GssfConsumeAssertionController::consumeAssertion() - Code Metrics - Inspection of "Feature/symfony6 upgrade" - OpenConext/Stepup-SelfService - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — main (#308)

by Paul

created 2023-12-21 12:06 UTC

GssfConsumeAssertionController::consumeAssertion() B

↳ Parent: GssfConsumeAssertionController

Complexity

Conditions	6
Paths	5

Size

Total Lines	78
Code Lines	47

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	6
eloc	47
c	0
b	0
f	0
nc	5
nop	2
dl	0
loc	78
rs	8.5341

How to fix Long Method

<?php

declare(strict_types = 1);

/**
 * Copyright 2023 SURFnet bv
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */


namespace Surfnet\StepupSelfService\SelfServiceBundle\Controller\Registration\Gssf;

use Exception;
use Psr\Log\LoggerInterface;
use Surfnet\SamlBundle\Http\PostBinding;
use Surfnet\SamlBundle\SAML2\Attribute\AttributeDictionary;
use Surfnet\SamlBundle\SAML2\Response\Assertion\InResponseTo;
use Surfnet\StepupSelfService\SamlStepupProviderBundle\Provider\Provider;
use Surfnet\StepupSelfService\SamlStepupProviderBundle\Provider\ProviderRepository;
use Surfnet\StepupSelfService\SelfServiceBundle\Controller\Controller;
use Surfnet\StepupSelfService\SelfServiceBundle\Service\GssfService;
filter:
    dependency_paths: ["lib/*"]
use Surfnet\StepupSelfService\SelfServiceBundle\Service\InstitutionConfigurationOptionsService;
use Symfony\Component\HttpFoundation\RedirectResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Routing\Attribute\Route;

/**
 * Controls registration with Generic SAML Stepup Providers (GSSPs), yielding Generic SAML Second Factors (GSSFs).
 */

final class GssfConsumeAssertionController extends Controller
{
    public function __construct(

        private readonly LoggerInterface           $logger,
        InstitutionConfigurationOptionsService     $configurationOptionsService,
        private readonly ProviderRepository        $providerRepository,
        private readonly PostBinding               $postBinding,
        private readonly GssfService               $gssfService,
        private readonly AttributeDictionary       $attributeDictionary,
    ) {
        parent::__construct($logger, $configurationOptionsService);
    }

    #[Route(
        path: '/registration/gssf/{provider}/consume-assertion',
        name: 'ss_registration_gssf_consume_assertion',
        methods: ['POST'],
    )]
    public function consumeAssertion(Request $httpRequest, string $provider): array|Response

    {
        $this->assertSecondFactorEnabled($provider);

        $provider = $this->providerRepository->get($provider);

        $this->logger->notice(
            sprintf('Received GSSP "%s" SAMLResponse through Gateway, attempting to process', $provider->getName())
        );

        try {
            $assertion = $this->postBinding->processResponse(
                $httpRequest,
                $provider->getRemoteIdentityProvider(),
                $provider->getServiceProvider()
            );
        } catch (Exception $exception) {
            $provider->getStateHandler()->clear();

            $this->logger->error(
                sprintf('Could not process received Response, error: "%s"', $exception->getMessage())
            );

            return $this->redirectToStatusReportForm(
                $provider,
                ['authenticationFailed' => true]
            );
        }

        $expectedResponseTo = $provider->getStateHandler()->getRequestId();
        $provider->getStateHandler()->clear();

        if (!InResponseTo::assertEquals($assertion, $expectedResponseTo)) {
            $this->logger->critical(sprintf(

                'Received Response with unexpected InResponseTo, %s',
                ($expectedResponseTo ? 'expected "' . $expectedResponseTo . '"' : ' no response expected')
            ));
someFunctionCall(
    $firstArgument,
    $secondArgument,
    $thirdArgument
); // Closing parenthesis on a new line.

            return $this->redirectToStatusReportForm(
                $provider,
                ['authenticationFailed' => true]
            );
        }

        $this->logger->notice(
            sprintf('Processed GSSP "%s" SAMLResponse received through Gateway successfully', $provider->getName())
        );

        $gssfId = $this->attributeDictionary->translate($assertion)->getNameID();

        $secondFactorId = $this->gssfService->provePossession($this->getIdentity()->id, $provider->getName(), $gssfId);

        if ($secondFactorId) {
            $this->logger->notice('GSSF possession has been proven successfully');

            if ($this->emailVerificationIsRequired()) {
                return $this->redirectToRoute(
                    'ss_registration_email_verification_email_sent',
                    ['secondFactorId' => $secondFactorId]
                );
            } else {
                return $this->redirectToRoute(
                    'ss_second_factor_vetting_types',
                    ['secondFactorId' => $secondFactorId]
                );
            }
        }

        $this->logger->error('Unable to prove GSSF possession');

        return $this->redirectToStatusReportForm(
            $provider,
            ['proofOfPossessionFailed' => true]
        );
    }

    private function redirectToStatusReportForm(Provider $provider, array $options): RedirectResponse

    {
        return $this->redirectToRoute(
            'ss_registration_gssf_status_report',
            $options + [
                'provider' => $provider->getName(),
            ]
        );
    }

}


1			<?php
2
3			declare(strict_types = 1);
4
5			/**
6			* Copyright 2023 SURFnet bv
7			*
8			* Licensed under the Apache License, Version 2.0 (the "License");
9			* you may not use this file except in compliance with the License.
10			* You may obtain a copy of the License at
11			*
12			* http://www.apache.org/licenses/LICENSE-2.0
13			*
14			* Unless required by applicable law or agreed to in writing, software
15			* distributed under the License is distributed on an "AS IS" BASIS,
16			* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
17			* See the License for the specific language governing permissions and
18			* limitations under the License.
19			*/
			0 ignored issues – show Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report PHP version not specified Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @category tag in file comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @package tag in file comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @author tag in file comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @license tag in file comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @link tag in file comment Loading history...
20
21			namespace Surfnet\StepupSelfService\SelfServiceBundle\Controller\Registration\Gssf;
22
23			use Exception;
24			use Psr\Log\LoggerInterface;
25			use Surfnet\SamlBundle\Http\PostBinding;
26			use Surfnet\SamlBundle\SAML2\Attribute\AttributeDictionary;
27			use Surfnet\SamlBundle\SAML2\Response\Assertion\InResponseTo;
28			use Surfnet\StepupSelfService\SamlStepupProviderBundle\Provider\Provider;
29			use Surfnet\StepupSelfService\SamlStepupProviderBundle\Provider\ProviderRepository;
30			use Surfnet\StepupSelfService\SelfServiceBundle\Controller\Controller;
31			use Surfnet\StepupSelfService\SelfServiceBundle\Service\GssfService;
			0 ignored issues – show Bug introduced 2023-12-11 16:29 UTC by Report Bug Copy Issue Report The type `Surfnet\StepupSelfServic...dle\Service\GssfService` was not found. Maybe you did not declare it correctly or list all dependencies? The issue could also be caused by a filter entry in the build configuration. If the path has been excluded in your configuration, e.g. `excluded_paths: ["lib/"]`, you can move it to the dependency path list as follows: filter: dependency_paths: ["lib/"] For further information see https://scrutinizer-ci.com/docs/tools/php/php-scrutinizer/#list-dependency-paths Loading history...
32			use Surfnet\StepupSelfService\SelfServiceBundle\Service\InstitutionConfigurationOptionsService;
33			use Symfony\Component\HttpFoundation\RedirectResponse;
34			use Symfony\Component\HttpFoundation\Request;
35			use Symfony\Component\HttpFoundation\Response;
36			use Symfony\Component\Routing\Attribute\Route;
37
38			/**
39			* Controls registration with Generic SAML Stepup Providers (GSSPs), yielding Generic SAML Second Factors (GSSFs).
40			*/
			0 ignored issues – show Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @category tag in class comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @package tag in class comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @author tag in class comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @license tag in class comment Loading history... Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing @link tag in class comment Loading history...
41			final class GssfConsumeAssertionController extends Controller
42			{
43			public function __construct(
			0 ignored issues – show Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Missing doc comment for function __construct() Loading history...
44			private readonly LoggerInterface $logger,
45			InstitutionConfigurationOptionsService $configurationOptionsService,
46			private readonly ProviderRepository $providerRepository,
47			private readonly PostBinding $postBinding,
48			private readonly GssfService $gssfService,
49			private readonly AttributeDictionary $attributeDictionary,
50			) {
51			parent::__construct($logger, $configurationOptionsService);
52			}
53
54			#[Route(
55			path: '/registration/gssf/{provider}/consume-assertion',
56			name: 'ss_registration_gssf_consume_assertion',
57			methods: ['POST'],
58			)]
59			public function consumeAssertion(Request $httpRequest, string $provider): array\|Response
			0 ignored issues – show Coding Style introduced 2023-12-11 16:29 UTC by Report Bug Copy Issue Report Missing doc comment for function consumeAssertion() Loading history...
60			{
61			$this->assertSecondFactorEnabled($provider);
62
63			$provider = $this->providerRepository->get($provider);
64
65			$this->logger->notice(
66			sprintf('Received GSSP "%s" SAMLResponse through Gateway, attempting to process', $provider->getName())
67			);
68
69			try {
70			$assertion = $this->postBinding->processResponse(
71			$httpRequest,
72			$provider->getRemoteIdentityProvider(),
73			$provider->getServiceProvider()
74			);
75			} catch (Exception $exception) {
76			$provider->getStateHandler()->clear();
77
78			$this->logger->error(
79			sprintf('Could not process received Response, error: "%s"', $exception->getMessage())
80			);
81
82			return $this->redirectToStatusReportForm(
83			$provider,
84			['authenticationFailed' => true]
85			);
86			}
87
88			$expectedResponseTo = $provider->getStateHandler()->getRequestId();
89			$provider->getStateHandler()->clear();
90
91			if (!InResponseTo::assertEquals($assertion, $expectedResponseTo)) {
92			$this->logger->critical(sprintf(
			0 ignored issues – show Coding Style introduced 2023-11-16 15:54 UTC by Report Bug Copy Issue Report The opening parenthesis of a multi-line function call should be the last content on the line. Loading history...
93			'Received Response with unexpected InResponseTo, %s',
94			($expectedResponseTo ? 'expected "' . $expectedResponseTo . '"' : ' no response expected')
95			));
			0 ignored issues – show Coding Style introduced 2023-11-16 15:54 UTC by Report Bug Copy Issue Report For multi-line function calls, the closing parenthesis should be on a new line. If a function call spawns multiple lines, the coding standard suggests to move the closing parenthesis to a new line: someFunctionCall( $firstArgument, $secondArgument, $thirdArgument ); // Closing parenthesis on a new line. Loading history...
96
97			return $this->redirectToStatusReportForm(
98			$provider,
99			['authenticationFailed' => true]
100			);
101			}
102
103			$this->logger->notice(
104			sprintf('Processed GSSP "%s" SAMLResponse received through Gateway successfully', $provider->getName())
105			);
106
107			$gssfId = $this->attributeDictionary->translate($assertion)->getNameID();
108
109			$secondFactorId = $this->gssfService->provePossession($this->getIdentity()->id, $provider->getName(), $gssfId);
110
111			if ($secondFactorId) {
112			$this->logger->notice('GSSF possession has been proven successfully');
113
114			if ($this->emailVerificationIsRequired()) {
115			return $this->redirectToRoute(
116			'ss_registration_email_verification_email_sent',
117			['secondFactorId' => $secondFactorId]
118			);
119			} else {
120			return $this->redirectToRoute(
121			'ss_second_factor_vetting_types',
122			['secondFactorId' => $secondFactorId]
123			);
124			}
125			}
126
127			$this->logger->error('Unable to prove GSSF possession');
128
129			return $this->redirectToStatusReportForm(
130			$provider,
131			['proofOfPossessionFailed' => true]
132			);
133			}
134
135			private function redirectToStatusReportForm(Provider $provider, array $options): RedirectResponse
			0 ignored issues – show Coding Style introduced 2023-12-21 12:12 UTC by Report Bug Copy Issue Report Private method name "GssfConsumeAssertionController::redirectToStatusReportForm" must be prefixed with an underscore Loading history... Coding Style introduced 2023-11-16 15:54 UTC by Report Bug Copy Issue Report Missing doc comment for function redirectToStatusReportForm() Loading history...
136			{
137			return $this->redirectToRoute(
138			'ss_registration_gssf_status_report',
139			$options + [
140			'provider' => $provider->getName(),
141			]
142			);
143			}
144
145			}
146

OpenConext / Stepup-SelfService

Pull Request — main (#308)

GssfConsumeAssertionController::consumeAssertion() B

Complexity

Size

Duplication

Importance

How to fix Long Method

Long Method

Duplication Side-by-Side

Filter issues like