AnnotationDriver::onKernelController() - Code Metrics - Inspection of "Rework of the bundles" - OAuth2-Framework/oauth2-framework - Measure and Improve Code Quality continuously with Scrutinizer

Failed Conditions

Pull Request — master (#125)

by Florent

created 2018-05-03 13:21 UTC

AnnotationDriver::onKernelController() A

↳ Parent: AnnotationDriver

Complexity

Conditions	4
Paths	4

Size

Total Lines	17
Code Lines	10

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	17
rs	9.2
c	0
b	0
f	0
cc	4
eloc	10
nc	4
nop	1

<?php

declare(strict_types=1);

/*
 * The MIT License (MIT)
 *
 * Copyright (c) 2014-2018 Spomky-Labs
 *
 * This software may be modified and distributed under the terms
 * of the MIT license.  See the LICENSE file for details.
 */

namespace OAuth2Framework\SecurityBundle\Annotation;

use Doctrine\Common\Annotations\Reader;
use OAuth2Framework\SecurityBundle\Annotation\Checker\Checker;
use OAuth2Framework\SecurityBundle\Security\Authentication\Token\OAuth2Token;
use OAuth2Framework\Component\Core\Message\OAuth2Message;
use OAuth2Framework\Component\Core\Message\OAuth2MessageFactoryManager;
use Psr\Http\Message\ResponseInterface;
use Symfony\Bridge\PsrHttpMessage\Factory\HttpFoundationFactory;
use Symfony\Component\HttpKernel\Event\FilterControllerEvent;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;

class AnnotationDriver
{
    /**
     * @var Reader
     */
    private $reader;

    /**
     * @var TokenStorageInterface
     */
    private $tokenStorage;

    /**
     * @var Checker[]
     */
    private $checkers = [];

    /**
     * @var OAuth2MessageFactoryManager
     */
    private $oauth2ResponseFactoryManager;

    /**
     * AnnotationDriver constructor.
     *
     * @param Reader                      $reader
     * @param TokenStorageInterface       $tokenStorage
     * @param OAuth2MessageFactoryManager $oauth2ResponseFactoryManager
     */
    public function __construct(Reader $reader, TokenStorageInterface $tokenStorage, OAuth2MessageFactoryManager $oauth2ResponseFactoryManager)
    {
        $this->reader = $reader;
        $this->tokenStorage = $tokenStorage;
        $this->oauth2ResponseFactoryManager = $oauth2ResponseFactoryManager;
    }

    /**
     * @param Checker $checker
     *
     * @return AnnotationDriver
     */
    public function add(Checker $checker): self
    {
        $this->checkers[] = $checker;

        return $this;
    }

    /**
     * @return Checker[]
     */
    public function all(): array
    {
        return $this->checkers;
    }

    public function onKernelController(FilterControllerEvent $event)
    {
        if (!is_array($controller = $event->getController())) {
            return;
        }

        $object = new \ReflectionObject($controller[0]);
        $method = $object->getMethod($controller[1]);
        $classConfigurations = $this->reader->getClassAnnotations($object);
        $methodConfigurations = $this->reader->getMethodAnnotations($method);

        foreach (array_merge($classConfigurations, $methodConfigurations) as $configuration) {
            if ($configuration instanceof OAuth2) {
                $this->processOAuth2Annotation($event, $configuration);
            }
        }
    }

    /**
     * @param FilterControllerEvent $event
     * @param OAuth2                $configuration
     */
    private function processOAuth2Annotation(FilterControllerEvent $event, OAuth2 $configuration): void
    {
        $token = $this->tokenStorage->getToken();

        if (!$token instanceof OAuth2Token) {
            $this->createAuthenticationException($event, 'OAuth2 authentication required', $configuration);

            return;
        }

        foreach ($this->all() as $checker) {
            try {
                $checker->check($token, $configuration);
            } catch (\Exception $e) {
                $this->createAccessDeniedException($event, $e->getMessage(), $configuration, $e);
            }
        }
    }

    /**
     * @param FilterControllerEvent $event
     * @param string                $message
     * @param OAuth2                $configuration
     */
    private function createAuthenticationException(FilterControllerEvent $event, string $message, OAuth2 $configuration)
    {
        $additionalData = $configuration->getScope() ? ['scope' => $configuration->getScope()] : [];
        $response = $this->oauth2ResponseFactoryManager->getResponse(
            new OAuth2Message(
                401,
                OAuth2Message::ERROR_ACCESS_DENIED,
                $message
            ),
            $additionalData
        );

        $this->updateFilterControllerEvent($event, $response);
    }

    /**
     * @param FilterControllerEvent $event
     * @param string                $message
     * @param OAuth2                $configuration
     * @param \Exception            $previous
     */
    private function createAccessDeniedException(FilterControllerEvent $event, string $message, OAuth2 $configuration, \Exception $previous)
    {
        $additionalData = $configuration->getScope() ? ['scope' => $configuration->getScope()] : [];
        $response = $this->oauth2ResponseFactoryManager->getResponse(
            new OAuth2Message(
            403,
            OAuth2Message::ERROR_ACCESS_DENIED,
                $message,
                $previous
            ),
            $additionalData
        );
        $this->updateFilterControllerEvent($event, $response);
    }

    /**
     * @param FilterControllerEvent $event
     * @param ResponseInterface     $psr7Response
     */
    private function updateFilterControllerEvent(FilterControllerEvent $event, ResponseInterface $psr7Response)
    {
        $event->setController(function () use ($psr7Response) {
            $factory = new HttpFoundationFactory();
            $symfonyResponse = $factory->createResponse($psr7Response);

            return $symfonyResponse;
        });
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			/*
6			* The MIT License (MIT)
7			*
8			* Copyright (c) 2014-2018 Spomky-Labs
9			*
10			* This software may be modified and distributed under the terms
11			* of the MIT license. See the LICENSE file for details.
12			*/
13
14			namespace OAuth2Framework\SecurityBundle\Annotation;
15
16			use Doctrine\Common\Annotations\Reader;
17			use OAuth2Framework\SecurityBundle\Annotation\Checker\Checker;
18			use OAuth2Framework\SecurityBundle\Security\Authentication\Token\OAuth2Token;
19			use OAuth2Framework\Component\Core\Message\OAuth2Message;
20			use OAuth2Framework\Component\Core\Message\OAuth2MessageFactoryManager;
21			use Psr\Http\Message\ResponseInterface;
22			use Symfony\Bridge\PsrHttpMessage\Factory\HttpFoundationFactory;
23			use Symfony\Component\HttpKernel\Event\FilterControllerEvent;
24			use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
25
26			class AnnotationDriver
27			{
28			/**
29			* @var Reader
30			*/
31			private $reader;
32
33			/**
34			* @var TokenStorageInterface
35			*/
36			private $tokenStorage;
37
38			/**
39			* @var Checker[]
40			*/
41			private $checkers = [];
42
43			/**
44			* @var OAuth2MessageFactoryManager
45			*/
46			private $oauth2ResponseFactoryManager;
47
48			/**
49			* AnnotationDriver constructor.
50			*
51			* @param Reader $reader
52			* @param TokenStorageInterface $tokenStorage
53			* @param OAuth2MessageFactoryManager $oauth2ResponseFactoryManager
54			*/
55			public function __construct(Reader $reader, TokenStorageInterface $tokenStorage, OAuth2MessageFactoryManager $oauth2ResponseFactoryManager)
56			{
57			$this->reader = $reader;
58			$this->tokenStorage = $tokenStorage;
59			$this->oauth2ResponseFactoryManager = $oauth2ResponseFactoryManager;
60			}
61
62			/**
63			* @param Checker $checker
64			*
65			* @return AnnotationDriver
66			*/
67			public function add(Checker $checker): self
68			{
69			$this->checkers[] = $checker;
70
71			return $this;
72			}
73
74			/**
75			* @return Checker[]
76			*/
77			public function all(): array
78			{
79			return $this->checkers;
80			}
81
82			public function onKernelController(FilterControllerEvent $event)
83			{
84			if (!is_array($controller = $event->getController())) {
85			return;
86			}
87
88			$object = new \ReflectionObject($controller[0]);
89			$method = $object->getMethod($controller[1]);
90			$classConfigurations = $this->reader->getClassAnnotations($object);
91			$methodConfigurations = $this->reader->getMethodAnnotations($method);
92
93			foreach (array_merge($classConfigurations, $methodConfigurations) as $configuration) {
94			if ($configuration instanceof OAuth2) {
95			$this->processOAuth2Annotation($event, $configuration);
96			}
97			}
98			}
99
100			/**
101			* @param FilterControllerEvent $event
102			* @param OAuth2 $configuration
103			*/
104			private function processOAuth2Annotation(FilterControllerEvent $event, OAuth2 $configuration): void
105			{
106			$token = $this->tokenStorage->getToken();
107
108			if (!$token instanceof OAuth2Token) {
109			$this->createAuthenticationException($event, 'OAuth2 authentication required', $configuration);
110
111			return;
112			}
113
114			foreach ($this->all() as $checker) {
115			try {
116			$checker->check($token, $configuration);
117			} catch (\Exception $e) {
118			$this->createAccessDeniedException($event, $e->getMessage(), $configuration, $e);
119			}
120			}
121			}
122
123			/**
124			* @param FilterControllerEvent $event
125			* @param string $message
126			* @param OAuth2 $configuration
127			*/
128			private function createAuthenticationException(FilterControllerEvent $event, string $message, OAuth2 $configuration)
129			{
130			$additionalData = $configuration->getScope() ? ['scope' => $configuration->getScope()] : [];
131			$response = $this->oauth2ResponseFactoryManager->getResponse(
132			new OAuth2Message(
133			401,
134			OAuth2Message::ERROR_ACCESS_DENIED,
135			$message
136			),
137			$additionalData
138			);
139
140			$this->updateFilterControllerEvent($event, $response);
141			}
142
143			/**
144			* @param FilterControllerEvent $event
145			* @param string $message
146			* @param OAuth2 $configuration
147			* @param \Exception $previous
148			*/
149			private function createAccessDeniedException(FilterControllerEvent $event, string $message, OAuth2 $configuration, \Exception $previous)
150			{
151			$additionalData = $configuration->getScope() ? ['scope' => $configuration->getScope()] : [];
152			$response = $this->oauth2ResponseFactoryManager->getResponse(
153			new OAuth2Message(
154			403,
155			OAuth2Message::ERROR_ACCESS_DENIED,
156			$message,
157			$previous
158			),
159			$additionalData
160			);
161			$this->updateFilterControllerEvent($event, $response);
162			}
163
164			/**
165			* @param FilterControllerEvent $event
166			* @param ResponseInterface $psr7Response
167			*/
168			private function updateFilterControllerEvent(FilterControllerEvent $event, ResponseInterface $psr7Response)
169			{
170			$event->setController(function () use ($psr7Response) {
171			$factory = new HttpFoundationFactory();
172			$symfonyResponse = $factory->createResponse($psr7Response);
173
174			return $symfonyResponse;
175			});
176			}
177			}
178

OAuth2-Framework / oauth2-framework

Pull Request — master (#125)

AnnotationDriver::onKernelController() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like