RequestPasswordReset - Code Metrics - Inspection of "Limit register/password reset attempts + user frie..." - Ecodev/my-ichtus - Measure and Improve Code Quality continuously with Scrutinizer

Failed Conditions

Push — master ( 12f749...702ad2 )

by Sylvain

created 2020-12-21 21:37 UTC

RequestPasswordReset A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	55
Duplicated Lines	0 %

Test Coverage

Coverage

96.15%

Importance

Changes

Metric	Value
wmc	6
eloc	28
dl	0
loc	55
ccs	25
cts	26
cp	0.9615
rs	10
c	0
b	0
f	0

1 Method

Rating	Name	Duplication	Size	Complexity
B	build()	0	53	6

<?php

declare(strict_types=1);

namespace Application\Api\Field\Mutation;

use Application\DBAL\Types\RelationshipType;
use Application\Model\Log;
use Application\Model\User;
use Application\Repository\LogRepository;
use Application\Repository\UserRepository;
use Application\Service\MessageQueuer;
use Ecodev\Felix\Api\ExceptionWithoutMailLogging;
use Ecodev\Felix\Api\Field\FieldInterface;
use Ecodev\Felix\Api\Scalar\LoginType;
use Ecodev\Felix\Service\Mailer;
use GraphQL\Type\Definition\Type;
use Mezzio\Session\SessionInterface;

abstract class RequestPasswordReset implements FieldInterface
{
    public static function build(): array
    {
        return [
            'name' => 'requestPasswordReset',
            'type' => Type::nonNull(_types()->get('Relationship')),
            'description' => 'Request to send an email to reset the password for the given user. It will **always** return a successful response, even if the user is not found.',
            'args' => [
                'login' => Type::nonNull(_types()->get(LoginType::class)),
            ],
            'resolve' => function ($root, array $args, SessionInterface $session): string {
                global $container;

                _log()->info(LogRepository::REQUEST_PASSWORD_RESET);

                /** @var LogRepository $logRepository */
                $logRepository = _em()->getRepository(Log::class);
                if ($logRepository->requestPasswordResetOften()) {
                    throw new ExceptionWithoutMailLogging('Trop de tentatives de changement de mot de passe. Veuillez réessayer plus tard.');
                }

                /** @var Mailer $mailer */
                $mailer = $container->get(Mailer::class);

                /** @var MessageQueuer $messageQueuer */
                $messageQueuer = $container->get(MessageQueuer::class);

                /** @var UserRepository $repository */
                $repository = _em()->getRepository(User::class);

                /** @var null|User $user */
                $user = $repository->getOneByLogin($args['login']);
                $relationship = RelationshipType::HOUSEHOLDER;

                if ($user) {
                    $email = $user->getEmail();

                    // Fallback to householder if any
                    if (!$email && $user->getOwner()) {
                        $email = $repository->getAclFilter()->runWithoutAcl(function () use ($user) {
                            return $user->getOwner()->getEmail();
                        });

                        $relationship = $user->getFamilyRelationship();
                    }

                    if ($email) {
                        $message = $messageQueuer->queueResetPassword($user, $email);
                        $mailer->sendMessageAsync($message);
                    }
                }

                // Here we lie to client, and always say we are successful, to avoid data leak
                return $relationship;
            },
        ];
    }
}


1		<?php
2
3		declare(strict_types=1);
4
5		namespace Application\Api\Field\Mutation;
6
7		use Application\DBAL\Types\RelationshipType;
8		use Application\Model\Log;
9		use Application\Model\User;
10		use Application\Repository\LogRepository;
11		use Application\Repository\UserRepository;
12		use Application\Service\MessageQueuer;
13		use Ecodev\Felix\Api\ExceptionWithoutMailLogging;
14		use Ecodev\Felix\Api\Field\FieldInterface;
15		use Ecodev\Felix\Api\Scalar\LoginType;
16		use Ecodev\Felix\Service\Mailer;
17		use GraphQL\Type\Definition\Type;
18		use Mezzio\Session\SessionInterface;
19
20		abstract class RequestPasswordReset implements FieldInterface
21		{
22	3	public static function build(): array
23		{
24		return [
25	1	'name' => 'requestPasswordReset',
26	1	'type' => Type::nonNull(_types()->get('Relationship')),
27	1	'description' => 'Request to send an email to reset the password for the given user. It will always return a successful response, even if the user is not found.',
28		'args' => [
29	1	'login' => Type::nonNull(_types()->get(LoginType::class)),
30		],
31	1	'resolve' => function ($root, array $args, SessionInterface $session): string {
32		global $container;
33
34	3	_log()->info(LogRepository::REQUEST_PASSWORD_RESET);
35
36		/** @var LogRepository $logRepository */
37	3	$logRepository = _em()->getRepository(Log::class);
38	3	if ($logRepository->requestPasswordResetOften()) {
39		throw new ExceptionWithoutMailLogging('Trop de tentatives de changement de mot de passe. Veuillez réessayer plus tard.');
40		}
41
42		/** @var Mailer $mailer */
43	3	$mailer = $container->get(Mailer::class);
44
45		/** @var MessageQueuer $messageQueuer */
46	3	$messageQueuer = $container->get(MessageQueuer::class);
47
48		/** @var UserRepository $repository */
49	3	$repository = _em()->getRepository(User::class);
50
51		/** @var null\|User $user */
52	3	$user = $repository->getOneByLogin($args['login']);
53	3	$relationship = RelationshipType::HOUSEHOLDER;
54
55	3	if ($user) {
56	2	$email = $user->getEmail();
57
58		// Fallback to householder if any
59	2	if (!$email && $user->getOwner()) {
60	1	$email = $repository->getAclFilter()->runWithoutAcl(function () use ($user) {
61	1	return $user->getOwner()->getEmail();
62	1	});
63
64	1	$relationship = $user->getFamilyRelationship();
65		}
66
67	2	if ($email) {
68	2	$message = $messageQueuer->queueResetPassword($user, $email);
69	2	$mailer->sendMessageAsync($message);
70		}
71		}
72
73		// Here we lie to client, and always say we are successful, to avoid data leak
74	3	return $relationship;
75	1	},
76		];
77		}
78		}
79

Ecodev / my-ichtus

Push — master ( 12f749...702ad2 )

RequestPasswordReset A

Complexity

Size/Duplication

Test Coverage

Importance

1 Method

Duplication Side-by-Side

Filter issues like