AbstractService - Code Metrics - Inspection of "Merge pull request #484 from tchiotludo/fix/facebo..." - Lusitanian/PHPoAuthLib - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 29bda6...e00326 )

by David

created 2016-07-12 22:11 UTC

AbstractService A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	347
Duplicated Lines	0 %

Coupling/Cohesion

Components	2
Dependencies	9

Importance

Changes	5
Bugs	1	Features	3

Metric	Value
wmc	35
lcom	2
cbo	9
dl	0
loc	347
rs	9
c	5
b	1
f	3

18 Methods

Rating	Name	Size	Complexity
A	getAuthorizationMethod()	4	1
A	getApiVersionString()	4	2
A	getScopesDelimiter()	4	1
B	__construct()	24	3
D	request()	37	10
B	getAuthorizationUri()	29	4
B	requestAccessToken()	25	2
A	getStorage()	4	1
B	refreshAccessToken()	26	2
A	isValidScope()	6	1
A	needsStateParameterInAuthUrl()	4	1
A	validateAuthorizationState()	6	2
A	generateAuthorizationState()	4	1
A	retrieveAuthorizationState()	4	1
A	storeAuthorizationState()	4	1
A	getExtraOAuthHeaders()	4	1
A	getExtraApiHeaders()	4	1
	parseAccessTokenResponse()	1	?

<?php

namespace OAuth\OAuth2\Service;

use OAuth\Common\Consumer\CredentialsInterface;
use OAuth\Common\Exception\Exception;
use OAuth\Common\Service\AbstractService as BaseAbstractService;
use OAuth\Common\Storage\TokenStorageInterface;
use OAuth\Common\Http\Exception\TokenResponseException;
use OAuth\Common\Http\Client\ClientInterface;
use OAuth\Common\Http\Uri\UriInterface;
use OAuth\OAuth2\Service\Exception\InvalidAuthorizationStateException;
use OAuth\OAuth2\Service\Exception\InvalidScopeException;
use OAuth\OAuth2\Service\Exception\MissingRefreshTokenException;
use OAuth\Common\Token\TokenInterface;
use OAuth\Common\Token\Exception\ExpiredTokenException;

abstract class AbstractService extends BaseAbstractService implements ServiceInterface
{
    /** @const OAUTH_VERSION */
    const OAUTH_VERSION = 2;

    /** @var array */
    protected $scopes;

    /** @var UriInterface|null */
    protected $baseApiUri;

    /** @var bool */
    protected $stateParameterInAuthUrl;

    /** @var string */
    protected $apiVersion;

    /**
     * @param CredentialsInterface  $credentials
     * @param ClientInterface       $httpClient
     * @param TokenStorageInterface $storage
     * @param array                 $scopes
     * @param UriInterface|null     $baseApiUri
     * @param bool $stateParameterInAutUrl
     * @param string                $apiVersion
     *
     * @throws InvalidScopeException
     */
    public function __construct(
        CredentialsInterface $credentials,
        ClientInterface $httpClient,
        TokenStorageInterface $storage,
        $scopes = array(),
        UriInterface $baseApiUri = null,
        $stateParameterInAutUrl = false,
        $apiVersion = ""
    ) {
        parent::__construct($credentials, $httpClient, $storage);
        $this->stateParameterInAuthUrl = $stateParameterInAutUrl;

        foreach ($scopes as $scope) {
            if (!$this->isValidScope($scope)) {
                throw new InvalidScopeException('Scope ' . $scope . ' is not valid for service ' . get_class($this));
            }
        }

        $this->scopes = $scopes;

        $this->baseApiUri = $baseApiUri;

        $this->apiVersion = $apiVersion;
    }

    /**
     * {@inheritdoc}
     */
    public function getAuthorizationUri(array $additionalParameters = array())
    {
        $parameters = array_merge(
            $additionalParameters,
            array(
                'type'          => 'web_server',
                'client_id'     => $this->credentials->getConsumerId(),
                'redirect_uri'  => $this->credentials->getCallbackUrl(),
                'response_type' => 'code',
            )
        );

        $parameters['scope'] = implode($this->getScopesDelimiter(), $this->scopes);

        if ($this->needsStateParameterInAuthUrl()) {
            if (!isset($parameters['state'])) {
                $parameters['state'] = $this->generateAuthorizationState();
            }
            $this->storeAuthorizationState($parameters['state']);
        }

        // Build the url
        $url = clone $this->getAuthorizationEndpoint();
        foreach ($parameters as $key => $val) {
            $url->addToQuery($key, $val);
        }

        return $url;
    }

    /**
     * {@inheritdoc}
     */
    public function requestAccessToken($code, $state = null)
    {
        if (null !== $state) {
            $this->validateAuthorizationState($state);
        }

        $bodyParams = array(
            'code'          => $code,
            'client_id'     => $this->credentials->getConsumerId(),
            'client_secret' => $this->credentials->getConsumerSecret(),
            'redirect_uri'  => $this->credentials->getCallbackUrl(),
            'grant_type'    => 'authorization_code',
        );

        $responseBody = $this->httpClient->retrieveResponse(
            $this->getAccessTokenEndpoint(),
            $bodyParams,
            $this->getExtraOAuthHeaders()
        );

        $token = $this->parseAccessTokenResponse($responseBody);
        $this->storage->storeAccessToken($this->service(), $token);

        return $token;
    }

    /**
     * Sends an authenticated API request to the path provided.
     * If the path provided is not an absolute URI, the base API Uri (must be passed into constructor) will be used.
     *
     * @param string|UriInterface $path
     * @param string              $method       HTTP method
     * @param array               $body         Request body if applicable.
     * @param array               $extraHeaders Extra headers if applicable. These will override service-specific
     *                                          any defaults.
     *
     * @return string
     *
     * @throws ExpiredTokenException
     * @throws Exception
     */
    public function request($path, $method = 'GET', $body = null, array $extraHeaders = array())
    {
        $uri = $this->determineRequestUriFromPath($path, $this->baseApiUri);
        $token = $this->storage->retrieveAccessToken($this->service());

        if ($token->getEndOfLife() !== TokenInterface::EOL_NEVER_EXPIRES
            && $token->getEndOfLife() !== TokenInterface::EOL_UNKNOWN
            && time() > $token->getEndOfLife()
        ) {
            throw new ExpiredTokenException(
                sprintf(
                    'Token expired on %s at %s',
                    date('m/d/Y', $token->getEndOfLife()),
                    date('h:i:s A', $token->getEndOfLife())
                )
            );
        }

        // add the token where it may be needed
        if (static::AUTHORIZATION_METHOD_HEADER_OAUTH === $this->getAuthorizationMethod()) {
            $extraHeaders = array_merge(array('Authorization' => 'OAuth ' . $token->getAccessToken()), $extraHeaders);
        } elseif (static::AUTHORIZATION_METHOD_QUERY_STRING === $this->getAuthorizationMethod()) {
            $uri->addToQuery('access_token', $token->getAccessToken());
        } elseif (static::AUTHORIZATION_METHOD_QUERY_STRING_V2 === $this->getAuthorizationMethod()) {
            $uri->addToQuery('oauth2_access_token', $token->getAccessToken());
        } elseif (static::AUTHORIZATION_METHOD_QUERY_STRING_V3 === $this->getAuthorizationMethod()) {
            $uri->addToQuery('apikey', $token->getAccessToken());
        } elseif (static::AUTHORIZATION_METHOD_QUERY_STRING_V4 === $this->getAuthorizationMethod()) {
            $uri->addToQuery('auth', $token->getAccessToken());
        } elseif (static::AUTHORIZATION_METHOD_HEADER_BEARER === $this->getAuthorizationMethod()) {
            $extraHeaders = array_merge(array('Authorization' => 'Bearer ' . $token->getAccessToken()), $extraHeaders);
        }

        $extraHeaders = array_merge($this->getExtraApiHeaders(), $extraHeaders);

        return $this->httpClient->retrieveResponse($uri, $body, $extraHeaders, $method);
    }

    /**
     * Accessor to the storage adapter to be able to retrieve tokens
     *
     * @return TokenStorageInterface
     */
    public function getStorage()
    {
        return $this->storage;
    }

    /**
     * Refreshes an OAuth2 access token.
     *
     * @param TokenInterface $token
     *
     * @return TokenInterface $token
     *
     * @throws MissingRefreshTokenException
     */
    public function refreshAccessToken(TokenInterface $token)
    {
        $refreshToken = $token->getRefreshToken();

        if (empty($refreshToken)) {
            throw new MissingRefreshTokenException();
        }

        $parameters = array(
            'grant_type'    => 'refresh_token',
            'type'          => 'web_server',
            'client_id'     => $this->credentials->getConsumerId(),
            'client_secret' => $this->credentials->getConsumerSecret(),
            'refresh_token' => $refreshToken,
        );

        $responseBody = $this->httpClient->retrieveResponse(
            $this->getAccessTokenEndpoint(),
            $parameters,
            $this->getExtraOAuthHeaders()
        );
        $token = $this->parseAccessTokenResponse($responseBody);
        $this->storage->storeAccessToken($this->service(), $token);

        return $token;
    }

    /**
     * Return whether or not the passed scope value is valid.
     *
     * @param string $scope
     *
     * @return bool
     */
    public function isValidScope($scope)
    {
        $reflectionClass = new \ReflectionClass(get_class($this));

        return in_array($scope, $reflectionClass->getConstants(), true);
    }

    /**
     * Check if the given service need to generate a unique state token to build the authorization url
     *
     * @return bool
     */
    public function needsStateParameterInAuthUrl()
    {
        return $this->stateParameterInAuthUrl;
    }

    /**
     * Validates the authorization state against a given one
     *
     * @param string $state
     * @throws InvalidAuthorizationStateException
     */
    protected function validateAuthorizationState($state)
    {
        if ($this->retrieveAuthorizationState() !== $state) {
            throw new InvalidAuthorizationStateException();
        }
    }

    /**
     * Generates a random string to be used as state
     *
     * @return string
     */
    protected function generateAuthorizationState()
    {
        return md5(rand());
    }

    /**
     * Retrieves the authorization state for the current service
     *
     * @return string
     */
    protected function retrieveAuthorizationState()
    {
        return $this->storage->retrieveAuthorizationState($this->service());
    }

    /**
     * Stores a given authorization state into the storage
     *
     * @param string $state
     */
    protected function storeAuthorizationState($state)
    {
        $this->storage->storeAuthorizationState($this->service(), $state);
    }

    /**
     * Return any additional headers always needed for this service implementation's OAuth calls.
     *
     * @return array
     */
    protected function getExtraOAuthHeaders()
    {
        return array();
    }

    /**
     * Return any additional headers always needed for this service implementation's API calls.
     *
     * @return array
     */
    protected function getExtraApiHeaders()
    {
        return array();
    }

    /**
     * Parses the access token response and returns a TokenInterface.
     *
     * @abstract
     *
     * @param string $responseBody
     *
     * @return TokenInterface
     *
     * @throws TokenResponseException
     */
    abstract protected function parseAccessTokenResponse($responseBody);

    /**
     * Returns a class constant from ServiceInterface defining the authorization method used for the API
     * Header is the sane default.
     *
     * @return int
     */
    protected function getAuthorizationMethod()
    {
        return static::AUTHORIZATION_METHOD_HEADER_OAUTH;
    }

    /**
     * Returns api version string if is set else retrun empty string
     *
     * @return string
     */
    protected function getApiVersionString()
    {
        return !(empty($this->apiVersion)) ? "/".$this->apiVersion : "" ;
    }

    /**
     * Returns delimiter to scopes in getAuthorizationUri
     * For services that do not fully respect the Oauth's RFC,
     * and use scopes with commas as delimiter
     *
     * @return string
     */
    protected function getScopesDelimiter()
    {
        return ' ';
    }
}


1			<?php
2
3			namespace OAuth\OAuth2\Service;
4
5			use OAuth\Common\Consumer\CredentialsInterface;
6			use OAuth\Common\Exception\Exception;
7			use OAuth\Common\Service\AbstractService as BaseAbstractService;
8			use OAuth\Common\Storage\TokenStorageInterface;
9			use OAuth\Common\Http\Exception\TokenResponseException;
10			use OAuth\Common\Http\Client\ClientInterface;
11			use OAuth\Common\Http\Uri\UriInterface;
12			use OAuth\OAuth2\Service\Exception\InvalidAuthorizationStateException;
13			use OAuth\OAuth2\Service\Exception\InvalidScopeException;
14			use OAuth\OAuth2\Service\Exception\MissingRefreshTokenException;
15			use OAuth\Common\Token\TokenInterface;
16			use OAuth\Common\Token\Exception\ExpiredTokenException;
17
18			abstract class AbstractService extends BaseAbstractService implements ServiceInterface
19			{
20			/** @const OAUTH_VERSION */
21			const OAUTH_VERSION = 2;
22
23			/** @var array */
24			protected $scopes;
25
26			/** @var UriInterface\|null */
27			protected $baseApiUri;
28
29			/** @var bool */
30			protected $stateParameterInAuthUrl;
31
32			/** @var string */
33			protected $apiVersion;
34
35			/**
36			* @param CredentialsInterface $credentials
37			* @param ClientInterface $httpClient
38			* @param TokenStorageInterface $storage
39			* @param array $scopes
40			* @param UriInterface\|null $baseApiUri
41			* @param bool $stateParameterInAutUrl
42			* @param string $apiVersion
43			*
44			* @throws InvalidScopeException
45			*/
46			public function __construct(
47			CredentialsInterface $credentials,
48			ClientInterface $httpClient,
49			TokenStorageInterface $storage,
50			$scopes = array(),
51			UriInterface $baseApiUri = null,
52			$stateParameterInAutUrl = false,
53			$apiVersion = ""
54			) {
55			parent::__construct($credentials, $httpClient, $storage);
56			$this->stateParameterInAuthUrl = $stateParameterInAutUrl;
57
58			foreach ($scopes as $scope) {
59			if (!$this->isValidScope($scope)) {
60			throw new InvalidScopeException('Scope ' . $scope . ' is not valid for service ' . get_class($this));
61			}
62			}
63
64			$this->scopes = $scopes;
65
66			$this->baseApiUri = $baseApiUri;
67
68			$this->apiVersion = $apiVersion;
69			}
70
71			/**
72			* {@inheritdoc}
73			*/
74			public function getAuthorizationUri(array $additionalParameters = array())
75			{
76			$parameters = array_merge(
77			$additionalParameters,
78			array(
79			'type' => 'web_server',
80			'client_id' => $this->credentials->getConsumerId(),
81			'redirect_uri' => $this->credentials->getCallbackUrl(),
82			'response_type' => 'code',
83			)
84			);
85
86			$parameters['scope'] = implode($this->getScopesDelimiter(), $this->scopes);
87
88			if ($this->needsStateParameterInAuthUrl()) {
89			if (!isset($parameters['state'])) {
90			$parameters['state'] = $this->generateAuthorizationState();
91			}
92			$this->storeAuthorizationState($parameters['state']);
93			}
94
95			// Build the url
96			$url = clone $this->getAuthorizationEndpoint();
97			foreach ($parameters as $key => $val) {
98			$url->addToQuery($key, $val);
99			}
100
101			return $url;
102			}
103
104			/**
105			* {@inheritdoc}
106			*/
107			public function requestAccessToken($code, $state = null)
108			{
109			if (null !== $state) {
110			$this->validateAuthorizationState($state);
111			}
112
113			$bodyParams = array(
114			'code' => $code,
115			'client_id' => $this->credentials->getConsumerId(),
116			'client_secret' => $this->credentials->getConsumerSecret(),
117			'redirect_uri' => $this->credentials->getCallbackUrl(),
118			'grant_type' => 'authorization_code',
119			);
120
121			$responseBody = $this->httpClient->retrieveResponse(
122			$this->getAccessTokenEndpoint(),
123			$bodyParams,
124			$this->getExtraOAuthHeaders()
125			);
126
127			$token = $this->parseAccessTokenResponse($responseBody);
128			$this->storage->storeAccessToken($this->service(), $token);
129
130			return $token;
131			}
132
133			/**
134			* Sends an authenticated API request to the path provided.
135			* If the path provided is not an absolute URI, the base API Uri (must be passed into constructor) will be used.
136			*
137			* @param string\|UriInterface $path
138			* @param string $method HTTP method
139			* @param array $body Request body if applicable.
140			* @param array $extraHeaders Extra headers if applicable. These will override service-specific
141			* any defaults.
142			*
143			* @return string
144			*
145			* @throws ExpiredTokenException
146			* @throws Exception
147			*/
148			public function request($path, $method = 'GET', $body = null, array $extraHeaders = array())
149			{
150			$uri = $this->determineRequestUriFromPath($path, $this->baseApiUri);
151			$token = $this->storage->retrieveAccessToken($this->service());
152
153			if ($token->getEndOfLife() !== TokenInterface::EOL_NEVER_EXPIRES
154			&& $token->getEndOfLife() !== TokenInterface::EOL_UNKNOWN
155			&& time() > $token->getEndOfLife()
156			) {
157			throw new ExpiredTokenException(
158			sprintf(
159			'Token expired on %s at %s',
160			date('m/d/Y', $token->getEndOfLife()),
161			date('h:i:s A', $token->getEndOfLife())
162			)
163			);
164			}
165
166			// add the token where it may be needed
167			if (static::AUTHORIZATION_METHOD_HEADER_OAUTH === $this->getAuthorizationMethod()) {
168			$extraHeaders = array_merge(array('Authorization' => 'OAuth ' . $token->getAccessToken()), $extraHeaders);
169			} elseif (static::AUTHORIZATION_METHOD_QUERY_STRING === $this->getAuthorizationMethod()) {
170			$uri->addToQuery('access_token', $token->getAccessToken());
171			} elseif (static::AUTHORIZATION_METHOD_QUERY_STRING_V2 === $this->getAuthorizationMethod()) {
172			$uri->addToQuery('oauth2_access_token', $token->getAccessToken());
173			} elseif (static::AUTHORIZATION_METHOD_QUERY_STRING_V3 === $this->getAuthorizationMethod()) {
174			$uri->addToQuery('apikey', $token->getAccessToken());
175			} elseif (static::AUTHORIZATION_METHOD_QUERY_STRING_V4 === $this->getAuthorizationMethod()) {
176			$uri->addToQuery('auth', $token->getAccessToken());
177			} elseif (static::AUTHORIZATION_METHOD_HEADER_BEARER === $this->getAuthorizationMethod()) {
178			$extraHeaders = array_merge(array('Authorization' => 'Bearer ' . $token->getAccessToken()), $extraHeaders);
179			}
180
181			$extraHeaders = array_merge($this->getExtraApiHeaders(), $extraHeaders);
182
183			return $this->httpClient->retrieveResponse($uri, $body, $extraHeaders, $method);
184			}
185
186			/**
187			* Accessor to the storage adapter to be able to retrieve tokens
188			*
189			* @return TokenStorageInterface
190			*/
191			public function getStorage()
192			{
193			return $this->storage;
194			}
195
196			/**
197			* Refreshes an OAuth2 access token.
198			*
199			* @param TokenInterface $token
200			*
201			* @return TokenInterface $token
202			*
203			* @throws MissingRefreshTokenException
204			*/
205			public function refreshAccessToken(TokenInterface $token)
206			{
207			$refreshToken = $token->getRefreshToken();
208
209			if (empty($refreshToken)) {
210			throw new MissingRefreshTokenException();
211			}
212
213			$parameters = array(
214			'grant_type' => 'refresh_token',
215			'type' => 'web_server',
216			'client_id' => $this->credentials->getConsumerId(),
217			'client_secret' => $this->credentials->getConsumerSecret(),
218			'refresh_token' => $refreshToken,
219			);
220
221			$responseBody = $this->httpClient->retrieveResponse(
222			$this->getAccessTokenEndpoint(),
223			$parameters,
224			$this->getExtraOAuthHeaders()
225			);
226			$token = $this->parseAccessTokenResponse($responseBody);
227			$this->storage->storeAccessToken($this->service(), $token);
228
229			return $token;
230			}
231
232			/**
233			* Return whether or not the passed scope value is valid.
234			*
235			* @param string $scope
236			*
237			* @return bool
238			*/
239			public function isValidScope($scope)
240			{
241			$reflectionClass = new \ReflectionClass(get_class($this));
242
243			return in_array($scope, $reflectionClass->getConstants(), true);
244			}
245
246			/**
247			* Check if the given service need to generate a unique state token to build the authorization url
248			*
249			* @return bool
250			*/
251			public function needsStateParameterInAuthUrl()
252			{
253			return $this->stateParameterInAuthUrl;
254			}
255
256			/**
257			* Validates the authorization state against a given one
258			*
259			* @param string $state
260			* @throws InvalidAuthorizationStateException
261			*/
262			protected function validateAuthorizationState($state)
263			{
264			if ($this->retrieveAuthorizationState() !== $state) {
265			throw new InvalidAuthorizationStateException();
266			}
267			}
268
269			/**
270			* Generates a random string to be used as state
271			*
272			* @return string
273			*/
274			protected function generateAuthorizationState()
275			{
276			return md5(rand());
277			}
278
279			/**
280			* Retrieves the authorization state for the current service
281			*
282			* @return string
283			*/
284			protected function retrieveAuthorizationState()
285			{
286			return $this->storage->retrieveAuthorizationState($this->service());
287			}
288
289			/**
290			* Stores a given authorization state into the storage
291			*
292			* @param string $state
293			*/
294			protected function storeAuthorizationState($state)
295			{
296			$this->storage->storeAuthorizationState($this->service(), $state);
297			}
298
299			/**
300			* Return any additional headers always needed for this service implementation's OAuth calls.
301			*
302			* @return array
303			*/
304			protected function getExtraOAuthHeaders()
305			{
306			return array();
307			}
308
309			/**
310			* Return any additional headers always needed for this service implementation's API calls.
311			*
312			* @return array
313			*/
314			protected function getExtraApiHeaders()
315			{
316			return array();
317			}
318
319			/**
320			* Parses the access token response and returns a TokenInterface.
321			*
322			* @abstract
323			*
324			* @param string $responseBody
325			*
326			* @return TokenInterface
327			*
328			* @throws TokenResponseException
329			*/
330			abstract protected function parseAccessTokenResponse($responseBody);
331
332			/**
333			* Returns a class constant from ServiceInterface defining the authorization method used for the API
334			* Header is the sane default.
335			*
336			* @return int
337			*/
338			protected function getAuthorizationMethod()
339			{
340			return static::AUTHORIZATION_METHOD_HEADER_OAUTH;
341			}
342
343			/**
344			* Returns api version string if is set else retrun empty string
345			*
346			* @return string
347			*/
348			protected function getApiVersionString()
349			{
350			return !(empty($this->apiVersion)) ? "/".$this->apiVersion : "" ;
351			}
352
353			/**
354			* Returns delimiter to scopes in getAuthorizationUri
355			* For services that do not fully respect the Oauth's RFC,
356			* and use scopes with commas as delimiter
357			*
358			* @return string
359			*/
360			protected function getScopesDelimiter()
361			{
362			return ' ';
363			}
364			}
365

Lusitanian / PHPoAuthLib

Push — master ( 29bda6...e00326 )

AbstractService A

Complexity

Size/Duplication

Coupling/Cohesion

Importance

18 Methods

Duplication Side-by-Side

Filter issues like