MessageDataManager

Author: tatevikg1

config/PhpCodeSniffer/ruleset.xml

@@ -30,7 +30,9 @@
 
     <!-- Commenting -->
     <rule ref="Generic.Commenting.Fixme"/>
-    <rule ref="Generic.Commenting.Todo"/>
+    <rule ref="Generic.Commenting.Todo">
+        <severity>0</severity>
+    </rule>
     <rule ref="PEAR.Commenting.InlineComment"/>
     <rule ref="Squiz.Commenting.DocCommentAlignment"/>
     <rule ref="Squiz.Commenting.EmptyCatchComment"/>

config/services.yml

@@ -52,5 +52,6 @@ services:
       - { name: 'doctrine.dbal.schema_filter', connection: 'default' }
 
   PhpList\Core\Domain\Messaging\MessageHandler\CampaignProcessorMessageHandler:
+    autowire: true
     arguments:
       $maxMailSize: '%messaging.max_mail_size%'

config/services/managers.yml

@@ -110,3 +110,7 @@ services:
   PhpList\Core\Domain\Messaging\Service\Manager\SendProcessManager:
     autowire: true
     autoconfigure: true
+
+  PhpList\Core\Domain\Messaging\Service\Manager\MessageDataManager:
+    autowire: true
+    autoconfigure: true

config/services/repositories.yml

@@ -140,3 +140,8 @@ services:
     parent: PhpList\Core\Domain\Common\Repository\AbstractRepository
     arguments:
       - PhpList\Core\Domain\Messaging\Model\SendProcess
+
+  PhpList\Core\Domain\Messaging\Repository\MessageDataRepository:
+    parent: PhpList\Core\Domain\Common\Repository\AbstractRepository
+    arguments:
+      - PhpList\Core\Domain\Messaging\Model\MessageData

src/Domain/Messaging/MessageHandler/CampaignProcessorMessageHandler.php

@@ -15,6 +15,7 @@
 use PhpList\Core\Domain\Messaging\Repository\MessageRepository;
 use PhpList\Core\Domain\Messaging\Repository\UserMessageRepository;
 use PhpList\Core\Domain\Messaging\Service\Handler\RequeueHandler;
+use PhpList\Core\Domain\Messaging\Service\Manager\MessageDataManager;
 use PhpList\Core\Domain\Messaging\Service\MaxProcessTimeLimiter;
 use PhpList\Core\Domain\Messaging\Service\MessageProcessingPreparator;
 use PhpList\Core\Domain\Messaging\Service\RateLimitedCampaignMailer;
@@ -23,6 +24,7 @@
 use PhpList\Core\Domain\Subscription\Service\Manager\SubscriberHistoryManager;
 use PhpList\Core\Domain\Subscription\Service\Provider\SubscriberProvider;
 use Psr\Log\LoggerInterface;
+use Psr\SimpleCache\CacheInterface;
 use Symfony\Component\Messenger\Attribute\AsMessageHandler;
 use Symfony\Component\Mime\Email;
 use Symfony\Contracts\Translation\TranslatorInterface;
@@ -35,47 +37,25 @@
 #[AsMessageHandler]
 class CampaignProcessorMessageHandler
 {
-    private RateLimitedCampaignMailer $mailer;
-    private EntityManagerInterface $entityManager;
-    private SubscriberProvider $subscriberProvider;
-    private MessageProcessingPreparator $messagePreparator;
-    private LoggerInterface $logger;
-    private UserMessageRepository $userMessageRepository;
-    private MaxProcessTimeLimiter $timeLimiter;
-    private RequeueHandler $requeueHandler;
-    private TranslatorInterface $translator;
-    private SubscriberHistoryManager $subscriberHistoryManager;
-    private MessageRepository $messageRepository;
-    private EventLogManager $eventLogManager;
     private ?int $maxMailSize;
 
     public function __construct(
-        RateLimitedCampaignMailer $mailer,
-        EntityManagerInterface $entityManager,
-        SubscriberProvider $subscriberProvider,
-        MessageProcessingPreparator $messagePreparator,
-        LoggerInterface $logger,
-        UserMessageRepository $userMessageRepository,
-        MaxProcessTimeLimiter $timeLimiter,
-        RequeueHandler $requeueHandler,
-        TranslatorInterface $translator,
-        SubscriberHistoryManager $subscriberHistoryManager,
-        MessageRepository $messageRepository,
-        EventLogManager $eventLogManager,
+        private readonly RateLimitedCampaignMailer $mailer,
+        private readonly EntityManagerInterface $entityManager,
+        private readonly SubscriberProvider $subscriberProvider,
+        private readonly MessageProcessingPreparator $messagePreparator,
+        private readonly LoggerInterface $logger,
+        private readonly CacheInterface $cache,
+        private readonly UserMessageRepository $userMessageRepository,
+        private readonly MaxProcessTimeLimiter $timeLimiter,
+        private readonly RequeueHandler $requeueHandler,
+        private readonly TranslatorInterface $translator,
+        private readonly SubscriberHistoryManager $subscriberHistoryManager,
+        private readonly MessageRepository $messageRepository,
+        private readonly EventLogManager $eventLogManager,
+        private readonly MessageDataManager $messageDataManager,
         ?int $maxMailSize = null,
     ) {
-        $this->mailer = $mailer;
-        $this->entityManager = $entityManager;
-        $this->subscriberProvider = $subscriberProvider;
-        $this->messagePreparator = $messagePreparator;
-        $this->logger = $logger;
-        $this->userMessageRepository = $userMessageRepository;
-        $this->timeLimiter = $timeLimiter;
-        $this->requeueHandler = $requeueHandler;
-        $this->translator = $translator;
-        $this->subscriberHistoryManager = $subscriberHistoryManager;
-        $this->messageRepository = $messageRepository;
-        $this->eventLogManager = $eventLogManager;
         $this->maxMailSize = $maxMailSize ?? 0;
     }
 
@@ -170,12 +150,13 @@ private function handleInvalidEmail(UserMessage $userMessage, Subscriber $subscr
 
     private function handleEmailSending(mixed $campaign, Subscriber $subscriber, UserMessage $userMessage): void
     {
-        $processed = $this->messagePreparator->processMessageLinks($campaign, $subscriber->getId());
+        $processed = $this->messagePreparator->processMessageLinks($campaign, $subscriber);
+        // todo: precacheMessage
 
         try {
             $email = $this->mailer->composeEmail($processed, $subscriber);
             $this->mailer->send($email);
-            $this->checkMessageSizeOrSuspendCampaign($campaign, $email);
+            $this->checkMessageSizeOrSuspendCampaign($campaign, $email, $subscriber->hasHtmlEmail());
             $this->updateUserMessageStatus($userMessage, UserMessageStatus::Sent);
         } catch (MessageSizeLimitExceededException $e) {
             $this->updateMessageStatus($campaign, MessageStatus::Suspended);
@@ -194,12 +175,20 @@ private function handleEmailSending(mixed $campaign, Subscriber $subscriber, Use
     private function checkMessageSizeOrSuspendCampaign(
         Message $campaign,
         Email $email,
+        bool $hasHtmlEmail
     ): void {
         if ($this->maxMailSize <= 0) {
             return;
         }
+        $sizeName = $hasHtmlEmail ? 'htmlsize' : 'textsize';
+        $cacheKey = sprintf('messaging.size.%d.%s', $campaign->getId(), $sizeName);
+        if (!$this->cache->has($cacheKey)) {
+            $size = $this->calculateEmailSize($email);
+            $this->messageDataManager->setMessageData($campaign, $sizeName, $size);
+            $this->cache->set($cacheKey, $size);
+        }
 
-        $size = $this->calculateEmailSize($email);
+        $size = $this->cache->get($cacheKey);
         if ($size <= $this->maxMailSize) {
             return;
         }

src/Domain/Messaging/Repository/MessageDataRepository.php

@@ -7,8 +7,14 @@
 use PhpList\Core\Domain\Common\Repository\AbstractRepository;
 use PhpList\Core\Domain\Common\Repository\CursorPaginationTrait;
 use PhpList\Core\Domain\Common\Repository\Interfaces\PaginatableRepositoryInterface;
+use PhpList\Core\Domain\Messaging\Model\MessageData;
 
 class MessageDataRepository extends AbstractRepository implements PaginatableRepositoryInterface
 {
     use CursorPaginationTrait;
+
+    public function findByIdAndName(int $messageId, string $name): ?MessageData
+    {
+        return $this->findOneBy(['id' => $messageId, 'name' => $name]);
+    }
 }

src/Domain/Messaging/Service/Manager/MessageDataManager.php

@@ -0,0 +1,111 @@
+<?php
+
+declare(strict_types=1);
+
+namespace PhpList\Core\Domain\Messaging\Service\Manager;
+
+use PhpList\Core\Domain\Messaging\Model\Message;
+use PhpList\Core\Domain\Messaging\Model\MessageData;
+use PhpList\Core\Domain\Messaging\Repository\MessageDataRepository;
+
+class MessageDataManager
+{
+    public function __construct(
+        private readonly MessageDataRepository $messageDataRepository,
+    ) {
+    }
+
+    /**
+     * Mirrors the legacy setMessageData behavior with safe sanitization and persistence.
+     *
+     * @param Message $campaign
+     * @param string $name
+     * @param mixed $value
+     */
+    public function setMessageData(Message $campaign, string $name, mixed $value): void
+    {
+        if ($name === 'PHPSESSID' || $name === session_name()) {
+            return;
+        }
+
+        $value = $this->normalizeValueByName($name, $value);
+
+        // todo: remove this once we have a proper way to handle targetlists
+//        if ($name === 'targetlist' && is_array($value)) {
+//            $this->listMessageRepository->removeAllListAssociationsForMessage($campaign);
+//
+//            if (!empty($value['all']) || !empty($value['allactive'])) {
+//                // todo:  should be with $GLOBALS['subselect'] filter for access control
+//                foreach ($this->subscriberListRepository->getAllActive() as $list) {
+//                    $listMessage = (new ListMessage())
+//                        ->setMessage($campaign)
+//                        ->setList($list);
+//                    $this->listMessageRepository->persist($listMessage);
+//                }
+//                // once we used "all" to set all, unset it, to avoid confusion trying to unselect lists
+//                unset($value['all']);
+//            } else {
+//                foreach ($value as $listId => $val) {
+//                    // see #16940 - ignore a list called "unselect" which is there to allow unselecting all
+//                    if ($listId !== 'unselect') {
+//                        $list = $this->subscriberListRepository->find($listId);
+//                        $listMessage = (new ListMessage())
+//                            ->setMessage($campaign)
+//                            ->setList($list);
+//                        $this->listMessageRepository->persist($listMessage);
+//                    }
+//                }
+//            }
+//        }
+
+        if (is_array($value) || is_object($value)) {
+            $value = 'SER:' . serialize($value);
+        }
+
+        $entity = $this->getOrCreateMessageDataEntity($campaign, $name);
+        $entity->setData($value !== null ? (string) $value : null);
+    }
+
+    /**
+     * Remove potentially harmful JavaScript from HTML content.
+     *
+     * This is a conservative cleaner: removes <script> blocks, javascript: URLs,
+     * and inline event handlers (on*) attributes.
+     */
+    private function disableJavascript(string $html): string
+    {
+        // Remove script tags and their content
+        $clean = preg_replace('#<script\b[^>]*>.*?</script>#is', '', $html) ?? $html;
+
+        // Remove on*="..." event handler attributes
+        $clean = preg_replace('/\s+on[a-zA-Z]+\s*=\s*("[^"]*"|\'[^\']*\'|[^\s>]+)/i', '', $clean) ?? $clean;
+
+        // Neutralize javascript: and data: URIs in href/src/style
+        $clean = preg_replace('/\b(href|src)\s*=\s*("|\')\s*(javascript:|data:)[^\2]*\2/i', '$1="#"', $clean) ?? $clean;
+        return preg_replace('/\bstyle\s*=\s*("|\')[^\1]*\1/i', '', $clean) ?? $clean;
+    }
+
+    private function normalizeValueByName(string $name, mixed $value)
+    {
+        return match ($name) {
+            'subject', 'campaigntitle' => is_string($value) ? strip_tags($value) : $value,
+            'message' => is_string($value) ? $this->disableJavascript($value) : $value,
+            'excludelist' => is_array($value) ? array_filter($value, fn ($val) => is_numeric($val)) : $value,
+            'footer' => preg_replace('/<!--.*-->/', '', $value),
+            default => $value,
+        };
+    }
+
+    private function getOrCreateMessageDataEntity(Message $campaign, string $name)
+    {
+        $entity = $this->messageDataRepository->findByIdAndName($campaign->getId(), $name);
+        if (!$entity instanceof MessageData) {
+            $entity = (new MessageData())
+                ->setId($campaign->getId())
+                ->setName($name);
+            $this->messageDataRepository->persist($entity);
+        }
+
+        return $entity;
+    }
+}

src/Domain/Messaging/Service/MessageProcessingPreparator.php

@@ -5,32 +5,26 @@
 namespace PhpList\Core\Domain\Messaging\Service;
 
 use PhpList\Core\Domain\Analytics\Service\LinkTrackService;
+use PhpList\Core\Domain\Configuration\Service\UserPersonalizer;
 use PhpList\Core\Domain\Messaging\Model\Message;
 use PhpList\Core\Domain\Messaging\Repository\MessageRepository;
+use PhpList\Core\Domain\Subscription\Model\Subscriber;
 use PhpList\Core\Domain\Subscription\Repository\SubscriberRepository;
 use Symfony\Component\Console\Output\OutputInterface;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 class MessageProcessingPreparator
 {
-    // phpcs:ignore Generic.Commenting.Todo
     // @todo: create functionality to track
-    public const LINT_TRACK_ENDPOINT = '/api/v2/link-track';
-    private SubscriberRepository $subscriberRepository;
-    private MessageRepository $messageRepository;
-    private LinkTrackService $linkTrackService;
-    private TranslatorInterface $translator;
+    public const LINK_TRACK_ENDPOINT = '/api/v2/link-track';
 
     public function __construct(
-        SubscriberRepository $subscriberRepository,
-        MessageRepository $messageRepository,
-        LinkTrackService $linkTrackService,
-        TranslatorInterface $translator,
+        private readonly SubscriberRepository $subscriberRepository,
+        private readonly MessageRepository $messageRepository,
+        private readonly LinkTrackService $linkTrackService,
+        private readonly TranslatorInterface $translator,
+        private readonly UserPersonalizer $userPersonalizer,
     ) {
-        $this->subscriberRepository = $subscriberRepository;
-        $this->messageRepository = $messageRepository;
-        $this->linkTrackService = $linkTrackService;
-        $this->translator = $translator;
     }
 
     public function ensureSubscribersHaveUuid(OutputInterface $output): void
@@ -66,13 +60,13 @@ public function ensureCampaignsHaveUuid(OutputInterface $output): void
     /**
      * Process message content to extract URLs and replace them with link track URLs
      */
-    public function processMessageLinks(Message $message, int $userId): Message
+    public function processMessageLinks(Message $message, Subscriber $subscriber): Message
     {
         if (!$this->linkTrackService->isExtractAndSaveLinksApplicable()) {
             return $message;
         }
 
-        $savedLinks = $this->linkTrackService->extractAndSaveLinks($message, $userId);
+        $savedLinks = $this->linkTrackService->extractAndSaveLinks($message, $subscriber->getId());
 
         if (empty($savedLinks)) {
             return $message;
@@ -81,14 +75,16 @@ public function processMessageLinks(Message $message, int $userId): Message
         $content = $message->getContent();
         $htmlText = $content->getText();
         $footer = $content->getFooter();
-
+        // todo: check other configured data that should be used in mail formatting/creation
         if ($htmlText !== null) {
             $htmlText = $this->replaceLinks($savedLinks, $htmlText);
+            $htmlText = $this->userPersonalizer->personalize($htmlText, $subscriber->getEmail());
             $content->setText($htmlText);
         }
 
         if ($footer !== null) {
             $footer = $this->replaceLinks($savedLinks, $footer);
+            $footer = $this->userPersonalizer->personalize($footer, $subscriber->getEmail());
             $content->setFooter($footer);
         }
 
@@ -99,7 +95,7 @@ private function replaceLinks(array $savedLinks, string $htmlText): string
     {
         foreach ($savedLinks as $linkTrack) {
             $originalUrl = $linkTrack->getUrl();
-            $trackUrl = '/' . self::LINT_TRACK_ENDPOINT . '?id=' . $linkTrack->getId();
+            $trackUrl = '/' . self::LINK_TRACK_ENDPOINT . '?id=' . $linkTrack->getId();
             $htmlText = str_replace('href="' . $originalUrl . '"', 'href="' . $trackUrl . '"', $htmlText);
         }
 

src/Domain/Messaging/Service/RateLimitedCampaignMailer.php

@@ -34,6 +34,7 @@ public function composeEmail(Message $processed, Subscriber $subscriber): Email
         return $email
             ->to($subscriber->getEmail())
             ->subject($processed->getContent()->getSubject())
+            // todo: check HTML2Text functionality
             ->text($processed->getContent()->getTextMessage())
             ->html($processed->getContent()->getText());
     }

src/Domain/Subscription/Repository/SubscriberListRepository.php

@@ -45,4 +45,12 @@ public function getListsByMessage(Message $message): array
             ->getQuery()
             ->getResult();
     }
+
+    public function getAllActive(): array
+    {
+        return $this->createQueryBuilder('l')
+            ->where('l.active = true')
+            ->getQuery()
+            ->getResult();
+    }
 }