SoapHeader4 - Code Metrics - Inspection of "Removed some unneeded complexity." - amabnl/amadeus-ws-client - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( dcb951...0b0e41 )

by Dieter

created 2016-10-12 09:22 UTC

SoapHeader4 A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	414
Duplicated Lines	2.66 %

Coupling/Cohesion

Components	1
Dependencies	6

Importance

Changes	6
Bugs	0	Features	0

Metric	Value
wmc	27
lcom	1
cbo	6
dl	11
loc	414
rs	10
c	6
b	0
f	0

14 Methods

Rating	Name	Duplication	Size	Complexity
A	setStateful()	0	4	1
A	isStateful()	0	4	1
A	prepareForNextMessage()	0	11	3
A	handlePostMessage()	0	13	4
B	getSessionDataFromHeader()	0	34	3
A	generatePasswordDigest()	0	4	1
A	createDateTimeStringForAuth()	0	5	1
B	createSoapHeaders()	0	119	6
A	getEndpointFromWsdl()	0	11	1
A	getActionFromWsdl()	0	13	1
A	generateGuid()	0	14	1
A	generateSecurityHeaderRawXml()	0	11	1
A	generateUniqueNonce()	0	11	1
A	makeSoapClientOptions()	11	11	2

How to fix Duplicated Code

<?php
/**
 * amadeus-ws-client
 *
 * Copyright 2015 Amadeus Benelux NV
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 * @package Amadeus
 * @license https://opensource.org/licenses/Apache-2.0 Apache 2.0
 */

namespace Amadeus\Client\Session\Handler;

use Amadeus\Client;

/**
 * SoapHeader4: Session Handler for web service applications using Amadeus WS Soap Header v4.
 *
 * @package Amadeus\Client\Session\Handler
 * @author Dieter Devlieghere <[email protected]>
 */
class SoapHeader4 extends Base
{
    /**
     * XPATH query to retrieve the SOAPAction from the WSDL for a given message.
     *
     * @var string
     */
    const XPATH_OPERATION_ACTION = 'string(//wsdl:operation[./@name="%s"]/soap:operation/@soapAction)';
    /**
     * XPATH query to retrieve the server endpoint from the WSDL.
     *
     * @var string
     */
    const XPATH_ENDPOINT = 'string(/wsdl:definitions/wsdl:service/wsdl:port/soap:address/@location)';


    /**
     * Switch between stateful & stateless sessions. Default: stateful
     *
     * @var bool
     */
    protected $isStateful = true;

    /**
     * @param bool $stateful
     */
    public function setStateful($stateful)
    {
        $this->isStateful = $stateful;
    }

    /**
     * Check whether we are running in stateful mode (true) or in stateless mode (false)
     *
     * @return bool
     */
    public function isStateful()
    {
        return $this->isStateful;
    }

    /**
     * Handles authentication & sessions
     *
     * If authenticated, increment sequence number for next message and set session info to soapheader
     * If not, set auth info to soapheader
     *
     * @uses $this->isAuthenticated
     * @uses $this->sessionData
     * @param string $messageName
     * @param array $messageOptions
     */
    protected function prepareForNextMessage($messageName, $messageOptions)
    {
        if ($this->isAuthenticated === true && is_int($this->sessionData['sequenceNumber'])) {
            $this->sessionData['sequenceNumber']++;
        }

        $headers = $this->createSoapHeaders($this->sessionData, $this->params, $messageName, $messageOptions);

        $this->getSoapClient($messageName)->__setSoapHeaders(null);
        $this->getSoapClient($messageName)->__setSoapHeaders($headers);
    }


    /**
     * Handles post message actions
     *
     * - look for session info and set status variables
     * - checks for message errors?
     * - ends terminated sessions
     *
     * @param string $messageName
     * @param string $lastResponse
     * @param array $messageOptions
     * @param mixed $result
     * @return void
     */
    protected function handlePostMessage($messageName, $lastResponse, $messageOptions, $result)
    {
        //CHECK FOR SESSION DATA:
        if ($this->isStateful() === true) {
            //We need to extract session info
            $this->sessionData = $this->getSessionDataFromHeader($lastResponse);
            $this->isAuthenticated = (!empty($this->sessionData['sessionId']) &&
                !empty($this->sessionData['sequenceNumber']) &&
                !empty($this->sessionData['securityToken']));
        } else {
            $this->isAuthenticated = false;
        }
    }

    /**
     * @param string $responseMsg the full response XML received.
     * @return array
     */
    protected function getSessionDataFromHeader($responseMsg)
    {
        $newSessionData = [
            'sessionId' => null,
            'sequenceNumber' => null,
            'securityToken' => null
        ];

        $responseDomDoc = new \DOMDocument('1.0', 'UTF-8');
        $responseDomDoc->loadXML($responseMsg);
        $responseDomXpath = new \DOMXPath($responseDomDoc);
        $responseDomXpath->registerNamespace('awsse', 'http://xml.amadeus.com/2010/06/Session_v3');

        $queryTransactionStatusCode = "string(//awsse:Session/@TransactionStatusCode)";

        $transactionStatusCode = $responseDomXpath->evaluate($queryTransactionStatusCode);

        if (mb_strtolower($transactionStatusCode) !== "end") {
            $querySessionId = "string(//awsse:Session/awsse:SessionId/text())";
            $querySequenceNumber = "string(//awsse:Session/awsse:SequenceNumber/text())";
            $querySecurityToken = "string(//awsse:Session/awsse:SecurityToken/text())";

            $newSessionData['sessionId'] = $responseDomXpath->evaluate($querySessionId);
            $newSessionData['sequenceNumber'] = $responseDomXpath->evaluate($querySequenceNumber);
            if (!empty($newSessionData['sequenceNumber'])) {
                $newSessionData['sequenceNumber'] = (int) $newSessionData['sequenceNumber'];
            }
            $newSessionData['securityToken'] = $responseDomXpath->evaluate($querySecurityToken);
        }

        unset($responseDomDoc, $responseDomXpath);

        return $newSessionData;
    }

    /**
     * Create the Soap Headers to be used on the subsequent request.
     *
     * This depends on the current Session Data (if there is an active session) and
     * the Session Handler parameters (to create a new or stateless session)
     *
     * You can also terminate the session with $doEndSession = true
     *
     * @param array $sessionData
     * @param Client\Params\SessionHandlerParams $params
     * @param string $messageName
     * @param array $messageOptions
     * @return \SoapHeader[]|null

     */
    protected function createSoapHeaders($sessionData, $params, $messageName, $messageOptions)
    {
        $headersToSet = [];

        $wsdlId = $this->getWsdlIdFor($messageName);
        $wsdl = $this->wsdlIds[$wsdlId];

        //CHECK STATEFUL
        $stateful = $this->isStateful();

        //Message ID header
        array_push(
            $headersToSet,
            new \SoapHeader(
                'http://www.w3.org/2005/08/addressing',
                'MessageID',
                $this->generateGuid()
            )
        );

        //Action header
        array_push(
            $headersToSet,
            new \SoapHeader(
                'http://www.w3.org/2005/08/addressing',
                'Action',
                $this->getActionFromWsdl($wsdl, $messageName)
            )
        );

        //To header
        array_push(
            $headersToSet,
            new \SoapHeader(
                'http://www.w3.org/2005/08/addressing',
                'To',
                $this->getEndpointFromWsdl($wsdl, $messageName)
            )
        );

        //Send authentication info
        if ($this->isAuthenticated === false) {
            //Generate nonce, msg creation string & password digest:
            $password = base64_decode($params->authParams->passwordData);
            $creation = new \DateTime('now', new \DateTimeZone('UTC'));
            $t = microtime(true);
            $micro = sprintf("%03d", ($t - floor($t)) * 1000);
            $creationString = $this->createDateTimeStringForAuth($creation, $micro);
            $messageNonce = $this->generateUniqueNonce($params->authParams->nonceBase, $creationString);
            $encodedNonce = base64_encode($messageNonce);
            $digest = $this->generatePasswordDigest($password, $creationString, $messageNonce);

            $securityHeaderXml = $this->generateSecurityHeaderRawXml(
                $params->authParams->userId,
                $encodedNonce,
                $digest,
                $creationString
            );

            //Authentication header
            array_push(
                $headersToSet,
                new \SoapHeader(
                    'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wsswssecurity-secext-1.0.xsd',
                    'Security',
                    new \SoapVar($securityHeaderXml, XSD_ANYXML)
                )
            );

            if ($stateful === true) {
                //Not authenticated but stateful: start session!
                array_push(
                    $headersToSet,
                    new \SoapHeader(
                        'http://xml.amadeus.com/2010/06/Session_v3',
                        'Session',
                        new Client\Struct\HeaderV4\Session(
                            null,
                            "Start"
                        )
                    )
                );
            }

            //AMA_SecurityHostedUser header
            array_push(
                $headersToSet,
                new \SoapHeader(
                    'http://xml.amadeus.com/2010/06/Security_v1',
                    'AMA_SecurityHostedUser',
                    new Client\Struct\HeaderV4\SecurityHostedUser(
                        $params->authParams->officeId,
                        $params->authParams->originatorTypeCode,
                        1,
                        $params->authParams->dutyCode
                    )
                )
            );
        } elseif ($stateful === true) {
            //We are authenticated and stateful: provide session header to continue or terminate session
            $statusCode =
                (isset($messageOptions['endSession']) && $messageOptions['endSession'] === true) ?
                    "End" : "InSeries";

            array_push(
                $headersToSet,
                new \SoapHeader(
                    'http://xml.amadeus.com/2010/06/Session_v3',
                    'Session',
                    new Client\Struct\HeaderV4\Session(
                        $sessionData,
                        $statusCode
                    )
                )
            );
        }

        return $headersToSet;
    }

    /**
     * Get the Web Services server Endpoint from the WSDL.
     *
     * @param string $wsdlFilePath
     * @param string $messageName
     * @return string
     */
    protected function getEndpointFromWsdl($wsdlFilePath, $messageName)
    {
        $wsdlId = $this->getWsdlIdFor($messageName);

        $this->loadWsdlXpath(
            $wsdlFilePath,
            $wsdlId
        );

        return $this->wsdlDomXpath[$wsdlId]->evaluate(self::XPATH_ENDPOINT);
    }

    /**
     * Get the SOAPAction for a given message from the WSDL contents.
     *
     * @param string $wsdlFilePath
     * @param string $messageName
     * @return string
     */
    protected function getActionFromWsdl($wsdlFilePath, $messageName)
    {
        $wsdlId = $this->getWsdlIdFor($messageName);

        $this->loadWsdlXpath(
            $wsdlFilePath,
            $wsdlId
        );

        $action = $this->wsdlDomXpath[$wsdlId]->evaluate(sprintf(self::XPATH_OPERATION_ACTION, $messageName));

        return $action;
    }

    /**
     * Generate a GUID
     *
     * @return string
     */
    protected function generateGuid()
    {
        mt_srand((double) microtime() * 10000);
        $charId = strtoupper(md5(uniqid(rand(), true)));
        $hyphen = chr(45); // "-"

        $uuid = substr($charId, 0, 8) . $hyphen
            .substr($charId, 8, 4) . $hyphen
            .substr($charId, 12, 4) . $hyphen
            .substr($charId, 16, 4) . $hyphen
            .substr($charId, 20, 12);

        return $uuid;
    }

    /**
     * @param string $originator
     * @param string $nonce
     * @param string $pwDigest
     * @param string $creationTimeString
     * @return string
     */
    protected function generateSecurityHeaderRawXml($originator, $nonce, $pwDigest, $creationTimeString)
    {
        return $xml = '<oas:Security xmlns:oas="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
	<oas:UsernameToken xmlns:oas1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" oas1:Id="UsernameToken-1">

		<oas:Username>' . $originator . '</oas:Username>
		<oas:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">' . $nonce . '</oas:Nonce>

		<oas:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest">' . $pwDigest . '</oas:Password>

		<oas1:Created>' . $creationTimeString . '</oas1:Created>
	</oas:UsernameToken>
</oas:Security>';
    }


    /**
     * @param string $nonceBase
     * @param string $creationString
     * @return string
     */
    protected function generateUniqueNonce($nonceBase, $creationString)
    {
        return substr(
            sha1(
                $nonceBase . $creationString,
                true
            ),
            0,
            16
        );
    }

    /**
     * Generates a Password Digest following this algorithm:
     * HashedPassword = Base64(SHA-1( nonce + created + SHA-1 ( password )))
     * as defined in
     * https://webservices.amadeus.com/extranet/kdbViewDocument.do?externalId=wikidoc_web_services_embedded_security_implementation_guide_header_entries_ws-security_usernametoken&docStatus=Published&mpId=fla__1__technical

     *
     * EXAMPLE: with:
     *  Nonce in Base 64 = 'PZgFvh5439plJpKpIyf5ucmXhNU='
     *  Timestamp = '2013-01-11T09:41:03Z'
     *  Clear Password = 'WBSPassword'
     * The digest algorithm returns the Encrypted Password in Base 64:
     *  HshPwd = 'ic3AOJElVpvkz9ZBKd105Siry28='
     *
     * @param string $password CLEARTEXT password (NOT the base64 encoded password used in Security_Authenticate)
     * @param string $creationString message creation datetime
     *                               UTC Format: yyyy-mm-ddTHH:MM:SSZ or yyyy-mm-ddTHH:MM:SS.sssZ
     * @param string $messageNonce Random unique string
     * @return string The generated Password Digest
     */
    protected function generatePasswordDigest($password, $creationString, $messageNonce)
    {
        return base64_encode(sha1($messageNonce . $creationString . sha1($password, true), true));
    }

    /**
     * @param \DateTime $creationDateTime
     * @param string $micro
     * @return string
     */
    protected function createDateTimeStringForAuth($creationDateTime, $micro)
    {
        $creationDateTime->setTimezone(new \DateTimeZone('UTC'));
        return $creationDateTime->format("Y-m-d\TH:i:s:") . $micro . 'Z';
    }

    /**
     * Make SoapClient options for Soap Header 4 handler
     *
     * @return array
     */
    protected function makeSoapClientOptions()

    {
        $options = $this->soapClientOptions;
        $options['classmap'] = array_merge(Classmap::$soapheader4map, Classmap::$map);

        if (!empty($this->params->soapClientOptions)) {
            $options = array_merge($options, $this->params->soapClientOptions);
        }

        return $options;
    }
}


1		<?php
2		/**
3		* amadeus-ws-client
4		*
5		* Copyright 2015 Amadeus Benelux NV
6		*
7		* Licensed under the Apache License, Version 2.0 (the "License");
8		* you may not use this file except in compliance with the License.
9		* You may obtain a copy of the License at
10		*
11		* http://www.apache.org/licenses/LICENSE-2.0
12		*
13		* Unless required by applicable law or agreed to in writing, software
14		* distributed under the License is distributed on an "AS IS" BASIS,
15		* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16		* See the License for the specific language governing permissions and
17		* limitations under the License.
18		*
19		* @package Amadeus
20		* @license https://opensource.org/licenses/Apache-2.0 Apache 2.0
21		*/
22
23		namespace Amadeus\Client\Session\Handler;
24
25		use Amadeus\Client;
26
27		/**
28		* SoapHeader4: Session Handler for web service applications using Amadeus WS Soap Header v4.
29		*
30		* @package Amadeus\Client\Session\Handler
31		* @author Dieter Devlieghere <[email protected]>
32		*/
33		class SoapHeader4 extends Base
34		{
35		/**
36		* XPATH query to retrieve the SOAPAction from the WSDL for a given message.
37		*
38		* @var string
39		*/
40		const XPATH_OPERATION_ACTION = 'string(//wsdl:operation[./@name="%s"]/soap:operation/@soapAction)';
41		/**
42		* XPATH query to retrieve the server endpoint from the WSDL.
43		*
44		* @var string
45		*/
46		const XPATH_ENDPOINT = 'string(/wsdl:definitions/wsdl:service/wsdl:port/soap:address/@location)';
47
48
49		/**
50		* Switch between stateful & stateless sessions. Default: stateful
51		*
52		* @var bool
53		*/
54		protected $isStateful = true;
55
56		/**
57		* @param bool $stateful
58		*/
59		public function setStateful($stateful)
60		{
61		$this->isStateful = $stateful;
62		}
63
64		/**
65		* Check whether we are running in stateful mode (true) or in stateless mode (false)
66		*
67		* @return bool
68		*/
69		public function isStateful()
70		{
71		return $this->isStateful;
72		}
73
74		/**
75		* Handles authentication & sessions
76		*
77		* If authenticated, increment sequence number for next message and set session info to soapheader
78		* If not, set auth info to soapheader
79		*
80		* @uses $this->isAuthenticated
81		* @uses $this->sessionData
82		* @param string $messageName
83		* @param array $messageOptions
84		*/
85		protected function prepareForNextMessage($messageName, $messageOptions)
86		{
87		if ($this->isAuthenticated === true && is_int($this->sessionData['sequenceNumber'])) {
88		$this->sessionData['sequenceNumber']++;
89		}
90
91		$headers = $this->createSoapHeaders($this->sessionData, $this->params, $messageName, $messageOptions);
92
93		$this->getSoapClient($messageName)->__setSoapHeaders(null);
94		$this->getSoapClient($messageName)->__setSoapHeaders($headers);
95		}
96
97
98		/**
99		* Handles post message actions
100		*
101		* - look for session info and set status variables
102		* - checks for message errors?
103		* - ends terminated sessions
104		*
105		* @param string $messageName
106		* @param string $lastResponse
107		* @param array $messageOptions
108		* @param mixed $result
109		* @return void
110		*/
111		protected function handlePostMessage($messageName, $lastResponse, $messageOptions, $result)
112		{
113		//CHECK FOR SESSION DATA:
114		if ($this->isStateful() === true) {
115		//We need to extract session info
116		$this->sessionData = $this->getSessionDataFromHeader($lastResponse);
117		$this->isAuthenticated = (!empty($this->sessionData['sessionId']) &&
118		!empty($this->sessionData['sequenceNumber']) &&
119		!empty($this->sessionData['securityToken']));
120		} else {
121		$this->isAuthenticated = false;
122		}
123		}
124
125		/**
126		* @param string $responseMsg the full response XML received.
127		* @return array
128		*/
129		protected function getSessionDataFromHeader($responseMsg)
130		{
131		$newSessionData = [
132		'sessionId' => null,
133		'sequenceNumber' => null,
134		'securityToken' => null
135		];
136
137		$responseDomDoc = new \DOMDocument('1.0', 'UTF-8');
138		$responseDomDoc->loadXML($responseMsg);
139		$responseDomXpath = new \DOMXPath($responseDomDoc);
140		$responseDomXpath->registerNamespace('awsse', 'http://xml.amadeus.com/2010/06/Session_v3');
141
142		$queryTransactionStatusCode = "string(//awsse:Session/@TransactionStatusCode)";
143
144		$transactionStatusCode = $responseDomXpath->evaluate($queryTransactionStatusCode);
145
146		if (mb_strtolower($transactionStatusCode) !== "end") {
147		$querySessionId = "string(//awsse:Session/awsse:SessionId/text())";
148		$querySequenceNumber = "string(//awsse:Session/awsse:SequenceNumber/text())";
149		$querySecurityToken = "string(//awsse:Session/awsse:SecurityToken/text())";
150
151		$newSessionData['sessionId'] = $responseDomXpath->evaluate($querySessionId);
152		$newSessionData['sequenceNumber'] = $responseDomXpath->evaluate($querySequenceNumber);
153		if (!empty($newSessionData['sequenceNumber'])) {
154		$newSessionData['sequenceNumber'] = (int) $newSessionData['sequenceNumber'];
155		}
156		$newSessionData['securityToken'] = $responseDomXpath->evaluate($querySecurityToken);
157		}
158
159		unset($responseDomDoc, $responseDomXpath);
160
161		return $newSessionData;
162		}
163
164		/**
165		* Create the Soap Headers to be used on the subsequent request.
166		*
167		* This depends on the current Session Data (if there is an active session) and
168		* the Session Handler parameters (to create a new or stateless session)
169		*
170		* You can also terminate the session with $doEndSession = true
171		*
172		* @param array $sessionData
173		* @param Client\Params\SessionHandlerParams $params
174		* @param string $messageName
175		* @param array $messageOptions
176		* @return \SoapHeader[]\|null
		0 ignored issues – show Documentation introduced 2016-03-02 14:56 UTC by Report Bug Copy Issue Report Should the return type not be `array`? This check compares the return type specified in the `@return` annotation of a function or method doc comment with the types returned by the function and raises an issue if they mismatch. Loading history...
177		*/
178		protected function createSoapHeaders($sessionData, $params, $messageName, $messageOptions)
179		{
180		$headersToSet = [];
181
182		$wsdlId = $this->getWsdlIdFor($messageName);
183		$wsdl = $this->wsdlIds[$wsdlId];
184
185		//CHECK STATEFUL
186		$stateful = $this->isStateful();
187
188		//Message ID header
189		array_push(
190		$headersToSet,
191		new \SoapHeader(
192		'http://www.w3.org/2005/08/addressing',
193		'MessageID',
194		$this->generateGuid()
195		)
196		);
197
198		//Action header
199		array_push(
200		$headersToSet,
201		new \SoapHeader(
202		'http://www.w3.org/2005/08/addressing',
203		'Action',
204		$this->getActionFromWsdl($wsdl, $messageName)
205		)
206		);
207
208		//To header
209		array_push(
210		$headersToSet,
211		new \SoapHeader(
212		'http://www.w3.org/2005/08/addressing',
213		'To',
214		$this->getEndpointFromWsdl($wsdl, $messageName)
215		)
216		);
217
218		//Send authentication info
219		if ($this->isAuthenticated === false) {
220		//Generate nonce, msg creation string & password digest:
221		$password = base64_decode($params->authParams->passwordData);
222		$creation = new \DateTime('now', new \DateTimeZone('UTC'));
223		$t = microtime(true);
224		$micro = sprintf("%03d", ($t - floor($t)) * 1000);
225		$creationString = $this->createDateTimeStringForAuth($creation, $micro);
226		$messageNonce = $this->generateUniqueNonce($params->authParams->nonceBase, $creationString);
227		$encodedNonce = base64_encode($messageNonce);
228		$digest = $this->generatePasswordDigest($password, $creationString, $messageNonce);
229
230		$securityHeaderXml = $this->generateSecurityHeaderRawXml(
231		$params->authParams->userId,
232		$encodedNonce,
233		$digest,
234		$creationString
235		);
236
237		//Authentication header
238		array_push(
239		$headersToSet,
240		new \SoapHeader(
241		'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wsswssecurity-secext-1.0.xsd',
242		'Security',
243		new \SoapVar($securityHeaderXml, XSD_ANYXML)
244		)
245		);
246
247		if ($stateful === true) {
248		//Not authenticated but stateful: start session!
249		array_push(
250		$headersToSet,
251		new \SoapHeader(
252		'http://xml.amadeus.com/2010/06/Session_v3',
253		'Session',
254		new Client\Struct\HeaderV4\Session(
255		null,
256		"Start"
257		)
258		)
259		);
260		}
261
262		//AMA_SecurityHostedUser header
263		array_push(
264		$headersToSet,
265		new \SoapHeader(
266		'http://xml.amadeus.com/2010/06/Security_v1',
267		'AMA_SecurityHostedUser',
268		new Client\Struct\HeaderV4\SecurityHostedUser(
269		$params->authParams->officeId,
270		$params->authParams->originatorTypeCode,
271		1,
272		$params->authParams->dutyCode
273		)
274		)
275		);
276		} elseif ($stateful === true) {
277		//We are authenticated and stateful: provide session header to continue or terminate session
278		$statusCode =
279		(isset($messageOptions['endSession']) && $messageOptions['endSession'] === true) ?
280		"End" : "InSeries";
281
282		array_push(
283		$headersToSet,
284		new \SoapHeader(
285		'http://xml.amadeus.com/2010/06/Session_v3',
286		'Session',
287		new Client\Struct\HeaderV4\Session(
288		$sessionData,
289		$statusCode
290		)
291		)
292		);
293		}
294
295		return $headersToSet;
296		}
297
298		/**
299		* Get the Web Services server Endpoint from the WSDL.
300		*
301		* @param string $wsdlFilePath
302		* @param string $messageName
303		* @return string
304		*/
305		protected function getEndpointFromWsdl($wsdlFilePath, $messageName)
306		{
307		$wsdlId = $this->getWsdlIdFor($messageName);
308
309		$this->loadWsdlXpath(
310		$wsdlFilePath,
311		$wsdlId
312		);
313
314		return $this->wsdlDomXpath[$wsdlId]->evaluate(self::XPATH_ENDPOINT);
315		}
316
317		/**
318		* Get the SOAPAction for a given message from the WSDL contents.
319		*
320		* @param string $wsdlFilePath
321		* @param string $messageName
322		* @return string
323		*/
324		protected function getActionFromWsdl($wsdlFilePath, $messageName)
325		{
326		$wsdlId = $this->getWsdlIdFor($messageName);
327
328		$this->loadWsdlXpath(
329		$wsdlFilePath,
330		$wsdlId
331		);
332
333		$action = $this->wsdlDomXpath[$wsdlId]->evaluate(sprintf(self::XPATH_OPERATION_ACTION, $messageName));
334
335		return $action;
336		}
337
338		/**
339		* Generate a GUID
340		*
341		* @return string
342		*/
343		protected function generateGuid()
344		{
345		mt_srand((double) microtime() * 10000);
346		$charId = strtoupper(md5(uniqid(rand(), true)));
347		$hyphen = chr(45); // "-"
348
349		$uuid = substr($charId, 0, 8) . $hyphen
350		.substr($charId, 8, 4) . $hyphen
351		.substr($charId, 12, 4) . $hyphen
352		.substr($charId, 16, 4) . $hyphen
353		.substr($charId, 20, 12);
354
355		return $uuid;
356		}
357
358		/**
359		* @param string $originator
360		* @param string $nonce
361		* @param string $pwDigest
362		* @param string $creationTimeString
363		* @return string
364		*/
365		protected function generateSecurityHeaderRawXml($originator, $nonce, $pwDigest, $creationTimeString)
366		{
367		return $xml = '<oas:Security xmlns:oas="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
		0 ignored issues – show Unused Code introduced 2016-03-02 13:21 UTC by Report Bug Copy Issue Report `$xml` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history... Coding Style introduced 2016-03-02 14:56 UTC by Report Bug Copy Issue Report This line exceeds maximum limit of 120 characters; contains 131 characters Overly long lines are hard to read on any screen. Most code styles therefor impose a maximum limit on the number of characters in a line. Loading history...
368		<oas:UsernameToken xmlns:oas1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" oas1:Id="UsernameToken-1">
		0 ignored issues – show Coding Style introduced 2016-03-02 14:56 UTC by Report Bug Copy Issue Report This line exceeds maximum limit of 120 characters; contains 142 characters Overly long lines are hard to read on any screen. Most code styles therefor impose a maximum limit on the number of characters in a line. Loading history...
369		<oas:Username>' . $originator . '</oas:Username>
370		<oas:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">' . $nonce . '</oas:Nonce>
		0 ignored issues – show Coding Style introduced 2016-03-02 14:56 UTC by Report Bug Copy Issue Report This line exceeds maximum limit of 120 characters; contains 149 characters Overly long lines are hard to read on any screen. Most code styles therefor impose a maximum limit on the number of characters in a line. Loading history...
371		<oas:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest">' . $pwDigest . '</oas:Password>
		0 ignored issues – show Coding Style introduced 2016-03-02 14:56 UTC by Report Bug Copy Issue Report This line exceeds maximum limit of 120 characters; contains 153 characters Overly long lines are hard to read on any screen. Most code styles therefor impose a maximum limit on the number of characters in a line. Loading history...
372		<oas1:Created>' . $creationTimeString . '</oas1:Created>
373		</oas:UsernameToken>
374		</oas:Security>';
375		}
376
377
378		/**
379		* @param string $nonceBase
380		* @param string $creationString
381		* @return string
382		*/
383		protected function generateUniqueNonce($nonceBase, $creationString)
384		{
385		return substr(
386		sha1(
387		$nonceBase . $creationString,
388		true
389		),
390		0,
391		16
392		);
393		}
394
395		/**
396		* Generates a Password Digest following this algorithm:
397		* HashedPassword = Base64(SHA-1( nonce + created + SHA-1 ( password )))
398		* as defined in
399		* https://webservices.amadeus.com/extranet/kdbViewDocument.do?externalId=wikidoc_web_services_embedded_security_implementation_guide_header_entries_ws-security_usernametoken&docStatus=Published&mpId=fla__1__technical
		0 ignored issues – show Coding Style introduced 2016-03-02 14:56 UTC by Report Bug Copy Issue Report This line exceeds maximum limit of 120 characters; contains 221 characters Overly long lines are hard to read on any screen. Most code styles therefor impose a maximum limit on the number of characters in a line. Loading history...
400		*
401		* EXAMPLE: with:
402		* Nonce in Base 64 = 'PZgFvh5439plJpKpIyf5ucmXhNU='
403		* Timestamp = '2013-01-11T09:41:03Z'
404		* Clear Password = 'WBSPassword'
405		* The digest algorithm returns the Encrypted Password in Base 64:
406		* HshPwd = 'ic3AOJElVpvkz9ZBKd105Siry28='
407		*
408		* @param string $password CLEARTEXT password (NOT the base64 encoded password used in Security_Authenticate)
409		* @param string $creationString message creation datetime
410		* UTC Format: yyyy-mm-ddTHH:MM:SSZ or yyyy-mm-ddTHH:MM:SS.sssZ
411		* @param string $messageNonce Random unique string
412		* @return string The generated Password Digest
413		*/
414		protected function generatePasswordDigest($password, $creationString, $messageNonce)
415		{
416		return base64_encode(sha1($messageNonce . $creationString . sha1($password, true), true));
417		}
418
419		/**
420		* @param \DateTime $creationDateTime
421		* @param string $micro
422		* @return string
423		*/
424		protected function createDateTimeStringForAuth($creationDateTime, $micro)
425		{
426		$creationDateTime->setTimezone(new \DateTimeZone('UTC'));
427		return $creationDateTime->format("Y-m-d\TH:i:s:") . $micro . 'Z';
428		}
429
430		/**
431		* Make SoapClient options for Soap Header 4 handler
432		*
433		* @return array
434		*/
435	View Code Duplication	protected function makeSoapClientOptions()
		0 ignored issues – show Duplication introduced 2016-07-13 13:33 UTC by Report Bug Copy Issue Report This method seems to be duplicated in your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
436		{
437		$options = $this->soapClientOptions;
438		$options['classmap'] = array_merge(Classmap::$soapheader4map, Classmap::$map);
439
440		if (!empty($this->params->soapClientOptions)) {
441		$options = array_merge($options, $this->params->soapClientOptions);
442		}
443
444		return $options;
445		}
446		}
447

amabnl / amadeus-ws-client

Push — master ( dcb951...0b0e41 )

SoapHeader4 A

Complexity

Size/Duplication

Coupling/Cohesion

Importance

14 Methods

How to fix Duplicated Code

Duplicated Code

Duplication Side-by-Side

Filter issues like