JwtWrapper - Code Metrics - Inspection of "Added generate secret" - byjg/jwt-wrapper - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( afb42c...661861 )

by Joao

created 2019-11-19 02:53 UTC

JwtWrapper A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	127
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	3

Importance

Changes

Metric	Value
wmc	12
lcom	1
cbo	3
dl	0
loc	127
rs	10
c	0
b	0
f	0

6 Methods

Rating	Name	Size	Complexity
A	__construct()	9	2
A	createJwtData()	20	1
A	generateToken()	16	1
A	extractData()	20	4
A	getAuthorizationBearer()	11	3
A	generateSecret()	4	1

<?php

namespace ByJG\Util;

use Firebase\JWT\JWT;

class JwtWrapper
{

    protected $serverName;

    /**
     * @var JwtKeyInterface
     */
    protected $jwtKey;

    /**
     * JwtWrapper constructor.
     * @param string $serverName
     * @param JwtKeyInterface $jwtKey
     * @throws JwtWrapperException
     */
    public function __construct($serverName, $jwtKey)
    {
        $this->serverName = $serverName;
        $this->jwtKey = $jwtKey;

        if (!($jwtKey instanceof JwtKeyInterface)) {
            throw new JwtWrapperException('Constructor needs to receive a JwtKeyInterface');
        }
    }

    /**
     * @param $data
     * @param int $secondsExpire In Seconds
     * @param int $secondsNotBefore In Seconds
     * @return array
     */
    public function createJwtData($data, $secondsExpire = 60, $secondsNotBefore = 0)
    {
        $tokenId    = base64_encode(openssl_random_pseudo_bytes(32));
        $issuedAt   = time();
        $notBefore  = $issuedAt + $secondsNotBefore;          //Adding 10 seconds
        $expire     = $notBefore + $secondsExpire;            // Adding 60 seconds
        $serverName = $this->serverName;                       // Retrieve the server name from config file

        /*
         * Create the token as an array
         */
        return [
            'iat'  => $issuedAt,         // Issued at: time when the token was generated
            'jti'  => $tokenId,          // Json Token Id: an unique identifier for the token
            'iss'  => $serverName,       // Issuer
            'nbf'  => $notBefore,        // Not before
            'exp'  => $expire,           // Expire
            'data' => $data              // Data related to the signer user
        ];
    }

    public function generateToken($jwtData)
    {
        /*
         * Encode the array to a JWT string.
         * Second parameter is the key to encode the token.
         *
         * The output string can be validated at http://jwt.io/
         */
        $jwt = JWT::encode(
            $jwtData,      //Data to be encoded in the JWT
            $this->jwtKey->getPrivateKey(), // The signing key
            $this->jwtKey->getAlghoritm()
        );

        return $jwt;
    }

    /**
     * Extract the key, which is coming from the config file.
     *
     * Best suggestion is the key to be a binary string and
     * store it in encoded in a config file.
     *
     * Can be generated with base64_encode(openssl_random_pseudo_bytes(64));
     *
     * keep it secure! You'll need the exact key to verify the
     * token later.
     *
     * @param null $bearer
     * @return object
     * @throws JwtWrapperException
     */
    public function extractData($bearer = null)
    {
        if (empty($bearer)) {
            $bearer = $this->getAuthorizationBearer();
        }

        $jwtData = JWT::decode(
            $bearer,
            $this->jwtKey->getPublicKey(),
            [
                $this->jwtKey->getAlghoritm()
            ]
        );

        if (isset($jwtData->iss) && $jwtData->iss != $this->serverName) {
            throw new JwtWrapperException("Issuer does not match");
        }

        return $jwtData;
    }

    /**
     * @return mixed
     * @throws JwtWrapperException
     */
    public function getAuthorizationBearer()
    {
        $authorization = isset($_SERVER['HTTP_AUTHORIZATION']) ? $_SERVER['HTTP_AUTHORIZATION'] : "";
        list($bearer) = sscanf($authorization, 'Bearer %s');

        if (empty($bearer)) {
            throw new JwtWrapperException('Absent authorization token');
        }

        return $bearer;
    }

    public static function generateSecret($bytes)
    {
        return base64_encode(openssl_random_pseudo_bytes($bytes));
    }
}

1			<?php
2
3			namespace ByJG\Util;
4
5			use Firebase\JWT\JWT;
6
7			class JwtWrapper
8			{
9
10			protected $serverName;
11
12			/**
13			* @var JwtKeyInterface
14			*/
15			protected $jwtKey;
16
17			/**
18			* JwtWrapper constructor.
19			* @param string $serverName
20			* @param JwtKeyInterface $jwtKey
21			* @throws JwtWrapperException
22			*/
23			public function __construct($serverName, $jwtKey)
24			{
25			$this->serverName = $serverName;
26			$this->jwtKey = $jwtKey;
27
28			if (!($jwtKey instanceof JwtKeyInterface)) {
29			throw new JwtWrapperException('Constructor needs to receive a JwtKeyInterface');
30			}
31			}
32
33			/**
34			* @param $data
35			* @param int $secondsExpire In Seconds
36			* @param int $secondsNotBefore In Seconds
37			* @return array
38			*/
39			public function createJwtData($data, $secondsExpire = 60, $secondsNotBefore = 0)
40			{
41			$tokenId = base64_encode(openssl_random_pseudo_bytes(32));
42			$issuedAt = time();
43			$notBefore = $issuedAt + $secondsNotBefore; //Adding 10 seconds
44			$expire = $notBefore + $secondsExpire; // Adding 60 seconds
45			$serverName = $this->serverName; // Retrieve the server name from config file
46
47			/*
48			* Create the token as an array
49			*/
50			return [
51			'iat' => $issuedAt, // Issued at: time when the token was generated
52			'jti' => $tokenId, // Json Token Id: an unique identifier for the token
53			'iss' => $serverName, // Issuer
54			'nbf' => $notBefore, // Not before
55			'exp' => $expire, // Expire
56			'data' => $data // Data related to the signer user
57			];
58			}
59
60			public function generateToken($jwtData)
61			{
62			/*
63			* Encode the array to a JWT string.
64			* Second parameter is the key to encode the token.
65			*
66			* The output string can be validated at http://jwt.io/
67			*/
68			$jwt = JWT::encode(
69			$jwtData, //Data to be encoded in the JWT
70			$this->jwtKey->getPrivateKey(), // The signing key
71			$this->jwtKey->getAlghoritm()
72			);
73
74			return $jwt;
75			}
76
77			/**
78			* Extract the key, which is coming from the config file.
79			*
80			* Best suggestion is the key to be a binary string and
81			* store it in encoded in a config file.
82			*
83			* Can be generated with base64_encode(openssl_random_pseudo_bytes(64));
84			*
85			* keep it secure! You'll need the exact key to verify the
86			* token later.
87			*
88			* @param null $bearer
89			* @return object
90			* @throws JwtWrapperException
91			*/
92			public function extractData($bearer = null)
93			{
94			if (empty($bearer)) {
95			$bearer = $this->getAuthorizationBearer();
96			}
97
98			$jwtData = JWT::decode(
99			$bearer,
100			$this->jwtKey->getPublicKey(),
101			[
102			$this->jwtKey->getAlghoritm()
103			]
104			);
105
106			if (isset($jwtData->iss) && $jwtData->iss != $this->serverName) {
107			throw new JwtWrapperException("Issuer does not match");
108			}
109
110			return $jwtData;
111			}
112
113			/**
114			* @return mixed
115			* @throws JwtWrapperException
116			*/
117			public function getAuthorizationBearer()
118			{
119			$authorization = isset($_SERVER['HTTP_AUTHORIZATION']) ? $_SERVER['HTTP_AUTHORIZATION'] : "";
120			list($bearer) = sscanf($authorization, 'Bearer %s');
121
122			if (empty($bearer)) {
123			throw new JwtWrapperException('Absent authorization token');
124			}
125
126			return $bearer;
127			}
128
129			public static function generateSecret($bytes)
130			{
131			return base64_encode(openssl_random_pseudo_bytes($bytes));
132			}
133			}

byjg / jwt-wrapper

Push — master ( afb42c...661861 )

JwtWrapper A

Complexity

Size/Duplication

Coupling/Cohesion

Importance

6 Methods

Duplication Side-by-Side

Filter issues like