For storing your cypher key, the best way is to use a environment variable. If your are using Symfony Dotenv Component, you can store your cypher key like this:
If you are using Sonata Admin integration, you can stop here because everything is done automatically.
The manual way
You should tell to Symfony how to encrypt/decrypt your gateway configuration when you use your PaypalGatewayConfigType form type (previously done in Configure gateway in backend).
For that, you have two solutions:
update your PaypalGatewayConfigType form type
create a Form Type Extension that will modify your PaypalGatewayConfigType form type
The second solution is better, because if you have a form type for a second gateway (for example Stripe.js), you won't have to duplicate your logic in your StripeGatewayConfigType form type.
We will create a CryptedGatewayConfigTypeExtension form type extension in the namespace Acme\PaymentBundle\Form\Extension. Be sure to follow this step to register your form type extension as a service.
<?php
declare(strict_types=1);
namespace Acme\PaymentBundle\Form\Extension;
use Acme\PaymentBundle\Form\Type\Payment\PaypalGatewayConfigType;
use Payum\Core\Security\CryptedInterface;
use Payum\Core\Security\CypherInterface;
use Symfony\Component\Form\AbstractTypeExtension;
use Symfony\Component\Form\FormBuilderInterface;
use Symfony\Component\Form\FormEvent;
use Symfony\Component\Form\FormEvents;
class CryptedGatewayConfigTypeExtension extends AbstractTypeExtension
{
private $cypher;
public function __construct(?CypherInterface $cypher = null)
{
$this->cypher = $cypher;
}
/**
* {@inheritdoc}
*/
public function buildForm(FormBuilderInterface $builder, array $options): void
{
if (null === $this->cypher) {
return;
}
$builder
// Before set form data, we decrypt the gateway config
->addEventListener(FormEvents::PRE_SET_DATA, function (FormEvent $event) {
$gatewayConfig = $event->getData();
if (!$gatewayConfig instanceof CryptedInterface) {
return;
}
$gatewayConfig->decrypt($this->cypher);
$event->setData($gatewayConfig);
})
// After submitting the form, we encrypt the gateway back
->addEventListener(FormEvents::POST_SUBMIT, function (FormEvent $event) {
$gatewayConfig = $event->getData();
if (!$gatewayConfig instanceof CryptedInterface) {
return;
}
$gatewayConfig->encrypt($this->cypher);
$event->setData($gatewayConfig);
});
}
/**
* {@inheritdoc}
*/
public function getExtendedTypes(): array
{
// The extension will be applied on `PaypalGatewayConfigType` form type.
// Feel free to add another form types if needed.
return [PaypalGatewayConfigType::class];
}
}
Supporting Payum
Payum is an MIT-licensed open source project with its ongoing development made possible entirely by the support of community and our customers. If you'd like to join them, please consider:
