SamlCalloutHelper::__construct() - Code Metrics - Inspection of "Add remote vetting POC" - OpenConext/Stepup-SelfService - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Pull Request — develop (#225)

unknown

created 2021-03-03 13:55 UTC

SamlCalloutHelper::__construct() A

↳ Parent: SamlCalloutHelper

Complexity

Conditions	1
Paths	1

Size

Total Lines

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	13
c	0
b	0
f	0
rs	9.8333
cc	1
nc	1
nop	5

<?php
/**
 * Copyright 2010 SURFnet B.V.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

namespace Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVetting;

use Psr\Log\LoggerInterface;
use SAML2\Constants;
use SAML2\XML\saml\SubjectConfirmation;
use Surfnet\SamlBundle\Entity\ServiceProvider;
use Surfnet\SamlBundle\Http\PostBinding;
use Surfnet\SamlBundle\SAML2\AuthnRequestFactory;
use Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVetting\Dto\AttributeListDto;
use Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVetting\Value\ProcessId;
use Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVettingService;
use Symfony\Component\HttpFoundation\Request;

class SamlCalloutHelper
{
    /**
     * @var IdentityProviderFactory
     */
    private $identityProviderFactory;
    /**
     * @var PostBinding
     */
    private $postBinding;
    /**
     * @var RemoteVettingService
     */
    private $remoteVettingService;
    /**
     * @var LoggerInterface
     */
    private $logger;
    /**
     * @var ServiceProvider
     */
    private $serviceProvider;

    public function __construct(
        IdentityProviderFactory $identityProviderFactory,
        ServiceProviderFactory $serviceProviderFactory,
        PostBinding $postBinding,
        RemoteVettingService $remoteVettingService,
        LoggerInterface $logger
    ) {
        $this->identityProviderFactory = $identityProviderFactory;
        $this->serviceProvider = $serviceProviderFactory->create();
        $this->postBinding = $postBinding;
        $this->remoteVettingService = $remoteVettingService;
        $this->logger = $logger;
    }

    /**
     * @param string $identityProviderSlug
     * @return string
     */
    public function createAuthnRequest($identityProviderSlug)
    {
        $this->logger->info(sprintf('Creating a SAML2 AuthnRequest to send to the %s remote vetting IdP', $identityProviderSlug));

        $identityProvider = $this->identityProviderFactory->create($identityProviderSlug);
        $authnRequest = AuthnRequestFactory::createNewRequest($this->serviceProvider, $identityProvider);

        // Set NameId
        $authnRequest->setSubject('', Constants::NAMEID_UNSPECIFIED);

        // Set AuthnContextClassRef
        $authnRequest->setAuthenticationContextClassRef(Constants::AC_UNSPECIFIED);

        // Handle validating state
        $this->remoteVettingService->startValidation(ProcessId::create($authnRequest->getRequestId()));

        // Create redirect response.
        $query = $authnRequest->buildRequestQuery();

        return sprintf(
            '%s?%s',
            $identityProvider->getSsoUrl(),
            $query
        );
    }

    /**
     * @param Request $request
     * @param string $identityProviderSlug
     * @return ProcessId
     */
    public function handleResponse(Request $request, $identityProviderSlug)
    {
        $identityProvider = $this->identityProviderFactory->create($identityProviderSlug);

        $this->logger->info(sprintf('Process the SAML Respons received from the %s remote vetting IdP', $identityProviderSlug));

        $assertion = $this->postBinding->processResponse(
            $request,
            $identityProvider,
            $this->serviceProvider
        );

        /** @var SubjectConfirmation $subjectConfirmation */
        $subjectConfirmation = $assertion->getSubjectConfirmation()[0];
        $requestId = $subjectConfirmation->SubjectConfirmationData->InResponseTo;

        // Create log DTO in order to store
        $attributeLogDto = new AttributeListDto(
            $assertion->getAttributes(),
            (string)$subjectConfirmation->NameID
        );

        // Handle validated state
        $processId = ProcessId::create($requestId);
        $this->remoteVettingService->finishValidation($processId, $attributeLogDto);
        return $processId;
    }
}


1			<?php
2			/**
3			* Copyright 2010 SURFnet B.V.
4			*
5			* Licensed under the Apache License, Version 2.0 (the "License");
6			* you may not use this file except in compliance with the License.
7			* You may obtain a copy of the License at
8			*
9			* http://www.apache.org/licenses/LICENSE-2.0
10			*
11			* Unless required by applicable law or agreed to in writing, software
12			* distributed under the License is distributed on an "AS IS" BASIS,
13			* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14			* See the License for the specific language governing permissions and
15			* limitations under the License.
16			*/
17
18			namespace Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVetting;
19
20			use Psr\Log\LoggerInterface;
21			use SAML2\Constants;
22			use SAML2\XML\saml\SubjectConfirmation;
23			use Surfnet\SamlBundle\Entity\ServiceProvider;
24			use Surfnet\SamlBundle\Http\PostBinding;
25			use Surfnet\SamlBundle\SAML2\AuthnRequestFactory;
26			use Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVetting\Dto\AttributeListDto;
27			use Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVetting\Value\ProcessId;
28			use Surfnet\StepupSelfService\SelfServiceBundle\Service\RemoteVettingService;
29			use Symfony\Component\HttpFoundation\Request;
30
31			class SamlCalloutHelper
32			{
33			/**
34			* @var IdentityProviderFactory
35			*/
36			private $identityProviderFactory;
37			/**
38			* @var PostBinding
39			*/
40			private $postBinding;
41			/**
42			* @var RemoteVettingService
43			*/
44			private $remoteVettingService;
45			/**
46			* @var LoggerInterface
47			*/
48			private $logger;
49			/**
50			* @var ServiceProvider
51			*/
52			private $serviceProvider;
53
54			public function __construct(
55			IdentityProviderFactory $identityProviderFactory,
56			ServiceProviderFactory $serviceProviderFactory,
57			PostBinding $postBinding,
58			RemoteVettingService $remoteVettingService,
59			LoggerInterface $logger
60			) {
61			$this->identityProviderFactory = $identityProviderFactory;
62			$this->serviceProvider = $serviceProviderFactory->create();
63			$this->postBinding = $postBinding;
64			$this->remoteVettingService = $remoteVettingService;
65			$this->logger = $logger;
66			}
67
68			/**
69			* @param string $identityProviderSlug
70			* @return string
71			*/
72			public function createAuthnRequest($identityProviderSlug)
73			{
74			$this->logger->info(sprintf('Creating a SAML2 AuthnRequest to send to the %s remote vetting IdP', $identityProviderSlug));
75
76			$identityProvider = $this->identityProviderFactory->create($identityProviderSlug);
77			$authnRequest = AuthnRequestFactory::createNewRequest($this->serviceProvider, $identityProvider);
78
79			// Set NameId
80			$authnRequest->setSubject('', Constants::NAMEID_UNSPECIFIED);
81
82			// Set AuthnContextClassRef
83			$authnRequest->setAuthenticationContextClassRef(Constants::AC_UNSPECIFIED);
84
85			// Handle validating state
86			$this->remoteVettingService->startValidation(ProcessId::create($authnRequest->getRequestId()));
87
88			// Create redirect response.
89			$query = $authnRequest->buildRequestQuery();
90
91			return sprintf(
92			'%s?%s',
93			$identityProvider->getSsoUrl(),
94			$query
95			);
96			}
97
98			/**
99			* @param Request $request
100			* @param string $identityProviderSlug
101			* @return ProcessId
102			*/
103			public function handleResponse(Request $request, $identityProviderSlug)
104			{
105			$identityProvider = $this->identityProviderFactory->create($identityProviderSlug);
106
107			$this->logger->info(sprintf('Process the SAML Respons received from the %s remote vetting IdP', $identityProviderSlug));
108
109			$assertion = $this->postBinding->processResponse(
110			$request,
111			$identityProvider,
112			$this->serviceProvider
113			);
114
115			/** @var SubjectConfirmation $subjectConfirmation */
116			$subjectConfirmation = $assertion->getSubjectConfirmation()[0];
117			$requestId = $subjectConfirmation->SubjectConfirmationData->InResponseTo;
118
119			// Create log DTO in order to store
120			$attributeLogDto = new AttributeListDto(
121			$assertion->getAttributes(),
122			(string)$subjectConfirmation->NameID
123			);
124
125			// Handle validated state
126			$processId = ProcessId::create($requestId);
127			$this->remoteVettingService->finishValidation($processId, $attributeLogDto);
128			return $processId;
129			}
130			}
131

OpenConext / Stepup-SelfService

Pull Request — develop (#225)

SamlCalloutHelper::__construct() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like