AccessControl::isRouteSecure() - Code Metrics - Inspection of "Merge pull request #18 from SimLibaud/sf5_twig3" - SimLibaud/SilRouteSecurityBundle - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Branch — master (05c8b6)

by Simon

created 2021-09-28 08:54 UTC

AccessControl::isRouteSecure() B

↳ Parent: AccessControl

Complexity

Conditions	7
Paths	5

Size

Total Lines	23
Code Lines	9

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	10
CRAP Score	7

Importance

Changes	3
Bugs	0	Features	0

Metric	Value
eloc	9
c	3
b	0
f	0
dl	0
loc	23
ccs	10
cts	10
cp	1
rs	8.8333
cc	7
nc	5
nop	1
crap	7

<?php
/**
 * User: Simon Libaud
 * Date: 19/03/2017
 * Email: [email protected].
 */
namespace Sil\RouteSecurityBundle\Security;

use Sil\RouteSecurityBundle\Exception\LogicException;
use Sil\RouteSecurityBundle\Interfaces\NamingStrategyInterface;
use Symfony\Component\Routing\RouterInterface;
use Symfony\Component\Security\Core\User\UserInterface;

/**
 * Class AccessControl.
 */
class AccessControl
{
    private $router;
    private $routeToRoleConverter;
    private $is_access_control_enable;
    private $secured_routes;
    private $secured_routes_format;
    private $ignored_routes;
    private $ignored_routes_format;

    public function __construct(RouterInterface $router, NamingStrategyInterface $routeToRoleConverter, $configuration)
    {
        $this->router = $router;
        $this->routeToRoleConverter = $routeToRoleConverter;

        $this->is_access_control_enable = $configuration['enable_access_control'];
        $this->secured_routes = $configuration['secured_routes'];
        $this->secured_routes_format = $configuration['secured_routes_format'];
        $this->ignored_routes = $configuration['ignored_routes'];
        $this->ignored_routes_format = $configuration['ignored_routes_format'];
    }

    /**
     * Verify if  user has access to a specific route.
     *
     * @param UserInterface $user
     * @param string        $route
     *
     * @return bool
     */
    public function hasUserAccessToRoute(UserInterface $user, $route)
    {
        if (false === $this->is_access_control_enable || false === $this->isRouteSecure($route)) {
            return true;
        }

        $role = $this->routeToRoleConverter->generateRoleForRoute($route);

        return in_array($role, $user->getRoles());
    }

    /**
     * Verify if user has access to all routes.
     *
     * @param UserInterface $user
     * @param array         $routes
     *
     * @return bool
     */
    public function hasUserAccessToRoutes(UserInterface $user, $routes)
    {
        foreach ($routes as $route) {
            if (false === $this->hasUserAccessToRoute($user, $route)) {
                return false;
            }
        }

        return true;
    }

    /**
     * Verify if user has access to one of routes.
     *
     * @param UserInterface $user
     * @param $routes
     *
     * @return bool
     */
    public function hasUserAccessAtLeastOneRoute(UserInterface $user, $routes)
    {
        foreach ($routes as $route) {
            if (true === $this->hasUserAccessToRoute($user, $route)) {
                return true;
            }
        }

        return false;
    }

    /**
     * Check if the given route is manage by the bundle depending of the configuration.
     *
     * @param string $route
     *
     * @return bool
     */
    public function isRouteSecure($route)
    {
        // Ignored routes
        if (true === in_array($route, $this->ignored_routes)) {
            return false;
        }

        // Ignored routes format
        if (null !== $this->ignored_routes_format && 1 === preg_match($this->ignored_routes_format, $route)) {
            return false;
        }

        // Secured routes
        if (true === in_array($route, $this->secured_routes)) {
            return true;
        }

        // Secured routes format
        if (null !== $this->secured_routes_format && 1 === preg_match($this->secured_routes_format, $route)) {
            return true;
        }

        return false;
    }

    /**
     * Return all secured routes manage by the bundle
     *
     * @return array
     */
    public function getAllSecuredRoutes()
    {
        $all_secured_routes = [];
        $configured_routes = array_keys($this->router->getRouteCollection()->all());

        foreach ($configured_routes as $configured_route) if (true === $this->isRouteSecure($configured_route)){
            $all_secured_routes[] = $configured_route;
        }

        return $all_secured_routes;
    }

    /**
     * @return bool
     */
    public function isEnable()
    {
        return $this->is_access_control_enable;
    }
}


1		<?php
2		/**
3		* User: Simon Libaud
4		* Date: 19/03/2017
5		* Email: [email protected].
6		*/
7		namespace Sil\RouteSecurityBundle\Security;
8
9		use Sil\RouteSecurityBundle\Exception\LogicException;
10		use Sil\RouteSecurityBundle\Interfaces\NamingStrategyInterface;
11		use Symfony\Component\Routing\RouterInterface;
12		use Symfony\Component\Security\Core\User\UserInterface;
13
14		/**
15		* Class AccessControl.
16		*/
17		class AccessControl
18		{
19		private $router;
20		private $routeToRoleConverter;
21		private $is_access_control_enable;
22		private $secured_routes;
23		private $secured_routes_format;
24		private $ignored_routes;
25		private $ignored_routes_format;
26
27	6	public function __construct(RouterInterface $router, NamingStrategyInterface $routeToRoleConverter, $configuration)
28		{
29	6	$this->router = $router;
30	6	$this->routeToRoleConverter = $routeToRoleConverter;
31
32	6	$this->is_access_control_enable = $configuration['enable_access_control'];
33	6	$this->secured_routes = $configuration['secured_routes'];
34	6	$this->secured_routes_format = $configuration['secured_routes_format'];
35	6	$this->ignored_routes = $configuration['ignored_routes'];
36	6	$this->ignored_routes_format = $configuration['ignored_routes_format'];
37	6	}
38
39		/**
40		* Verify if user has access to a specific route.
41		*
42		* @param UserInterface $user
43		* @param string $route
44		*
45		* @return bool
46		*/
47	3	public function hasUserAccessToRoute(UserInterface $user, $route)
48		{
49	3	if (false === $this->is_access_control_enable \|\| false === $this->isRouteSecure($route)) {
50	3	return true;
51		}
52
53	3	$role = $this->routeToRoleConverter->generateRoleForRoute($route);
54
55	3	return in_array($role, $user->getRoles());
56		}
57
58		/**
59		* Verify if user has access to all routes.
60		*
61		* @param UserInterface $user
62		* @param array $routes
63		*
64		* @return bool
65		*/
66	1	public function hasUserAccessToRoutes(UserInterface $user, $routes)
67		{
68	1	foreach ($routes as $route) {
69	1	if (false === $this->hasUserAccessToRoute($user, $route)) {
70	1	return false;
71		}
72		}
73
74	1	return true;
75		}
76
77		/**
78		* Verify if user has access to one of routes.
79		*
80		* @param UserInterface $user
81		* @param $routes
82		*
83		* @return bool
84		*/
85	1	public function hasUserAccessAtLeastOneRoute(UserInterface $user, $routes)
86		{
87	1	foreach ($routes as $route) {
88	1	if (true === $this->hasUserAccessToRoute($user, $route)) {
89	1	return true;
90		}
91		}
92
93	1	return false;
94		}
95
96		/**
97		* Check if the given route is manage by the bundle depending of the configuration.
98		*
99		* @param string $route
100		*
101		* @return bool
102		*/
103	5	public function isRouteSecure($route)
104		{
105		// Ignored routes
106	5	if (true === in_array($route, $this->ignored_routes)) {
107	5	return false;
108		}
109
110		// Ignored routes format
111	5	if (null !== $this->ignored_routes_format && 1 === preg_match($this->ignored_routes_format, $route)) {
112	2	return false;
113		}
114
115		// Secured routes
116	5	if (true === in_array($route, $this->secured_routes)) {
117	5	return true;
118		}
119
120		// Secured routes format
121	4	if (null !== $this->secured_routes_format && 1 === preg_match($this->secured_routes_format, $route)) {
122	4	return true;
123		}
124
125	1	return false;
126		}
127
128		/**
129		* Return all secured routes manage by the bundle
130		*
131		* @return array
132		*/
133	1	public function getAllSecuredRoutes()
134		{
135	1	$all_secured_routes = [];
136	1	$configured_routes = array_keys($this->router->getRouteCollection()->all());
137
138	1	foreach ($configured_routes as $configured_route) if (true === $this->isRouteSecure($configured_route)){
139	1	$all_secured_routes[] = $configured_route;
140		}
141
142	1	return $all_secured_routes;
143		}
144
145		/**
146		* @return bool
147		*/
148	1	public function isEnable()
149		{
150	1	return $this->is_access_control_enable;
151		}
152		}
153

SimLibaud / SilRouteSecurityBundle

Branch — master (05c8b6)

AccessControl::isRouteSecure() B

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like