AuthorisedApiTokenAdmin::isValidToken() - Code Metrics - Inspection of "Add missing form field name" - AsgardCms/User - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Pull Request — master (#47)

unknown

created 2016-07-20 09:49 UTC

AuthorisedApiTokenAdmin::isValidToken() A

↳ Parent: AuthorisedApiTokenAdmin

Complexity

Conditions	3
Paths	3

Size

Total Lines	14
Code Lines	7

Duplication

Lines	0
Ratio	0 %

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
c	1
b	0
f	0
dl	0
loc	14
rs	9.4285
cc	3
eloc	7
nc	3
nop	1

<?php

namespace Modules\User\Http\Middleware;

use Illuminate\Http\Request;
use Illuminate\Http\Response;
use Modules\User\Repositories\UserTokenRepository;

class AuthorisedApiTokenAdmin
{
    /**
     * @var UserTokenRepository
     */
    private $userToken;

    public function __construct(UserTokenRepository $userToken)
    {
        $this->userToken = $userToken;
    }

    public function handle(Request $request, \Closure $next)
    {
        if ($request->header('Authorization') === null) {
            return new Response('Forbidden', 403);
        }

        if ($this->isValidToken($request->header('Authorization')) === false) {
            return new Response('Forbidden', 403);
        }

        return $next($request);
    }

    private function isValidToken($token)
    {
        $found = $this->userToken->findByAttributes(['access_token' => $this->parseToken($token)]);

        if ($found === null) {
            return false;
        }

        if ($found->user->hasRoleName('admin') === false) {
            return false;
        }

        return true;
    }

    private function parseToken($token)
    {
        return str_replace('Bearer ', '', $token);
    }
}


1			<?php
2
3			namespace Modules\User\Http\Middleware;
4
5			use Illuminate\Http\Request;
6			use Illuminate\Http\Response;
7			use Modules\User\Repositories\UserTokenRepository;
8
9			class AuthorisedApiTokenAdmin
10			{
11			/**
12			* @var UserTokenRepository
13			*/
14			private $userToken;
15
16			public function __construct(UserTokenRepository $userToken)
17			{
18			$this->userToken = $userToken;
19			}
20
21			public function handle(Request $request, \Closure $next)
22			{
23			if ($request->header('Authorization') === null) {
24			return new Response('Forbidden', 403);
25			}
26
27			if ($this->isValidToken($request->header('Authorization')) === false) {
28			return new Response('Forbidden', 403);
29			}
30
31			return $next($request);
32			}
33
34			private function isValidToken($token)
35			{
36			$found = $this->userToken->findByAttributes(['access_token' => $this->parseToken($token)]);
37
38			if ($found === null) {
39			return false;
40			}
41
42			if ($found->user->hasRoleName('admin') === false) {
43			return false;
44			}
45
46			return true;
47			}
48
49			private function parseToken($token)
50			{
51			return str_replace('Bearer ', '', $token);
52			}
53			}
54

AsgardCms / User

Pull Request — master (#47)

AuthorisedApiTokenAdmin::isValidToken() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like