ValidateOwnerMiddleware::process() - Code Metrics - SlayerBirden/dataflow-server - Measure and Improve Code Quality continuously with Scrutinizer

ValidateOwnerMiddleware::process() A
last analyzed 2018-10-26 15:03 UTC

↳ Parent: ValidateOwnerMiddleware

Complexity

Conditions	5
Paths	3

Size

Total Lines

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	8
CRAP Score	5

Importance

Changes

Metric	Value
dl	0
loc	16
ccs	8
cts	8
cp	1
rs	9.4222
c	0
b	0
f	0
cc	5
nc	3
nop	2
crap	5

<?php
declare(strict_types=1);

namespace SlayerBirden\DataFlowServer\Domain\Middleware;

use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;
use Psr\Http\Server\MiddlewareInterface;
use Psr\Http\Server\RequestHandlerInterface;
use SlayerBirden\DataFlowServer\Authentication\Middleware\TokenMiddleware;
use SlayerBirden\DataFlowServer\Doctrine\Middleware\ResourceMiddlewareInterface;
use SlayerBirden\DataFlowServer\Domain\Entities\ClaimedResourceInterface;
use SlayerBirden\DataFlowServer\Domain\Entities\User;
use SlayerBirden\DataFlowServer\Stdlib\ResponseFactory;

final class ValidateOwnerMiddleware implements MiddlewareInterface
{
    /**
     * @inheritdoc
     */
    public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
    {
        $resource = $request->getAttribute(ResourceMiddlewareInterface::DATA_RESOURCE);

        if ($resource && $resource instanceof ClaimedResourceInterface) {
            $resourceOwner = $resource->getOwner();
            /** @var User|null $currentOwner */
            $currentOwner = $request->getAttribute(TokenMiddleware::USER_PARAM);

            if (!$currentOwner || ($currentOwner->getId() !== $resourceOwner->getId())) {
                return (new ResponseFactory())('Access denied.', 403);
            }
        }

        return $handler->handle($request);
    }
}


1		<?php
2		declare(strict_types=1);
3
4		namespace SlayerBirden\DataFlowServer\Domain\Middleware;
5
6		use Psr\Http\Message\ResponseInterface;
7		use Psr\Http\Message\ServerRequestInterface;
8		use Psr\Http\Server\MiddlewareInterface;
9		use Psr\Http\Server\RequestHandlerInterface;
10		use SlayerBirden\DataFlowServer\Authentication\Middleware\TokenMiddleware;
11		use SlayerBirden\DataFlowServer\Doctrine\Middleware\ResourceMiddlewareInterface;
12		use SlayerBirden\DataFlowServer\Domain\Entities\ClaimedResourceInterface;
13		use SlayerBirden\DataFlowServer\Domain\Entities\User;
14		use SlayerBirden\DataFlowServer\Stdlib\ResponseFactory;
15
16		final class ValidateOwnerMiddleware implements MiddlewareInterface
17		{
18		/**
19		* @inheritdoc
20		*/
21	24	public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
22		{
23	24	$resource = $request->getAttribute(ResourceMiddlewareInterface::DATA_RESOURCE);
24
25	24	if ($resource && $resource instanceof ClaimedResourceInterface) {
26	14	$resourceOwner = $resource->getOwner();
27		/** @var User\|null $currentOwner */
28	14	$currentOwner = $request->getAttribute(TokenMiddleware::USER_PARAM);
29
30	14	if (!$currentOwner \|\| ($currentOwner->getId() !== $resourceOwner->getId())) {
31	4	return (new ResponseFactory())('Access denied.', 403);
32		}
33		}
34
35	20	return $handler->handle($request);
36		}
37		}
38

SlayerBirden / dataflow-server

ValidateOwnerMiddleware::process() A last analyzed 2018-10-26 15:03 UTC

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like

ValidateOwnerMiddleware::process() A
last analyzed 2018-10-26 15:03 UTC