groove/Part-DB-server
1
0
Fork 0
mirror of https://github.com/Part-DB/Part-DB-server.git synced 2026-02-11 12:09:36 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 10

Remove Content-Security-Policy for maintenance mode

Browse source
This commit is contained in:
Jan Böhmer 2026-02-02 17:28:35 +01:00
parent 1bfd36ccf5
commit 7ff07a7ab4
1 changed files with 30 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

35
src/EventSubscriber/MaintenanceModeSubscriber.php
View file

@ -26,17 +26,19 @@ namespace App\EventSubscriber;
use App\Services\System\UpdateExecutor; use App\Services\System\UpdateExecutor;
use Symfony\Component\EventDispatcher\EventSubscriberInterface; use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Symfony\Component\HttpFoundation\Response; use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\HttpKernel\Event\FilterResponseEvent;
use Symfony\Component\HttpKernel\Event\RequestEvent; use Symfony\Component\HttpKernel\Event\RequestEvent;
use Symfony\Component\HttpKernel\Event\ResponseEvent;
use Symfony\Component\HttpKernel\KernelEvents; use Symfony\Component\HttpKernel\KernelEvents;
use Twig\Environment; use Twig\Environment;
/** /**
* Blocks all web requests when maintenance mode is enabled during updates. * Blocks all web requests when maintenance mode is enabled during updates.
*/ */
class MaintenanceModeSubscriber implements EventSubscriberInterface readonly class MaintenanceModeSubscriber implements EventSubscriberInterface
{ {
public function __construct(private readonly UpdateExecutor $updateExecutor, public function __construct(private UpdateExecutor $updateExecutor,
private readonly Environment $twig) private Environment $twig)
{ {
} }
@ -45,7 +47,8 @@ class MaintenanceModeSubscriber implements EventSubscriberInterface
{ {
return [ return [
// High priority to run before other listeners // High priority to run before other listeners
KernelEvents::REQUEST => ['onKernelRequest', 512], KernelEvents::REQUEST => ['onKernelRequest', 512], //High priority to run before other listeners
KernelEvents::RESPONSE => ['onKernelResponse', -512] // Low priority to run after other listeners
]; ];
} }
@ -62,7 +65,7 @@ class MaintenanceModeSubscriber implements EventSubscriberInterface
} }
// Allow CLI requests // Allow CLI requests
if (php_sapi_name() === 'cli') { if (PHP_SAPI === 'cli') {
return; return;
} }
@ -101,6 +104,28 @@ class MaintenanceModeSubscriber implements EventSubscriberInterface
$event->setResponse($response); $event->setResponse($response);
} }
public function onKernelResponse(ResponseEvent $event)
{
// Only handle main requests
if (!$event->isMainRequest()) {
return;
}
// Skip if not in maintenance mode
if (!$this->updateExecutor->isMaintenanceMode()) {
return;
}
// Allow CLI requests
if (PHP_SAPI === 'cli') {
return;
}
//Remove all Content-Security-Policy headers to allow loading resources during maintenance
$response = $event->getResponse();
$response->headers->remove('Content-Security-Policy');
}
/** /**
* Generate a simple maintenance page HTML without Twig. * Generate a simple maintenance page HTML without Twig.
*/ */