TimeoutAuthenticator::__construct() - Code Metrics - alex-kalanis/restful - Measure and Improve Code Quality continuously with Scrutinizer

TimeoutAuthenticator::__construct() A
last analyzed 2024-12-26 06:23 UTC

↳ Parent: TimeoutAuthenticator

Complexity

Conditions	1
Paths	1

Size

Total Lines	5
Code Lines	0

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	1
CRAP Score	1

Importance

Changes

Metric	Value
eloc	0
dl	0
loc	5
ccs	1
cts	1
cp	1
rs	10
c	0
b	0
f	0
cc	1
nc	1
nop	2
crap	1

<?php

namespace kalanis\Restful\Security\Authentication;


use kalanis\Restful\Http\IInput;
use kalanis\Restful\Security\Exceptions\RequestTimeoutException;


/**
 * Verify request timeout to avoid replay attack (needs to be applied with any HashAuthenticator)
 * @package kalanis\Restful\Security\Authentication
 */
class TimeoutAuthenticator implements IRequestAuthenticator
{

    /**
     * @param string $requestTimeKey in user request data
     * @param int $timeout in milliseconds
     */
    public function __construct(
        #[\SensitiveParameter] private readonly string $requestTimeKey,
        private readonly int                           $timeout,
    )
    {
    }

    /**
     * Authenticate request timeout
     *
     * @throws RequestTimeoutException
     */
    public function authenticate(IInput $input): bool
    {
        $timestamp = time();
        $data = $input->getData();
        if (!isset($data[$this->requestTimeKey]) || !$data[$this->requestTimeKey]) {
            throw new RequestTimeoutException('Request time not found in requested data.');
        }

        $diff = $timestamp - $data[$this->requestTimeKey];
        if ($diff > $this->timeout) {
            throw new RequestTimeoutException('Request timeout');
        }

        return true;
    }
}


1		<?php
2
3		namespace kalanis\Restful\Security\Authentication;
4
5
6		use kalanis\Restful\Http\IInput;
7		use kalanis\Restful\Security\Exceptions\RequestTimeoutException;
8
9
10		/**
11		* Verify request timeout to avoid replay attack (needs to be applied with any HashAuthenticator)
12		* @package kalanis\Restful\Security\Authentication
13		*/
14	1	class TimeoutAuthenticator implements IRequestAuthenticator
15		{
16
17		/**
18		* @param string $requestTimeKey in user request data
19		* @param int $timeout in milliseconds
20		*/
21	1	public function __construct(
22		#[\SensitiveParameter] private readonly string $requestTimeKey,
23		private readonly int $timeout,
24		)
25		{
26	1	}
27
28		/**
29		* Authenticate request timeout
30		*
31		* @throws RequestTimeoutException
32		*/
33		public function authenticate(IInput $input): bool
34		{
35	1	$timestamp = time();
36	1	$data = $input->getData();
37	1	if (!isset($data[$this->requestTimeKey]) \|\| !$data[$this->requestTimeKey]) {
38		throw new RequestTimeoutException('Request time not found in requested data.');
39		}
40
41	1	$diff = $timestamp - $data[$this->requestTimeKey];
42	1	if ($diff > $this->timeout) {
43	1	throw new RequestTimeoutException('Request timeout');
44		}
45
46	1	return true;
47		}
48		}
49

alex-kalanis / restful

TimeoutAuthenticator::__construct() A last analyzed 2024-12-26 06:23 UTC

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like

TimeoutAuthenticator::__construct() A
last analyzed 2024-12-26 06:23 UTC