Issues in AuthnRequest.php - Fixed Issues - Inspection of "Merge pull request #1 from flipboxfactory/develop" - flipboxfactory/saml-sp - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 524cff...dc4813 )

unknown

created 2018-04-10 19:52 UTC

src/services/messages/AuthnRequest.php (1 issue)

Labels

Bug 1

Severity

Major 1

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
/**
 * Created by PhpStorm.
 * User: dsmrt
 * Date: 1/10/18
 * Time: 11:23 AM
 */

namespace flipbox\saml\sp\services\messages;


use craft\base\Component;
use flipbox\keychain\records\KeyChainRecord;
use flipbox\saml\core\helpers\SecurityHelper;
use flipbox\saml\core\records\AbstractProvider;
use flipbox\saml\core\records\ProviderInterface;
use flipbox\saml\core\services\messages\SamlRequestInterface;
use flipbox\saml\sp\models\Settings;
use flipbox\saml\sp\records\ProviderRecord;
use flipbox\saml\sp\Saml;
use flipbox\saml\core\services\traits\Security;
use LightSaml\Credential\X509Certificate;
use LightSaml\Helper;
use LightSaml\Model\Assertion\Issuer;
use LightSaml\Model\Protocol\AbstractRequest;
use LightSaml\Model\Protocol\SamlMessage;
use LightSaml\SamlConstants;
use RobRichards\XMLSecLibs\XMLSecurityKey;
use yii\base\Event;

class AuthnRequest extends Component implements SamlRequestInterface
{

    const EVENT_AFTER_MESSAGE_CREATED = 'eventAfterMessageCreated';

    /**
     * @inheritdoc
     */
    public function create(ProviderInterface $provider, array $config = []): AbstractRequest
    {
        $location = $provider->getMetadataModel()->getFirstIdpSsoDescriptor()->getFirstSingleSignOnService(
        /**
         * Just doing post for now
         */
            SamlConstants::BINDING_SAML2_HTTP_POST
        )->getLocation();

        /**
         * @var $samlSettings Settings
         */
        $samlSettings = Saml::getInstance()->getSettings();
        $authnRequest = new \LightSaml\Model\Protocol\AuthnRequest();

        $authnRequest->setAssertionConsumerServiceURL(
            Metadata::getLoginLocation()
        )->setProtocolBinding(
            $provider->getMetadataModel()->getFirstIdpSsoDescriptor()->getFirstSingleSignOnService()->getBinding()
        )->setID($requestId = Helper::generateID())
            ->setIssueInstant(new \DateTime())
            ->setDestination($location)
            ->setRelayState(\Craft::$app->getUser()->getReturnUrl())
            ->setIssuer(new Issuer($samlSettings->getEntityId()));

        /** @var ProviderRecord $thisSp */
        $thisSp = Saml::getInstance()->getProvider()->findByEntityId(
            Saml::getInstance()->getSettings()->getEntityId()
        );
        /** @var KeyChainRecord $pair */
        $pair = $thisSp->keychain;


        if ($pair && $samlSettings->signAuthnRequest) {
            SecurityHelper::signMessage($authnRequest, $pair);
        }

        /**
         * Kick off event here so people can manipulate this object if needed
         */
        $event = new Event();
        $event->data = $authnRequest;
        $this->trigger(static::EVENT_AFTER_MESSAGE_CREATED, $event);

        return $authnRequest;
    }

}

1			<?php
2			/**
3			* Created by PhpStorm.
4			* User: dsmrt
5			* Date: 1/10/18
6			* Time: 11:23 AM
7			*/
8
9			namespace flipbox\saml\sp\services\messages;
10
11
12			use craft\base\Component;
13			use flipbox\keychain\records\KeyChainRecord;
14			use flipbox\saml\core\helpers\SecurityHelper;
15			use flipbox\saml\core\records\AbstractProvider;
16			use flipbox\saml\core\records\ProviderInterface;
17			use flipbox\saml\core\services\messages\SamlRequestInterface;
18			use flipbox\saml\sp\models\Settings;
19			use flipbox\saml\sp\records\ProviderRecord;
20			use flipbox\saml\sp\Saml;
21			use flipbox\saml\core\services\traits\Security;
22			use LightSaml\Credential\X509Certificate;
23			use LightSaml\Helper;
24			use LightSaml\Model\Assertion\Issuer;
25			use LightSaml\Model\Protocol\AbstractRequest;
26			use LightSaml\Model\Protocol\SamlMessage;
27			use LightSaml\SamlConstants;
28			use RobRichards\XMLSecLibs\XMLSecurityKey;
29			use yii\base\Event;
30
31			class AuthnRequest extends Component implements SamlRequestInterface
32			{
33
34			const EVENT_AFTER_MESSAGE_CREATED = 'eventAfterMessageCreated';
35
36			/**
37			* @inheritdoc
38			*/
39			public function create(ProviderInterface $provider, array $config = []): AbstractRequest
40			{
41			$location = $provider->getMetadataModel()->getFirstIdpSsoDescriptor()->getFirstSingleSignOnService(
42			/**
43			* Just doing post for now
44			*/
45			SamlConstants::BINDING_SAML2_HTTP_POST
46			)->getLocation();
47
48			/**
49			* @var $samlSettings Settings
50			*/
51			$samlSettings = Saml::getInstance()->getSettings();
52			$authnRequest = new \LightSaml\Model\Protocol\AuthnRequest();
53
54			$authnRequest->setAssertionConsumerServiceURL(
55			Metadata::getLoginLocation()
56			)->setProtocolBinding(
57			$provider->getMetadataModel()->getFirstIdpSsoDescriptor()->getFirstSingleSignOnService()->getBinding()
58			)->setID($requestId = Helper::generateID())
59			->setIssueInstant(new \DateTime())
60			->setDestination($location)
61			->setRelayState(\Craft::$app->getUser()->getReturnUrl())
62			->setIssuer(new Issuer($samlSettings->getEntityId()));
63
64			/** @var ProviderRecord $thisSp */
65			$thisSp = Saml::getInstance()->getProvider()->findByEntityId(
66			Saml::getInstance()->getSettings()->getEntityId()
67			);
68			/** @var KeyChainRecord $pair */
69			$pair = $thisSp->keychain;
			0 ignored issues – show Bug introduced 2018-04-10 19:48 UTC by Report Bug Copy Issue Report Show Similar Issues like this The property `keychain` does not seem to exist. Did you mean `cachedKeychain`? An attempt at access to an undefined property has been detected. This may either be a typographical error or the property has been renamed but there are still references to its old name. If you really want to allow access to undefined properties, you can define magic methods to allow access. See the php core documentation on Overloading. Loading history...
70
71			if ($pair && $samlSettings->signAuthnRequest) {
72			SecurityHelper::signMessage($authnRequest, $pair);
73			}
74
75			/**
76			* Kick off event here so people can manipulate this object if needed
77			*/
78			$event = new Event();
79			$event->data = $authnRequest;
80			$this->trigger(static::EVENT_AFTER_MESSAGE_CREATED, $event);
81
82			return $authnRequest;
83			}
84
85			}

flipboxfactory / saml-sp

Push — master ( 524cff...dc4813 )

src/services/messages/AuthnRequest.php (1 issue)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like