SuiteCRM/SuiteCRM-Core
2
0
Fork 0
mirror of https://github.com/SuiteCRM/SuiteCRM-Core.git synced 2025-09-04 10:14:13 +08:00
Code Issues Projects Packages Activity Actions
SuiteCRM-Core/core/backend/Security/GraphqlIntrospectionManager.php
Jack Anderson 117dd81727 SuiteCRM 8.4.2 Release
2023-11-09 14:27:09 +00:00

64 lines
2.1 KiB
PHP
Raw Blame History

<?php
/**
* SuiteCRM is a customer relationship management program developed by SalesAgility Ltd.
* Copyright (C) 2023 SalesAgility Ltd.
*
* This program is free software; you can redistribute it and/or modify it under
* the terms of the GNU Affero General Public License version 3 as published by the
* Free Software Foundation with the addition of the following permission added
* to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
* IN WHICH THE COPYRIGHT IS OWNED BY SALESAGILITY, SALESAGILITY DISCLAIMS THE
* WARRANTY OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
*
* This program is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
* FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
* details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
* In accordance with Section 7(b) of the GNU Affero General Public License
* version 3, these Appropriate Legal Notices must retain the display of the
* "Supercharged by SuiteCRM" logo. If the display of the logos is not reasonably
* feasible for technical reasons, the Appropriate Legal Notices must display
* the words "Supercharged by SuiteCRM".
*/
namespace App\Security;
use GraphQL\Validator\DocumentValidator;
use GraphQL\Validator\Rules\DisableIntrospection;
class GraphqlIntrospectionManager
{
/**
* @var bool|null
*/
private $graphqlShowDocs;
/**
* @param bool|null $graphqlShowDocs
*/
public function __construct(
?bool $graphqlShowDocs
) {
$this->graphqlShowDocs = $graphqlShowDocs;
}
/**
* Enable/disable graphql introspection
* @return void
*/
public function configure(): void
{
$env = $_ENV ?? [];
$appEnv = $env['APP_ENV'] ?? 'prod';
$showDocs = $this->graphqlShowDocs ?? ($appEnv === 'dev');
if ($showDocs === false) {
DocumentValidator::addRule(new DisableIntrospection());
}
}
}
Reference in a new issue View git blame Copy permalink