ProcessSamlAuthenticationHandler - Code Metrics - Inspection of "Merge pull request #140 from OpenConext/feature/si..." - OpenConext/Stepup-SelfService - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — develop ( 39f69e...2cda13 )

unknown

created 2018-04-05 07:48 UTC

ProcessSamlAuthenticationHandler A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	106
Duplicated Lines	16.04 %

Coupling/Cohesion

Components	1
Dependencies	12

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
wmc	7
c	1
b	0
f	0
lcom	1
cbo	12
dl	17
loc	106
rs	10

3 Methods

Rating	Name	Duplication	Size	Complexity
B	process()	0	40	5
A	setNext()	0	4	1
A	__construct()	17	17	1

How to fix Duplicated Code

<?php

/**
 * Copyright 2016 SURFnet bv
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

namespace Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\Handler;

use Surfnet\SamlBundle\Monolog\SamlAuthenticationLogger;
use Surfnet\SamlBundle\SAML2\Response\Assertion\InResponseTo;
use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\AuthenticatedSessionStateHandler;
use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\SamlAuthenticationStateHandler;
use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\SamlInteractionProvider;
use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\Token\SamlToken;
use Symfony\Bundle\FrameworkBundle\Templating\EngineInterface;
use Symfony\Component\HttpFoundation\RedirectResponse;
use Symfony\Component\HttpKernel\Event\GetResponseEvent;
use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
use Symfony\Component\Security\Core\Exception\AuthenticationException;

/**
 * @SuppressWarnings(PHPMD.CouplingBetweenObjects) SamlResponse parsing, validation authentication and error handling
 *                                                 requires quite a few classes as it is fairly complex.
 */
class ProcessSamlAuthenticationHandler implements AuthenticationHandler
{
    /**
     * @var AuthenticationHandler
     */
    private $nextHandler;

    /**
     * @var TokenStorageInterface
     */
    private $tokenStorage;

    /**
     * @var SamlInteractionProvider
     */
    private $samlInteractionProvider;

    /**
     * @var SamlAuthenticationStateHandler
     */
    private $authenticationStateHandler;

    /**
     * @var AuthenticatedSessionStateHandler
     */
    private $authenticatedSession;

    /**
     * @var AuthenticationManagerInterface
     */
    private $authenticationManager;

    /**
     * @var SamlAuthenticationLogger
     */
    private $authenticationLogger;

    /**
     * @var EngineInterface
     */
    private $templating;

    public function __construct(

        TokenStorageInterface $tokenStorage,
        SamlInteractionProvider $samlInteractionProvider,
        SamlAuthenticationStateHandler $authenticationStateHandler,
        AuthenticatedSessionStateHandler $authenticatedSession,
        AuthenticationManagerInterface $authenticationManager,
        SamlAuthenticationLogger $authenticationLogger,
        EngineInterface $templating
    ) {
        $this->tokenStorage               = $tokenStorage;
        $this->samlInteractionProvider    = $samlInteractionProvider;
        $this->authenticationStateHandler = $authenticationStateHandler;
        $this->authenticatedSession       = $authenticatedSession;
        $this->authenticationManager      = $authenticationManager;
        $this->authenticationLogger       = $authenticationLogger;
        $this->templating                 = $templating;
    }

    public function process(GetResponseEvent $event)
    {
        if ($this->tokenStorage->getToken() === null
            && $this->samlInteractionProvider->isSamlAuthenticationInitiated()
        ) {
            $expectedInResponseTo = $this->authenticationStateHandler->getRequestId();
            $logger               = $this->authenticationLogger->forAuthentication($expectedInResponseTo);

            $logger->notice('No authenticated user and AuthnRequest pending, attempting to process SamlResponse');

            $assertion = $this->samlInteractionProvider->processSamlResponse($event->getRequest());

            if (!InResponseTo::assertEquals($assertion, $expectedInResponseTo)) {
                throw new AuthenticationException('Unknown or unexpected InResponseTo in SAMLResponse');
            }

            $logger->notice('Successfully processed SAMLResponse, attempting to authenticate');

            $token            = new SamlToken();
            $token->assertion = $assertion;

            $authToken = $this->authenticationManager->authenticate($token);

            $this->authenticatedSession->logAuthenticationMoment();
            $this->tokenStorage->setToken($authToken);

            // migrate the session to prevent session hijacking
            $this->authenticatedSession->migrate();

            $event->setResponse(new RedirectResponse($this->authenticatedSession->getCurrentRequestUri()));

            $logger->notice('Authentication succeeded, redirecting to original location');

            return;
        }

        if ($this->nextHandler) {
            $this->nextHandler->process($event);
        }
    }

    public function setNext(AuthenticationHandler $handler)
    {
        $this->nextHandler = $handler;
    }
}


1		<?php
2
3		/**
4		* Copyright 2016 SURFnet bv
5		*
6		* Licensed under the Apache License, Version 2.0 (the "License");
7		* you may not use this file except in compliance with the License.
8		* You may obtain a copy of the License at
9		*
10		* http://www.apache.org/licenses/LICENSE-2.0
11		*
12		* Unless required by applicable law or agreed to in writing, software
13		* distributed under the License is distributed on an "AS IS" BASIS,
14		* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15		* See the License for the specific language governing permissions and
16		* limitations under the License.
17		*/
18
19		namespace Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\Handler;
20
21		use Surfnet\SamlBundle\Monolog\SamlAuthenticationLogger;
22		use Surfnet\SamlBundle\SAML2\Response\Assertion\InResponseTo;
23		use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\AuthenticatedSessionStateHandler;
24		use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\SamlAuthenticationStateHandler;
25		use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\SamlInteractionProvider;
26		use Surfnet\StepupSelfService\SelfServiceBundle\Security\Authentication\Token\SamlToken;
27		use Symfony\Bundle\FrameworkBundle\Templating\EngineInterface;
28		use Symfony\Component\HttpFoundation\RedirectResponse;
29		use Symfony\Component\HttpKernel\Event\GetResponseEvent;
30		use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
31		use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
32		use Symfony\Component\Security\Core\Exception\AuthenticationException;
33
34		/**
35		* @SuppressWarnings(PHPMD.CouplingBetweenObjects) SamlResponse parsing, validation authentication and error handling
36		* requires quite a few classes as it is fairly complex.
37		*/
38		class ProcessSamlAuthenticationHandler implements AuthenticationHandler
39		{
40		/**
41		* @var AuthenticationHandler
42		*/
43		private $nextHandler;
44
45		/**
46		* @var TokenStorageInterface
47		*/
48		private $tokenStorage;
49
50		/**
51		* @var SamlInteractionProvider
52		*/
53		private $samlInteractionProvider;
54
55		/**
56		* @var SamlAuthenticationStateHandler
57		*/
58		private $authenticationStateHandler;
59
60		/**
61		* @var AuthenticatedSessionStateHandler
62		*/
63		private $authenticatedSession;
64
65		/**
66		* @var AuthenticationManagerInterface
67		*/
68		private $authenticationManager;
69
70		/**
71		* @var SamlAuthenticationLogger
72		*/
73		private $authenticationLogger;
74
75		/**
76		* @var EngineInterface
77		*/
78		private $templating;
79
80	View Code Duplication	public function __construct(
		0 ignored issues – show Duplication introduced 2017-08-01 07:55 UTC by Report Bug Copy Issue Report This method seems to be duplicated in your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
81		TokenStorageInterface $tokenStorage,
82		SamlInteractionProvider $samlInteractionProvider,
83		SamlAuthenticationStateHandler $authenticationStateHandler,
84		AuthenticatedSessionStateHandler $authenticatedSession,
85		AuthenticationManagerInterface $authenticationManager,
86		SamlAuthenticationLogger $authenticationLogger,
87		EngineInterface $templating
88		) {
89		$this->tokenStorage = $tokenStorage;
90		$this->samlInteractionProvider = $samlInteractionProvider;
91		$this->authenticationStateHandler = $authenticationStateHandler;
92		$this->authenticatedSession = $authenticatedSession;
93		$this->authenticationManager = $authenticationManager;
94		$this->authenticationLogger = $authenticationLogger;
95		$this->templating = $templating;
96		}
97
98		public function process(GetResponseEvent $event)
99		{
100		if ($this->tokenStorage->getToken() === null
101		&& $this->samlInteractionProvider->isSamlAuthenticationInitiated()
102		) {
103		$expectedInResponseTo = $this->authenticationStateHandler->getRequestId();
104		$logger = $this->authenticationLogger->forAuthentication($expectedInResponseTo);
105
106		$logger->notice('No authenticated user and AuthnRequest pending, attempting to process SamlResponse');
107
108		$assertion = $this->samlInteractionProvider->processSamlResponse($event->getRequest());
109
110		if (!InResponseTo::assertEquals($assertion, $expectedInResponseTo)) {
111		throw new AuthenticationException('Unknown or unexpected InResponseTo in SAMLResponse');
112		}
113
114		$logger->notice('Successfully processed SAMLResponse, attempting to authenticate');
115
116		$token = new SamlToken();
117		$token->assertion = $assertion;
118
119		$authToken = $this->authenticationManager->authenticate($token);
120
121		$this->authenticatedSession->logAuthenticationMoment();
122		$this->tokenStorage->setToken($authToken);
123
124		// migrate the session to prevent session hijacking
125		$this->authenticatedSession->migrate();
126
127		$event->setResponse(new RedirectResponse($this->authenticatedSession->getCurrentRequestUri()));
128
129		$logger->notice('Authentication succeeded, redirecting to original location');
130
131		return;
132		}
133
134		if ($this->nextHandler) {
135		$this->nextHandler->process($event);
136		}
137		}
138
139		public function setNext(AuthenticationHandler $handler)
140		{
141		$this->nextHandler = $handler;
142		}
143		}
144

OpenConext / Stepup-SelfService

Push — develop ( 39f69e...2cda13 )

ProcessSamlAuthenticationHandler A

Complexity

Size/Duplication

Coupling/Cohesion

Importance

3 Methods

How to fix Duplicated Code

Duplicated Code

Duplication Side-by-Side

Filter issues like