[Messenger] Support signing messages per handler

nicolas-grekas · nicolas-grekas · commit c5f33ef9af74 · 2025-10-30T10:48:43.000+01:00
diff --git a/src/Symfony/Bundle/FrameworkBundle/DependencyInjection/FrameworkExtension.php b/src/Symfony/Bundle/FrameworkBundle/DependencyInjection/FrameworkExtension.php
@@ -2556,6 +2556,7 @@ private function registerMessengerConfiguration(array $config, ContainerBuilder
         $senderAliases = [];
         $transportRetryReferences = [];
         $transportRateLimiterReferences = [];
+        $serializerIds = [];
         foreach ($config['transports'] as $name => $transport) {
             $serializerId = $transport['serializer'] ?? 'messenger.default_serializer';
             $tags = [
@@ -2572,6 +2573,7 @@ private function registerMessengerConfiguration(array $config, ContainerBuilder
             ;
             $container->setDefinition($transportId = 'messenger.transport.'.$name, $transportDefinition);
             $senderAliases[$name] = $transportId;
+            $serializerIds[$transportId] = $serializerId;
 
             if (null !== $transport['retry_strategy']['service']) {
                 $transportRetryReferences[$name] = new Reference($transport['retry_strategy']['service']);
@@ -2599,13 +2601,11 @@ private function registerMessengerConfiguration(array $config, ContainerBuilder
         }
 
         $senderReferences = [];
-        // alias => service_id
-        foreach ($senderAliases as $alias => $serviceId) {
-            $senderReferences[$alias] = new Reference($serviceId);
+        foreach ($senderAliases as $alias => $transportId) {
+            $senderReferences[$alias] = new Reference($transportId);
         }
-        // service_id => service_id
-        foreach ($senderAliases as $serviceId) {
-            $senderReferences[$serviceId] = new Reference($serviceId);
+        foreach ($senderAliases as $transportId) {
+            $senderReferences[$transportId] = new Reference($transportId);
         }
 
         foreach ($config['transports'] as $name => $transport) {
@@ -2616,7 +2616,7 @@ private function registerMessengerConfiguration(array $config, ContainerBuilder
             }
         }
 
-        $failureTransportReferencesByTransportName = array_map(fn ($failureTransportName) => $senderReferences[$failureTransportName], $failureTransportsByName);
+        $failureTransportReferencesByTransportName = array_map(static fn ($failureTransportName) => $senderReferences[$failureTransportName], $failureTransportsByName);
 
         $messageToSendersMapping = [];
         foreach ($config['routing'] as $message => $messageConfiguration) {
@@ -2645,6 +2645,18 @@ private function registerMessengerConfiguration(array $config, ContainerBuilder
             ->replaceArgument(1, $sendersServiceLocator)
         ;
 
+        $messageToSerializersMapping = [];
+        foreach ($messageToSendersMapping as $message => $senders) {
+            foreach ($senders as $sender) {
+                $serializerId = $serializerIds[$senderAliases[$sender] ?? $sender];
+                $messageToSerializersMapping[$message][$serializerId] = $serializerId;
+            }
+            $messageToSerializersMapping[$message] = array_keys($messageToSerializersMapping[$message]);
+        }
+
+        $container->getDefinition('messenger.signing_serializer')
+            ->replaceArgument(2, $messageToSerializersMapping);
+
         $container->getDefinition('messenger.retry.send_failed_message_for_retry_listener')
             ->replaceArgument(0, $sendersServiceLocator)
         ;
@@ -2943,7 +2955,7 @@ private function registerCachingHttpClient(array $options, array $defaultOptions
 
         $container
             ->register($name.'.caching', CachingHttpClient::class)
-            ->setDecoratedService($name, null,  15)
+            ->setDecoratedService($name, null, 15)
             ->setArguments([
                 new Reference('.inner'),
                 new Reference($options['cache_pool']),
diff --git a/src/Symfony/Bundle/FrameworkBundle/Resources/config/console.php b/src/Symfony/Bundle/FrameworkBundle/Resources/config/console.php
@@ -407,6 +407,6 @@
             ->args([
                 service('console.messenger.application'),
             ])
-            ->tag('messenger.message_handler')
+            ->tag('messenger.message_handler', ['sign' => true])
     ;
 };
diff --git a/src/Symfony/Bundle/FrameworkBundle/Resources/config/messenger.php b/src/Symfony/Bundle/FrameworkBundle/Resources/config/messenger.php
@@ -11,6 +11,7 @@
 
 namespace Symfony\Component\DependencyInjection\Loader\Configurator;
 
+use Symfony\Component\DependencyInjection\Parameter;
 use Symfony\Component\DependencyInjection\ServiceLocator;
 use Symfony\Component\Messenger\Bridge\AmazonSqs\Transport\AmazonSqsTransportFactory;
 use Symfony\Component\Messenger\Bridge\Amqp\Transport\AmqpTransportFactory;
@@ -44,13 +45,13 @@
 use Symfony\Component\Messenger\Transport\Serialization\PhpSerializer;
 use Symfony\Component\Messenger\Transport\Serialization\Serializer;
 use Symfony\Component\Messenger\Transport\Serialization\SerializerInterface;
+use Symfony\Component\Messenger\Transport\Serialization\SigningSerializer;
 use Symfony\Component\Messenger\Transport\Sync\SyncTransportFactory;
 use Symfony\Component\Messenger\Transport\TransportFactory;
+use Symfony\Component\String\LazyString;
 
 return static function (ContainerConfigurator $container) {
     $container->services()
-        ->alias(SerializerInterface::class, 'messenger.default_serializer')
-
         // Asynchronous
         ->set('messenger.senders_locator', SendersLocator::class)
             ->args([
@@ -79,6 +80,22 @@
 
         ->set('messenger.transport.native_php_serializer', PhpSerializer::class)
         ->alias('messenger.default_serializer', 'messenger.transport.native_php_serializer')
+        ->alias(SerializerInterface::class, 'messenger.default_serializer')
+
+        ->set('messenger.signing_serializer', SigningSerializer::class)
+            ->abstract()
+            ->args([
+                service('.inner'),
+                inline_service('string') // wrap the signing key in a lazy string to prevent a hard dependency on the kernel.secret parameter
+                    ->factory(class_exists(LazyString::class) ? [LazyString::class, 'fromCallable'] : 'current')
+                    ->args([
+                        class_exists(LazyString::class) ? service_closure('.messenger.signing_serializer.signing_key') : [new Parameter('kernel.secret')],
+                    ]),
+                abstract_arg('message types to serializers'), // read and replaced by MessengerPass
+            ])
+        ->set('.messenger.signing_serializer.signing_key', 'string')
+            ->factory('current')
+            ->args([[new Parameter('kernel.secret')]])
 
         // Middleware
         ->set('messenger.middleware.handle_message', HandleMessageMiddleware::class)
diff --git a/src/Symfony/Bundle/FrameworkBundle/Resources/config/process.php b/src/Symfony/Bundle/FrameworkBundle/Resources/config/process.php
@@ -17,6 +17,6 @@
     $container
         ->services()
             ->set('process.messenger.process_message_handler', RunProcessMessageHandler::class)
-                ->tag('messenger.message_handler')
+                ->tag('messenger.message_handler', ['sign' => true])
     ;
 };
diff --git a/src/Symfony/Bundle/FrameworkBundle/Tests/DependencyInjection/PhpFrameworkExtensionTest.php b/src/Symfony/Bundle/FrameworkBundle/Tests/DependencyInjection/PhpFrameworkExtensionTest.php
@@ -18,6 +18,7 @@
 use Symfony\Component\DependencyInjection\Exception\LogicException;
 use Symfony\Component\DependencyInjection\Exception\OutOfBoundsException;
 use Symfony\Component\DependencyInjection\Loader\PhpFileLoader;
+use Symfony\Component\Messenger\Tests\Fixtures\DummyMessage;
 use Symfony\Component\RateLimiter\CompoundRateLimiterFactory;
 use Symfony\Component\RateLimiter\RateLimiterFactoryInterface;
 use Symfony\Component\Validator\Constraints\Email;
@@ -425,6 +426,40 @@ public static function emailValidationModeProvider()
         }
         yield ['loose'];
     }
+
+    public function testMessengerSigningSerializerWiring()
+    {
+        $container = $this->createContainerFromClosure(function (ContainerBuilder $container) {
+            $container->register('signed_handler', 'stdClass')
+                ->addTag('messenger.message_handler', ['handles' => DummyMessage::class, 'sign' => true]);
+
+            $container->loadFromExtension('framework', [
+                'annotations' => false,
+                'http_method_override' => false,
+                'handle_all_throwables' => true,
+                'php_errors' => ['log' => true],
+                'messenger' => [
+                    'transports' => [
+                        'async' => ['dsn' => 'in-memory://'],
+                    ],
+                    'routing' => [
+                        DummyMessage::class => ['senders' => ['async']],
+                    ],
+                    'buses' => [
+                        'message_bus' => ['default_middleware' => ['enabled' => true]],
+                    ],
+                ],
+            ]);
+        });
+
+        $this->assertTrue($container->hasDefinition('messenger.signing_serializer'));
+        $mapping = $container->getDefinition('messenger.signing_serializer')->getArgument(2);
+        $this->assertArrayHasKey(DummyMessage::class, $mapping);
+        $this->assertNotEmpty($mapping[DummyMessage::class]);
+
+        $this->assertTrue($container->hasDefinition('message_bus'));
+        $this->assertSame('message_bus', (string) $container->getAlias('messenger.default_bus'));
+    }
 }
 
 class WorkflowValidatorWithConstructor implements DefinitionValidatorInterface
diff --git a/src/Symfony/Component/Messenger/Attribute/AsMessageHandler.php b/src/Symfony/Component/Messenger/Attribute/AsMessageHandler.php
@@ -44,6 +44,11 @@ public function __construct(
          * Priority of this handler when multiple handlers can process the same message.
          */
         public int $priority = 0,
+
+        /**
+         * Whether messages should be signed when sent on a transport.
+         */
+        public bool $sign = false,
     ) {
     }
 }
diff --git a/src/Symfony/Component/Messenger/CHANGELOG.md b/src/Symfony/Component/Messenger/CHANGELOG.md
@@ -9,6 +9,7 @@ CHANGELOG
  * Add `Symfony\Component\Messenger\Middleware\AddDefaultStampsMiddleware` and `Symfony\Component\Messenger\Message\DefaultStampsProviderInterface`
  * Add the possibility to configure exchange to exchange bindings in AMQP transport
  * Add `MessageSentToTransportsEvent` that is dispatched only after the message was sent to at least one transport
+ * Support signing messages per handler
 
 7.3
 ---
diff --git a/src/Symfony/Component/Messenger/DependencyInjection/MessengerPass.php b/src/Symfony/Component/Messenger/DependencyInjection/MessengerPass.php
@@ -17,7 +17,6 @@
 use Symfony\Component\DependencyInjection\Compiler\ServiceLocatorTagPass;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\DependencyInjection\Definition;
-use Symfony\Component\DependencyInjection\Exception\OutOfBoundsException;
 use Symfony\Component\DependencyInjection\Exception\RuntimeException;
 use Symfony\Component\DependencyInjection\Reference;
 use Symfony\Component\Messenger\Handler\HandlerDescriptor;
@@ -32,9 +31,9 @@ class MessengerPass implements CompilerPassInterface
 {
     public function process(ContainerBuilder $container): void
     {
-        $busIds = [];
-        foreach ($container->findTaggedServiceIds('messenger.bus') as $busId => $tags) {
-            $busIds[] = $busId;
+        $busIds = array_keys($container->findTaggedServiceIds('messenger.bus'));
+
+        foreach ($busIds as $busId) {
             if ($container->hasParameter($busMiddlewareParameter = $busId.'.middleware')) {
                 $this->registerBusMiddleware($container, $busId, $container->getParameter($busMiddlewareParameter));
 
@@ -49,6 +48,7 @@ public function process(ContainerBuilder $container): void
         if ($container->hasDefinition('messenger.receiver_locator')) {
             $this->registerReceivers($container, $busIds);
         }
+
         $this->registerHandlers($container, $busIds);
     }
 
@@ -57,6 +57,7 @@ private function registerHandlers(ContainerBuilder $container, array $busIds): v
         $definitions = [];
         $handlersByBusAndMessage = [];
         $handlerToOriginalServiceIdMapping = [];
+        $signedMessageTypes = [];
 
         foreach ($container->findTaggedServiceIds('messenger.message_handler', true) as $serviceId => $tags) {
             foreach ($tags as $tag) {
@@ -101,6 +102,7 @@ private function registerHandlers(ContainerBuilder $container, array $busIds): v
                     $priority = $options['priority'] ?? 0;
                     $method = $options['method'] ?? '__invoke';
                     $fromTransport = $options['from_transport'] ?? '';
+                    $sign = $options['sign'] ?? false;
 
                     if (isset($options['bus'])) {
                         if (!\in_array($options['bus'], $busIds)) {
@@ -135,6 +137,10 @@ private function registerHandlers(ContainerBuilder $container, array $busIds): v
                     foreach ($buses as $handlerBus) {
                         $handlersByBusAndMessage[$handlerBus][$message][$priority][] = [$definitionId, $options];
                     }
+
+                    if ($sign && '*' !== $message) {
+                        $signedMessageTypes[$message] = true;
+                    }
                 }
 
                 if (null === $message) {
@@ -164,6 +170,21 @@ private function registerHandlers(ContainerBuilder $container, array $busIds): v
         }
         $container->addDefinitions($definitions);
 
+        if ($signedMessageTypes && $container->hasDefinition('messenger.signing_serializer')) {
+            $signingSerializerDefinition = $container->getDefinition('messenger.signing_serializer');
+            $messageToSerializersMapping = $signingSerializerDefinition->getArgument(2);
+
+            $signedMessageTypes = array_intersect_key($signedMessageTypes, $messageToSerializersMapping);
+            $signingSerializerDefinition->replaceArgument(2, array_keys($signedMessageTypes));
+
+            // because transports accept any message types - not only listed ones - we have to decorate all serializers regardless of message signing
+            foreach (array_unique(array_merge(...array_values($messageToSerializersMapping))) as $serializerId) {
+                $container->setDefinition('.signing.'.$serializerId, (new ChildDefinition('messenger.signing_serializer'))->setDecoratedService($serializerId));
+            }
+        } else {
+            $container->removeDefinition('messenger.signing_serializer');
+        }
+
         foreach ($busIds as $bus) {
             $container->register($locatorId = $bus.'.messenger.handlers_locator', HandlersLocator::class)
                 ->setArgument(0, $handlersLocatorMappingByBus[$bus] ?? [])
@@ -299,11 +320,7 @@ private function registerReceivers(ContainerBuilder $container, array $busIds):
             }
 
             $consumeCommandDefinition->replaceArgument(4, $consumableReceiverNames);
-            try {
-                $consumeCommandDefinition->replaceArgument(6, $busIds);
-            } catch (OutOfBoundsException) {
-                // ignore to preserve compatibility with symfony/framework-bundle < 5.4
-            }
+            $consumeCommandDefinition->replaceArgument(6, $busIds);
         }
 
         if ($container->hasDefinition('console.command.messenger_setup_transports')) {
diff --git a/src/Symfony/Component/Messenger/Exception/InvalidMessageSignatureException.php b/src/Symfony/Component/Messenger/Exception/InvalidMessageSignatureException.php
@@ -0,0 +1,16 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Messenger\Exception;
+
+class InvalidMessageSignatureException extends \RuntimeException implements ExceptionInterface
+{
+}
diff --git a/src/Symfony/Component/Messenger/Tests/DependencyInjection/MessengerPassTest.php b/src/Symfony/Component/Messenger/Tests/DependencyInjection/MessengerPassTest.php
diff --git a/src/Symfony/Component/Messenger/Tests/Transport/Serialization/SigningSerializerTest.php b/src/Symfony/Component/Messenger/Tests/Transport/Serialization/SigningSerializerTest.php
diff --git a/src/Symfony/Component/Messenger/Transport/Serialization/SigningSerializer.php b/src/Symfony/Component/Messenger/Transport/Serialization/SigningSerializer.php

Original file line number	Diff line number	Diff line change
`@@ -407,6 +407,6 @@`
`407`	`407`	`->args([`
`408`	`408`	`service('console.messenger.application'),`
`409`	`409`	`])`
`410`		`- ->tag('messenger.message_handler')`
	`410`	`+ ->tag('messenger.message_handler', ['sign' => true])`
`411`	`411`	`;`
`412`	`412`	`};`
Original file line number	Diff line number	Diff line change
`@@ -17,6 +17,6 @@`
`17`	`17`	`$container`
`18`	`18`	`->services()`
`19`	`19`	`->set('process.messenger.process_message_handler', RunProcessMessageHandler::class)`
`20`		`- ->tag('messenger.message_handler')`
	`20`	`+ ->tag('messenger.message_handler', ['sign' => true])`
`21`	`21`	`;`
`22`	`22`	`};`
Original file line number	Diff line number	Diff line change
`@@ -44,6 +44,11 @@ public function __construct(`
`44`	`44`	`* Priority of this handler when multiple handlers can process the same message.`
`45`	`45`	`*/`
`46`	`46`	`public int $priority = 0,`
	`47`	`+`
	`48`	`+ /**`
	`49`	`+ * Whether messages should be signed when sent on a transport.`
	`50`	`+ */`
	`51`	`+ public bool $sign = false,`
`47`	`52`	`) {`
`48`	`53`	`}`
`49`	`54`	`}`