MagicLink\Middlewares\AskForAccessCode

Complexity

Total Complexity

6

Size/Duplication

Total Lines	39
Duplicated Lines	0 %

Importance

Changes	2
Bugs	0	Features	0

2 Methods

Rating	Name	Duplication	Size	Complexity
A	isAccessCodeValid()	0	9	2
A	handle()	0	19	4

<?php

namespace MagicLink\Middlewares;

use Closure;
use Illuminate\Contracts\Encryption\DecryptException;
use Illuminate\Http\Request;
use Illuminate\Support\Arr;
use MagicLink\MagicLink;
use Illuminate\Support\Facades\Hash;

class AskForAccessCode
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle(Request $request, Closure $next)
    {
        if ($this->isAccessCodeValid($request->route('token'), $request->get('magic.link-access-code'))) {

It seems like $request->route('token') can also be of type Illuminate\Routing\Route and null and object; however, parameter $token of MagicLink\Middlewares\AskForAccessCode::isAccessCodeValid() does only seem to accept string, maybe add an additional type check?

            // access code is valid
            setcookie('magic.link-access-code', encrypt($request->get('magic.link-access-code')), 0, '/');
            return redirect($request->url());
        }

        try {
            $accessCode = decrypt(Arr::get($_COOKIE, 'magic.link-access-code'));
            // Validate access_code
            if ($this->isAccessCodeValid($request->route('token'), $accessCode)) {
                return $next($request);
            }
        } catch (DecryptException $e) {
            // empty value in cookie
        }

        return response(view('magiclink::ask-for-access-code-form'), 403);
    }

    private function isAccessCodeValid(string $token, ?string $accessCode): bool
    {
        if ($accessCode === null) {
            return false;
        }

        $magicLink = MagicLink::getValidMagicLinkByToken($token);

        return Hash::check($accessCode, $magicLink->access_code);
    }
}