Google2FAMiddleware::handle() - Code Metrics - Inspection of "CS fixes" - NNTmux/newznab-tmux - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( ec8b22...b724fa )

by Darko

created 2025-06-09 14:07 UTC

Google2FAMiddleware::handle() B

↳ Parent: Google2FAMiddleware

Complexity

Conditions	9
Paths	27

Size

Total Lines	39
Code Lines	16

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
eloc	16
c	0
b	0
f	0
dl	0
loc	39
rs	8.0555
cc	9
nc	27
nop	2

<?php

namespace App\Http\Middleware;

use App\Support\Google2FAAuthenticator;
use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpFoundation\Response;

class Google2FAMiddleware
{
    /**
     * Handle an incoming request.
     */
    public function handle(Request $request, Closure $next): Response
    {
        // Direct check for trusted device cookie
        $trustedCookie = $request->cookie('2fa_trusted_device');

        if ($trustedCookie && auth()->check()) {
            try {
                $cookieData = json_decode($trustedCookie, true);
                $cookieData = json_decode(/** @scrutinizer ignore-type */ $trustedCookie, true);

                if (json_last_error() === JSON_ERROR_NONE) {
                    // Check if all required fields exist
                    if (isset($cookieData['user_id'], $cookieData['token'], $cookieData['expires_at'])) {
                        // Check if cookie user ID matches authenticated user
                        if ((int) $cookieData['user_id'] === (int) auth()->id()) {
                            // Check if cookie is not expired
                            if (time() <= $cookieData['expires_at']) {
                                // Set the session variables for 2FA authentication
                                session([config('google2fa.session_var') => true]);
                                session([config('google2fa.session_var').'.auth.passed_at' => time()]);

                                // IMMEDIATELY allow the request to proceed - bypass all other checks
                                return $next($request);
                            }
                        }
                    }
                }
            } catch (\Exception $e) {
                // Silently handle any exceptions
            }
        }

        // Continue with normal 2FA flow if we reach this point
        $authenticator = app(Google2FAAuthenticator::class)->boot($request);

        if ($authenticator->isAuthenticated()) {
            return $next($request);
        }

        return $authenticator->makeRequestOneTimePasswordResponse();
    }
}


NNTmux / newznab-tmux

Push — master ( ec8b22...b724fa )

Google2FAMiddleware::handle() B

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like