         }
  103.         $country $request->server->get(self::COUNTRY_CODE_HEADER_NAME);
  105.         $this->sendMetric('hit'$country);
  107.         $rotatorId $request->cookies->get(self::COOKIE_NAME);
  108.         $rotatorIdEncoded $request->query->get('_ri');
  109.         $rdParam $request->query->get('_rd');
  111.         if (is_string($rotatorIdEncoded) && !empty($rotatorIdEncoded)) {
  112.             $rotatorId base64_decode(urldecode($rotatorIdEncoded));
  113.         }
  115.         $rotatorRouter $request->getHost();
  116.         $rotatorRouterEncoded $request->query->get('_rr');
  118.         if ($rotatorRouterEncoded) {
  119.             $rotatorRouter base64_decode(urldecode($rotatorRouterEncoded));
  120.         }
  122.         if (is_string($rdParam)) {
  123.             try {
  124.                 $rdDecoded json_decode(base64_decode(urldecode($rdParam)), true512JSON_THROW_ON_ERROR);
  126.                 if (!empty($rdDecoded['_ri'])) {
  127.                     $rotatorId $rdDecoded['_ri'];
  128.                 }
  130.                 if (!empty($rdDecoded['_rr'])) {
  131.                     $rotatorRouter $rdDecoded['_rr'];
  132.                 }
  133.             } catch (Throwable $e) {
  134.                 $this->logger->error(
  135.                     'bad rdParam',
  136.                     [
  137.                         'rdParam' => $rdParam,
  138.                         'request' => $request,
  139.                         'exception' => (string) $e,
  140.                     ]
  141.                 );
  142.             }
  143.         }
  145.         $oldHost $request->cookies->get(self::OLD_COOKIE_NAME);
  146.         $oldRotatorCallback null;
  147.         $oldRotatorId null;
  148.         $rotator null;
  150.         $requestRotatorId $request->query->get(self::COOKIE_NAME);
  151.         $from $request->query->get('from');
  152.         $ts = (int) $request->query->get('ts');
  153.         $uuid $request->query->get('uuid');
  154.         $sign $request->query->get('sign');
  156.         $needTsUuidSignCheck false;
  158.         $query $request->query->all();
  160.         if ($requestRotatorId !== null) {
  161.             $rotatorId $requestRotatorId;
  163.             if ($from === null) {
  164.                 $needTsUuidSignCheck true;
  165.             }
  166.         }
  168.         $userAgent substr((string) $request->server->get('HTTP_USER_AGENT'), 0255);
  170.         foreach (self::MONITORING_USER_AGENT_LIST as $monitoringUserAgent) {
  171.             if (str_contains($userAgent$monitoringUserAgent)) {
  172.                 $rotatorId 'monitoring';
  173.                 $country 'DE';
  174.             }
  175.         }
  177.         if ($rotatorId) {
  178.             $rotator $this->rotatorService->findBySticky($rotatorId);
  180.             if ($rotator === null) {
  181.                 $rotator $this->rotatorService->findByCountry($rotatorId$country);
  182.             }
  184.             if ($rotator === null) {
  185.                 $rotator $this->rotatorService->findByOldRotatorCountry($rotatorId$country);
  186.             }
  188.             if ($rotator === null) {
  189.                 $oldRotator $this->rotatorService->find($rotatorId);
  191.                 if ($oldRotator !== null) {
  192.                     $oldRotatorCallback $oldRotator['callback'] ?? null;
  193.                     $oldRotatorId $rotatorId;
  194.                 }
  195.             }
  197.             $rotatorId $rotator['rotatorId'] ?? null;
  198.         }
  200.         //        if ($rotatorId === null) {
  201.         if (!empty($query[self::RETURN_URL])) { // logic for sticky host from returnUrl
  202.             $host false;
  204.             if (is_string($query[self::RETURN_URL])) {
  205.                 $host parse_url($query[self::RETURN_URL], PHP_URL_HOST);
  206.             }
  208.             if ($host !== false && $host !== null) {
  209.                 $mirror $this->mirrorService->findStickyHost($this->whitelabel$host);
  211.                 $this->logger->info(
  212.                     'mirror from redirect url',
  213.                     [
  214.                         'mirror' => is_array($mirror) ? implode(', '$mirror) : ($mirror ?? 'not found'),
  215.                         'rotatorId' => $rotatorId,
  216.                         'redirectUrl' => $query[self::RETURN_URL],
  217.                     ]
  218.                 );
  219.             }
  221.             if ($host === null) {
  222.                 $mirror $this->mirrorService->findStickyHost($this->whitelabel$query[self::RETURN_URL]);
  223.             }
  225.             if (empty($mirror)) { // redirect to returnUrl for non sticky
  226.                 if ($host !== false && $host !== null) {
  227.                     $mirror $this->mirrorService->findByWlCountryHost($this->whitelabel$country$host);
  228.                 }
  230.                 if ($host === null) {
  231.                     $mirror $this->mirrorService->findByWlCountryHost($this->whitelabel$country$query[self::RETURN_URL]);
  232.                 }
  234.                 if ($mirror === null && $host !== false && $host !== null) {
  235.                     $mirror $this->mirrorService->findByHost($host);
  236.                 }
  237.             }
  239.             // unset($query[self::RETURN_URL]);
  240.         }
  242.         if (empty($mirror) && $oldHost) {
  243.             $mirror $this->mirrorService->findByHost($oldHost);
  244.         }
  246.         if (empty($mirror)) {
  247.             $mirror $this->mirrorService->getRandom($this->whitelabel$country);
  248.         }
  250.         $rotatorId $rotatorId
  251.             ?? $this->rotatorService->create($mirror['id'], $country$userAgent$oldRotatorId);
  252.         //        }
  254.         if (empty($rotator)) {
  255.             $rotator $this->rotatorService->findByCountry($rotatorId$country);
  257.             if ($rotator !== null && $oldRotatorCallback !== null) {
  258.                 $this->rotatorService->updateRotatorCallback($rotator$oldRotatorCallback);
  259.                 $rotator['callback'] = $oldRotatorCallback;
  260.                 $this->sendMetric('old_rotator_callback'$country);
  261.             }
  262.         }
  264.         $mirrorStatus $rotator['mirrorStatus'] ?? MirrorStatusEnum::BLOCKED;
  266.         if ($mirrorStatus !== MirrorStatusEnum::ACTIVE) {
  267.             $mirror $this->mirrorService->getRandom($this->whitelabel$country);
  269.             $this->rotatorService->update($rotator['id'], [
  270.                 'rotatorId' => $rotatorId,
  271.                 'country' => $country,
  272.                 'mirrorId' => $mirror['id'],
  273.             ]);
  275.             $rotator['mirrorHost'] = $mirror['host'];
  276.         }
  278.         // google auth state after redirect
  279.         $state $request->query->get('state');
  281.         if (!empty($state)) {
  282.             try {
  283.                 $state json_decode(urldecode($state), true512JSON_THROW_ON_ERROR);
  285.                 if (!empty($state['backurl'])) {
  286.                     $query[self::BACK_URL] = urldecode($state['backurl']);
  287.                 }
  288.             } catch (Throwable) {
  289.             }
  290.         }
  292.         $wlSettingsDto $this->wlSettingsService->getWlSettings($this->whitelabel);
  294.         if ($wlSettingsDto === null) {
  295.             return new JsonResponse(
  296.                 [
  297.                     'message' => 'WL settings not found',
  298.                 ],
  299.                 Response::HTTP_NOT_FOUND,
  300.             );
  301.         }
  303.         try {
  304.             $accessToken $this->getAccessToken(
  305.                 $rotator,
  306.                 $query,
  307.                 $wlSettingsDto,
  308.                 $needTsUuidSignCheck,
  309.                 $ts,
  310.                 $uuid,
  311.                 $sign,
  312.             );
  313.         } catch (Throwable) {
  314.             $accessToken null;
  315.         }
  317.         $isHostRouterEqual $request->getHost() === $wlSettingsDto->getDefaultRotatorDomain();
  319.         if ($accessToken !== null) {
  320.             $query['accessToken'] = $accessToken;
  322.             if ($isHostRouterEqual === true) {
  323.                 $this->sendMetric('access_token'$country$rotator['mirrorHost']);
  324.             }
  325.         }
  327.         if (!empty($query['rotatorToken'])) {
  328.             unset($query['rotatorToken']);
  329.         }
  331.         $redirect '/' $path;
  333.         $redirectHost $rotator['mirrorHost'];
  335.         if ($isHostRouterEqual === false) {
  336.             $redirectHost $wlSettingsDto->getDefaultRotatorDomain();
  337.             $query['rotatorId'] = $rotatorId;
  338.             $this->sendMetric('default_router_redirect'$country);
  339.         }
  341.         if (!empty($query[self::BACK_URL])) {
  342.             $redirect $query[self::BACK_URL];
  344.             unset($query[self::BACK_URL]);
  345.         } else if (!empty($query[self::RETURN_URL])) {
  346.             $pathFromReturnUrl parse_url($query[self::RETURN_URL], PHP_URL_PATH);
  347.             $queryString parse_url($query[self::RETURN_URL], PHP_URL_QUERY);
  348.             $redirect $pathFromReturnUrl . ($queryString '?' $queryString '');
  350.             if (!str_starts_with($redirect'/')) {
  351.                 $redirect '/' $redirect;
  352.             }
  354.             unset($query[self::RETURN_URL]);
  355.         }
  357.         if ($redirect[0] === '/') {
  358.             $redirect 'https://' trim($redirectHost) . $redirect;
  359.         }
  361.         $query['_rd'] = urlencode(base64_encode(json_encode([
  362.             'rotatorId' => $rotatorId,
  363.             'rotatorRouter' => $rotatorRouter,
  364.         ], JSON_THROW_ON_ERROR)));
  366.         $redirect .= sprintf(
  367.             '%s%s',
  368.             str_contains($redirect'?') ? '&' '?',
  369.             http_build_query($query)
  370.         );
  372.         $response = new RedirectResponse($redirect);
  373.         $response->headers
  374.             ->setCookie(
  375.                 new Cookie(
  376.                     self::COOKIE_NAME,
  377.                     $rotatorId,
  378.                     time() + (365 24 60 60)
  379.                 )
  380.             )
  381.         ;
  383.         $this->sendMetric('redirect'$country$rotator['mirrorHost']);
  385.         $redirectData = [
  386.             'ip' => $request->getClientIp(),
  387.             'rotatorId' => $rotatorId,
  388.             'mirrorHost' => $redirectHost,
  389.             'rotatorRouter' => $request->getHost(),
  390.         ];
  392.         $this->logger->info('Redirect'$redirectData);
  394.         $this->bus->dispatch(new ApiRequestLog(
  395.             $redirectData['rotatorId'],
  396.             $redirectData['ip'],
  397.             $redirectData['mirrorHost'],
  398.             $redirectData['rotatorRouter'],
  399.             $country,
  400.             (string) $request,
  401.             (string) $response,
  402.             time() - $request->server->get('REQUEST_TIME'),
  403.             date('Y-m-d H:i:s'$request->server->get('REQUEST_TIME')),
  404.             $response->getStatusCode(),
  405.         ));
  407.         return $response;
  408.     }
  410.     /**
  411.      * @Route("/callback", methods={"POST"})
  412.      *
  413.      * @param Request $request
  414.      * @return Response
  415.      * @throws DbalException
  416.      * @throws InfluxDatabaseException
  417.      * @throws InfluxException
  418.      * @throws JsonException
  419.      */
  420.     public function callbackBulk(Request $request): Response
  421.     {
  422.         try {
  423.             $body json_decode($request->getContent(), true512JSON_THROW_ON_ERROR);
  424.         } catch (JsonException) {
  425.             $body = [];
  426.         }
  428.         foreach ($body as $item) {
  429.             try {
  430.                 $this->handleCallback($item['rotatorId'], $item['callbackData']);
  431.             } catch (RotatorNotFoundException) {
  432.                 continue;
  433.             }
  434.         }
  436.         return new Response();
  437.     }
  439.     /**
  440.      * @Route("/callback/{rotatorId}", methods={"POST"})
  441.      *
  442.      * @throws DbalException
  443.      * @throws InfluxDatabaseException
  444.      * @throws InfluxException
  445.      * @throws JsonException
  446.      */
  447.     public function callback(Request $requeststring $rotatorId): Response
  448.     {
  449.         try {
  450.             $body json_decode($request->getContent(), true512JSON_THROW_ON_ERROR);
  451.         } catch (JsonException) {
  452.             $body = [];
  453.         }
  455.         try {
  456.             $this->handleCallback($rotatorId$body);
  457.         } catch (RotatorNotFoundException) {
  458.         }
  460.         return new Response();
  461.     }
  463.     /**
  464.      * @Route("/api/generateLinkToken", methods={"POST"})
  465.      */
  466.     public function generateLinkToken(Request $request): Response
  467.     {
  468.         try {
  469.             $body json_decode($request->getContent(), true512JSON_THROW_ON_ERROR);
  470.             $playerId $body['playerId'] ?? null;
  471.             $source $body['source'] ?? null;
  472.             $tokenCreatedAt = new DateTimeImmutable();
  474.             if ($playerId === null) {
  475.                 return new JsonResponse(
  476.                     [
  477.                         'message' => 'Player id is required',
  478.                     ],
  479.                     Response::HTTP_UNPROCESSABLE_ENTITY,
  480.                 );
  481.             }
  483.             if (!is_string($playerId)) {
  484.                 return new JsonResponse(
  485.                     [
  486.                         'message' => 'Player id must be string',
  487.                     ],
  488.                     Response::HTTP_UNPROCESSABLE_ENTITY,
  489.                 );
  490.             }
  492.             $wlSettingsDto $this->wlSettingsService->getWlSettings($this->whitelabel);
  494.             if ($wlSettingsDto === null) {
  495.                 return new JsonResponse(
  496.                     [
  497.                         'message' => 'WL settings not found',
  498.                     ],
  499.                     Response::HTTP_NOT_FOUND,
  500.                 );
  501.             }
  503.             $token sha1(
  504.                 sprintf(
  505.                     '%s%s%s',
  506.                     $playerId,
  507.                     $tokenCreatedAt->getTimestamp(),
  508.                     $wlSettingsDto->getSalt()
  509.                 )
  510.             );
  511.             $expiredAt = (new DateTimeImmutable())
  512.                 ->modify('+' $wlSettingsDto->getTokenLifetime() . ' seconds')
  513.             ;
  515.             $this->playerTokenService->createNewPlayerToken($playerId$this->whitelabel$token$expiredAt);
  517.             $wlRotatorDomainDto null;
  519.             if ($source !== null) {
  520.                 $wlRotatorDomainDto $this->wlRotatorDomainService->getWlRotatorDomainDtoBySource(
  521.                     $this->whitelabel,
  522.                     $source,
  523.                 );
  524.             }
  526.             if ($wlRotatorDomainDto === null) {
  527.                 $wlRotatorDomainDto $this->wlRotatorDomainService->getRandomWlRotatorDomainDto($this->whitelabel);
  529.                 if ($wlRotatorDomainDto === null) {
  530.                     return new JsonResponse(
  531.                         [
  532.                             'message' => 'WL rotator domain not found',
  533.                         ],
  534.                         Response::HTTP_NOT_FOUND,
  535.                     );
  536.                 }
  537.             }
  539.             $data = [
  540.                 'link' => sprintf('%s/?rotatorToken=%s'$wlRotatorDomainDto->getDomain(), $token),
  541.                 'endTime' => $expiredAt->getTimestamp(),
  542.                 'token' => $token,
  543.             ];
  545.             return new JsonResponse($dataResponse::HTTP_OK);
  546.         } catch (Throwable $e) {
  547.             return new JsonResponse($e->getMessage(), Response::HTTP_INTERNAL_SERVER_ERROR);
  548.         }
  549.     }
  551.     /**
  552.      * @throws InfluxException
  553.      * @throws InfluxDatabaseException
  554.      */
  555.     private function sendMetric(string $keystring $country, ?string $mirror null): void
  556.     {
  557.         $fields = [
  558.             'country' => $country,
  559.             'rotator' => $this->whitelabel,
  560.         ];
  562.         if ($mirror) {
  563.             $fields['mirror'] = $mirror;
  564.         }
  566.         $this->influxDbClient->sendBulk($key$fields$fields);
  567.     }
  569.     /**
  570.      * @throws InfluxException
  571.      * @throws JsonException
  572.      * @throws DbalException
  573.      * @throws InfluxDatabaseException
  574.      * @throws RotatorNotFoundException
  575.      */
  576.     private function handleCallback(string $rotatorId, array $callbackData): void
  577.     {
  578.         $rotator $this->rotatorService->find($rotatorId);
  580.         if ($rotator === null) {
  581.             throw new RotatorNotFoundException();
  582.         }
  584.         $isPlayerIdMismatch = !empty($callbackData['playerId'])
  585.             && !empty($rotator['playerId'])
  586.             && $callbackData['playerId'] !== $rotator['playerId']
  587.         ;
  589.         if ($isPlayerIdMismatch) {
  590.             return;
  591.         }
  593.         $isPlayerUuidMismatch = !empty($callbackData['playerUuid'])
  594.             && !empty($rotator['playerUuid'])
  595.             && $callbackData['playerUuid'] !== $rotator['playerUuid']
  596.         ;
  598.         if ($isPlayerUuidMismatch) {
  599.             return;
  600.         }
  603.         $country $rotator['country'] ?? '';
  605.         $this->sendMetric('callback'$country$rotator['mirrorHost']);
  607.         $data = [
  608.             'rotatorId' => $rotator['rotatorId'],
  609.             'country' => $country,
  610.             'callback' => json_encode($callbackDataJSON_THROW_ON_ERROR),
  611.             'callbackAt' => (new DateTimeImmutable())->format('Y-m-d H:i:s'),
  612.         ];
  614.         if (empty($rotator['playerId']) && !empty($callbackData['playerId'])) {
  615.             $data['playerId'] = $callbackData['playerId'];
  616.         }
  618.         if (empty($rotator['playerUuid']) && !empty($callbackData['playerUuid'])) {
  619.             $data['playerUuid'] = $callbackData['playerUuid'];
  620.         }
  622.         if (!empty($callbackData['host'])) {
  623.             $mirror $this->mirrorService->findByHost($callbackData['host']);
  625.             if ($mirror !== null && $rotator['mirrorId'] !== $mirror['id']) {
  626.                 $data['mirrorId'] = $mirror['id'];
  627.             }
  628.         }
  630.         $this->rotatorService->update($rotator['id'], $data);
  631.     }
  633.     private function getAccessToken(
  634.         array $rotator,
  635.         $query,
  636.         WlSettingsDto $wlSettingsDto,
  637.         bool $needTsUuidSignCheck,
  638.         ?int $ts,
  639.         ?string $uuid,
  640.         ?string $sign,
  641.     ): ?string {
  642.         if (
  643.             $needTsUuidSignCheck &&
  644.             $this->checkTsUuidSign(
  645.                 $rotator,
  646.                 $wlSettingsDto->getSecret(),
  647.                 $ts,
  648.                 $uuid,
  649.                 $sign,
  650.             ) === false
  651.         ) {
  652.             return null;
  653.         }
  655.         try {
  656.             return $this->rotatorService->getAccessToken($rotator$query$wlSettingsDto);
  657.         } catch (Throwable) {
  658.         }
  660.         return null;
  661.     }
  663.     private function checkTsUuidSign(
  664.         array $rotator,
  665.         ?string $secret,
  666.         ?int $ts,
  667.         ?string $uuid,
  668.         ?string $sign,
  669.     ): bool {
  670.         if (empty($ts) || empty($uuid) || empty($sign)) {
  671.             return false;
  672.         }
  674.         if (time() - floor($ts 1000) > self::ROTATOR_TTL) {
  675.             return false;
  676.         }
  678.         if (empty($secret)) {
  679.             return true;
  680.         }
  682.         if ($sign !== sha1($rotator['rotatorId'] . $ts $uuid $secret)) {
  683.            return false;
  684.         }
  686.         if (!empty($rotator['playerUuid']) && $uuid !== $rotator['playerUuid']) {
  687.             return false;
  688.         }
  690.         return true;
  691.     }
  692. }