Auth - Code Metrics - barbushin/php-console - Measure and Improve Code Quality continuously with Scrutinizer

Auth A
last analyzed 2019-09-06 10:45 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	94
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	2

Importance

Changes

Metric	Value
dl	0
loc	94
rs	10
c	0
b	0
f	0
wmc	14
lcom	1
cbo	2

9 Methods

Rating	Name	Size	Complexity
A	__construct()	4	1
A	hash()	3	1
A	getPasswordHash()	3	1
A	getServerAuthStatus()	6	2
A	isValidAuth()	3	2
A	getClientUid()	12	4
A	getPublicKey()	3	1
A	getSignature()	3	1
A	getToken()	3	1

<?php

namespace PhpConsole;

/**
 * PHP Console client authorization credentials & validation class
 *
 * @package PhpConsole
 * @version 3.1
 * @link http://consle.com
 * @author Sergey Barbushin http://linkedin.com/in/barbushin
 * @copyright © Sergey Barbushin, 2011-2013. All rights reserved.
 * @license http://www.opensource.org/licenses/BSD-3-Clause "The BSD 3-Clause License"
 * @codeCoverageIgnore
 */
class Auth {

	const PASSWORD_HASH_SALT = 'NeverChangeIt:)';

	protected $publicKeyByIp;
	protected $passwordHash;

	/**
	 * @param string $password Common password for all clients
	 * @param bool $publicKeyByIp Set public key depending on client IP
	 */
	public function __construct($password, $publicKeyByIp = true) {
		$this->publicKeyByIp = $publicKeyByIp;
		$this->passwordHash = $this->getPasswordHash($password);
	}

	protected final function hash($string) {
		return hash('sha256', $string);
	}

	/**
	 * Get password hash like on client
	 * @param $password
	 * @return string
	 */
	protected final function getPasswordHash($password) {
		return $this->hash($password . self::PASSWORD_HASH_SALT);
	}

	/**
	 * Get authorization result data for client
	 * @codeCoverageIgnore
	 * @param ClientAuth|null $clientAuth
	 * @return ServerAuthStatus
	 */
	public final function getServerAuthStatus(ClientAuth $clientAuth = null) {
		$serverAuthStatus = new ServerAuthStatus();
		$serverAuthStatus->publicKey = $this->getPublicKey();
		$serverAuthStatus->isSuccess = $clientAuth && $this->isValidAuth($clientAuth);
		return $serverAuthStatus;
	}

	/**
	 * Check if client authorization data is valid
	 * @codeCoverageIgnore
	 * @param ClientAuth $clientAuth
	 * @return bool
	 */
	public final function isValidAuth(ClientAuth $clientAuth) {
		return $clientAuth->publicKey === $this->getPublicKey() && $clientAuth->token === $this->getToken();
	}

	/**
	 * Get client unique identification
	 * @return string
	 */
	protected function getClientUid() {
		$clientUid = '';
		if($this->publicKeyByIp) {
			if(isset($_SERVER['REMOTE_ADDR'])) {
				$clientUid .= $_SERVER['REMOTE_ADDR'];
			}
			if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
				$clientUid .= $_SERVER['HTTP_X_FORWARDED_FOR'];
			}
		}
		return $clientUid;
	}

	/**
	 * Get authorization session public key for current client
	 * @return string
	 */
	protected function getPublicKey() {
		return $this->hash($this->getClientUid() . $this->passwordHash);
	}

	/**
	 * Get string signature for current password & public key
	 * @param $string
	 * @return string
	 */
	public final function getSignature($string) {
		return $this->hash($this->passwordHash . $this->getPublicKey() . $string);
	}

	/**
	 * Get expected valid client authorization token
	 * @return string
	 */
	private final function getToken() {
		return $this->hash($this->passwordHash . $this->getPublicKey());
	}
}


1			<?php
2
3			namespace PhpConsole;
4
5			/**
6			* PHP Console client authorization credentials & validation class
7			*
8			* @package PhpConsole
9			* @version 3.1
10			* @link http://consle.com
11			* @author Sergey Barbushin http://linkedin.com/in/barbushin
12			* @copyright © Sergey Barbushin, 2011-2013. All rights reserved.
13			* @license http://www.opensource.org/licenses/BSD-3-Clause "The BSD 3-Clause License"
14			* @codeCoverageIgnore
15			*/
16			class Auth {
17
18			const PASSWORD_HASH_SALT = 'NeverChangeIt:)';
19
20			protected $publicKeyByIp;
21			protected $passwordHash;
22
23			/**
24			* @param string $password Common password for all clients
25			* @param bool $publicKeyByIp Set public key depending on client IP
26			*/
27			public function __construct($password, $publicKeyByIp = true) {
28			$this->publicKeyByIp = $publicKeyByIp;
29			$this->passwordHash = $this->getPasswordHash($password);
30			}
31
32			protected final function hash($string) {
33			return hash('sha256', $string);
34			}
35
36			/**
37			* Get password hash like on client
38			* @param $password
39			* @return string
40			*/
41			protected final function getPasswordHash($password) {
42			return $this->hash($password . self::PASSWORD_HASH_SALT);
43			}
44
45			/**
46			* Get authorization result data for client
47			* @codeCoverageIgnore
48			* @param ClientAuth\|null $clientAuth
49			* @return ServerAuthStatus
50			*/
51			public final function getServerAuthStatus(ClientAuth $clientAuth = null) {
52			$serverAuthStatus = new ServerAuthStatus();
53			$serverAuthStatus->publicKey = $this->getPublicKey();
54			$serverAuthStatus->isSuccess = $clientAuth && $this->isValidAuth($clientAuth);
55			return $serverAuthStatus;
56			}
57
58			/**
59			* Check if client authorization data is valid
60			* @codeCoverageIgnore
61			* @param ClientAuth $clientAuth
62			* @return bool
63			*/
64			public final function isValidAuth(ClientAuth $clientAuth) {
65			return $clientAuth->publicKey === $this->getPublicKey() && $clientAuth->token === $this->getToken();
66			}
67
68			/**
69			* Get client unique identification
70			* @return string
71			*/
72			protected function getClientUid() {
73			$clientUid = '';
74			if($this->publicKeyByIp) {
75			if(isset($_SERVER['REMOTE_ADDR'])) {
76			$clientUid .= $_SERVER['REMOTE_ADDR'];
77			}
78			if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
79			$clientUid .= $_SERVER['HTTP_X_FORWARDED_FOR'];
80			}
81			}
82			return $clientUid;
83			}
84
85			/**
86			* Get authorization session public key for current client
87			* @return string
88			*/
89			protected function getPublicKey() {
90			return $this->hash($this->getClientUid() . $this->passwordHash);
91			}
92
93			/**
94			* Get string signature for current password & public key
95			* @param $string
96			* @return string
97			*/
98			public final function getSignature($string) {
99			return $this->hash($this->passwordHash . $this->getPublicKey() . $string);
100			}
101
102			/**
103			* Get expected valid client authorization token
104			* @return string
105			*/
106			private final function getToken() {
107			return $this->hash($this->passwordHash . $this->getPublicKey());
108			}
109			}
110

barbushin / php-console

Auth A last analyzed 2019-09-06 10:45 UTC

Complexity

Size/Duplication

Coupling/Cohesion

Importance

9 Methods

Duplication Side-by-Side

Filter issues like

Auth A
last analyzed 2019-09-06 10:45 UTC