RequiredScopeValidator::onIntrospection() - Code Metrics - Inspection of "[SSO-25] Add an extension checking required scopes" - b2pweb/parroauth2-client - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#3)

by Sébastien

created 2021-11-12 09:45 UTC

RequiredScopeValidator::onIntrospection() A

↳ Parent: RequiredScopeValidator

Complexity

Conditions	1
Paths	1

Size

Total Lines	3
Code Lines	1

Duplication

Lines	0
Ratio	0 %

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
eloc	1
c	1
b	0
f	0
dl	0
loc	3
rs	10
cc	1
nc	1
nop	1

<?php

namespace Parroauth2\Client\Extension;

use Parroauth2\Client\EndPoint\EndPointTransformerTrait;
use Parroauth2\Client\EndPoint\Introspection\IntrospectionEndPoint;
use Parroauth2\Client\EndPoint\Introspection\IntrospectionResponse;
use Parroauth2\Client\Exception\AccessDeniedException;

/**
 * Perform validation on the returned introspection response to check the associated scopes.
 * All scope of this validator have to be present in the introspection scopes.
 */
final class RequiredScopeValidator extends AbstractEndPointTransformerExtension
{
    use EndPointTransformerTrait;

    /**
     * @var string[]
     */
    private $scopes;


    /**
     * @param string[] $scopes
     */
    public function __construct(array $scopes)
    {
        $this->scopes = $scopes;
    }

    /**
     * {@inheritdoc}
     */
    public function onIntrospection(IntrospectionEndPoint $endPoint): IntrospectionEndPoint
    {
        return $endPoint->onResponse([$this, 'validate']);
    }

    /**
     * Validate the all scopes are in the introspection response
     *
     * @param IntrospectionResponse $response
     *
     * @internal
     */
    public function validate(IntrospectionResponse $response): void
    {
        if (empty($scopes = $response->scopes())) {
            throw new AccessDeniedException("The introspection response has no scopes.");
        }

        foreach ($this->scopes as $scope) {
            if (!in_array($scope, $scopes)) {
                throw new AccessDeniedException(
                    "The scope '$scope' is not present in introspection response. Available scopes are " . implode(', ', $scopes)
                );
            }
        }
    }
}


1			<?php
2
3			namespace Parroauth2\Client\Extension;
4
5			use Parroauth2\Client\EndPoint\EndPointTransformerTrait;
6			use Parroauth2\Client\EndPoint\Introspection\IntrospectionEndPoint;
7			use Parroauth2\Client\EndPoint\Introspection\IntrospectionResponse;
8			use Parroauth2\Client\Exception\AccessDeniedException;
9
10			/**
11			* Perform validation on the returned introspection response to check the associated scopes.
12			* All scope of this validator have to be present in the introspection scopes.
13			*/
14			final class RequiredScopeValidator extends AbstractEndPointTransformerExtension
15			{
16			use EndPointTransformerTrait;
17
18			/**
19			* @var string[]
20			*/
21			private $scopes;
22
23
24			/**
25			* @param string[] $scopes
26			*/
27			public function __construct(array $scopes)
28			{
29			$this->scopes = $scopes;
30			}
31
32			/**
33			* {@inheritdoc}
34			*/
35			public function onIntrospection(IntrospectionEndPoint $endPoint): IntrospectionEndPoint
36			{
37			return $endPoint->onResponse([$this, 'validate']);
38			}
39
40			/**
41			* Validate the all scopes are in the introspection response
42			*
43			* @param IntrospectionResponse $response
44			*
45			* @internal
46			*/
47			public function validate(IntrospectionResponse $response): void
48			{
49			if (empty($scopes = $response->scopes())) {
50			throw new AccessDeniedException("The introspection response has no scopes.");
51			}
52
53			foreach ($this->scopes as $scope) {
54			if (!in_array($scope, $scopes)) {
55			throw new AccessDeniedException(
56			"The scope '$scope' is not present in introspection response. Available scopes are " . implode(', ', $scopes)
57			);
58			}
59			}
60			}
61			}
62

b2pweb / parroauth2-client

Pull Request — master (#3)

RequiredScopeValidator::onIntrospection() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like