JWTAuthenticator::generateToken() - Code Metrics - Inspection of "Add codeclimate" - Firesphere/silverstripe-graphql-jwt - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( dd6027...6d621d )

by Tobias

created 2017-07-21 06:45 UTC

JWTAuthenticator::generateToken() B

↳ Parent: JWTAuthenticator

Complexity

Conditions	1
Paths	1

Size

Total Lines	32
Code Lines	18

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	32
rs	8.8571
c	0
b	0
f	0
cc	1
eloc	18
nc	1
nop	1

<?php

namespace Firesphere\GraphQLJWT;

use Lcobucci\JWT\Builder;
use Lcobucci\JWT\Parser;
use Lcobucci\JWT\Signer\Hmac\Sha256;
use SilverStripe\Control\Director;
use SilverStripe\Control\HTTPRequest;
use SilverStripe\Core\Config\Configurable;
use SilverStripe\Dev\Debug;
use SilverStripe\GraphQL\Controller;
use SilverStripe\ORM\ValidationResult;
use SilverStripe\Security\Authenticator;
use SilverStripe\Security\Member;
use SilverStripe\Security\MemberAuthenticator\MemberAuthenticator;

class JWTAuthenticator extends MemberAuthenticator
{
    use Configurable;

    public function supportedServices()
    {
        return Authenticator::LOGIN | Authenticator::CMS_LOGIN;
    }

    /**
     * @param array $data
     * @param HTTPRequest $request
     * @param ValidationResult|null $result
     * @return Member|null
     * @throws \BadMethodCallException
     * @throws \OutOfBoundsException
     */
    public function authenticate(array $data, HTTPRequest $request, ValidationResult &$result = null)
    {
        if (!$result) {
            $result = new ValidationResult();
        }
        $token = $data['token'];
        $parser = new Parser();
        $parsedToken = $parser->parse((string)$token);
        $signer = new Sha256();
        $signerKey = static::config()->get('signer_key');
        $member = null;

        if (!$parsedToken->verify($signer, $signerKey)) {

            $result->addError('Invalid token');
        }
        if ($parsedToken->isExpired()) {
            $result->addError('Token is expired');
        }
        if ($parsedToken->getClaim('uid')) {

            /** @var Member $member */
            $member = Member::get()->byID($parsedToken->getClaim('uid'));

        }

        return $result->isValid() ? $member : null;
    }

    /**
     * @param Member $member
     * @return \Lcobucci\JWT\Token
     * @throws \BadMethodCallException
     */
    public function generateToken(Member $member)
    {
        $config = static::config();
        $signer = new Sha256();
        $uniqueID = uniqid($config->get('prefix'), true);

        $request = Controller::curr()->getRequest();
        $audience = $request->getHeader('Origin');
        $signerKey = $config->get('signer_key');

        $builder = new Builder();
        $token = $builder

            // Configures the issuer (iss claim)
            ->setIssuer(Director::absoluteBaseURL())

            // Configures the audience (aud claim)
            ->setAudience($audience)
            // Configures the id (jti claim), replicating as a header item
            ->setId($uniqueID, true)
            // Configures the time that the token was issue (iat claim)
            ->setIssuedAt(time())
            // Configures the time that the token can be used (nbf claim)
            ->setNotBefore(time() + $config->get('nbf_time'))
            // Configures the expiration time of the token (nbf claim)
            ->setExpiration(time() + $config->get('nbf_expiration'))
            // Configures a new claim, called "uid"
            ->set('uid', $member->ID)
            // Sign the key with the Signer's key @todo: support certificates
            ->sign($signer, $signerKey);

        // Return the token
        return $token->getToken();
    }
}


1			<?php
2
3			namespace Firesphere\GraphQLJWT;
4
5			use Lcobucci\JWT\Builder;
6			use Lcobucci\JWT\Parser;
7			use Lcobucci\JWT\Signer\Hmac\Sha256;
8			use SilverStripe\Control\Director;
9			use SilverStripe\Control\HTTPRequest;
10			use SilverStripe\Core\Config\Configurable;
11			use SilverStripe\Dev\Debug;
12			use SilverStripe\GraphQL\Controller;
13			use SilverStripe\ORM\ValidationResult;
14			use SilverStripe\Security\Authenticator;
15			use SilverStripe\Security\Member;
16			use SilverStripe\Security\MemberAuthenticator\MemberAuthenticator;
17
18			class JWTAuthenticator extends MemberAuthenticator
19			{
20			use Configurable;
21
22			public function supportedServices()
23			{
24			return Authenticator::LOGIN \| Authenticator::CMS_LOGIN;
25			}
26
27			/**
28			* @param array $data
29			* @param HTTPRequest $request
30			* @param ValidationResult\|null $result
31			* @return Member\|null
32			* @throws \BadMethodCallException
33			* @throws \OutOfBoundsException
34			*/
35			public function authenticate(array $data, HTTPRequest $request, ValidationResult &$result = null)
36			{
37			if (!$result) {
38			$result = new ValidationResult();
39			}
40			$token = $data['token'];
41			$parser = new Parser();
42			$parsedToken = $parser->parse((string)$token);
43			$signer = new Sha256();
44			$signerKey = static::config()->get('signer_key');
45			$member = null;
46
47			if (!$parsedToken->verify($signer, $signerKey)) {
			0 ignored issues – show Deprecated Code introduced 2017-07-21 06:52 UTC by Report Bug Copy Issue Report The method `Lcobucci\JWT\Token::verify()` has been deprecated with message: This method will be removed on v4, new validation API should be used This method has been deprecated. The supplier of the class has supplied an explanatory message. The explanatory message should give you some clue as to whether and when the method will be removed from the class and what other method or class to use instead. Loading history...
48			$result->addError('Invalid token');
49			}
50			if ($parsedToken->isExpired()) {
51			$result->addError('Token is expired');
52			}
53			if ($parsedToken->getClaim('uid')) {
			0 ignored issues – show Deprecated Code introduced 2017-07-21 06:52 UTC by Report Bug Copy Issue Report The method `Lcobucci\JWT\Token::getClaim()` has been deprecated with message: This method will be removed on v4 This method has been deprecated. The supplier of the class has supplied an explanatory message. The explanatory message should give you some clue as to whether and when the method will be removed from the class and what other method or class to use instead. Loading history...
54			/** @var Member $member */
55			$member = Member::get()->byID($parsedToken->getClaim('uid'));
			0 ignored issues – show Deprecated Code introduced 2017-07-21 06:52 UTC by Report Bug Copy Issue Report The method `Lcobucci\JWT\Token::getClaim()` has been deprecated with message: This method will be removed on v4 This method has been deprecated. The supplier of the class has supplied an explanatory message. The explanatory message should give you some clue as to whether and when the method will be removed from the class and what other method or class to use instead. Loading history...
56			}
57
58			return $result->isValid() ? $member : null;
59			}
60
61			/**
62			* @param Member $member
63			* @return \Lcobucci\JWT\Token
64			* @throws \BadMethodCallException
65			*/
66			public function generateToken(Member $member)
67			{
68			$config = static::config();
69			$signer = new Sha256();
70			$uniqueID = uniqid($config->get('prefix'), true);
71
72			$request = Controller::curr()->getRequest();
73			$audience = $request->getHeader('Origin');
74			$signerKey = $config->get('signer_key');
75
76			$builder = new Builder();
77			$token = $builder
			0 ignored issues – show Deprecated Code introduced 2017-07-21 06:52 UTC by Report Bug Copy Issue Report The method `Lcobucci\JWT\Builder::setIssuer()` has been deprecated with message: This method will be removed on v4, use issuedBy() instead This method has been deprecated. The supplier of the class has supplied an explanatory message. The explanatory message should give you some clue as to whether and when the method will be removed from the class and what other method or class to use instead. Loading history... Deprecated Code introduced 2017-07-21 06:52 UTC by Report Bug Copy Issue Report The method `Lcobucci\JWT\Builder::setAudience()` has been deprecated with message: This method will be removed on v4, use canOnlyBeUsedBy() instead This method has been deprecated. The supplier of the class has supplied an explanatory message. The explanatory message should give you some clue as to whether and when the method will be removed from the class and what other method or class to use instead. Loading history...
78			// Configures the issuer (iss claim)
79			->setIssuer(Director::absoluteBaseURL())
			0 ignored issues – show Security Bug introduced 2017-07-21 06:52 UTC by Report Bug Copy Issue Report It seems like `\SilverStripe\Control\Director::absoluteBaseURL()` targeting `SilverStripe\Control\Director::absoluteBaseURL()` can also be of type `false`; however, `Lcobucci\JWT\Builder::setIssuer()` does only seem to accept `string`, did you maybe forget to handle an error condition? Loading history...
80			// Configures the audience (aud claim)
81			->setAudience($audience)
82			// Configures the id (jti claim), replicating as a header item
83			->setId($uniqueID, true)
84			// Configures the time that the token was issue (iat claim)
85			->setIssuedAt(time())
86			// Configures the time that the token can be used (nbf claim)
87			->setNotBefore(time() + $config->get('nbf_time'))
88			// Configures the expiration time of the token (nbf claim)
89			->setExpiration(time() + $config->get('nbf_expiration'))
90			// Configures a new claim, called "uid"
91			->set('uid', $member->ID)
92			// Sign the key with the Signer's key @todo: support certificates
93			->sign($signer, $signerKey);
94
95			// Return the token
96			return $token->getToken();
97			}
98			}
99

Firesphere / silverstripe-graphql-jwt

Push — master ( dd6027...6d621d )

JWTAuthenticator::generateToken() B

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like