AuthorityVoter::supportsAttribute() - Code Metrics - Inspection of "Merge pull request #1262 from k-yamamura/feature-a..." - EC-CUBE/ec-cube - Measure and Improve Code Quality continuously with Scrutinizer

Failed Conditions

Push — master ( faced6...c4ab7a )

by Kentaro

created 2015-12-03 01:23 UTC

AuthorityVoter::supportsAttribute() A

↳ Parent: AuthorityVoter

Complexity

Conditions	1
Paths	1

Size

Total Lines	4
Code Lines	2

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	0
CRAP Score	2

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
c	1
b	0
f	0
dl	0
loc	4
ccs	0
cts	0
cp	0
rs	10
cc	1
eloc	2
nc	1
nop	1
crap	2

<?php
/*
 * This file is part of EC-CUBE
 *
 * Copyright(c) 2000-2015 LOCKON CO.,LTD. All Rights Reserved.
 *
 * http://www.lockon.co.jp/
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
 */


namespace Eccube\Security\Voter;

use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Eccube\Application;

class AuthorityVoter implements VoterInterface

{

    public $app;

    public function __construct(Application $app)

    {
        $this->app     = $app;
    }

    public function supportsAttribute($attribute)

    {
        return true;
    }

    public function supportsClass($class)

    {
        return true;
    }

    public function vote(TokenInterface $token, $object, array $attributes)

    {

        $request = null;
        try {
            $request = $this->app['request'];
        } catch (\RuntimeException $e) {
            // requestが取得できない場合、無視する(テストプログラムで不要なため)
            return;
        }

        $path = $request->getPathInfo();

        $Member = $this->app->user();

        if ($Member instanceof \Eccube\Entity\Member) {
if ($x instanceof DoesNotExist) {
    // Do something.
}
            // 管理者のロールをチェック
            $AuthorityRoles = $this->app['eccube.repository.authority_role']->findBy(array('Authority' => $Member->getAuthority()));
            foreach ($AuthorityRoles as $AuthorityRole) {
                // 許可しないURLが含まれていればアクセス拒否
                try {
                    // 正規表現でURLチェック
                    $denyUrl = str_replace('/', '\/', $AuthorityRole->getDenyUrl());
                    if (preg_match("/^(\/{$this->app['config']['admin_route']}$denyUrl)/i", $path)) {
                        return  VoterInterface::ACCESS_DENIED;
                    }
                } catch (\Exception $e) {
                    // 拒否URLの指定に誤りがある場合、エスケープさせてチェック
                    $denyUrl = preg_quote($AuthorityRole->getDenyUrl(), '/');
                    if (preg_match("/^(\/{$this->app['config']['admin_route']}$denyUrl)/i", $path)) {
                        return  VoterInterface::ACCESS_DENIED;
                    }
                }
            }
        }

        return VoterInterface::ACCESS_GRANTED;
    }
}

1		<?php
2		/*
3		* This file is part of EC-CUBE
4		*
5		* Copyright(c) 2000-2015 LOCKON CO.,LTD. All Rights Reserved.
6		*
7		* http://www.lockon.co.jp/
8		*
9		* This program is free software; you can redistribute it and/or
10		* modify it under the terms of the GNU General Public License
11		* as published by the Free Software Foundation; either version 2
12		* of the License, or (at your option) any later version.
13		*
14		* This program is distributed in the hope that it will be useful,
15		* but WITHOUT ANY WARRANTY; without even the implied warranty of
16		* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17		* GNU General Public License for more details.
18		*
19		* You should have received a copy of the GNU General Public License
20		* along with this program; if not, write to the Free Software
21		* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
22		*/
23
24
25		namespace Eccube\Security\Voter;
26
27		use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
28		use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
29		use Eccube\Application;
30
31		class AuthorityVoter implements VoterInterface
		0 ignored issues – show introduced 2015-12-01 10:15 UTC by Report Bug Copy Issue Report Missing class doc comment Loading history...
32		{
33
34		public $app;
35
36	675	public function __construct(Application $app)
		0 ignored issues – show introduced 2015-12-01 10:15 UTC by Report Bug Copy Issue Report Missing function doc comment Loading history...
37		{
38	675	$this->app = $app;
39		}
40
41		public function supportsAttribute($attribute)
		0 ignored issues – show introduced 2015-12-01 10:15 UTC by Report Bug Copy Issue Report Missing function doc comment Loading history...
42		{
43		return true;
44		}
45
46	1	public function supportsClass($class)
		0 ignored issues – show introduced 2015-12-01 10:15 UTC by Report Bug Copy Issue Report Missing function doc comment Loading history...
47		{
48	1	return true;
49		}
50
51	20	public function vote(TokenInterface $token, $object, array $attributes)
		0 ignored issues – show introduced 2015-12-02 04:40 UTC by Report Bug Copy Issue Report Missing function doc comment Loading history...
52		{
53
54	19	$request = null;
55		try {
56		$request = $this->app['request'];
57		} catch (\RuntimeException $e) {
58		// requestが取得できない場合、無視する(テストプログラムで不要なため)
59		return;
60	19	}
61
62		$path = $request->getPathInfo();
63
64		$Member = $this->app->user();
65
66	20	if ($Member instanceof \Eccube\Entity\Member) {
		0 ignored issues – show Bug introduced 2015-12-01 10:15 UTC by Report Bug Copy Issue Report The class `Eccube\Entity\Member` does not exist. Did you forget a USE statement, or did you not list all dependencies? This error could be the result of: 1. Missing dependencies PHP Analyzer uses your `composer.json` file (if available) to determine the dependencies of your project and to determine all the available classes and functions. It expects the `composer.json` to be in the root folder of your repository. Are you sure this class is defined by one of your dependencies, or did you maybe not list a dependency in either the `require` or `require-dev` section? 2. Missing use statement PHP does not complain about undefined classes in `ìnstanceof` checks. For example, the following PHP code will work perfectly fine: if ($x instanceof DoesNotExist) { // Do something. } If you have not tested against this specific condition, such errors might go unnoticed. Loading history...
67		// 管理者のロールをチェック
68		$AuthorityRoles = $this->app['eccube.repository.authority_role']->findBy(array('Authority' => $Member->getAuthority()));
69		foreach ($AuthorityRoles as $AuthorityRole) {
70		// 許可しないURLが含まれていればアクセス拒否
71		try {
72		// 正規表現でURLチェック
73		$denyUrl = str_replace('/', '\/', $AuthorityRole->getDenyUrl());
74		if (preg_match("/^(\/{$this->app['config']['admin_route']}$denyUrl)/i", $path)) {
75		return VoterInterface::ACCESS_DENIED;
76		}
77		} catch (\Exception $e) {
78		// 拒否URLの指定に誤りがある場合、エスケープさせてチェック
79		$denyUrl = preg_quote($AuthorityRole->getDenyUrl(), '/');
80		if (preg_match("/^(\/{$this->app['config']['admin_route']}$denyUrl)/i", $path)) {
81		return VoterInterface::ACCESS_DENIED;
82		}
83		}
84	14	}
85		}
86
87	20	return VoterInterface::ACCESS_GRANTED;
88		}
89		}

EC-CUBE / ec-cube

Push — master ( faced6...c4ab7a )

AuthorityVoter::supportsAttribute() A

Complexity

Size

Duplication

Code Coverage

Importance

1. Missing dependencies

2. Missing use statement

Duplication Side-by-Side

Filter issues like