AccessRights::onKernelController() - Code Metrics - Inspection of "[fix] form order of valid and submitted in AccessR..." - Piou-piou/RibsAdminBundle - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( b4cb9f...51bac7 )

by Anthony

created 2018-01-28 18:39 UTC

AccessRights::onKernelController() C

↳ Parent: AccessRights

Complexity

Conditions	7
Paths	5

Size

Total Lines	24
Code Lines	12

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	7
eloc	12
nc	5
nop	0
dl	0
loc	24
rs	6.7272
c	0
b	0
f	0

<?php

namespace PiouPiou\RibsAdminBundle\Service;

use Symfony\Component\DependencyInjection\ContainerInterface;
use Symfony\Component\HttpFoundation\RequestStack;
use Symfony\Component\HttpFoundation\Session\Session;
use Symfony\Component\Routing\RouterInterface;
use Symfony\Component\Security\Core\Exception\AccessDeniedException;

class AccessRights
{
	private $em;
	private $router;
	private $session;
	private $request;
	private $globals;
	
	/**
	 * AccessRights constructor.
	 * @param ContainerInterface $em
	 * @param RouterInterface $router
	 * @param Session $session
	 * @param RequestStack $request
	 */
	public function __construct(ContainerInterface $em, RouterInterface $router, Session $session, RequestStack $request, Globals $globals)
	{
		$this->em = $em;
		$this->router = $router;
		$this->session = $session;
		$this->request = $request;
		$this->globals = $globals;
	}
	
	public function onKernelController()
	{
		$route = $this->request->getCurrentRequest()->get("_route");
		$admin_page = explode("_", $route)[0];
		
		//to show admin panel
		if (in_array($route, ["_profiler", "_profiler_search_bar", "_wdt"])) {
			return;
		}
		
		$ribs_admin_rights = json_decode(file_get_contents($this->globals->getBaseBundlePath() . "/Resources/json/ribsadmin_rights.json"));
		
		if ($admin_page == "ribsadmin" && strpos($route, "login") == false && strpos($route, "register") == false) {

			$route_right = $this->in_array_recursive($route, $ribs_admin_rights);
			
			if ($route_right === false) {
				throw new AccessDeniedException("No access");
			}
			
			if ($this->testRouteRight($route_right) === true) {
				return;
			}
			
			throw new AccessDeniedException("No access");
		}
	}
	
	/**
	 * @param string $right
	 * @return bool
	 * function that allow to test a right directly in the view
	 */
	public function testRight(string $right): bool
	{
		$user_rights = $this->getUserRights();
		$list_rights = $this->getRightsListOfUser();
		
		$all_rights = array_merge($user_rights, $list_rights);
		
		if (in_array($right, $all_rights)) {
			return true;
		}
		
		return false;
	}
	
	/**
	 * @param array $route_right
	 * @return bool
	 * test if route_right is found in users rights
	 */
	private function testRouteRight(array $route_right): bool {
		$user_rights = $this->getUserRights();
		$list_rights = $this->getRightsListOfUser();
		
		$all_rights = array_merge($user_rights, $list_rights);
		
		foreach ($all_rights as $right) {
			if (in_array($right, $route_right)) {
				return true;
			}
		}
		
		return false;
	}
	
	/**
	 * @param $needle
	 * @param $haystack
	 * @return bool|mixed
	 * fonction that search if the right contain an url or more
	 */
	private function in_array_recursive($needle, $haystack)
	{
		$rights = [];
		$it = new \RecursiveIteratorIterator(new \RecursiveArrayIterator($haystack));
		
		foreach ($it AS $element => $value) {
			if ($value == $needle) {
				$rights[] = $it->getInnerIterator()["right"];
			}
		}
		
		if (count($rights) === 0) {
			return false;
		}
		
		return $rights;
	}
	
	
	/**
	 * @return array function that retun a array that contain all user rights or empty array if no right found
	 */
	private function getUserRights(): array
	{
		$user_rights = $this->em->get("security.token_storage")->getToken()->getUser()->getUser()->getAccessRights();
		
		if ($user_rights) {
			return explode(",", $user_rights);
		}
		
		return [""];
	}
	
	/**
	 * @return array function that retun a array that contain all rights of rattached list right of the current user
	 */
	private function getRightsListOfUser(): array {
		if ($this->em->get("security.token_storage")->getToken()->getUser()->getUser()->getAccessRightList()) {
			$user_rights = $this->em->get("security.token_storage")->getToken()->getUser()->getUser()->getAccessRightList()->getAccessRights();
			
			if ($user_rights) {
				return explode(",", $user_rights);
			}
		}
		
		return [""];
	}
}

1			<?php
2
3			namespace PiouPiou\RibsAdminBundle\Service;
4
5			use Symfony\Component\DependencyInjection\ContainerInterface;
6			use Symfony\Component\HttpFoundation\RequestStack;
7			use Symfony\Component\HttpFoundation\Session\Session;
8			use Symfony\Component\Routing\RouterInterface;
9			use Symfony\Component\Security\Core\Exception\AccessDeniedException;
10
11			class AccessRights
12			{
13			private $em;
14			private $router;
15			private $session;
16			private $request;
17			private $globals;
18
19			/**
20			* AccessRights constructor.
21			* @param ContainerInterface $em
22			* @param RouterInterface $router
23			* @param Session $session
24			* @param RequestStack $request
25			*/
26			public function __construct(ContainerInterface $em, RouterInterface $router, Session $session, RequestStack $request, Globals $globals)
27			{
28			$this->em = $em;
29			$this->router = $router;
30			$this->session = $session;
31			$this->request = $request;
32			$this->globals = $globals;
33			}
34
35			public function onKernelController()
36			{
37			$route = $this->request->getCurrentRequest()->get("_route");
38			$admin_page = explode("_", $route)[0];
39
40			//to show admin panel
41			if (in_array($route, ["_profiler", "_profiler_search_bar", "_wdt"])) {
42			return;
43			}
44
45			$ribs_admin_rights = json_decode(file_get_contents($this->globals->getBaseBundlePath() . "/Resources/json/ribsadmin_rights.json"));
46
47			if ($admin_page == "ribsadmin" && strpos($route, "login") == false && strpos($route, "register") == false) {
			0 ignored issues – show Bug Best Practice introduced 2017-12-27 12:12 UTC by Report Bug Copy Issue Report It seems like you are loosely comparing `strpos($route, 'login')` of type `integer` to the boolean `false`. If you are specifically checking for 0, consider using something more explicit like `=== 0` instead. Loading history... Bug Best Practice introduced 2017-12-27 12:12 UTC by Report Bug Copy Issue Report It seems like you are loosely comparing `strpos($route, 'register')` of type `integer` to the boolean `false`. If you are specifically checking for 0, consider using something more explicit like `=== 0` instead. Loading history...
48			$route_right = $this->in_array_recursive($route, $ribs_admin_rights);
49
50			if ($route_right === false) {
51			throw new AccessDeniedException("No access");
52			}
53
54			if ($this->testRouteRight($route_right) === true) {
55			return;
56			}
57
58			throw new AccessDeniedException("No access");
59			}
60			}
61
62			/**
63			* @param string $right
64			* @return bool
65			* function that allow to test a right directly in the view
66			*/
67			public function testRight(string $right): bool
68			{
69			$user_rights = $this->getUserRights();
70			$list_rights = $this->getRightsListOfUser();
71
72			$all_rights = array_merge($user_rights, $list_rights);
73
74			if (in_array($right, $all_rights)) {
75			return true;
76			}
77
78			return false;
79			}
80
81			/**
82			* @param array $route_right
83			* @return bool
84			* test if route_right is found in users rights
85			*/
86			private function testRouteRight(array $route_right): bool {
87			$user_rights = $this->getUserRights();
88			$list_rights = $this->getRightsListOfUser();
89
90			$all_rights = array_merge($user_rights, $list_rights);
91
92			foreach ($all_rights as $right) {
93			if (in_array($right, $route_right)) {
94			return true;
95			}
96			}
97
98			return false;
99			}
100
101			/**
102			* @param $needle
103			* @param $haystack
104			* @return bool\|mixed
105			* fonction that search if the right contain an url or more
106			*/
107			private function in_array_recursive($needle, $haystack)
108			{
109			$rights = [];
110			$it = new \RecursiveIteratorIterator(new \RecursiveArrayIterator($haystack));
111
112			foreach ($it AS $element => $value) {
113			if ($value == $needle) {
114			$rights[] = $it->getInnerIterator()["right"];
115			}
116			}
117
118			if (count($rights) === 0) {
119			return false;
120			}
121
122			return $rights;
123			}
124
125
126			/**
127			* @return array function that retun a array that contain all user rights or empty array if no right found
128			*/
129			private function getUserRights(): array
130			{
131			$user_rights = $this->em->get("security.token_storage")->getToken()->getUser()->getUser()->getAccessRights();
132
133			if ($user_rights) {
134			return explode(",", $user_rights);
135			}
136
137			return [""];
138			}
139
140			/**
141			* @return array function that retun a array that contain all rights of rattached list right of the current user
142			*/
143			private function getRightsListOfUser(): array {
144			if ($this->em->get("security.token_storage")->getToken()->getUser()->getUser()->getAccessRightList()) {
145			$user_rights = $this->em->get("security.token_storage")->getToken()->getUser()->getUser()->getAccessRightList()->getAccessRights();
146
147			if ($user_rights) {
148			return explode(",", $user_rights);
149			}
150			}
151
152			return [""];
153			}
154			}

Piou-piou / RibsAdminBundle

Push — master ( b4cb9f...51bac7 )

AccessRights::onKernelController() C

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like