VerifyApiToken - Code Metrics - ElfSundae/holly - Measure and Improve Code Quality continuously with Scrutinizer

VerifyApiToken A
last analyzed 2017-06-09 15:48 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	82
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	3

Test Coverage

Coverage

Importance

Changes

Metric	Value
dl	0
loc	82
ccs	0
cts	21
cp	0
rs	10
c	0
b	0
f	0
wmc	11
lcom	1
cbo	3

4 Methods

Rating	Name	Size	Complexity
A	isReading()	4	1
A	handle()	12	4
A	shouldPassThrough()	14	4
A	isValidToken()	12	2

<?php

namespace App\Support\Http\Middleware;

use App\Support\Helper;
use Closure;
use Illuminate\Auth\Access\AuthorizationException;
use Illuminate\Http\Request;

class VerifyApiToken
{
    /**
     * The URIs that should be excluded from API Token verification.
     *
     * @var array
     */
    protected $except = [];

    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     *
     * @throws \Illuminate\Auth\Access\AuthorizationException
     */
    public function handle($request, Closure $next)
    {
        if (
            $this->isReading($request) ||
            $this->shouldPassThrough($request) ||
            $this->isValidToken($request)
        ) {
            return $next($request);
        }

        throw new AuthorizationException('API Token Mismatch');
    }

    /**
     * Determine if the HTTP request uses a ‘read’ verb.
     *
     * @param  \Illuminate\Http\Request  $request
     * @return bool
     */
    protected function isReading(Request $request)
    {
        return in_array($request->method(), ['HEAD', 'OPTIONS']);
    }

    /**
     * Determine if the request has a URI that should be passed through verification.
     *
     * @param  \Illuminate\Http\Request  $request
     * @return bool
     */
    protected function shouldPassThrough(Request $request)
    {
        foreach ($this->except as $except) {
            if ($except !== '/') {
                $except = trim($except, '/');
            }

            if ($request->is($except)) {
                return true;
            }
        }

        return false;
    }

    /**
     * Determine if the API token is valid.
     *
     * @param  \Illuminate\Http\Request  $request
     * @return bool
     */
    protected function isValidToken(Request $request)
    {
        $config = config('support.api.token');

        if ($token = substr($request->header('X-API-TOKEN'), 4)) {
            $timestamp = (int) substr(Helper::sampleDecrypt($token, $config['key']), 4);

            return abs($timestamp - time()) <= (int) $config['valid_interval'];
        }

        return false;
    }
}


1			<?php
2
3			namespace App\Support\Http\Middleware;
4
5			use App\Support\Helper;
6			use Closure;
7			use Illuminate\Auth\Access\AuthorizationException;
8			use Illuminate\Http\Request;
9
10			class VerifyApiToken
11			{
12			/**
13			* The URIs that should be excluded from API Token verification.
14			*
15			* @var array
16			*/
17			protected $except = [];
18
19			/**
20			* Handle an incoming request.
21			*
22			* @param \Illuminate\Http\Request $request
23			* @param \Closure $next
24			* @return mixed
25			*
26			* @throws \Illuminate\Auth\Access\AuthorizationException
27			*/
28			public function handle($request, Closure $next)
29			{
30			if (
31			$this->isReading($request) \|\|
32			$this->shouldPassThrough($request) \|\|
33			$this->isValidToken($request)
34			) {
35			return $next($request);
36			}
37
38			throw new AuthorizationException('API Token Mismatch');
39			}
40
41			/**
42			* Determine if the HTTP request uses a ‘read’ verb.
43			*
44			* @param \Illuminate\Http\Request $request
45			* @return bool
46			*/
47			protected function isReading(Request $request)
48			{
49			return in_array($request->method(), ['HEAD', 'OPTIONS']);
50			}
51
52			/**
53			* Determine if the request has a URI that should be passed through verification.
54			*
55			* @param \Illuminate\Http\Request $request
56			* @return bool
57			*/
58			protected function shouldPassThrough(Request $request)
59			{
60			foreach ($this->except as $except) {
61			if ($except !== '/') {
62			$except = trim($except, '/');
63			}
64
65			if ($request->is($except)) {
66			return true;
67			}
68			}
69
70			return false;
71			}
72
73			/**
74			* Determine if the API token is valid.
75			*
76			* @param \Illuminate\Http\Request $request
77			* @return bool
78			*/
79			protected function isValidToken(Request $request)
80			{
81			$config = config('support.api.token');
82
83			if ($token = substr($request->header('X-API-TOKEN'), 4)) {
84			$timestamp = (int) substr(Helper::sampleDecrypt($token, $config['key']), 4);
85
86			return abs($timestamp - time()) <= (int) $config['valid_interval'];
87			}
88
89			return false;
90			}
91			}
92

ElfSundae / holly

VerifyApiToken A last analyzed 2017-06-09 15:48 UTC

Complexity

Size/Duplication

Coupling/Cohesion

Test Coverage

Importance

4 Methods

Duplication Side-by-Side

Filter issues like

VerifyApiToken A
last analyzed 2017-06-09 15:48 UTC