AccessTokenController::update() - Code Metrics - Inspection of "tests - wip" - devpri/tinre-core - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( d7f532...10eff5 )

by Paul

created 2020-09-04 10:51 UTC

AccessTokenController::update() A

↳ Parent: AccessTokenController

Complexity

Conditions	4
Paths	8

Size

Total Lines	27
Code Lines	14

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	14
CRAP Score	4

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
cc	4
eloc	14
c	1
b	0
f	0
nc	8
nop	2
dl	0
loc	27
ccs	14
cts	14
cp	1
crap	4
rs	9.7998

<?php

namespace Devpri\Tinre\Http\Controllers\Web;

use Devpri\Tinre\Http\Controllers\Controller;
use Devpri\Tinre\Http\Resources\Web\AccessToken as AccessTokenResource;
use Devpri\Tinre\Models\AccessToken;
use Illuminate\Http\Request;

class AccessTokenController extends Controller
{
    public function index(Request $request)
    {
        $user = $request->user();

        if (! $user->hasAnyPermission(['access_token:view', 'access_token:view:any'])) {
            abort(401);
        }

        $query = AccessToken::query();

        if ($user->cant('viewAny', AccessToken::class)) {
            $query->where('user_id', $user->id);
        }

        if ($user->can('viewAny', AccessToken::class)) {
            $query->with('user');
        }

        $accessTokens = $query->orderBy('created_at', 'desc')->paginate(20);

        return AccessTokenResource::collection($accessTokens)->additional(['authorized_actions' => (new AccessToken)->authorizedActions()]);
    }

    public function show(Request $request, $id)
    {
        $accessToken = AccessToken::where('id', $id)->firstOrFail();

        $user = $request->user();

        if ($user->cant('view', $accessToken)) {
            abort(401);
        }

        if ($user->can('viewAny', AccessToken::class)) {
            $accessToken->load('user');
        }

        return new AccessTokenResource($accessToken);
    }

    public function create(Request $request)
    {
        $request->validate([
            'name' => ['required', 'string', 'max:255'],
            'permissions' => ['nullable', 'array'],
        ]);

        $user = $request->user();

        if ($user->cant('create', AccessToken::class)) {
            abort(401);
        }

        $permissions = $request->permissions ? array_intersect($user->apiPermissions(), $request->permissions) : null;

        $accessToken = $user->createToken($request->name, $permissions);

        return (new AccessTokenResource($accessToken))->additional(['message' => __('The access token has been created.')]);
    }

    public function update(Request $request, $id)
    {
        $request->validate([
            'name' => ['required', 'string', 'max:255'],
            'permissions' => ['nullable', 'array'],
        ]);

        $user = $request->user();

        $accessToken = AccessToken::where('id', $id)->firstOrFail();

        if ($user->cant('update', $accessToken)) {
            abort(401);
        }

        if ($request->permissions) {
            $request->permissions = array_intersect(config('tinre.api_permissions', []), $request->permissions);

        }

        $permissions = $request->permissions ? array_intersect($user->apiPermissions(), $request->permissions) : null;

        $accessToken->update([
            'name' => $request->name,
            'permissions' => $permissions,
        ]);

        return (new AccessTokenResource($accessToken))->additional(['message' => __('The access token has been updated.')]);
    }

    public function delete(Request $request, $id)
    {
        $user = $request->user();

        $accessToken = AccessToken::where('id', $id)->firstOrFail();

        if ($user->cant('delete', $accessToken)) {
            abort(401);
        }

        $accessToken->delete();

        return ['message' => __('The access token has been deleted.')];
    }
}


1		<?php
2
3		namespace Devpri\Tinre\Http\Controllers\Web;
4
5		use Devpri\Tinre\Http\Controllers\Controller;
6		use Devpri\Tinre\Http\Resources\Web\AccessToken as AccessTokenResource;
7		use Devpri\Tinre\Models\AccessToken;
8		use Illuminate\Http\Request;
9
10		class AccessTokenController extends Controller
11		{
12	2	public function index(Request $request)
13		{
14	2	$user = $request->user();
15
16	2	if (! $user->hasAnyPermission(['access_token:view', 'access_token:view:any'])) {
17		abort(401);
18		}
19
20	2	$query = AccessToken::query();
21
22	2	if ($user->cant('viewAny', AccessToken::class)) {
23	1	$query->where('user_id', $user->id);
24		}
25
26	2	if ($user->can('viewAny', AccessToken::class)) {
27	1	$query->with('user');
28		}
29
30	2	$accessTokens = $query->orderBy('created_at', 'desc')->paginate(20);
31
32	2	return AccessTokenResource::collection($accessTokens)->additional(['authorized_actions' => (new AccessToken)->authorizedActions()]);
33		}
34
35	3	public function show(Request $request, $id)
36		{
37	3	$accessToken = AccessToken::where('id', $id)->firstOrFail();
38
39	3	$user = $request->user();
40
41	3	if ($user->cant('view', $accessToken)) {
42	1	abort(401);
43		}
44
45	2	if ($user->can('viewAny', AccessToken::class)) {
46	1	$accessToken->load('user');
47		}
48
49	2	return new AccessTokenResource($accessToken);
50		}
51
52	1	public function create(Request $request)
53		{
54	1	$request->validate([
55	1	'name' => ['required', 'string', 'max:255'],
56		'permissions' => ['nullable', 'array'],
57		]);
58
59	1	$user = $request->user();
60
61	1	if ($user->cant('create', AccessToken::class)) {
62		abort(401);
63		}
64
65	1	$permissions = $request->permissions ? array_intersect($user->apiPermissions(), $request->permissions) : null;
66
67	1	$accessToken = $user->createToken($request->name, $permissions);
68
69	1	return (new AccessTokenResource($accessToken))->additional(['message' => __('The access token has been created.')]);
70		}
71
72	3	public function update(Request $request, $id)
73		{
74	3	$request->validate([
75	3	'name' => ['required', 'string', 'max:255'],
76		'permissions' => ['nullable', 'array'],
77		]);
78
79	3	$user = $request->user();
80
81	3	$accessToken = AccessToken::where('id', $id)->firstOrFail();
82
83	3	if ($user->cant('update', $accessToken)) {
84	1	abort(401);
85		}
86
87	2	if ($request->permissions) {
88	2	$request->permissions = array_intersect(config('tinre.api_permissions', []), $request->permissions);
		0 ignored issues – show Bug introduced 2020-08-31 19:11 UTC by Report Bug Copy Issue Report The property `permissions` does not seem to exist on `Illuminate\Http\Request`. Loading history...
89		}
90
91	2	$permissions = $request->permissions ? array_intersect($user->apiPermissions(), $request->permissions) : null;
92
93	2	$accessToken->update([
94	2	'name' => $request->name,
95	2	'permissions' => $permissions,
96		]);
97
98	2	return (new AccessTokenResource($accessToken))->additional(['message' => __('The access token has been updated.')]);
99		}
100
101	3	public function delete(Request $request, $id)
102		{
103	3	$user = $request->user();
104
105	3	$accessToken = AccessToken::where('id', $id)->firstOrFail();
106
107	3	if ($user->cant('delete', $accessToken)) {
108	1	abort(401);
109		}
110
111	2	$accessToken->delete();
112
113	2	return ['message' => __('The access token has been deleted.')];
114		}
115		}
116

devpri / tinre-core

Push — master ( d7f532...10eff5 )

AccessTokenController::update() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like