GEANT /
CAT
| Total Complexity | 73 |
| Total Lines | 442 |
| Duplicated Lines | 0 % |
| Changes | 0 | ||
Complex classes like OptionParser often do a lot of different things. To break such a class down, we need to identify a cohesive component within that class. A common approach to find such a component is to look for fields/methods that share the same prefixes, or suffixes.
Once you have determined the fields that belong together, you can apply the Extract Class refactoring. If the component makes sense as a sub-class, Extract Subclass is also a candidate, and is often faster.
While breaking up the class, it is a good idea to analyze how other classes use OptionParser, and based on these observations, apply Extract Interface, too.
| 1 | <?php |
||
| 25 | class OptionParser { |
||
| 26 | |||
| 27 | /** |
||
| 28 | * an instance of the InputValidation class which we use heavily for syntax checks. |
||
| 29 | * |
||
| 30 | * @var \web\lib\common\InputValidation |
||
| 31 | */ |
||
| 32 | private $validator; |
||
| 33 | |||
| 34 | /** |
||
| 35 | * an instance of the UIElements() class to draw some UI widgets from. |
||
| 36 | * |
||
| 37 | * @var UIElements |
||
| 38 | */ |
||
| 39 | private $uiElements; |
||
| 40 | |||
| 41 | /** |
||
| 42 | * a handle for the Options singleton |
||
| 43 | * |
||
| 44 | * @var \core\Options |
||
| 45 | */ |
||
| 46 | private $optioninfoObject; |
||
| 47 | |||
| 48 | /** |
||
| 49 | * initialises the various handles. |
||
| 50 | */ |
||
| 51 | public function __construct() { |
||
| 55 | } |
||
| 56 | |||
| 57 | /** |
||
| 58 | * Verifies whether an incoming upload was actually valid data |
||
| 59 | * |
||
| 60 | * @param string $optiontype for which option was the data uploaded |
||
| 61 | * @param string $incomingBinary the uploaded data |
||
| 62 | * @return boolean whether the data was valid |
||
| 63 | */ |
||
| 64 | private function checkUploadSanity(string $optiontype, string $incomingBinary) { |
||
| 65 | switch ($optiontype) { |
||
| 66 | case "general:logo_file": |
||
| 67 | case "fed:logo_file": |
||
| 68 | case "internal:logo_from_url": |
||
| 69 | // we check logo_file with ImageMagick |
||
| 70 | return $this->validator->image($incomingBinary); |
||
| 71 | case "eap:ca_file": |
||
| 72 | // echo "Checking $optiontype with file $filename"; |
||
| 73 | $func = new \core\common\X509; |
||
| 74 | $cert = $func->processCertificate($incomingBinary); |
||
| 75 | if (is_array($cert)) { // could also be FALSE if it was incorrect incoming data |
||
| 76 | return TRUE; |
||
| 77 | } |
||
| 78 | // the certificate seems broken |
||
| 79 | return FALSE; |
||
| 80 | case "support:info_file": |
||
| 81 | $info = new \finfo(); |
||
|
|
|||
| 82 | $filetype = $info->buffer($incomingBinary, FILEINFO_MIME_TYPE); |
||
| 83 | |||
| 84 | // we only take plain text files in UTF-8! |
||
| 85 | if ($filetype == "text/plain" && iconv("UTF-8", "UTF-8", $incomingBinary) !== FALSE) { |
||
| 86 | return TRUE; |
||
| 87 | } |
||
| 88 | return FALSE; |
||
| 89 | default: |
||
| 90 | return FALSE; |
||
| 91 | } |
||
| 92 | } |
||
| 93 | |||
| 94 | /** |
||
| 95 | * Known-good options are sometimes converted, this function takes care of that. |
||
| 96 | * |
||
| 97 | * Cases in point: |
||
| 98 | * - CA import by URL reference: fetch cert from URL and store it as CA file instead |
||
| 99 | * - Logo import by URL reference: fetch logo from URL and store it as logo file instead |
||
| 100 | * - CA file: mangle the content so that *only* the valid content remains (raw input may contain line breaks or spaces which are valid, but some supplicants choke upon) |
||
| 101 | * |
||
| 102 | * @param array $options the list of options we got |
||
| 103 | * @param array $good by-reference: the future list of actually imported options |
||
| 104 | * @param array $bad by-reference: the future list of submitted but rejected options |
||
| 105 | * @return array the options, post-processed |
||
| 106 | */ |
||
| 107 | private function postProcessValidAttributes(array $options, array &$good, array &$bad) { |
||
| 156 | } |
||
| 157 | |||
| 158 | /** |
||
| 159 | * extracts a coordinate pair from _POST (if any) and returns it in our |
||
| 160 | * standard attribute notation |
||
| 161 | * |
||
| 162 | * @param array $postArray |
||
| 163 | * @param array $good |
||
| 164 | * @return array |
||
| 165 | */ |
||
| 166 | private function postProcessCoordinates(array $postArray, array &$good) { |
||
| 167 | if (!empty($postArray['geo_long']) && !empty($postArray['geo_lat'])) { |
||
| 168 | |||
| 169 | $lat = $this->validator->coordinate($postArray['geo_lat']); |
||
| 170 | $lon = $this->validator->coordinate($postArray['geo_long']); |
||
| 171 | $good[] = ("general:geo_coordinates"); |
||
| 172 | return [0 => ["general:geo_coordinates" => ['lang' => NULL, 'content' => json_encode(["lon" => $lon, "lat" => $lat])]]]; |
||
| 173 | } |
||
| 174 | return []; |
||
| 175 | } |
||
| 176 | |||
| 177 | /** |
||
| 178 | * creates HTML code for a user-readable summary of the imports |
||
| 179 | * @param array $good list of actually imported options |
||
| 180 | * @param array $bad list of submitted but rejected options |
||
| 181 | * @param array $mlAttribsWithC list of language-variant options |
||
| 182 | * @return string HTML code |
||
| 183 | */ |
||
| 184 | private function displaySummaryInUI(array $good, array $bad, array $mlAttribsWithC) { |
||
| 185 | $retval = ""; |
||
| 186 | // don't do your own table - only the <tr>s here |
||
| 187 | // list all attributes that were set correctly |
||
| 188 | $listGood = array_count_values($good); |
||
| 189 | $uiElements = new UIElements(); |
||
| 190 | foreach ($listGood as $name => $count) { |
||
| 191 | /// number of times attribute is present, and its name |
||
| 192 | /// Example: "5x Support E-Mail" |
||
| 193 | $retval .= $this->uiElements->boxOkay(sprintf(_("%dx %s"), $count, $uiElements->displayName($name))); |
||
| 194 | } |
||
| 195 | // list all atributes that had errors |
||
| 196 | $listBad = array_count_values($bad); |
||
| 197 | foreach ($listBad as $name => $count) { |
||
| 198 | $retval .= $this->uiElements->boxError(sprintf(_("%dx %s"), (int) $count, $uiElements->displayName($name))); |
||
| 199 | } |
||
| 200 | // list multilang without default |
||
| 201 | foreach ($mlAttribsWithC as $attribName => $isitsetornot) { |
||
| 202 | if ($isitsetornot == FALSE) { |
||
| 203 | $retval .= $this->uiElements->boxWarning(sprintf(_("You did not set a 'default language' value for %s. This means we can only display this string for installers which are <strong>exactly</strong> in the language you configured. For the sake of all other languages, you may want to edit the profile again and populate the 'default/other' language field."), $uiElements->displayName($attribName))); |
||
| 204 | } |
||
| 205 | } |
||
| 206 | return $retval; |
||
| 207 | } |
||
| 208 | |||
| 209 | /** |
||
| 210 | * Incoming data is in $_POST and possibly in $_FILES. Collate values into |
||
| 211 | * one array according to our name and numbering scheme. |
||
| 212 | * |
||
| 213 | * @param array $postArray _POST |
||
| 214 | * @param array $filesArray _FILES |
||
| 215 | * @return array |
||
| 216 | */ |
||
| 217 | private function collateOptionArrays(array $postArray, array $filesArray) { |
||
| 218 | |||
| 219 | $optionarray = $postArray['option'] ?? []; |
||
| 220 | $valuearray = $postArray['value'] ?? []; |
||
| 221 | $filesarray = $filesArray['value']['tmp_name'] ?? []; |
||
| 222 | |||
| 223 | $iterator = array_merge($optionarray, $valuearray, $filesarray); |
||
| 224 | |||
| 225 | return $iterator; |
||
| 226 | } |
||
| 227 | |||
| 228 | /** |
||
| 229 | * The very end of the processing: clean input data gets sent to the database |
||
| 230 | * for storage |
||
| 231 | * |
||
| 232 | * @param mixed $object for which object are the options |
||
| 233 | * @param array $options the options to store |
||
| 234 | * @param array $pendingattributes list of attributes which are already stored but may need to be deleted |
||
| 235 | * @param string $device when the $object is Profile, this indicates device-specific attributes |
||
| 236 | * @param int $eaptype when the $object is Profile, this indicates eap-specific attributes |
||
| 237 | * @return array list of attributes which were previously stored but are to be deleted now |
||
| 238 | * @throws Exception |
||
| 239 | */ |
||
| 240 | private function sendOptionsToDatabase($object, array $options, array $pendingattributes, string $device = NULL, int $eaptype = NULL) { |
||
| 272 | } |
||
| 273 | |||
| 274 | /** |
||
| 275 | * filters the input to find syntactically correctly submitted attributes |
||
| 276 | * |
||
| 277 | * @param array $listOfEntries list of POST and FILES entries |
||
| 278 | * @param array $multilangAttrsWithC by-reference: future list of language-variant options and their "default lang" state |
||
| 279 | * @param array $bad by-reference: future list of submitted but rejected options |
||
| 280 | * @return array sanitised list of options |
||
| 281 | * @throws Exception |
||
| 282 | */ |
||
| 283 | private function sanitiseInputs(array $listOfEntries, array &$multilangAttrsWithC, array &$bad) { |
||
| 284 | $retval = []; |
||
| 285 | foreach ($listOfEntries as $objId => $objValueRaw) { |
||
| 286 | // pick those without dash - they indicate a new value |
||
| 287 | if (preg_match('/^S[0123456789]*$/', $objId)) { |
||
| 288 | $objValue = $this->validator->optionName(preg_replace('/#.*$/', '', $objValueRaw)); |
||
| 289 | $optioninfo = $this->optioninfoObject->optionType($objValue); |
||
| 290 | $lang = NULL; |
||
| 291 | if ($optioninfo["flag"] == "ML") { |
||
| 292 | if (isset($listOfEntries["$objId-lang"])) { |
||
| 293 | if (!isset($multilangAttrsWithC[$objValue])) { // on first sight, initialise the attribute as "no C language set" |
||
| 294 | $multilangAttrsWithC[$objValue] = FALSE; |
||
| 295 | } |
||
| 296 | $lang = $listOfEntries["$objId-lang"]; |
||
| 297 | if ($lang == "") { // user forgot to select a language |
||
| 298 | $lang = "C"; |
||
| 299 | } |
||
| 300 | } else { |
||
| 301 | $bad[] = $objValue; |
||
| 302 | continue; |
||
| 303 | } |
||
| 304 | // did we get a C language? set corresponding value to TRUE |
||
| 305 | if ($lang == "C") { |
||
| 306 | $multilangAttrsWithC[$objValue] = TRUE; |
||
| 307 | } |
||
| 308 | } |
||
| 309 | |||
| 310 | // many of the cases below condense due to identical treatment |
||
| 311 | // except validator function to call and where in POST the |
||
| 312 | // content is |
||
| 313 | $validators = [ |
||
| 314 | "text" => ["function" => "string", "field" => 1, "extraarg" => [TRUE]], |
||
| 315 | "coordinates" => ["function" => "coordJsonEncoded", "field" => 1, "extraarg" => []], |
||
| 316 | "boolean" => ["function" => "boolean", "field" => 3, "extraarg" => []], |
||
| 317 | "integer" => ["function" => "integer", "field" => 4, "extraarg" => []], |
||
| 318 | ]; |
||
| 319 | |||
| 320 | switch ($optioninfo["type"]) { |
||
| 321 | case "text": |
||
| 322 | case "coordinates": |
||
| 323 | case "integer": |
||
| 324 | $varName = "$objId-" . $validators[$optioninfo['type']]['field']; |
||
| 325 | if (!empty($listOfEntries[$varName])) { |
||
| 326 | $content = call_user_func_array([$this->validator, $validators[$optioninfo['type']]['function']], array_merge([$listOfEntries[$varName]], $validators[$optioninfo['type']]['extraarg'])); |
||
| 327 | break; |
||
| 328 | } |
||
| 329 | continue 2; |
||
| 330 | case "boolean": |
||
| 331 | $varName = "$objId-3"; |
||
| 332 | if (!empty($listOfEntries[$varName])) { |
||
| 333 | $contentValid = $this->validator->boolean($listOfEntries[$varName]); |
||
| 334 | if ($contentValid) { |
||
| 335 | $content = "on"; |
||
| 336 | } else { |
||
| 337 | $bad[] = $objValue; |
||
| 338 | continue 2; |
||
| 339 | } |
||
| 340 | break; |
||
| 341 | } |
||
| 342 | continue 2; |
||
| 343 | case "string": |
||
| 344 | if (!empty($listOfEntries["$objId-0"])) { |
||
| 345 | switch ($objValue) { |
||
| 346 | case "media:consortium_OI": |
||
| 347 | $content = $this->validator->consortiumOI($listOfEntries["$objId-0"]); |
||
| 348 | if ($content === FALSE) { |
||
| 349 | $bad[] = $objValue; |
||
| 350 | continue 3; |
||
| 351 | } |
||
| 352 | break; |
||
| 353 | case "media:remove_SSID": |
||
| 354 | $content = $this->validator->string($listOfEntries["$objId-0"]); |
||
| 355 | if ($content == "eduroam") { |
||
| 356 | $bad[] = $objValue; |
||
| 357 | continue 3; |
||
| 358 | } |
||
| 359 | break; |
||
| 360 | default: |
||
| 361 | $content = $this->validator->string($listOfEntries["$objId-0"]); |
||
| 362 | break; |
||
| 363 | } |
||
| 364 | break; |
||
| 365 | } |
||
| 366 | continue 2; |
||
| 367 | case "file": |
||
| 368 | // echo "In file processing ...<br/>"; |
||
| 369 | if (!empty($listOfEntries["$objId-1"])) { // was already in, by ROWID reference, extract |
||
| 370 | // ROWID means it's a multi-line string (simple strings are inline in the form; so allow whitespace) |
||
| 371 | $content = $this->validator->string(urldecode($listOfEntries["$objId-1"]), TRUE); |
||
| 372 | break; |
||
| 373 | } else if (isset($listOfEntries["$objId-2"]) && ($listOfEntries["$objId-2"] != "")) { // let's do the download |
||
| 374 | // echo "Trying to download file:///".$a["$obj_id-2"]."<br/>"; |
||
| 375 | $rawContent = \core\common\OutsideComm::downloadFile("file:///" . $listOfEntries["$objId-2"]); |
||
| 376 | |||
| 377 | if ($rawContent === FALSE || !$this->checkUploadSanity($objValue, $rawContent)) { |
||
| 378 | $bad[] = $objValue; |
||
| 379 | continue 2; |
||
| 380 | } |
||
| 381 | $content = base64_encode($rawContent); |
||
| 382 | break; |
||
| 383 | } |
||
| 384 | continue 2; |
||
| 385 | default: |
||
| 386 | throw new Exception("Internal Error: Unknown option type " . $objValue . "!"); |
||
| 387 | } |
||
| 388 | // lang can be NULL here, if it's not a multilang attribute, or a ROWID reference. Never mind that. |
||
| 389 | $retval[] = ["$objValue" => ["lang" => $lang, "content" => $content]]; |
||
| 390 | } |
||
| 391 | } |
||
| 392 | return $retval; |
||
| 393 | } |
||
| 394 | |||
| 395 | /** |
||
| 396 | * The main function: takes all HTML field inputs, makes sense of them and stores valid data in the database |
||
| 397 | * |
||
| 398 | * @param mixed $object The object for which attributes were submitted |
||
| 399 | * @param array $postArray incoming attribute names and values as submitted with $_POST |
||
| 400 | * @param array $filesArray incoming attribute names and values as submitted with $_FILES |
||
| 401 | * @param int $eaptype for eap-specific attributes (only used where $object is a ProfileRADIUS instance) |
||
| 402 | * @param string $device for device-specific attributes (only used where $object is a ProfileRADIUS instance) |
||
| 403 | * @return string text to be displayed in UI with the summary of attributes added |
||
| 404 | * @throws Exception |
||
| 405 | */ |
||
| 406 | public function processSubmittedFields($object, array $postArray, array $filesArray, int $eaptype = NULL, string $device = NULL) { |
||
| 467 | } |
||
| 468 | |||
| 469 | } |
||
| 470 |
This check compares calls to functions or methods with their respective definitions. If the call has less arguments than are defined, it raises an issue.
If a function is defined several times with a different number of parameters, the check may pick up the wrong definition and report false positives. One codebase where this has been known to happen is Wordpress. Please note the @ignore annotation hint above.