Merge pull request #791 from magento-troll/MAGETWO-63626

MAGETWO-58596: Remove uses of unserialize in Module_Widget

Author: rganin

app/code/Magento/CatalogWidget/Test/Unit/Block/Product/ProductsListTest.php

@@ -78,6 +78,11 @@ class ProductsListTest extends \PHPUnit_Framework_TestCase
      */
     private $priceCurrency;
 
+    /**
+     * @var \Magento\Framework\Serialize\Serializer\Json|\PHPUnit_Framework_MockObject_MockObject
+     */
+    private $serializer;
+
     protected function setUp()
     {
         $this->collectionFactory =
@@ -91,7 +96,12 @@ protected function setUp()
         $this->httpContext = $this->getMock(\Magento\Framework\App\Http\Context::class);
         $this->builder = $this->getMock(\Magento\Rule\Model\Condition\Sql\Builder::class, [], [], '', false);
         $this->rule = $this->getMock(\Magento\CatalogWidget\Model\Rule::class, [], [], '', false);
-        $this->widgetConditionsHelper = $this->getMock(\Magento\Widget\Helper\Conditions::class);
+        $this->serializer = $this->getMock(\Magento\Framework\Serialize\Serializer\Json::class, [], [], '', false);
+        $this->widgetConditionsHelper = $this->getMock(
+            \Magento\Widget\Helper\Conditions::class,
+            [],
+            ['serializer' => $this->serializer]
+        );
         $this->storeManager = $this->getMock(\Magento\Store\Model\StoreManagerInterface::class);
         $this->design = $this->getMock(\Magento\Framework\View\DesignInterface::class);
 

app/code/Magento/Widget/Helper/Conditions.php

@@ -5,33 +5,52 @@
  */
 namespace Magento\Widget\Helper;
 
+use Magento\Framework\App\ObjectManager;
+use Magento\Framework\Serialize\Serializer\Json;
+
 /**
- * Widget Conditions helper
+ * Widget Conditions helper.
  */
 class Conditions
 {
     /**
-     * Encode widget conditions to be used with WYSIWIG
+     * Instance of serializer interface.
+     *
+     * @var Json
+     */
+    private $serializer;
+
+    /**
+     * @param Json $serializer
+     */
+    public function __construct(
+        Json $serializer = null
+    ) {
+        $this->serializer = $serializer ?: ObjectManager::getInstance()->get(Json::class);
+    }
+
+    /**
+     * Encode widget conditions to be used with WYSIWIG.
      *
      * @param array $value
      * @return string
      */
     public function encode(array $value)
     {
-        $value = str_replace(['{', '}', '"', '\\'], ['[', ']', '`', '|'], serialize($value));
+        $value = str_replace(['{', '}', '"', '\\\\'], ['[', ']', '`', '|'], $this->serializer->serialize($value));
         return $value;
     }
 
     /**
-     * Decode previously encoded widget conditions
+     * Decode previously encoded widget conditions.
      *
      * @param string $value
      * @return array
      */
     public function decode($value)
     {
-        $value = str_replace(['[', ']', '`', '|'], ['{', '}', '"', '\\'], $value);
-        $value = unserialize($value);
+        $value = str_replace(['[', ']', '`', '|'], ['{', '}', '"', '\\\\'], $value);
+        $value = $this->serializer->unserialize($value);
         return $value;
     }
 }

app/code/Magento/Widget/Model/ResourceModel/Widget.php

@@ -11,6 +11,11 @@
  */
 namespace Magento\Widget\Model\ResourceModel;
 
+/**
+ * Resource model for widget.
+ *
+ * @deprecated Data from this table was moved to xml(widget.xml).
+ */
 class Widget extends \Magento\Framework\Model\ResourceModel\Db\AbstractDb
 {
     /**
@@ -41,7 +46,7 @@ public function loadPreconfiguredWidget($widgetId)
         $widget = $connection->fetchRow($select, $bind);
         if (is_array($widget)) {
             if ($widget['parameters']) {
-                $widget['parameters'] = unserialize($widget['parameters']);
+                $widget['parameters'] = $this->getSerializer()->unserialize($widget['parameters']);
             }
             return $widget;
         }

app/code/Magento/Widget/Model/Widget/Instance.php

@@ -6,6 +6,8 @@
 namespace Magento\Widget\Model\Widget;
 
 use Magento\Framework\App\Filesystem\DirectoryList;
+use Magento\Framework\Serialize\Serializer\Json;
+use Magento\Framework\App\ObjectManager;
 
 /**
  * Widget Instance Model
@@ -107,6 +109,13 @@ class Instance extends \Magento\Framework\Model\AbstractModel
      */
     protected $conditionsHelper;
 
+    /**
+     * Instance of serializer interface.
+     *
+     * @var Json
+     */
+    private $serializer;
+
     /**
      * @param \Magento\Framework\Model\Context $context
      * @param \Magento\Framework\Registry $registry
@@ -124,6 +133,7 @@ class Instance extends \Magento\Framework\Model\AbstractModel
      * @param \Magento\Framework\Data\Collection\AbstractDb $resourceCollection
      * @param array $relatedCacheTypes
      * @param array $data
+     * @param Json $serializer
      * @SuppressWarnings(PHPMD.ExcessiveParameterList)
      */
     public function __construct(
@@ -142,7 +152,8 @@ public function __construct(
         \Magento\Framework\Model\ResourceModel\AbstractResource $resource = null,
         \Magento\Framework\Data\Collection\AbstractDb $resourceCollection = null,
         array $relatedCacheTypes = [],
-        array $data = []
+        array $data = [],
+        Json $serializer = null
     ) {
         $this->_escaper = $escaper;
         $this->_viewFileSystem = $viewFileSystem;
@@ -155,6 +166,7 @@ public function __construct(
         $this->conditionsHelper = $conditionsHelper;
         $this->_directory = $filesystem->getDirectoryRead(DirectoryList::ROOT);
         $this->_namespaceResolver = $namespaceResolver;
+        $this->serializer = $serializer ?: ObjectManager::getInstance()->get(Json::class);
         parent::__construct($context, $registry, $resource, $resourceCollection, $data);
     }
 
@@ -250,7 +262,7 @@ public function beforeSave()
                     \Magento\Framework\Math\Random::CHARS_LOWERS
                 );
             }
-            $this->setData('widget_parameters', serialize($parameters));
+            $this->setData('widget_parameters', $this->serializer->serialize($parameters));
         }
         $this->setData('page_groups', $tmpPageGroups);
         $this->setData('page_group_ids', $pageGroupIds);
@@ -372,7 +384,7 @@ public function getStoreIds()
     public function getWidgetParameters()
     {
         if (is_string($this->getData('widget_parameters'))) {
-            return unserialize($this->getData('widget_parameters'));
+            return $this->serializer->unserialize($this->getData('widget_parameters'));
         } elseif (null === $this->getData('widget_parameters')) {
             return [];
         }

app/code/Magento/Widget/Setup/UpgradeData.php

@@ -0,0 +1,54 @@
+<?php
+/**
+ * Copyright © 2013-2017 Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+namespace Magento\Widget\Setup;
+
+use Magento\Framework\App\ObjectManager;
+use Magento\Framework\Setup\UpgradeDataInterface;
+use Magento\Framework\Setup\ModuleContextInterface;
+use Magento\Framework\Setup\ModuleDataSetupInterface;
+use Magento\Framework\DB\FieldDataConverterFactory;
+use Magento\Framework\DB\DataConverter\SerializedToJson;
+
+/**
+ * Upgrade data for widget module.
+ */
+class UpgradeData implements UpgradeDataInterface
+{
+    /**
+     * @var FieldDataConverterFactory
+     */
+    private $fieldDataConverterFactory;
+
+    /**
+     * @param FieldDataConverterFactory $fieldDataConverterFactory
+     */
+    public function __construct(
+        FieldDataConverterFactory $fieldDataConverterFactory
+    ) {
+        $this->fieldDataConverterFactory = $fieldDataConverterFactory;
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    public function upgrade(ModuleDataSetupInterface $setup, ModuleContextInterface $context)
+    {
+        $setup->startSetup();
+
+        if (version_compare($context->getVersion(), '2.0.1', '<')) {
+            $fieldDataConverter = $this->fieldDataConverterFactory->create(SerializedToJson::class);
+            $fieldDataConverter->convert(
+                $setup->getConnection(),
+                $setup->getTable('widget_instance'),
+                'instance_id',
+                'widget_parameters'
+            );
+        }
+
+        $setup->endSetup();
+    }
+}

app/code/Magento/Widget/Test/Unit/Helper/ConditionsTest.php

@@ -6,8 +6,6 @@
 
 namespace Magento\Widget\Test\Unit\Helper;
 
-use Magento\Framework\TestFramework\Unit\Helper\ObjectManager as ObjectManagerHelper;
-
 /**
  * Class ConditionsTest
  */
@@ -18,10 +16,20 @@ class ConditionsTest extends \PHPUnit_Framework_TestCase
      */
     protected $conditions;
 
+    /**
+     * @var \Magento\Framework\Serialize\Serializer\Json|\PHPUnit_Framework_MockObject_MockObject
+     */
+    private $serializer;
+
+    /**
+     * {@inheritdoc}
+     */
     protected function setUp()
     {
-        $objectManagerHelper = new ObjectManagerHelper($this);
-        $this->conditions = $objectManagerHelper->getObject(\Magento\Widget\Helper\Conditions::class);
+        $this->serializer = $this->getMock(\Magento\Framework\Serialize\Serializer\Json::class, null);
+        $this->conditions = new \Magento\Widget\Helper\Conditions(
+            $this->serializer
+        );
     }
 
     public function testEncodeDecode()

app/code/Magento/Widget/etc/module.xml

@@ -6,7 +6,7 @@
  */
 -->
 <config xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="urn:magento:framework:Module/etc/module.xsd">
-    <module name="Magento_Widget" setup_version="2.0.0">
+    <module name="Magento_Widget" setup_version="2.0.1">
         <sequence>
             <module name="Magento_Cms"/>
         </sequence>

dev/tests/integration/testsuite/Magento/Widget/Model/Widget/InstanceTest.php

@@ -99,6 +99,8 @@ public function testGetWidgetSupportedTemplatesByContainer($model)
     }
 
     /**
+     * @covers \Magento\Widget\Model\Widget\Instance::generateLayoutUpdateXml()
+     * @covers \Magento\Widget\Model\Widget\Instance::getWidgetParameters()
      * @param \Magento\Widget\Model\Widget\Instance $model
      * @depends testGetWidgetConfigAsArray
      */
@@ -134,7 +136,36 @@ public function testGenerateLayoutUpdateXml(\Magento\Widget\Model\Widget\Instanc
         $this->assertContains('<argument name="name" xsi:type="string">types</argument>', $result);
         $this->assertContains('<argument name="value" xsi:type="string">type_1,type_2</argument>', $result);
         $this->assertContains('<argument name="name" xsi:type="string">conditions_encoded</argument>', $result);
-        $this->assertContains('s:50:`Magento|CatalogWidget|Model|Rule|Condition|Combine`', $result);
-        $this->assertContains('s:50:`Magento|CatalogWidget|Model|Rule|Condition|Product`', $result);
+        $this->assertContains('`Magento|CatalogWidget|Model|Rule|Condition|Combine`', $result);
+        $this->assertContains('`Magento|CatalogWidget|Model|Rule|Condition|Product`', $result);
+    }
+
+    /**
+     * @covers \Magento\Widget\Model\Widget\Instance::beforeSave()
+     * @magentoDataFixture Magento/Widget/_files/new_widget.php
+     * @dataProvider beforeSaveDataProvider
+     * @param array $expected
+     */
+    public function testBeforeSave(array $expected)
+    {
+        /** @var \Magento\Widget\Model\ResourceModel\Widget\Instance $resourceModel */
+        $resourceModel = \Magento\TestFramework\Helper\Bootstrap::getObjectManager()
+            ->get(\Magento\Widget\Model\ResourceModel\Widget\Instance::class);
+        $resourceModel->load($this->_model, 'Magento\Widget\NewSampleWidget', 'instance_type');
+
+        $this->assertSame($expected, $this->_model->getWidgetParameters());
+    }
+
+    /**
+     * @return array
+     */
+    public function beforeSaveDataProvider()
+    {
+        return [
+          # Variation 1
+          [
+              ['block_id' => '2']
+          ]
+        ];
     }
 }

dev/tests/integration/testsuite/Magento/Widget/_files/new_widget.php

@@ -0,0 +1,38 @@
+<?php
+/**
+ * Copyright © 2013-2017 Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+/** @var \Magento\Widget\Model\ResourceModel\Widget\Instance $resourceModel */
+$resourceModel = \Magento\TestFramework\Helper\Bootstrap::getObjectManager()
+    ->get(\Magento\Widget\Model\ResourceModel\Widget\Instance::class);
+
+$model = \Magento\TestFramework\Helper\Bootstrap::getObjectManager()
+    ->get(\Magento\Widget\Model\Widget\Instance::class);
+
+// Set default theme as work ground for MAGETWO-63643
+/** @var \Magento\Framework\View\Design\ThemeInterface $theme */
+$theme = \Magento\TestFramework\Helper\Bootstrap::getObjectManager()->create(
+    \Magento\Framework\View\Design\ThemeInterface::class
+);
+$theme->load('Magento/luma', 'theme_path');
+
+$model->setData(
+    [
+        'instance_type' => 'Magento\\Widget\\NewSampleWidget',
+        'theme_id' => $theme->getId(),
+        'title' => 'New Sample widget title',
+        'store_ids' => [
+            0 => '0',
+        ],
+        'widget_parameters' => [
+            'block_id' => '2',
+        ],
+        'sort_order' => '0',
+        'page_groups' => [],
+        'instance_code' => 'new_sample_widget',
+    ]
+);
+
+$resourceModel->save($model);