SafeStoreService - Code Metrics - Inspection of "Merge branch 'release/4.0'" - OpenConext/Stepup-SelfService - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( c4afc2...9cde23 )

by Pieter van der

created 2023-06-21 09:29 UTC

SafeStoreService A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	65
Duplicated Lines	0 %

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
eloc	25
dl	0
loc	65
rs	10
c	1
b	0
f	0
wmc	8

7 Methods

Rating	Name	Size	Complexity
A	produceSecret()	10	2
A	promisePossession()	9	1
A	authenticate()	3	1
A	revokeRecoveryToken()	6	1
A	forgetSafeStoreTokenCreatedDuringSecondFactorRegistration()	3	1
A	__construct()	4	1
A	wasSafeStoreTokenCreatedDuringSecondFactorRegistration()	3	1

<?php

/**
 * Copyright 2022 SURFnet bv
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

namespace Surfnet\StepupSelfService\SelfServiceBundle\Service\SelfAssertedTokens;

use Surfnet\StepupMiddlewareClient\Service\ExecutionResult;
use Surfnet\StepupMiddlewareClientBundle\Identity\Command\PromiseSafeStoreSecretTokenPossessionCommand;
use Surfnet\StepupMiddlewareClientBundle\Identity\Command\RevokeOwnRecoveryTokenCommand;
use Surfnet\StepupMiddlewareClientBundle\Uuid\Uuid;
use Surfnet\StepupSelfService\SelfServiceBundle\Command\PromiseSafeStorePossessionCommand;
use Surfnet\StepupSelfService\SelfServiceBundle\Command\RevokeRecoveryTokenCommand;
use Surfnet\StepupSelfService\SelfServiceBundle\Service\CommandService;
use Surfnet\StepupSelfService\SelfServiceBundle\Service\SelfAssertedTokens\Dto\SafeStoreSecret;
use Surfnet\StepupSelfService\SelfServiceBundle\Service\SelfAssertedTokens\Exception\SafeStoreSecretNotFoundException;

class SafeStoreService
{
    /**
     * @var RecoveryTokenState
     */
    private $stateStore;

    /**
     * @var CommandService
     */
    private $commandService;

    public function __construct(RecoveryTokenState $stateStore, CommandService $commandService)
    {
        $this->stateStore = $stateStore;
        $this->commandService = $commandService;
    }

    public function produceSecret(): SafeStoreSecret
    {
        try {
            // On another request, we might have already created a secret, retrieve that
            $secret = $this->stateStore->retrieveSecret();
        } catch (SafeStoreSecretNotFoundException $e) {
            $secret = new SafeStoreSecret();
            $this->stateStore->store($secret);
        }
        return $secret;
    }

    public function promisePossession(PromiseSafeStorePossessionCommand $command): ExecutionResult
    {
        $apiCommand = new PromiseSafeStoreSecretTokenPossessionCommand();
        $apiCommand->identityId = $command->identity->id;

        $apiCommand->recoveryTokenId = Uuid::generate();
        $apiCommand->secret = $command->secret->display();
        $this->stateStore->forget();
        $this->stateStore->tokenCreatedDuringSecondFactorRegistration();
        return $this->commandService->execute($apiCommand);
    }

    public function revokeRecoveryToken(RevokeRecoveryTokenCommand $command): ExecutionResult
    {
        $apiCommand = new RevokeOwnRecoveryTokenCommand();
        $apiCommand->identityId = $command->identity->id;
        $apiCommand->recoveryTokenId = $command->recoveryToken->recoveryTokenId;
        return $this->commandService->execute($apiCommand);
    }

    public function wasSafeStoreTokenCreatedDuringSecondFactorRegistration(): bool
    {
        return $this->stateStore->wasRecoveryTokenCreatedDuringSecondFactorRegistration();
    }

    /**
     * Verifies if the password hash matches the secret that was provided
     */
    public function authenticate(string $secret, string $passwordHash)
    {
        return password_verify($secret, $passwordHash);
    }

    public function forgetSafeStoreTokenCreatedDuringSecondFactorRegistration(): void
    {
        $this->stateStore->forgetTokenCreatedDuringSecondFactorRegistration();
    }
}


1			<?php
2
3			/**
4			* Copyright 2022 SURFnet bv
5			*
6			* Licensed under the Apache License, Version 2.0 (the "License");
7			* you may not use this file except in compliance with the License.
8			* You may obtain a copy of the License at
9			*
10			* http://www.apache.org/licenses/LICENSE-2.0
11			*
12			* Unless required by applicable law or agreed to in writing, software
13			* distributed under the License is distributed on an "AS IS" BASIS,
14			* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15			* See the License for the specific language governing permissions and
16			* limitations under the License.
17			*/
18
19			namespace Surfnet\StepupSelfService\SelfServiceBundle\Service\SelfAssertedTokens;
20
21			use Surfnet\StepupMiddlewareClient\Service\ExecutionResult;
22			use Surfnet\StepupMiddlewareClientBundle\Identity\Command\PromiseSafeStoreSecretTokenPossessionCommand;
23			use Surfnet\StepupMiddlewareClientBundle\Identity\Command\RevokeOwnRecoveryTokenCommand;
24			use Surfnet\StepupMiddlewareClientBundle\Uuid\Uuid;
25			use Surfnet\StepupSelfService\SelfServiceBundle\Command\PromiseSafeStorePossessionCommand;
26			use Surfnet\StepupSelfService\SelfServiceBundle\Command\RevokeRecoveryTokenCommand;
27			use Surfnet\StepupSelfService\SelfServiceBundle\Service\CommandService;
28			use Surfnet\StepupSelfService\SelfServiceBundle\Service\SelfAssertedTokens\Dto\SafeStoreSecret;
29			use Surfnet\StepupSelfService\SelfServiceBundle\Service\SelfAssertedTokens\Exception\SafeStoreSecretNotFoundException;
30
31			class SafeStoreService
32			{
33			/**
34			* @var RecoveryTokenState
35			*/
36			private $stateStore;
37
38			/**
39			* @var CommandService
40			*/
41			private $commandService;
42
43			public function __construct(RecoveryTokenState $stateStore, CommandService $commandService)
44			{
45			$this->stateStore = $stateStore;
46			$this->commandService = $commandService;
47			}
48
49			public function produceSecret(): SafeStoreSecret
50			{
51			try {
52			// On another request, we might have already created a secret, retrieve that
53			$secret = $this->stateStore->retrieveSecret();
54			} catch (SafeStoreSecretNotFoundException $e) {
55			$secret = new SafeStoreSecret();
56			$this->stateStore->store($secret);
57			}
58			return $secret;
59			}
60
61			public function promisePossession(PromiseSafeStorePossessionCommand $command): ExecutionResult
62			{
63			$apiCommand = new PromiseSafeStoreSecretTokenPossessionCommand();
64			$apiCommand->identityId = $command->identity->id;
			0 ignored issues – show Bug introduced 2023-05-03 07:47 UTC by Report Bug Copy Issue Report The property `id` does not exist on `string`. Loading history...
65			$apiCommand->recoveryTokenId = Uuid::generate();
66			$apiCommand->secret = $command->secret->display();
67			$this->stateStore->forget();
68			$this->stateStore->tokenCreatedDuringSecondFactorRegistration();
69			return $this->commandService->execute($apiCommand);
70			}
71
72			public function revokeRecoveryToken(RevokeRecoveryTokenCommand $command): ExecutionResult
73			{
74			$apiCommand = new RevokeOwnRecoveryTokenCommand();
75			$apiCommand->identityId = $command->identity->id;
76			$apiCommand->recoveryTokenId = $command->recoveryToken->recoveryTokenId;
77			return $this->commandService->execute($apiCommand);
78			}
79
80			public function wasSafeStoreTokenCreatedDuringSecondFactorRegistration(): bool
81			{
82			return $this->stateStore->wasRecoveryTokenCreatedDuringSecondFactorRegistration();
83			}
84
85			/**
86			* Verifies if the password hash matches the secret that was provided
87			*/
88			public function authenticate(string $secret, string $passwordHash)
89			{
90			return password_verify($secret, $passwordHash);
91			}
92
93			public function forgetSafeStoreTokenCreatedDuringSecondFactorRegistration(): void
94			{
95			$this->stateStore->forgetTokenCreatedDuringSecondFactorRegistration();
96			}
97			}
98

OpenConext / Stepup-SelfService

Push — master ( c4afc2...9cde23 )

SafeStoreService A

Complexity

Size/Duplication

Importance

7 Methods

Duplication Side-by-Side

Filter issues like