Issues in PurgeTagsListener.php - Fixed Issues - Inspection of "Merge pull request #468 from andrerom/symfony_5" - FriendsOfSymfony/FOSHttpCache - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 99e856...e5db02 )

by David

created 2019-11-25 11:46 UTC

src/SymfonyCache/PurgeTagsListener.php (1 issue)

Labels

Bug 1

Severity

Minor 1

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

/*
 * This file is part of the FOSHttpCache package.
 *
 * (c) FriendsOfSymfony <http://friendsofsymfony.github.com/>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

namespace FOS\HttpCache\SymfonyCache;

use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\OptionsResolver\OptionsResolver;
use Toflar\Psr6HttpCacheStore\Psr6StoreInterface;

/**
 * Purge tags handler for the Symfony built-in HttpCache.
 *
 * @author Yanick Witschi <[email protected]>
 *
 * {@inheritdoc}
 */
class PurgeTagsListener extends AccessControlledListener
{
    const DEFAULT_TAGS_METHOD = 'PURGETAGS';

    const DEFAULT_TAGS_HEADER = 'X-Cache-Tags';

    /**
     * The purge tags method to use.
     *
     * @var string
     */
    private $tagsMethod;

    /**
     * The purge tags header to use.
     *
     * @var string
     */
    private $tagsHeader;

    /**
     * When creating the purge listener, you can configure an additional option.
     *
     * - tags_method: HTTP method that identifies purge tags requests.
     * - tags_header: HTTP header that contains cache tags to invalidate.
     *
     * @param array $options Options to overwrite the default options
     *
     * @throws \InvalidArgumentException if unknown keys are found in $options
     *
     * @see AccessControlledListener::__construct
     */
    public function __construct(array $options = [])
    {
        if (!interface_exists(Psr6StoreInterface::class)) {
            throw new \Exception('Cache tag invalidation only works with the toflar/psr6-symfony-http-cache-store package. See "Symfony HttpCache Configuration" in the documentation.');
        }
        parent::__construct($options);

        $options = $this->getOptionsResolver()->resolve($options);

        $this->tagsMethod = $options['tags_method'];
        $this->tagsHeader = $options['tags_header'];
    }

    /**
     * {@inheritdoc}
     */
    public static function getSubscribedEvents()
    {
        return [
            Events::PRE_INVALIDATE => 'handlePurgeTags',
        ];
    }

    /**
     * Look at unsafe requests and handle purge tags requests.
     *
     * Prevents access when the request comes from a non-authorized client.
     *
     * @param CacheEvent $event
     */
    public function handlePurgeTags(CacheEvent $event)
    {
        $request = $event->getRequest();
        if ($this->tagsMethod !== $request->getMethod()) {
            return;
        }

        if (!$this->isRequestAllowed($request)) {
            $event->setResponse(new Response('', 400));

            return;
        }

        $response = new Response();
        $store = $event->getKernel()->getStore();

        if (!$store instanceof Psr6StoreInterface) {
            $response->setStatusCode(400);
            $response->setContent('Store must be an instance of '.Psr6StoreInterface::class.'. Please check your proxy configuration.');

            $event->setResponse($response);

            return;
        }

        if (!$request->headers->has($this->tagsHeader)) {
            $response->setStatusCode(200, 'Not found');

            $event->setResponse($response);

            return;
        }

        $tags = [];

        foreach ($request->headers->get($this->tagsHeader, '', false) as $v) {
$collection = json_decode($data, true);
if ( ! is_array($collection)) {
    throw new \RuntimeException('$collection must be an array.');
}

foreach ($collection as $item) { /** ... */ }
            foreach (explode(',', $v) as $tag) {
                $tags[] = $tag;
            }
        }

        if ($store->invalidateTags($tags)) {
            $response->setStatusCode(200, 'Purged');
        } else {
            $response->setStatusCode(200, 'Not found');
        }

        $event->setResponse($response);
    }

    /**
     * Add the purge_method option.
     *
     * @return OptionsResolver
     */
    protected function getOptionsResolver()
    {
        $resolver = parent::getOptionsResolver();
        $resolver->setDefaults([
            'tags_method' => static::DEFAULT_TAGS_METHOD,
            'tags_header' => static::DEFAULT_TAGS_HEADER,
        ]);
        $resolver->setAllowedTypes('tags_method', 'string');
        $resolver->setAllowedTypes('tags_header', 'string');

        return $resolver;
    }
}


1		<?php
2
3		/*
4		* This file is part of the FOSHttpCache package.
5		*
6		* (c) FriendsOfSymfony <http://friendsofsymfony.github.com/>
7		*
8		* For the full copyright and license information, please view the LICENSE
9		* file that was distributed with this source code.
10		*/
11
12		namespace FOS\HttpCache\SymfonyCache;
13
14		use Symfony\Component\HttpFoundation\Response;
15		use Symfony\Component\OptionsResolver\OptionsResolver;
16		use Toflar\Psr6HttpCacheStore\Psr6StoreInterface;
17
18		/**
19		* Purge tags handler for the Symfony built-in HttpCache.
20		*
21		* @author Yanick Witschi <[email protected]>
22		*
23		* {@inheritdoc}
24		*/
25		class PurgeTagsListener extends AccessControlledListener
26		{
27		const DEFAULT_TAGS_METHOD = 'PURGETAGS';
28
29		const DEFAULT_TAGS_HEADER = 'X-Cache-Tags';
30
31		/**
32		* The purge tags method to use.
33		*
34		* @var string
35		*/
36		private $tagsMethod;
37
38		/**
39		* The purge tags header to use.
40		*
41		* @var string
42		*/
43		private $tagsHeader;
44
45		/**
46		* When creating the purge listener, you can configure an additional option.
47		*
48		* - tags_method: HTTP method that identifies purge tags requests.
49		* - tags_header: HTTP header that contains cache tags to invalidate.
50		*
51		* @param array $options Options to overwrite the default options
52		*
53		* @throws \InvalidArgumentException if unknown keys are found in $options
54		*
55		* @see AccessControlledListener::__construct
56		*/
57		public function __construct(array $options = [])
58		{
59		if (!interface_exists(Psr6StoreInterface::class)) {
60		throw new \Exception('Cache tag invalidation only works with the toflar/psr6-symfony-http-cache-store package. See "Symfony HttpCache Configuration" in the documentation.');
61		}
62		parent::__construct($options);
63
64		$options = $this->getOptionsResolver()->resolve($options);
65
66		$this->tagsMethod = $options['tags_method'];
67		$this->tagsHeader = $options['tags_header'];
68		}
69
70		/**
71		* {@inheritdoc}
72		*/
73		public static function getSubscribedEvents()
74		{
75		return [
76		Events::PRE_INVALIDATE => 'handlePurgeTags',
77		];
78		}
79
80		/**
81		* Look at unsafe requests and handle purge tags requests.
82		*
83		* Prevents access when the request comes from a non-authorized client.
84		*
85		* @param CacheEvent $event
86		*/
87		public function handlePurgeTags(CacheEvent $event)
88		{
89		$request = $event->getRequest();
90		if ($this->tagsMethod !== $request->getMethod()) {
91		return;
92		}
93
94		if (!$this->isRequestAllowed($request)) {
95		$event->setResponse(new Response('', 400));
96
97		return;
98		}
99
100		$response = new Response();
101		$store = $event->getKernel()->getStore();
102
103	View Code Duplication	if (!$store instanceof Psr6StoreInterface) {
104		$response->setStatusCode(400);
105		$response->setContent('Store must be an instance of '.Psr6StoreInterface::class.'. Please check your proxy configuration.');
106
107		$event->setResponse($response);
108
109		return;
110		}
111
112		if (!$request->headers->has($this->tagsHeader)) {
113		$response->setStatusCode(200, 'Not found');
114
115		$event->setResponse($response);
116
117		return;
118		}
119
120		$tags = [];
121
122		foreach ($request->headers->get($this->tagsHeader, '', false) as $v) {
		0 ignored issues – show Bug introduced 2018-08-24 09:35 UTC by Report Bug Copy Issue Report Show Similar Issues like this The expression `$request->headers->get($...>tagsHeader, '', false)` of type `string\|array<integer,string>\|null` is not guaranteed to be traversable. How about adding an additional type check? There are different options of fixing this problem. If you want to be on the safe side, you can add an additional type-check: $collection = json_decode($data, true); if ( ! is_array($collection)) { throw new \RuntimeException('$collection must be an array.'); } foreach ($collection as $item) { /** ... / } If you are sure that the expression is traversable, you might want to add a doc comment cast* to improve IDE auto-completion and static analysis: /** @var array $collection / $collection = json_decode($data, true); foreach ($collection as $item) { /* .. / } Mark the issue as a false-positive*: Just hover the remove button, in the top-right corner of this issue for more options. Loading history...
123		foreach (explode(',', $v) as $tag) {
124		$tags[] = $tag;
125		}
126		}
127
128		if ($store->invalidateTags($tags)) {
129		$response->setStatusCode(200, 'Purged');
130		} else {
131		$response->setStatusCode(200, 'Not found');
132		}
133
134		$event->setResponse($response);
135		}
136
137		/**
138		* Add the purge_method option.
139		*
140		* @return OptionsResolver
141		*/
142	View Code Duplication	protected function getOptionsResolver()
143		{
144		$resolver = parent::getOptionsResolver();
145		$resolver->setDefaults([
146		'tags_method' => static::DEFAULT_TAGS_METHOD,
147		'tags_header' => static::DEFAULT_TAGS_HEADER,
148		]);
149		$resolver->setAllowedTypes('tags_method', 'string');
150		$resolver->setAllowedTypes('tags_header', 'string');
151
152		return $resolver;
153		}
154		}
155

FriendsOfSymfony / FOSHttpCache

Push — master ( 99e856...e5db02 )

src/SymfonyCache/PurgeTagsListener.php (1 issue)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like