TokenMiddleware::process() - Code Metrics - SlayerBirden/dataflow-server - Measure and Improve Code Quality continuously with Scrutinizer

TokenMiddleware::process() B
last analyzed 2018-10-26 15:03 UTC

↳ Parent: TokenMiddleware

Complexity

Conditions	8
Paths	6

Size

Total Lines

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	15
CRAP Score	8

Importance

Changes

Metric	Value
dl	0
loc	25
ccs	15
cts	15
cp	1
rs	8.4444
c	0
b	0
f	0
cc	8
nc	6
nop	2
crap	8

<?php
declare(strict_types=1);

namespace SlayerBirden\DataFlowServer\Authentication\Middleware;

use Doctrine\Common\Collections\Criteria;
use Doctrine\Common\Collections\Selectable;
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;
use Psr\Http\Server\MiddlewareInterface;
use Psr\Http\Server\RequestHandlerInterface;
use SlayerBirden\DataFlowServer\Authentication\Entities\Token;
use SlayerBirden\DataFlowServer\Stdlib\ResponseFactory;
use Zend\Expressive\Router\RouteResult;

final class TokenMiddleware implements MiddlewareInterface
{
    const USER_PARAM = 'currentUser';
    /**
     * @var Selectable
     */
    private $tokenRepository;

    public function __construct(Selectable $tokenRepository)
    {
        $this->tokenRepository = $tokenRepository;
    }

    /**
     * @inheritdoc
     */
    public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
    {
        $authorization = $request->getHeader('Authorization');
        if (empty($authorization)) {
            return (new ResponseFactory())('Empty Authorization header. Access denied.', 401);
        }
        $token = $this->getToken((string)reset($authorization));
        if (!$token || !$token->isActive() || ($token->getDue() < new \DateTime())) {
            return (new ResponseFactory())('Token is absent or invalid. Access denied.', 401);
        }
        // check ACL
        $routeResult = $request->getAttribute(RouteResult::class, false);
        if (false === $routeResult) {
            // Can not perform ACL check
            return $handler->handle($request);
        }
        $routeName = $routeResult->getMatchedRouteName();
        foreach ($token->getGrants() as $grant) {
            if ($grant->getResource() === $routeName) {
                return $handler->handle($request->withAttribute(self::USER_PARAM, $token->getOwner()));
            }
        }

        return (new ResponseFactory())('The permission to resource is not granted.', 403);
    }

    private function getToken(string $authorization): ?Token
    {
        $token = str_replace('Bearer ', '', $authorization);
        $tokens = $this->tokenRepository->matching(
            Criteria::create()->where(Criteria::expr()->eq('token', $token))
        );
        if ($tokens->count()) {
            return $tokens->first();
        }

        return null;
    }
}


1		<?php
2		declare(strict_types=1);
3
4		namespace SlayerBirden\DataFlowServer\Authentication\Middleware;
5
6		use Doctrine\Common\Collections\Criteria;
7		use Doctrine\Common\Collections\Selectable;
8		use Psr\Http\Message\ResponseInterface;
9		use Psr\Http\Message\ServerRequestInterface;
10		use Psr\Http\Server\MiddlewareInterface;
11		use Psr\Http\Server\RequestHandlerInterface;
12		use SlayerBirden\DataFlowServer\Authentication\Entities\Token;
13		use SlayerBirden\DataFlowServer\Stdlib\ResponseFactory;
14		use Zend\Expressive\Router\RouteResult;
15
16		final class TokenMiddleware implements MiddlewareInterface
17		{
18		const USER_PARAM = 'currentUser';
19		/**
20		* @var Selectable
21		*/
22		private $tokenRepository;
23
24	144	public function __construct(Selectable $tokenRepository)
25		{
26	144	$this->tokenRepository = $tokenRepository;
27	144	}
28
29		/**
30		* @inheritdoc
31		*/
32	144	public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
33		{
34	144	$authorization = $request->getHeader('Authorization');
35	144	if (empty($authorization)) {
36	2	return (new ResponseFactory())('Empty Authorization header. Access denied.', 401);
37		}
38	142	$token = $this->getToken((string)reset($authorization));
39	142	if (!$token \|\| !$token->isActive() \|\| ($token->getDue() < new \DateTime())) {
40	6	return (new ResponseFactory())('Token is absent or invalid. Access denied.', 401);
41		}
42		// check ACL
43	136	$routeResult = $request->getAttribute(RouteResult::class, false);
44	136	if (false === $routeResult) {
45		// Can not perform ACL check
46	2	return $handler->handle($request);
47		}
48	134	$routeName = $routeResult->getMatchedRouteName();
49	134	foreach ($token->getGrants() as $grant) {
50	134	if ($grant->getResource() === $routeName) {
51	134	return $handler->handle($request->withAttribute(self::USER_PARAM, $token->getOwner()));
52		}
53		}
54
55	2	return (new ResponseFactory())('The permission to resource is not granted.', 403);
56		}
57
58	142	private function getToken(string $authorization): ?Token
59		{
60	142	$token = str_replace('Bearer ', '', $authorization);
61	142	$tokens = $this->tokenRepository->matching(
62	142	Criteria::create()->where(Criteria::expr()->eq('token', $token))
63		);
64	142	if ($tokens->count()) {
65	140	return $tokens->first();
66		}
67
68	2	return null;
69		}
70		}
71

SlayerBirden / dataflow-server

TokenMiddleware::process() B last analyzed 2018-10-26 15:03 UTC

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like

TokenMiddleware::process() B
last analyzed 2018-10-26 15:03 UTC