Convert sql:sanitize command. Convert the UserTable sanitizer to a Listener

Author: weitzman

src/Commands/sql/sanitize/SanitizeCommand.php

@@ -0,0 +1,88 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Drush\Commands\sql\sanitize;
+
+use Consolidation\AnnotatedCommand\Events\CustomEventAwareInterface;
+use Consolidation\AnnotatedCommand\Events\CustomEventAwareTrait;
+use Drush\Attributes as CLI;
+use Drush\Boot\DrupalBootLevels;
+use Drush\Commands\AutowireTrait;
+use Drush\Commands\core\DocsCommands;
+use Drush\Event\SanitizeConfirmsEvent;
+use Drush\Exceptions\UserAbortException;
+use Drush\Style\DrushStyle;
+use Psr\EventDispatcher\EventDispatcherInterface;
+use Symfony\Component\Console\Attribute\AsCommand;
+use Symfony\Component\Console\Command\Command;
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Output\OutputInterface;
+
+#[AsCommand(
+    name: self::NAME,
+    description: 'Sanitize the database by removing or obfuscating user data.',
+    aliases: ['sqlsan','sql-sanitize']
+)]
+// @todo Deal with topics on classes.
+#[CLI\Topics(topics: [DocsCommands::HOOKS])]
+#[CLI\Bootstrap(level: DrupalBootLevels::FULL)]
+final class SanitizeCommand extends Command implements CustomEventAwareInterface
+{
+    use AutowireTrait;
+    use CustomEventAwareTrait;
+
+    const NAME = 'sql:sanitize';
+
+    public function __construct(protected EventDispatcherInterface $eventDispatcher)
+    {
+        parent::__construct();
+    }
+
+
+    protected function configure()
+    {
+        $this
+            ->setDescription('Sanitize the database by removing or obfuscating user data.')
+            ->addUsage('drush sql:sanitize --sanitize-password=no')
+            ->addUsage('drush sql:sanitize --allowlist-fields=field_biography,field_phone_number');
+    }
+
+    /**
+     * Commandfiles may add custom operations by implementing a Listener that subscribes to two events:
+     *
+     *     - `\Drush\Events\SanitizeConfirmsEvent`. Display summary to user before confirmation.
+     *     - `\Symfony\Component\Console\Event\ConsoleTerminateEvent`. Run queries or call APIs to perform sanitizing
+     *
+     * Several working Listeners may be found at https://github.com/drush-ops/drush/tree/13.x/src/Drush/Listeners/sanitize
+     */
+
+    protected function execute(InputInterface $input, OutputInterface $output): int
+    {
+        $io = new DrushStyle($input, $output);
+
+        /**
+         * In order to present only one prompt, collect all confirmations up front.
+         */
+        $event = new SanitizeConfirmsEvent($input);
+        $this->eventDispatcher->dispatch($event, SanitizeConfirmsEvent::class);
+        $messages = $event->getMessages();
+
+        // Also collect from legacy commandfiles.
+        $handlers = $this->getCustomEventHandlers(SanitizeCommands::CONFIRMS);
+        foreach ($handlers as $handler) {
+            $handler($messages, $input);
+        }
+        // @phpstan-ignore if.alwaysFalse
+        if ($messages) {
+            $output->writeln(dt('The following operations will be performed:'));
+            $io->listing($messages);
+        }
+        if (!$io->confirm(dt('Do you want to sanitize the current database?'))) {
+            throw new UserAbortException();
+        }
+        // All sanitize operations happen during the built-in console.terminate event.
+
+        return self::SUCCESS;
+    }
+}

src/Commands/sql/sanitize/SanitizeCommands.php

@@ -4,59 +4,11 @@
 
 namespace Drush\Commands\sql\sanitize;
 
-use Consolidation\AnnotatedCommand\Events\CustomEventAwareInterface;
-use Consolidation\AnnotatedCommand\Events\CustomEventAwareTrait;
-use Drush\Attributes as CLI;
-use Drush\Boot\DrupalBootLevels;
-use Drush\Commands\core\DocsCommands;
-use Drush\Commands\DrushCommands;
-use Drush\Exceptions\UserAbortException;
+use JetBrains\PhpStorm\Deprecated;
 
-#[CLI\Bootstrap(level: DrupalBootLevels::FULL)]
-final class SanitizeCommands extends DrushCommands implements CustomEventAwareInterface
+#[Deprecated('Moved to Drush\Commands\sql\sanitize\SanitizeCommand.')]
+final class SanitizeCommands
 {
-    use CustomEventAwareTrait;
-
     const SANITIZE = 'sql:sanitize';
     const CONFIRMS = 'sql-sanitize-confirms';
-
-    /**
-     * Sanitize the database by removing or obfuscating user data.
-     *
-     * Commandfiles may add custom operations by implementing:
-     *
-     *     - `#[CLI\Hook(type: HookManager::ON_EVENT, target: SanitizeCommands::CONFIRMS)]`. Display summary to user before confirmation.
-     *     - `#[CLI\Hook(type: HookManager::POST_COMMAND_HOOK, target: SanitizeCommands::SANITIZE)]`. Run queries or call APIs to perform sanitizing
-     *
-     * Several working commandfiles may be found at https://github.com/drush-ops/drush/tree/13.x/src/Commands/sql/sanitize
-     */
-    #[CLI\Command(name: self::SANITIZE, aliases: ['sqlsan','sql-sanitize'])]
-    #[CLI\Usage(name: 'drush sql:sanitize --sanitize-password=no', description: 'Sanitize database without modifying any passwords.')]
-    #[CLI\Usage(name: 'drush sql:sanitize --allowlist-fields=field_biography,field_phone_number', description: 'Sanitizes database but exempts two user fields from modification.')]
-    #[CLI\Topics(topics: [DocsCommands::HOOKS])]
-    public function sanitize(): void
-    {
-     /**
-     * In order to present only one prompt, collect all confirmations from
-     * commandfiles up front. sql:sanitize plugins are commandfiles that implement
-     * \Drush\Commands\sql\SanitizePluginInterface
-     */
-        $messages = [];
-        $input = $this->input();
-        $handlers = $this->getCustomEventHandlers(self::CONFIRMS);
-        foreach ($handlers as $handler) {
-            $handler($messages, $input);
-        }
-        // @phpstan-ignore if.alwaysFalse
-        if ($messages) {
-            $this->output()->writeln(dt('The following operations will be performed:'));
-            $this->io()->listing($messages);
-        }
-        if (!$this->io()->confirm(dt('Do you want to sanitize the current database?'))) {
-            throw new UserAbortException();
-        }
-
-        // All sanitize operations defined in post-command hooks, including Drush
-        // core sanitize routines. See \Drush\Commands\sql\sanitize\SanitizePluginInterface.
-    }
 }

src/Commands/sql/sanitize/SanitizePluginInterface.php

@@ -5,11 +5,13 @@
 namespace Drush\Commands\sql\sanitize;
 
 use Consolidation\AnnotatedCommand\CommandData;
+use JetBrains\PhpStorm\Deprecated;
 use Symfony\Component\Console\Input\InputInterface;
 
 /**
  * Implement this interface when building a Drush sql-sanitize plugin.
  */
+#[Deprecated(reason: 'Implement an event listener instead.')]
 interface SanitizePluginInterface
 {
     /**

src/Event/SanitizeConfirmsEvent.php

@@ -0,0 +1,48 @@
+<?php
+
+namespace Drush\Event;
+
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Contracts\EventDispatcher\Event;
+
+/*
+ * A custom event, for prompting the user about candidate sanitize operations.
+ *
+ * Listeners should add their confirm messages via addMessage().
+ */
+
+final class SanitizeConfirmsEvent extends Event
+{
+    public function __construct(
+        protected InputInterface $input,
+        protected array $messages = [],
+    ) {
+    }
+
+    public function setInput(InputInterface $input): void
+    {
+        $this->input = $input;
+    }
+
+    public function getInput(): InputInterface
+    {
+        return $this->input;
+    }
+
+    public function addMessage(string $message): self
+    {
+        $this->messages[] = $message;
+        return $this;
+    }
+
+    public function getMessages(): array
+    {
+        return $this->messages;
+    }
+
+    public function setMessages(array $messages): self
+    {
+        $this->messages = $messages;
+        return $this;
+    }
+}

src/Listeners/sanitize/SanitizeUserTableListener.php

@@ -0,0 +1,147 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Drush\Listeners\sanitize;
+
+use Drupal\Core\Database\Connection;
+use Drupal\Core\Database\Query\SelectInterface;
+use Drupal\Core\Entity\EntityTypeManagerInterface;
+use Drupal\Core\Password\PasswordInterface;
+use Drush\Commands\AutowireTrait;
+use Drush\Commands\sql\sanitize\SanitizeCommand;
+use Drush\Event\ConsoleDefinitionsEvent;
+use Drush\Event\SanitizeConfirmsEvent;
+use Drush\Sql\SqlBase;
+use Drush\Utils\StringUtils;
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Console\Event\ConsoleTerminateEvent;
+use Symfony\Component\Console\Input\InputOption;
+use Symfony\Component\EventDispatcher\Attribute\AsEventListener;
+
+/**
+ * Sanitize emails and passwords. This also an example of how to write a
+ *  database sanitizer for sql:sync.
+ */
+#[AsEventListener(method: 'onDefinition')]
+#[AsEventListener(method: 'onSanitizeConfirm')]
+#[AsEventListener(method: 'onConsoleTerminate')]
+final class SanitizeUserTableListener
+{
+    use AutowireTrait;
+
+    public function __construct(
+        protected Connection $database,
+        protected PasswordInterface $passwordHasher,
+        protected EntityTypeManagerInterface $entityTypeManager,
+        protected LoggerInterface $logger,
+    ) {
+    }
+
+    public function onDefinition(ConsoleDefinitionsEvent $event): void
+    {
+        foreach ($event->getApplication()->all() as $id => $command) {
+            if ($command->getName() === SanitizeCommand::NAME) {
+                $command->addOption(
+                    'sanitize-email',
+                    null,
+                    InputOption::VALUE_REQUIRED,
+                    'The pattern for test email addresses in the sanitization operation, or <info>no</info> to keep email addresses unchanged. May contain replacement patterns <info>%uid</info>, <info>%mail</info> or <info>%name</info>.',
+                    'user+%[email protected]'
+                )
+                    ->addOption('sanitize-password', null, InputOption::VALUE_REQUIRED, 'By default, passwords are randomized. Specify <info>no</info> to disable that. Specify any other value to set all passwords to that value.')
+                    ->addOption('ignored-roles', null, InputOption::VALUE_REQUIRED, 'A comma delimited list of roles. Users with at least one of the roles will be exempt from sanitization.');
+            }
+        }
+    }
+
+    public function onSanitizeConfirm(SanitizeConfirmsEvent $event): void
+    {
+        $options = $event->getInput()->getOptions();
+        if ($this->isEnabled($options['sanitize-password'])) {
+            $event->addMessage(dt('Sanitize user passwords.'));
+        }
+        if ($this->isEnabled($options['sanitize-email'])) {
+            $event->addMessage(dt('Sanitize user emails.'));
+        }
+        if (in_array('ignored-roles', $options)) {
+            $event->addMessage(dt('Preserve user emails and passwords for the specified roles.'));
+        }
+    }
+
+    public function onConsoleTerminate(ConsoleTerminateEvent $event): void
+    {
+        $options = $event->getInput()->getOptions();
+        $query = $this->database->update('users_field_data')->condition('uid', 0, '>');
+        $messages = [];
+
+        // Sanitize passwords.
+        if ($this->isEnabled($options['sanitize-password'])) {
+            $password = $options['sanitize-password'];
+            if (is_null($password)) {
+                $password = StringUtils::generatePassword();
+            }
+
+            // Mimic Drupal's /scripts/password-hash.sh
+            $hash = $this->passwordHasher->hash($password);
+            $query->fields(['pass' => $hash]);
+            $messages[] = dt('User passwords sanitized.');
+        }
+
+        // Sanitize email addresses.
+        if ($this->isEnabled($options['sanitize-email'])) {
+            if (str_contains($options['sanitize-email'], '%')) {
+                // We need a different sanitization query for MSSQL, Postgres and Mysql.
+                $sql = SqlBase::create($event->getInput()->getOptions());
+                $db_driver = $sql->scheme();
+                if ($db_driver === 'pgsql') {
+                    $email_map = ['%uid' => "' || uid || '", '%mail' => "' || replace(mail, '@', '_') || '", '%name' => "' || replace(name, ' ', '_') || '"];
+                    $new_mail =  "'" . str_replace(array_keys($email_map), array_values($email_map), $options['sanitize-email']) . "'";
+                } elseif ($db_driver === 'mssql') {
+                    $email_map = ['%uid' => "' + uid + '", '%mail' => "' + replace(mail, '@', '_') + '", '%name' => "' + replace(name, ' ', '_') + '"];
+                    $new_mail =  "'" . str_replace(array_keys($email_map), array_values($email_map), $options['sanitize-email']) . "'";
+                } else {
+                    $email_map = ['%uid' => "', uid, '", '%mail' => "', replace(mail, '@', '_'), '", '%name' => "', replace(name, ' ', '_'), '"];
+                    $new_mail =  "concat('" . str_replace(array_keys($email_map), array_values($email_map), $options['sanitize-email']) . "')";
+                }
+                $query->expression('mail', $new_mail);
+                $query->expression('init', $new_mail);
+            } else {
+                $query->fields(['mail' => $options['sanitize-email']]);
+            }
+            $messages[] = dt('User emails sanitized.');
+        }
+
+        if (!empty($options['ignored-roles'])) {
+            $roles = explode(',', $options['ignored-roles']);
+            /** @var SelectInterface $roles_query */
+            $roles_query = $this->database->select('user__roles', 'ur');
+            $roles_query
+                ->condition('roles_target_id', $roles, 'IN')
+                ->fields('ur', ['entity_id']);
+            $roles_query_results = $roles_query->execute();
+            $ignored_users = $roles_query_results->fetchCol();
+
+            if (!empty($ignored_users)) {
+                $query->condition('uid', $ignored_users, 'NOT IN');
+                $messages[] = dt('User emails and passwords for the specified roles preserved.');
+            }
+        }
+
+        if ($messages) {
+            $query->execute();
+            $this->entityTypeManager->getStorage('user')->resetCache();
+            foreach ($messages as $message) {
+                $this->logger->success($message);
+            }
+        }
+    }
+
+    /**
+     * Test an option value to see if it is disabled.
+     */
+    protected function isEnabled(?string $value): bool
+    {
+        return $value != 'no' && $value != '0';
+    }
+}

src/Runtime/ServiceManager.php

@@ -34,6 +34,7 @@
 use Symfony\Component\Console\Command\Command;
 use Symfony\Component\Console\ConsoleEvents;
 use Symfony\Component\Console\Event\ConsoleCommandEvent;
+use Symfony\Component\Console\Event\ConsoleTerminateEvent;
 use Symfony\Component\Console\Input\InputAwareInterface;
 use Symfony\Component\EventDispatcher\Attribute\AsEventListener;
 
@@ -438,9 +439,11 @@ public function addListeners(iterable $classes, ContainerInterface $drushContain
                 } else {
                     throw new \Exception('Event listener method must have a single parameter with a type hint.');
                 }
-                if ($eventName == ConsoleCommandEvent::class) {
-                    $eventName = ConsoleEvents::COMMAND;
-                }
+                $eventName = match ($eventName) {
+                    ConsoleCommandEvent::class => ConsoleEvents::COMMAND,
+                    ConsoleTerminateEvent::class => ConsoleEvents::TERMINATE,
+                    default => $eventName,
+                };
                 Drush::getContainer()->get('eventDispatcher')->addListener($eventName, $instance->$method(...), $priority);
             }
         }