Koch\Http\HttpResponse

Complexity

Total Complexity

45

Size/Duplication

Total Lines	418
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	4

Importance

Changes

0

16 Methods

Rating	Name	Duplication	Size	Complexity
A	setStatusCode()	0	4	1
A	getStatusCode()	0	4	1
A	addHeader()	0	4	1
A	setContent()	0	11	2
A	getContent()	0	4	1
A	getContentType()	0	4	1
A	redirectNoCache()	0	5	1
B	getStatusCodeDescription()	0	31	1
A	setContentType()	0	19	2
C	sendResponse()	0	43	8
A	clearHeaders()	0	7	1
C	setCookie()	0	40	13
A	deleteCookie()	0	5	1
A	setNoCacheHeader()	0	15	1
A	detectTypeAndSetFlashmessage()	0	12	3
B	redirect()	0	57	7

<?php

/**
 * Koch Framework
 * Jens-André Koch © 2005 - onwards.
 *
 * This file is part of "Koch Framework".
 *
 * License: GNU/GPL v2 or any later version, see LICENSE file.
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program. If not, see <http://www.gnu.org/licenses/>.
 */

namespace Koch\Http;

/**
 * Koch Framework - Class for Response Handling.
 *
 * This class represents the web response object on a request processed by Koch Framework.
 */
class HttpResponse implements HttpResponseInterface

HttpResponse does not seem to conform to the naming convention (Utils?$).

{
    /**
     * Status of the response as integer value.
     * $statusCode = '200' => 'OK'.
     *
     * @var int
     */
    private static $statusCode = '200';

    /**
     * @var array Array holding the response headers.
     */
    private static $headers = [];

    /**
     * @var string String holding the response content (body).
     */
    private static $content = null;

    /**
     * @var string String holding the content type.
     */
    private static $content_type = 'text/html';

$content_type does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

    /**
     * Sets the HTTP Status Code for this response.
     * This method is also used to set the return status code when there
     * is no error (for example for the status codes 200 (OK) or 301 (Moved permanently) ).
     *
     * @param int $statusCode The status code to set
     */
    public static function setStatusCode($statusCode)
    {
        self::$statusCode = (string) $statusCode;

The property $statusCode was declared of type integer, but (string) $statusCode is of type string. Maybe add a type cast?

    }

    /**
     * Returns the HTTP Status Code.
     *
     * @return int HTTP Status Code.
     */
    public static function getStatusCode()
    {
        return self::$statusCode;
    }

    /**
     * Returns the HTTP 1.1 status code description for a given status code.
     *
     * @link http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html
     */
    public static function getStatusCodeDescription($statusCode)

The return type could not be reliably inferred; please add a @return annotation.

    {
        /**
         * Array holding some often occuring status descriptions.
         *
         * @var array
         */
        static $statusCodes = [
           // Successful
           '200' => 'OK',
           '201' => 'Created',
           '202' => 'Accepted',
           // Redirection
           '301' => 'Moved Permanently',
           '302' => 'Found',
           '303' => 'See Other',
           '304' => 'Not Modified',
           '307' => 'Temporary Redirect',
           // Client Error
           '400' => 'Bad Request',
           '401' => 'Unauthorized',
           '403' => 'Forbidden',
           '404' => 'Not Found',
           // Server Error
           '500' => 'Internal Server Error',
           '502' => 'Bad Gateway',
           '503' => 'Service Temporarily Unavailable',
        ];

        return $statusCodes[$statusCode];
    }

    /**
     * Adds a header to the response array, which is send to the browser.
     *
     * @param string $name  the name of the header
     * @param string $value the value of the header
     */
    public static function addHeader($name, $value)
    {
        self::$headers[$name] = $value;
    }

    /**
     * setContent appends or replaces the content of the http response buffer.
     *
     * appends content to the response body.
     * when $replace is true, the bodycontent is replaced.
     *
     * @param string $content Content to store in the buffer
     * @param bool   $replace Toggle between append or replace.
     */
    public static function setContent($content, $replace = false)
    {
        // check, if the content should be replaced
        if ($replace === false) {
            // no, just append the content
            self::$content .= $content;
        } else {
            // replace the body with the content
            self::$content = $content;
        }
    }

    /**
     * get content retunrs the response body.
     */
    public static function getContent()
    {
        return self::$content;
    }

    /**
     * Set the content type.
     *
     * @param string $type Content type: html, txt, xml, json.
     *
     * @return string

Should the return type not be string|null?

     */
    public static function setContentType($type = 'html', $charset = 'UTF-8')

The parameter $charset is not used and could be removed.

    {
        $types = [
            'csv'  => 'text/csv',
            'html' => 'text/html',
            'txt'  => 'text/plain',
            'xml'  => 'application/xml',
            'rss'  => 'application/rss+xml',
            'json' => 'application/json',
            'js'   => 'application/javascript',
        ];

        if (isset($types[$type]) === false) {
            throw new \InvalidArgumentException('Specified type not valid. Use: html, txt, xml or json.');
        }

        #addHeader('Content-Type', $type . ($charset ? '; charset='.$charset.': ''));
        self::$content_type = $types[$type];
    }

    /**
     * Returns the content type for insertion into the header.
     *
     * @return string A content type, like "application/json" or "text/html".
     */
    public static function getContentType()
    {
        return self::$content_type;
    }

    /**
     * This flushes the headers and bodydata to the client.
     */
    public static function sendResponse()
    {
        // save session before exit
        if ((bool) session_id()) {
            session_write_close();
        }

        // activateOutputCompression when not in debugging mode
        if (defined('DEBUG') and DEBUG === false) {

Using logical operators such as and instead of && is generally not recommended.

            \Koch\Http\ResponseCompression::startBuffer();
        }

        // Send the status line
        self::addHeader('HTTP/1.1', self::$statusCode . ' ' . self::getStatusCodeDescription(self::$statusCode));

        // Suppress Framesets
        self::addHeader('X-Frame-Options', 'deny'); // not SAMEORIGIN

        // Send our Content-Type with UTF-8 encoding
        self::addHeader('Content-Type', self::getContentType() . '; charset=UTF-8');

        // Send user specificed headers from self::$headers array
        if (false === headers_sent()) {
            foreach (self::$headers as $name => $value) {
                header($name . ': ' . $value, false);
            }
        }

        // make it possible to attach HTML content to the body directly before flushing the response
        // \Clansuite\Application::triggerEvent('onBeforeResponse', array('content' => self::$content));

65% of this comment could be valid code. Did you maybe forget this after debugging?

        // Finally echo the response body
        echo self::getContent();

        if (defined('DEBUG') and DEBUG === false) {

Using logical operators such as and instead of && is generally not recommended.

            \Koch\Http\ResponseCompression::flushCompressedBuffer();
        }

        // OK, Reset -> Package delivered! Return to Base!
        self::clearHeaders();

        return true;
    }

    /**
     * Resets the headers and content.
     *
     * @return bool true.
     */
    public static function clearHeaders()

function clearHeaders() does not seem to conform to the naming convention (^(?:is|has|should|may|supports)).

    {
        self::$headers = [];
        self::$content = null;

        return true;
    }
    /**
     * A better alternative (RFC 2109 compatible) to the php setcookie() function.
     *
     * @param string Name of the cookie
     * @param string Value of the cookie
     * @param int Lifetime of the cookie
     * @param string Path where the cookie can be used
     * @param string Domain which can read the cookie
     * @param bool Secure mode?
     * @param bool Only allow HTTP usage? (PHP 5.2)
     *
     * @return bool Cookie set.
     */
    public static function setCookie($name, $value = '', $maxage = 0, $path = '', $domain = '', $secure = false, $HTTPOnly = false)
    {
        $ob = ini_get('output_buffering');

        // Abort the method if headers have already been sent, except when output buffering has been enabled
        if (headers_sent() && (bool) $ob === false or mb_strtolower($ob) === 'off') {

Using logical operators such as or instead of || is generally not recommended.

            return false;
        }

        if (false === empty($domain)) {
            // Fix the domain to accept domains with and without 'www.'.
            if (mb_strtolower(mb_substr($domain, 0, 4)) === 'www.') {
                $domain = mb_substr($domain, 4);
            }

            // Add the dot prefix to ensure compatibility with subdomains
            if (mb_substr($domain, 0, 1) !== '.') {
                $domain = '.' . $domain;
            }

            // Remove port information.
            $port = mb_strpos($domain, ':');

            if ($port !== false) {
                $domain = mb_substr($domain, 0, $port);
            }
        }

        header(
            'Set-Cookie: ' . rawurlencode($name) . '=' . rawurlencode($value)
            . (true === empty($domain) ? '' : '; Domain=' . $domain)
            . (true === empty($maxage) ? '' : '; Max-Age=' . $maxage)
            . (true === empty($path) ? '' : '; Path=' . $path)
            . (false === $secure ? '' : '; Secure')
            . (false === $HTTPOnly ? '' : '; HttpOnly'),

$HTTPOnly does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

            false
        );

        return true;
    }

    /**
     * Deletes a cookie.
     *
     * @param string $name   Name of the cookie
     * @param string $path   Path where the cookie is used
     * @param string $domain Domain of the cookie
     * @param bool Secure mode?
     * @param bool Only allow HTTP usage? (PHP 5.2)
     */
    public static function deleteCookie($name, $path = '/', $domain = '', $secure = false, $httponly = null)
    {
        // expire = 324993600 = 1980-04-19
        setcookie($name, '', 324993600, $path, $domain, $secure, $httponly);
    }

    /**
     * Sets NoCache Header Values.
     */
    public static function setNoCacheHeader()
    {
        // set nocache via session
        #session_cache_limiter('nocache');
        // reset pragma header
        self::addHeader('Pragma', 'no-cache');
        // reset cache-control
        self::addHeader('Cache-Control', 'no-store, no-cache, must-revalidate');
        // append cache-control
        self::addHeader('Cache-Control', 'post-check=0, pre-check=0');
        // force immediate expiration
        self::addHeader('Expires', '1');
        // set date of last modification
        self::addHeader('Last-Modified', gmdate('D, d M Y H:i:s') . ' GMT');
    }

    /**
     * Detects a flashmessage tunneling via the redirect messagetext.
     *
     * @param string $message Redirect Message ("flashmessagetype#message text")
     */
    public static function detectTypeAndSetFlashmessage($message)

The return type could not be reliably inferred; please add a @return annotation.

    {
        // detect if a flashmessage is tunneled
        if ($message !== null and true === (bool) strpos($message, '#')) {

Using logical operators such as and instead of && is generally not recommended.

            //  split at tunneling separator
            $array = explode('#', $message);
            // results in: array[0] = type and array[1] = message)

40% of this comment could be valid code. Did you maybe forget this after debugging?

            \Koch\Session\FlashMessages::setMessage($array[0], $array[1]);
            // return the message
            return $array[1];
        }
    }

    /**
     * Redirect.
     *
     * Redirects to another action after disabling the caching.
     * This avoids the typical reposting after an POST is send by disabling the cache.
     * This enables the POST-Redirect-GET Workflow.
     *
     * @param string Redirect to this URL
     * @param int    seconds before redirecting (for the html tag "meta refresh")
     * @param int    http status code, default: '303' => 'See other'
     * @param string redirect message
     */
    public static function redirectNoCache($url, $time = 0, $statusCode = 303, $message = '')
    {
        self::setNoCacheHeader();
        self::redirect($url, $time, $statusCode, $message);
    }

    /**
     * Redirect, redirects to an URL.
     * This redirects automatically, when headers are not already sent,
     * else it provides a link to the target URL for manual redirection.
     *
     * Time defines how long the redirect screen will be displayed.
     * Statuscode defines a http status code. The default value is 303.
     * Text is a message string for the html body of the redirect screen.
     *
     * @param string Redirect to this URL
     * @param int    seconds before redirecting (for the html tag "meta refresh")
     * @param int    http status code, default: '303' => 'See other'
     * @param text   text of redirect message
     * @param string redirect mode LOCATION, REFRESH, JS, HTML
     * @param string $mode

Should the type for parameter $mode not be string|null?

     */
    public static function redirect($url, $time = 0, $statusCode = 303, $message = null, $mode = null)
    {
        // convert from internal slashed format to external URL
        $url = \Koch\Router\Router::buildURL($url, false);

        $filename      = '';
        $linenum       = '';
        $redirect_html = '';

$redirect_html does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

        // redirect only, if headers are NOT already send
        if (headers_sent($filename, $linenum) === false) {
            // clear all output buffers
            #while(@ob_end_clean());

86% of this comment could be valid code. Did you maybe forget this after debugging?

            // redirect to ...
            self::setStatusCode($statusCode);

            // detect if redirect message contains a flashmessage type
            // fetch message from "type#message"
            $message = self::detectTypeAndSetFlashmessage($message);

            switch ($mode) {
                default:
                case 'LOCATION':
                    header('LOCATION: ' . $url);
                    #session_write_close(); // @todo figure out, if session closing is needed?
                    \Koch\Tools\ApplicationQuit::quit();
                    break;
                case 'REFRESH':
                    header('Refresh: 0; URL="' . $url . '"');
                    #session_write_close(); // @todo figure out, if session closing is needed?
                    break;
                case 'JS':
                    $redirect_html = '<script type="text/javascript">window.location.href=' . $url . ';</script>';

$redirect_html does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

                    break;
                case 'HTML':
                    // redirect html content
                    $redirect_html = '<html><head>';

$redirect_html does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

                    $redirect_html .= '<meta http-equiv="refresh" content="' . $time . '; URL=' . $url . '" />';

$redirect_html does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

                    $redirect_html .= '</head><body>' . $message . '</body></html>';

$redirect_html does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

                    break;
            }

            if (empty($redirect_html) === false) {

$redirect_html does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

                #self::addHeader('Location', $url);

80% of this comment could be valid code. Did you maybe forget this after debugging?

                self::setContent($redirect_html, $time, htmlspecialchars($url, ENT_QUOTES, 'UTF-8'));

$redirect_html does not seem to conform to the naming convention (^[a-z][a-zA-Z0-9]*$).

$time is of type integer, but the function expects a boolean.

The call to HttpResponse::setContent() has too many arguments starting with htmlspecialchars($url, ENT_QUOTES, 'UTF-8').

            }

            // Flush the content on the normal way!
            self::sendResponse();
        } else { // headers already send!
            $msg = _('Header already send in file %s in line %s. Redirecting impossible.');
            $msg .= _('You might click this link instead to redirect yourself to the <a href="%s">target url</a> an');
            sprintf($msg, $filename, $linenum, $url);
            \Koch\Tools\ApplicationQuit::quit();
        }
    }
}