TokenParser - Code Metrics - Inspection of "Provide unverified payload" - cgauge/laravel-cognito-provider - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#7)

by Marco Aurélio

created 2022-03-04 12:32 UTC

TokenParser A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	44
Duplicated Lines	0 %

Test Coverage

Coverage

100%

Importance

Changes	2
Bugs	0	Features	0

Metric	Value
wmc	4
eloc	16
c	2
b	0
f	0
dl	0
loc	44
ccs	18
cts	18
cp	1
rs	10

4 Methods

Rating	Name	Size	Complexity
A	__construct()	3	1
A	loadAndVerifyWithKeySet()	11	1
A	unverifiedPayload()	5	1
A	parse()	12	1

<?php declare(strict_types=1);

namespace CustomerGauge\Cognito;

use Jose\Component\Checker\ClaimCheckerManager;
use Jose\Component\Checker\ExpirationTimeChecker;
use Jose\Component\Checker\IssuerChecker;
use Jose\Component\Core\AlgorithmManager;
use Jose\Component\Core\JWKSet;
use Jose\Component\Signature\Algorithm\RS256;
use Jose\Component\Signature\JWS;
use Jose\Component\Signature\JWSLoader;
use Jose\Component\Signature\JWSVerifier;
use Jose\Component\Signature\Serializer\CompactSerializer;
use Jose\Component\Signature\Serializer\JWSSerializerManager;

final class TokenParser
{
    private $keyResolver;

    public function __construct(KeyResolver $keyResolver)
    {
        $this->keyResolver = $keyResolver;
    }
    
    /**
     * This public method is useful for parsing the token from PHPUnit. It is not intended for production use.
     */
    public function unverifiedPayload(string $token): array
    {
        $jws = $this->loadAndVerifyWithKeySet($token);

        return json_decode($jws->getPayload(), true);
        return json_decode(/** @scrutinizer ignore-type */ $jws->getPayload(), true);
    }

    public function parse(string $token)
    {
        $payload = $this->unverifiedPayload($token);

        $claimCheckerManager = new ClaimCheckerManager([
            new IssuerChecker([$this->keyResolver->issuer()->toString()]),
            new ExpirationTimeChecker,
        ]);

        $claimCheckerManager->check($payload);

        return $payload;
    }

    private function loadAndVerifyWithKeySet(string $token): JWS
    {
        $jwsVerifier = new JWSVerifier(new AlgorithmManager([new RS256()]));

        $serializerManager = new JWSSerializerManager([new CompactSerializer()]);

        $jwsLoader = new JWSLoader($serializerManager, $jwsVerifier, null);

        $jwkset = JWKSet::createFromJson($this->keyResolver->jwkset());

        return $jwsLoader->loadAndVerifyWithKeySet($token, $jwkset, $signature);
    }
}


cgauge / laravel-cognito-provider

Pull Request — master (#7)

TokenParser A

Complexity

Size/Duplication

Test Coverage

Importance

4 Methods

Duplication Side-by-Side

Filter issues like