UserPermissionsComponent - Code Metrics - Inspection of "added error handling for invalid handlers and some..." - AlessandroMinoccheri/UserPermissions - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#6)

unknown

created 2017-09-18 13:17 UTC

UserPermissionsComponent B

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	206
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	5

Test Coverage

Coverage

83.52%

Importance

Changes

Metric	Value
wmc	38
lcom	1
cbo	5
dl	0
loc	206
ccs	76
cts	91
cp	0.8352
c	0
b	0
f	0
rs	8.3999

10 Methods

Rating	Name	Size	Complexity
A	initialize()	16	2
A	allow()	10	2
A	setUserValues()	8	2
C	bindConfiguration()	33	11
A	applyGroupsRules()	12	3
A	searchForApplyGroupRules()	10	3
A	notInArrayAction()	4	2
A	applyViewsRules()	8	3
C	searchForApplyViewRules()	26	7
A	redirectIfIsSet()	11	3

<?php

namespace UserPermissions\Controller\Component;

use Cake\Controller\Component;
use Cake\Controller\ComponentRegistry;
use Cake\Controller\Component\FlashComponent;
use Cake\Core\Exception\Exception;
use Cake\Datasource\ConnectionManager;
use Cake\Log\Log;
use Cake\ORM\TableRegistry;

/**
 * An instance of this exception should be thrown, if the
 * UserPermissionsComponent instance tries to call an handler which does not
 * exist.
 */
class MissingHandlerException extends Exception
{};


class UserPermissionsComponent extends Component {


    /**
     * Controller name
     *
     * @var string
     */
	public $controller = null;

    /**
     * Session
     *
     * @var string
     */
	public $session = null;

    /**
     * Components array
     *
     * @var array
     */
   	public $components = ['Flash'];

    private $actions;

    private $allow;

    private $redirect;

    private $params;

    private $message;

    private $userType;

    private $action;
	
	/**
	 * Boolean value which holds the configuration for the behavior in case of
	 * missing handlers.
	 */
	private $throwEx;

    /**
    * Initialization to get controller variable
    *
	* For this component available settings:
	* 	bool throwEx - default false - if set to true, an exception will be
	*		thrown, if a handler is about to be called but does not exist.
	*
    * @param array $config Configuration array for the component.
    */
    public function initialize(array $config)
    {
        parent::initialize($config);
        
        $this->controller = $this->_registry->getController();

        $this->session = $this->controller->request->session();

        $this->actions 		= array();
		$this->allow 		= true;
		$this->redirect 	= '';
		$this->params 		= '';
		$this->message 		= '';
		$this->userType 	= '';
		$this->action   	= null;
		$this->throwEx      = isset($config["throwEx"]) && $config["throwEx"];
    }

    /**
    * Initialization to get controller variable
    *
    * @param array $rules Array of rules for permissions.
    * @return bool false if user / group doesn't have permission, true if has permission
    */
    public function allow ($rules) {
    	$this->setUserValues();
    	$this->bindConfiguration($rules);

		if (!$this->applyGroupsRules($rules)) {
			$this->applyViewsRules($rules);
		}

		return $this->allow;
    }

    private function setUserValues()
    {
    	$userId = $this->session->read('Auth.User.id');


    	if (!isset($userId)) {
			$this->userType = 'guest';
		}
    }

    private function bindConfiguration(array $rules) 
    {
    	foreach($rules as $key => $value){
			switch($key){
				case "user_type":
			        $this->userType = $value;
			        break;
			    case "redirect":
			        $this->redirect = $value;
			        break;
			    case "action":
			        $this->action = $value;
			        break;
			    case "controller":
			        $this->controller = $value;
					if(!is_object($value)) {
						Log::write("warn", sprintf("controller is not an object (%s)", gettype($value)));
					}
			        break;
			    case "message":
			        $this->message = $value;
			        break;
			}
		}

		foreach($rules['groups']  as $key => $value){
			if($key == $this->userType){
				foreach($value as $v){
					array_push($this->actions, $v);
				}
			}
		}
    }

    private function applyGroupsRules(array $rules)
    {
    	$existRulesForGroups = false;

    	if(isset($rules['groups'])){
			foreach($rules['groups'] as $key => $value){
				$this->searchForApplyGroupRules($key, $value);

			}
		}

		return $existRulesForGroups;
    }

    private function searchForApplyGroupRules($key)
    {
    	if($key == $this->userType){
    		if ($this->notInArrayAction()) {
				$this->redirectIfIsSet();
				
				$this->allow = false;
			}
		}
    }

    private function notInArrayAction()
    {
    	return ((!in_array('*', $this->actions)) && (!in_array($this->action, $this->actions)));
    }

    private function applyViewsRules(array $rules)
    {
    	if(isset($rules['views'])){
			foreach($rules['views'] as $key => $value){
				$this->searchForApplyViewRules($key, $value);
			}
		}
    }

    private function searchForApplyViewRules($key, $value)
    {
    	if($key == $this->action){
			// about to call the view handler, so check first if it exists
			if(!method_exists($this->controller, $value)) {
				$msg = sprintf(
					"Controller %s (%s=%s) has no method called '%s'",
					$this->controller,
					is_object($this->controller) ? "class" : "type",
					is_object($this->controller) ? get_class($this->controller) : gettype($this->controller),
					$value
				);
				Log::write("debug", $msg);
				if($this->throwEx) {
					throw new MissingHandlerException($msg);
				}
				return;
			}
			
			if(!$this->controller->$value()){

				$this->redirectIfIsSet();
				
				$this->allow = false;
			}
		}
    }

    private function redirectIfIsSet()
    {
    	if($this->redirect != ''){
			if($this->message != ''){
				$this->Flash->set($this->message);
<?php

/**
 * @property int $x
 * @property int $y
 * @property string $text
 */
class MyLabel
{
    private $properties;

    private $allowedProperties = array('x', 'y', 'text');

    public function __get($name)
    {
        if (isset($properties[$name]) && in_array($name, $this->allowedProperties)) {
            return $properties[$name];
        } else {
            return null;
        }
    }

    public function __set($name, $value)
    {
        if (in_array($name, $this->allowedProperties)) {
            $properties[$name] = $value;
        } else {
            throw new \LogicException("Property $name is not defined.");
        }
    }

}
			}
			
			header("Location: " . $this->redirect);
			exit;

		}
	}
}

1		<?php
		0 ignored issues – show Coding Style Compatibility introduced 2017-09-18 13:22 UTC by Report Bug Copy Issue Report For compatibility and reusability of your code, PSR1 recommends that a file should introduce either new symbols (like classes, functions, etc.) or have side-effects (like outputting something, or including other files), but not both at the same time. The first symbol is defined on line 17 and the first side effect is on line 18. The PSR-1: Basic Coding Standard recommends that a file should either introduce new symbols, that is classes, functions, constants or similar, or have side effects. Side effects are anything that executes logic, like for example printing output, changing ini settings or writing to a file. The idea behind this recommendation is that merely auto-loading a class should not change the state of an application. It also promotes a cleaner style of programming and makes your code less prone to errors, because the logic is not spread out all over the place. To learn more about the PSR-1, please see the PHP-FIG site on the PSR-1. Loading history...
2		namespace UserPermissions\Controller\Component;
3
4		use Cake\Controller\Component;
5		use Cake\Controller\ComponentRegistry;
6		use Cake\Controller\Component\FlashComponent;
7		use Cake\Core\Exception\Exception;
8		use Cake\Datasource\ConnectionManager;
9		use Cake\Log\Log;
10		use Cake\ORM\TableRegistry;
11
12		/**
13		* An instance of this exception should be thrown, if the
14		* UserPermissionsComponent instance tries to call an handler which does not
15		* exist.
16		*/
17		class MissingHandlerException extends Exception
18		{};
		0 ignored issues – show Coding Style introduced 2017-09-18 13:22 UTC by Report Bug Copy Issue Report The opening class brace should be on a newline by itself. Loading history...
19
20		class UserPermissionsComponent extends Component {
		0 ignored issues – show Coding Style Compatibility introduced 2017-09-18 13:22 UTC by Report Bug Copy Issue Report PSR1 recommends that each class should be in its own file to aid autoloaders. Having each class in a dedicated file usually plays nice with PSR autoloaders and is therefore a well established practice. If you use other autoloaders, you might not want to follow this rule. Loading history...
21
22		/**
23		* Controller name
24		*
25		* @var string
26		*/
27		public $controller = null;
28
29		/**
30		* Session
31		*
32		* @var string
33		*/
34		public $session = null;
35
36		/**
37		* Components array
38		*
39		* @var array
40		*/
41		public $components = ['Flash'];
42
43		private $actions;
44
45		private $allow;
46
47		private $redirect;
48
49		private $params;
50
51		private $message;
52
53		private $userType;
54
55		private $action;
56
57		/**
58		* Boolean value which holds the configuration for the behavior in case of
59		* missing handlers.
60		*/
61		private $throwEx;
62
63		/**
64		* Initialization to get controller variable
65		*
66		* For this component available settings:
67		* bool throwEx - default false - if set to true, an exception will be
68		* thrown, if a handler is about to be called but does not exist.
69		*
70		* @param array $config Configuration array for the component.
71		*/
72	5	public function initialize(array $config)
73		{
74	5	parent::initialize($config);
75
76	5	$this->controller = $this->_registry->getController();
		0 ignored issues – show Documentation Bug introduced 2017-05-28 08:32 UTC by Report Bug Copy Issue Report It seems like `$this->_registry->getController()` of type `object<Cake\Controller\Controller>` is incompatible with the declared type `string` of property `$controller`. Our type inference engine has found an assignment to a property that is incompatible with the declared type of that property. Either this assignment is in error or the assigned type should be added to the documentation/type hint for that property.. Loading history...
77	5	$this->session = $this->controller->request->session();
78
79	5	$this->actions = array();
80	5	$this->allow = true;
81	5	$this->redirect = '';
82	5	$this->params = '';
83	5	$this->message = '';
84	5	$this->userType = '';
85	5	$this->action = null;
86	5	$this->throwEx = isset($config["throwEx"]) && $config["throwEx"];
87	5	}
88
89		/**
90		* Initialization to get controller variable
91		*
92		* @param array $rules Array of rules for permissions.
93		* @return bool false if user / group doesn't have permission, true if has permission
94		*/
95	5	public function allow ($rules) {
96	5	$this->setUserValues();
97	5	$this->bindConfiguration($rules);
98
99	5	if (!$this->applyGroupsRules($rules)) {
100	5	$this->applyViewsRules($rules);
101		}
102
103	5	return $this->allow;
104		}
105
106	5	private function setUserValues()
107		{
108	5	$userId = $this->session->read('Auth.User.id');
		0 ignored issues – show Bug introduced 2017-05-28 08:02 UTC by Report Bug Copy Issue Report The method `read` cannot be called on `$this->session` (of type `string`). Methods can only be called on objects. This check looks for methods being called on variables that have been inferred to never be objects. Loading history...
109
110	5	if (!isset($userId)) {
111	5	$this->userType = 'guest';
112		}
113	5	}
114
115	5	private function bindConfiguration(array $rules)
116		{
117	5	foreach($rules as $key => $value){
118		switch($key){
119	5	case "user_type":
120	5	$this->userType = $value;
121	5	break;
122	5	case "redirect":
123	5	$this->redirect = $value;
124	5	break;
125	5	case "action":
126	5	$this->action = $value;
127	5	break;
128	5	case "controller":
129	5	$this->controller = $value;
130	5	if(!is_object($value)) {
131		Log::write("warn", sprintf("controller is not an object (%s)", gettype($value)));
132		}
133	5	break;
134	5	case "message":
135	5	$this->message = $value;
136	5	break;
137		}
138		}
139
140	5	foreach($rules['groups'] as $key => $value){
141	5	if($key == $this->userType){
142	5	foreach($value as $v){
143	5	array_push($this->actions, $v);
144		}
145		}
146		}
147	5	}
148
149	5	private function applyGroupsRules(array $rules)
150		{
151	5	$existRulesForGroups = false;
152
153	5	if(isset($rules['groups'])){
154	5	foreach($rules['groups'] as $key => $value){
155	5	$this->searchForApplyGroupRules($key, $value);
		0 ignored issues – show Unused Code introduced 2017-09-18 11:47 UTC by Report Bug Copy Issue Report The call to `UserPermissionsComponent...rchForApplyGroupRules()` has too many arguments starting with `$value`. This check compares calls to functions or methods with their respective definitions. If the call has more arguments than are defined, it raises an issue. If a function is defined several times with a different number of parameters, the check may pick up the wrong definition and report false positives. One codebase where this has been known to happen is Wordpress. In this case you can add the `@ignore` PhpDoc annotation to the duplicate definition and it will be ignored. Loading history...
156		}
157		}
158
159	5	return $existRulesForGroups;
160		}
161
162	5	private function searchForApplyGroupRules($key)
163		{
164	5	if($key == $this->userType){
165	5	if ($this->notInArrayAction()) {
166	2	$this->redirectIfIsSet();
167
168	2	$this->allow = false;
169		}
170		}
171	5	}
172
173	5	private function notInArrayAction()
174		{
175	5	return ((!in_array('*', $this->actions)) && (!in_array($this->action, $this->actions)));
176		}
177
178	5	private function applyViewsRules(array $rules)
179		{
180	5	if(isset($rules['views'])){
181	2	foreach($rules['views'] as $key => $value){
182	2	$this->searchForApplyViewRules($key, $value);
183		}
184		}
185	5	}
186
187	2	private function searchForApplyViewRules($key, $value)
188		{
189	2	if($key == $this->action){
190		// about to call the view handler, so check first if it exists
191	2	if(!method_exists($this->controller, $value)) {
192		$msg = sprintf(
193		"Controller %s (%s=%s) has no method called '%s'",
194		$this->controller,
195		is_object($this->controller) ? "class" : "type",
196		is_object($this->controller) ? get_class($this->controller) : gettype($this->controller),
197		$value
198		);
199		Log::write("debug", $msg);
200		if($this->throwEx) {
201		throw new MissingHandlerException($msg);
202		}
203		return;
204		}
205
206	2	if(!$this->controller->$value()){
		0 ignored issues – show Bug introduced 2017-05-28 08:02 UTC by Report Bug Copy Issue Report The method `$value` cannot be called on `$this->controller` (of type `string`). Methods can only be called on objects. This check looks for methods being called on variables that have been inferred to never be objects. Loading history...
207	1	$this->redirectIfIsSet();
208
209	1	$this->allow = false;
210		}
211		}
212	2	}
213
214	3	private function redirectIfIsSet()
215		{
216	3	if($this->redirect != ''){
217		if($this->message != ''){
218		$this->Flash->set($this->message);
		0 ignored issues – show Documentation introduced 2017-05-28 09:58 UTC by Report Bug Copy Issue Report The property `Flash` does not exist on `object<UserPermissions\C...erPermissionsComponent>`. Since you implemented `__get`, maybe consider adding a @property annotation. Since your code implements the magic getter `_get`, this function will be called for any read access on an undefined variable. You can add the `@property` annotation to your class or interface to document the existence of this variable. <?php /** * @property int $x * @property int $y * @property string $text */ class MyLabel { private $properties; private $allowedProperties = array('x', 'y', 'text'); public function __get($name) { if (isset($properties[$name]) && in_array($name, $this->allowedProperties)) { return $properties[$name]; } else { return null; } } public function __set($name, $value) { if (in_array($name, $this->allowedProperties)) { $properties[$name] = $value; } else { throw new \LogicException("Property $name is not defined."); } } } If the property has read access only, you can use the @property-read annotation instead. Of course, you may also just have mistyped another name, in which case you should fix the error. See also the PhpDoc documentation for @property. Loading history...
219		}
220
221		header("Location: " . $this->redirect);
222		exit;
		0 ignored issues – show Coding Style Compatibility introduced 2017-09-18 11:47 UTC by Report Bug Copy Issue Report The method `redirectIfIsSet()` contains an exit expression. An exit expression should only be used in rare cases. For example, if you write a short command line script. In most cases however, using an `exit` expression makes the code untestable and often causes incompatibilities with other libraries. Thus, unless you are absolutely sure it is required here, we recommend to refactor your code to avoid its usage. Loading history...
223		}
224		}
225		}

AlessandroMinoccheri / UserPermissions

Pull Request — master (#6)

UserPermissionsComponent B

Complexity

Size/Duplication

Coupling/Cohesion

Test Coverage

Importance

10 Methods

Duplication Side-by-Side

Filter issues like