Every now and then, I need to check if I’m dealing with a logged-in user in Magento 2. If I rely on the familiar Magento\Customer\Model\Session::isLoggedIn method, though, PHPMD (PHP Mess Detector) greets me with an error, since the code I’m working on is rarely part of the “HTML presentation layer.”
The isLoggedIn method effectively detects whether a session belongs to a logged-in user, but it triggers the following error during code-quality checks:
The class uses sessions or cookies while not being a part of HTML Presentation layer
Sure, I could glaze over the error by using a suppression annotation in the header:
/** @SuppressWarnings(PHPMD.CookieAndSessionMisuse) **/But suppressing the error is just hiding the problem rather than fixing it.
To avoid this error and ensure adherence to Magento’s standards, I better use an instance of Magento\Customer\Model\Context, added via dependency injection through the constructor.
Here’s how to set it up:
// ..
use Magento\Customer\Model\Context as ContextModel;
use Magento\Framework\App\Http\Context;
// ...
public function __construct(
private readonly Context $httpContext,
) {
}Then, to check the login status, I use this line wherever needed:
$isLoggedIn = $this->httpContext->getValue(ContextModel::CONTEXT_AUTH);The getValue function returns false if a customer is logged out and true if logged in. This function provides the same functionality as isLoggedIn but avoids triggering the Mess Detector error.
So, I’m now using HTTP context to keep Mess Detector happy — and you should, too.
Happy Coding, Manuel