AuthenticationMiddleware::sessionSdk() - Code Metrics - Inspection of "Merge pull request #383 from bakaphp/development" - bakaphp/canvas-core - Measure and Improve Code Quality continuously with Scrutinizer

Failed Conditions

Push — master ( 385b2f...f2f4ce )

by Rafael

created 2020-05-21 16:41 UTC

AuthenticationMiddleware::sessionSdk() A

↳ Parent: AuthenticationMiddleware

Complexity

Conditions	1
Paths	1

Size

Total Lines	14
Code Lines	9

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	0
CRAP Score	2

Importance

Changes

Metric	Value
cc	1
eloc	9
nc	1
nop	2
dl	0
loc	14
ccs	0
cts	0
cp	0
crap	2
rs	9.9666
c	0
b	0
f	0

<?php

declare(strict_types=1);

namespace Canvas\Middleware;

use Baka\Auth\Models\Sessions;
filter:
    dependency_paths: ["lib/*"]
use Canvas\Constants\Flags;
use Canvas\Http\Exception\UnauthorizedException;
use Canvas\Models\Apps;
use Canvas\Models\AppsKeys;
use Canvas\Models\Users;
use Phalcon\Config;
use Phalcon\Http\RequestInterface;
use Phalcon\Mvc\Micro;
filter:
    dependency_paths: ["lib/*"]

/**
 * Class AuthenticationMiddleware.
 *
 * @package Canvas\Middleware
 */
class AuthenticationMiddleware extends TokenBase
{
    /**
     * Call me.
     *
     * @param Micro $api
     *
     * @todo need to check section for auth here
     *
     * @return bool
     */
    public function call(Micro $api)
    {
        $config = $api->getService('config');
        $request = $api->getService('request');

        /**
         * This is where we will find if the user exists based on
         * the token passed using Bearer Authentication.
         */
        if (!empty($request->getBearerTokenFromHeader())) {
            $token = $this->getToken($request->getBearerTokenFromHeader());
        } elseif ($request->hasHeader('Client-Id') && $request->hasHeader('Client-Secret-Id') && $request->hasHeader('KanvasKey')) {
            // Functions that authenticates user by client id, client secret id and app key
            $this->sessionSdk($api, $request);

            return true;
        } else {
            throw new UnauthorizedException('Missing Token');
        }

        $this->sessionUser($api, $config, $token, $request);

        return true;
    }

    /**
     * Get the real from the JWT Token.
     *
     * @param Micro $api
     * @param Config $config
     * @param string $token
     * @param RequestInterface $request
     *
     * @throws UnauthorizedException
     *
     * @return void
     */
    protected function sessionUser(Micro $api, Config $config, object $token, RequestInterface $request) : void
    {
        $api->getDI()->setShared(
            'userData',
            function () use ($config, $token, $request) {
                $session = new Sessions();

                //all is empty and is dev, ok take use the first user
                if (empty($token->getClaim('sessionId')) && strtolower($config->app->env) == Flags::DEVELOPMENT) {
                    return Users::findFirst(1);
                }

                if (!empty($token->getClaim('sessionId'))) {
                    //user
                    if (!$user = Users::getByEmail($token->getClaim('email'))) {
                        throw new UnauthorizedException('User not found');
                    }

                    $ip = !defined('API_TESTS') ? $request->getClientAddress() : '127.0.0.1';
                    return $session->check($user, $token->getClaim('sessionId'), (string) $ip, 1);
                } else {
                    throw new UnauthorizedException('User not found');
                }
            }
        );

        /**
         * This is where we will validate the token that was sent to us
         * using Bearer Authentication.
         *
         * Find the user attached to this token
         */
        if (!$token->validate(Users::getValidationData($token->getHeader('jti')))) {
            throw new UnauthorizedException('Invalid Token');
        }
    }

    /**
     * Anonymous user from token.
     *
     * @param Micro $api
     * @param Config $config
     * @param mixed $token
     * @param RequestInterface $request
     *
     * @return void
     */
    protected function anonymousUser(Micro $api, Config $config, $token, RequestInterface $request) : void
    {
        $api->getDI()->setShared(
            'userData',
            function () use ($config) {
                /**
                 * @todo we need to track session for anonymous user
                 */
                if ($anonymous = Users::findFirst('-1')) {
                    return $anonymous;
                }

                throw new UnauthorizedException(
                    strtolower($config->app->env) == Flags::DEVELOPMENT ?
                    'No anonymous user configured in the app' :
                    'Missing Token'
                );
            }
        );
    }

    /**
     * Authenticate Admin user by client id, client secret id and apps keys.
     *
     * @param Micro $api
     * @param RequestInterface $request
     *
     * @return void
     *
     * @todo Add users validation by client id, client secret id, apps_id
     */
    protected function sessionSdk(Micro $api, RequestInterface $request) : void
    {
        $app = $api->getService('app');

        $api->getDI()->setShared(
            'userData',
            function () use ($request, $app) {
                $appkeys = AppsKeys::validateAppsKeys(
                    $request->getHeader('Client-Id'),
                    $request->getHeader('Client-Secret-Id'),
                    $app->getId()
                );

                return Users::findFirst($appkeys->users_id);
            }
        );
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			namespace Canvas\Middleware;
6
7			use Baka\Auth\Models\Sessions;
			0 ignored issues – show Bug introduced 2020-05-14 14:09 UTC by Report Bug Copy Issue Report The type `Baka\Auth\Models\Sessions` was not found. Maybe you did not declare it correctly or list all dependencies? The issue could also be caused by a filter entry in the build configuration. If the path has been excluded in your configuration, e.g. `excluded_paths: ["lib/"]`, you can move it to the dependency path list as follows: filter: dependency_paths: ["lib/"] For further information see https://scrutinizer-ci.com/docs/tools/php/php-scrutinizer/#list-dependency-paths Loading history...
8			use Canvas\Constants\Flags;
9			use Canvas\Http\Exception\UnauthorizedException;
10			use Canvas\Models\Apps;
11			use Canvas\Models\AppsKeys;
12			use Canvas\Models\Users;
13			use Phalcon\Config;
14			use Phalcon\Http\RequestInterface;
15			use Phalcon\Mvc\Micro;
			0 ignored issues – show Bug introduced 2020-05-14 14:09 UTC by Report Bug Copy Issue Report The type `Phalcon\Mvc\Micro` was not found. Maybe you did not declare it correctly or list all dependencies? The issue could also be caused by a filter entry in the build configuration. If the path has been excluded in your configuration, e.g. `excluded_paths: ["lib/"]`, you can move it to the dependency path list as follows: filter: dependency_paths: ["lib/"] For further information see https://scrutinizer-ci.com/docs/tools/php/php-scrutinizer/#list-dependency-paths Loading history...
16
17			/**
18			* Class AuthenticationMiddleware.
19			*
20			* @package Canvas\Middleware
21			*/
22			class AuthenticationMiddleware extends TokenBase
23			{
24			/**
25			* Call me.
26			*
27			* @param Micro $api
28			*
29			* @todo need to check section for auth here
30			*
31			* @return bool
32			*/
33			public function call(Micro $api)
34			{
35			$config = $api->getService('config');
36			$request = $api->getService('request');
37
38			/**
39			* This is where we will find if the user exists based on
40			* the token passed using Bearer Authentication.
41			*/
42			if (!empty($request->getBearerTokenFromHeader())) {
43			$token = $this->getToken($request->getBearerTokenFromHeader());
44			} elseif ($request->hasHeader('Client-Id') && $request->hasHeader('Client-Secret-Id') && $request->hasHeader('KanvasKey')) {
45			// Functions that authenticates user by client id, client secret id and app key
46			$this->sessionSdk($api, $request);
47
48			return true;
49			} else {
50			throw new UnauthorizedException('Missing Token');
51			}
52
53			$this->sessionUser($api, $config, $token, $request);
54
55			return true;
56			}
57
58			/**
59			* Get the real from the JWT Token.
60			*
61			* @param Micro $api
62			* @param Config $config
63			* @param string $token
64			* @param RequestInterface $request
65			*
66			* @throws UnauthorizedException
67			*
68			* @return void
69			*/
70			protected function sessionUser(Micro $api, Config $config, object $token, RequestInterface $request) : void
71			{
72			$api->getDI()->setShared(
73			'userData',
74			function () use ($config, $token, $request) {
75			$session = new Sessions();
76
77			//all is empty and is dev, ok take use the first user
78			if (empty($token->getClaim('sessionId')) && strtolower($config->app->env) == Flags::DEVELOPMENT) {
79			return Users::findFirst(1);
80			}
81
82			if (!empty($token->getClaim('sessionId'))) {
83			//user
84			if (!$user = Users::getByEmail($token->getClaim('email'))) {
85			throw new UnauthorizedException('User not found');
86			}
87
88			$ip = !defined('API_TESTS') ? $request->getClientAddress() : '127.0.0.1';
89			return $session->check($user, $token->getClaim('sessionId'), (string) $ip, 1);
90			} else {
91			throw new UnauthorizedException('User not found');
92			}
93			}
94			);
95
96			/**
97			* This is where we will validate the token that was sent to us
98			* using Bearer Authentication.
99			*
100			* Find the user attached to this token
101			*/
102			if (!$token->validate(Users::getValidationData($token->getHeader('jti')))) {
103			throw new UnauthorizedException('Invalid Token');
104			}
105			}
106
107			/**
108			* Anonymous user from token.
109			*
110			* @param Micro $api
111			* @param Config $config
112			* @param mixed $token
113			* @param RequestInterface $request
114			*
115			* @return void
116			*/
117			protected function anonymousUser(Micro $api, Config $config, $token, RequestInterface $request) : void
118			{
119			$api->getDI()->setShared(
120			'userData',
121			function () use ($config) {
122			/**
123			* @todo we need to track session for anonymous user
124			*/
125			if ($anonymous = Users::findFirst('-1')) {
126			return $anonymous;
127			}
128
129			throw new UnauthorizedException(
130			strtolower($config->app->env) == Flags::DEVELOPMENT ?
131			'No anonymous user configured in the app' :
132			'Missing Token'
133			);
134			}
135			);
136			}
137
138			/**
139			* Authenticate Admin user by client id, client secret id and apps keys.
140			*
141			* @param Micro $api
142			* @param RequestInterface $request
143			*
144			* @return void
145			*
146			* @todo Add users validation by client id, client secret id, apps_id
147			*/
148			protected function sessionSdk(Micro $api, RequestInterface $request) : void
149			{
150			$app = $api->getService('app');
151
152			$api->getDI()->setShared(
153			'userData',
154			function () use ($request, $app) {
155			$appkeys = AppsKeys::validateAppsKeys(
156			$request->getHeader('Client-Id'),
157			$request->getHeader('Client-Secret-Id'),
158			$app->getId()
159			);
160
161			return Users::findFirst($appkeys->users_id);
162			}
163			);
164			}
165			}
166

bakaphp / canvas-core

Push — master ( 385b2f...f2f4ce )

AuthenticationMiddleware::sessionSdk() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like