Signer::addSignatureWithDetachedPayload() - Code Metrics - Inspection of "PSR-3 support updated" - Spomky-Labs/jose - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( cd6056...0428a3 )

by Florent

created 2016-02-26 12:11 UTC

Signer::addSignatureWithDetachedPayload() A

↳ Parent: Signer

Complexity

Conditions	1
Paths	1

Size

Total Lines	8
Code Lines	5

Duplication

Lines	0
Ratio	0 %

Importance

Changes	3
Bugs	1	Features	0

Metric	Value
c	3
b	1
f	0
dl	0
loc	8
rs	9.4285
cc	1
eloc	5
nc	1
nop	5

<?php

/*
 * The MIT License (MIT)
 *
 * Copyright (c) 2014-2016 Spomky-Labs
 *
 * This software may be modified and distributed under the terms
 * of the MIT license.  See the LICENSE file for details.
 */

namespace Jose;

use Jose\Algorithm\JWAManagerInterface;
use Jose\Algorithm\SignatureAlgorithmInterface;
use Jose\Behaviour\HasJWAManager;
use Jose\Behaviour\HasKeyChecker;
use Jose\Behaviour\HasLogger;
use Jose\Object\JWKInterface;
use Jose\Object\JWSInterface;
use Jose\Object\Signature;
use Psr\Log\LoggerInterface;
use Psr\Log\LogLevel;

/**
 */
final class Signer implements SignerInterface
{
    use HasKeyChecker;
    use HasJWAManager;
    use HasLogger;

    /**
     * Signer constructor.
     *
     * @param \Jose\Algorithm\JWAManagerInterface $jwa_manager
     * @param \Psr\Log\LoggerInterface|null       $logger
     */
    public function __construct(JWAManagerInterface $jwa_manager,
                                LoggerInterface $logger = null
    ) {
        $this->setJWAManager($jwa_manager);

        if (null !== $logger) {
            $this->setLogger($logger);
        }
    }

    /**
     * {@inheritdoc}
     */
    public function addSignatureWithDetachedPayload(JWSInterface &$jws, JWKInterface $key, $detached_payload, array $protected_headers = [], array $headers = [])
    {
        $this->log(LogLevel::INFO, 'Trying to add a signature to the JWS object with detached payload', ['jws' => $jws, 'key' => $key, 'payload' => $detached_payload, 'protected' => $protected_headers, 'header' => $headers]);
        $signature = $this->createSignature($key, $detached_payload, $protected_headers, $headers);

        $jws = $jws->addSignature($signature);
        $this->log(LogLevel::INFO, 'Signature added');
    }

    /**
     * {@inheritdoc}
     */
    public function addSignature(JWSInterface &$jws, JWKInterface $key, array $protected_headers = [], array $headers = [])
    {
        $this->log(LogLevel::INFO, 'Trying to add a signature to the JWS object', ['jws' => $jws, 'key' => $key, 'protected' => $protected_headers, 'header' => $headers]);
        if (null === $jws->getEncodedPayload()) {
            throw new \InvalidArgumentException('No payload.');
        }
        $signature = $this->createSignature($key, $jws->getEncodedPayload(), $protected_headers, $headers);

        $jws = $jws->addSignature($signature);
        $this->log(LogLevel::INFO, 'Signature added');
    }

    /**
     * @param \Jose\Object\JWKInterface $key
     * @param string                    $payload
     * @param array                     $protected_headers
     * @param array                     $headers
     *
     * @return \Jose\Object\Signature|\Jose\Object\SignatureInterface
     */
    private function createSignature(JWKInterface $key, $payload, array $protected_headers, array $headers)
    {
        $this->log(LogLevel::DEBUG, 'Creation of the signature');
        $this->checkKeyUsage($key, 'signature');
        $signature = new Signature();
        if (!empty($protected_headers)) {
            $this->log(LogLevel::DEBUG, 'The signature has of a protected header', ['protected' => $protected_headers]);
            $signature = $signature->withProtectedHeaders($protected_headers);
        }
        if (!empty($headers)) {
            $this->log(LogLevel::DEBUG, 'The signature has of a header', ['header' => $headers]);
            $signature = $signature->withHeaders($headers);
        }

        $signature_algorithm = $this->getSignatureAlgorithm($signature->getAllHeaders(), $key);

        $this->log(LogLevel::DEBUG, 'Trying to compute the signature');
        $value = $signature_algorithm->sign($key, $signature->getEncodedProtectedHeaders().'.'.$payload);
        $this->log(LogLevel::DEBUG, 'Signature computation done');

        $signature = $signature->withSignature($value);

        $this->log(LogLevel::DEBUG, 'The signature is done', ['signature' => $signature]);

        return $signature;
    }

    /**
     * @param array                     $complete_header The complete header
     * @param \Jose\Object\JWKInterface $key
     *
     * @return \Jose\Algorithm\SignatureAlgorithmInterface
     */
    private function getSignatureAlgorithm(array $complete_header, JWKInterface $key)
    {
        $this->log(LogLevel::DEBUG, 'Trying to find the algorithm used to sign');
        if (!array_key_exists('alg', $complete_header)) {
            $this->log(LogLevel::ERROR, 'No "alg" parameter set in the header');
            throw new \InvalidArgumentException('No "alg" parameter set in the header.');
        }
        $this->log(LogLevel::DEBUG, 'The algorithm is {alg}', ['alg' => $complete_header['alg']]);

        if ($key->has('alg') && $key->get('alg') !== $complete_header['alg']) {
            $this->log(LogLevel::ERROR, 'The algorithm {alg} is allowed with this key', ['alg' => $complete_header['alg']]);
            throw new \InvalidArgumentException(sprintf('The algorithm "%s" is allowed with this key.', $complete_header['alg']));
        }

        $signature_algorithm = $this->getJWAManager()->getAlgorithm($complete_header['alg']);
        if (!$signature_algorithm instanceof SignatureAlgorithmInterface) {
            $this->log(LogLevel::ERROR, 'The algorithm {alg} is not supported', ['alg' => $complete_header['alg']]);
            throw new \InvalidArgumentException(sprintf('The algorithm "%s" is not supported.', $complete_header['alg']));
        }

        $this->log(LogLevel::DEBUG, 'The algorithm {alg} is supported', ['alg' => $complete_header['alg'], 'handler' => $signature_algorithm]);

        return $signature_algorithm;
    }
}


1			<?php
2
3			/*
4			* The MIT License (MIT)
5			*
6			* Copyright (c) 2014-2016 Spomky-Labs
7			*
8			* This software may be modified and distributed under the terms
9			* of the MIT license. See the LICENSE file for details.
10			*/
11
12			namespace Jose;
13
14			use Jose\Algorithm\JWAManagerInterface;
15			use Jose\Algorithm\SignatureAlgorithmInterface;
16			use Jose\Behaviour\HasJWAManager;
17			use Jose\Behaviour\HasKeyChecker;
18			use Jose\Behaviour\HasLogger;
19			use Jose\Object\JWKInterface;
20			use Jose\Object\JWSInterface;
21			use Jose\Object\Signature;
22			use Psr\Log\LoggerInterface;
23			use Psr\Log\LogLevel;
24
25			/**
26			*/
27			final class Signer implements SignerInterface
28			{
29			use HasKeyChecker;
30			use HasJWAManager;
31			use HasLogger;
32
33			/**
34			* Signer constructor.
35			*
36			* @param \Jose\Algorithm\JWAManagerInterface $jwa_manager
37			* @param \Psr\Log\LoggerInterface\|null $logger
38			*/
39			public function __construct(JWAManagerInterface $jwa_manager,
40			LoggerInterface $logger = null
41			) {
42			$this->setJWAManager($jwa_manager);
43
44			if (null !== $logger) {
45			$this->setLogger($logger);
46			}
47			}
48
49			/**
50			* {@inheritdoc}
51			*/
52			public function addSignatureWithDetachedPayload(JWSInterface &$jws, JWKInterface $key, $detached_payload, array $protected_headers = [], array $headers = [])
53			{
54			$this->log(LogLevel::INFO, 'Trying to add a signature to the JWS object with detached payload', ['jws' => $jws, 'key' => $key, 'payload' => $detached_payload, 'protected' => $protected_headers, 'header' => $headers]);
55			$signature = $this->createSignature($key, $detached_payload, $protected_headers, $headers);
56
57			$jws = $jws->addSignature($signature);
58			$this->log(LogLevel::INFO, 'Signature added');
59			}
60
61			/**
62			* {@inheritdoc}
63			*/
64			public function addSignature(JWSInterface &$jws, JWKInterface $key, array $protected_headers = [], array $headers = [])
65			{
66			$this->log(LogLevel::INFO, 'Trying to add a signature to the JWS object', ['jws' => $jws, 'key' => $key, 'protected' => $protected_headers, 'header' => $headers]);
67			if (null === $jws->getEncodedPayload()) {
68			throw new \InvalidArgumentException('No payload.');
69			}
70			$signature = $this->createSignature($key, $jws->getEncodedPayload(), $protected_headers, $headers);
71
72			$jws = $jws->addSignature($signature);
73			$this->log(LogLevel::INFO, 'Signature added');
74			}
75
76			/**
77			* @param \Jose\Object\JWKInterface $key
78			* @param string $payload
79			* @param array $protected_headers
80			* @param array $headers
81			*
82			* @return \Jose\Object\Signature\|\Jose\Object\SignatureInterface
83			*/
84			private function createSignature(JWKInterface $key, $payload, array $protected_headers, array $headers)
85			{
86			$this->log(LogLevel::DEBUG, 'Creation of the signature');
87			$this->checkKeyUsage($key, 'signature');
88			$signature = new Signature();
89			if (!empty($protected_headers)) {
90			$this->log(LogLevel::DEBUG, 'The signature has of a protected header', ['protected' => $protected_headers]);
91			$signature = $signature->withProtectedHeaders($protected_headers);
92			}
93			if (!empty($headers)) {
94			$this->log(LogLevel::DEBUG, 'The signature has of a header', ['header' => $headers]);
95			$signature = $signature->withHeaders($headers);
96			}
97
98			$signature_algorithm = $this->getSignatureAlgorithm($signature->getAllHeaders(), $key);
99
100			$this->log(LogLevel::DEBUG, 'Trying to compute the signature');
101			$value = $signature_algorithm->sign($key, $signature->getEncodedProtectedHeaders().'.'.$payload);
102			$this->log(LogLevel::DEBUG, 'Signature computation done');
103
104			$signature = $signature->withSignature($value);
105
106			$this->log(LogLevel::DEBUG, 'The signature is done', ['signature' => $signature]);
107
108			return $signature;
109			}
110
111			/**
112			* @param array $complete_header The complete header
113			* @param \Jose\Object\JWKInterface $key
114			*
115			* @return \Jose\Algorithm\SignatureAlgorithmInterface
116			*/
117			private function getSignatureAlgorithm(array $complete_header, JWKInterface $key)
118			{
119			$this->log(LogLevel::DEBUG, 'Trying to find the algorithm used to sign');
120			if (!array_key_exists('alg', $complete_header)) {
121			$this->log(LogLevel::ERROR, 'No "alg" parameter set in the header');
122			throw new \InvalidArgumentException('No "alg" parameter set in the header.');
123			}
124			$this->log(LogLevel::DEBUG, 'The algorithm is {alg}', ['alg' => $complete_header['alg']]);
125
126			if ($key->has('alg') && $key->get('alg') !== $complete_header['alg']) {
127			$this->log(LogLevel::ERROR, 'The algorithm {alg} is allowed with this key', ['alg' => $complete_header['alg']]);
128			throw new \InvalidArgumentException(sprintf('The algorithm "%s" is allowed with this key.', $complete_header['alg']));
129			}
130
131			$signature_algorithm = $this->getJWAManager()->getAlgorithm($complete_header['alg']);
132			if (!$signature_algorithm instanceof SignatureAlgorithmInterface) {
133			$this->log(LogLevel::ERROR, 'The algorithm {alg} is not supported', ['alg' => $complete_header['alg']]);
134			throw new \InvalidArgumentException(sprintf('The algorithm "%s" is not supported.', $complete_header['alg']));
135			}
136
137			$this->log(LogLevel::DEBUG, 'The algorithm {alg} is supported', ['alg' => $complete_header['alg'], 'handler' => $signature_algorithm]);
138
139			return $signature_algorithm;
140			}
141			}
142

Spomky-Labs / jose

Push — master ( cd6056...0428a3 )

Signer::addSignatureWithDetachedPayload() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like