freyo / qcloud-apigateway-http

src/FingerprintMiddleware.php

<?php

namespace Freyo\ApiGateway;

use Closure;
use Freyo\ApiGateway\Kernel\Traits\WithFingerprint;

class FingerprintMiddleware
{
    use WithFingerprint;

    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request $request

The type Illuminate\Http\Request was not found. Maybe you did not declare it correctly or list all dependencies?

     * @param  \Closure $next
     * @return mixed
     */
    public function handle($request, Closure $next)
    {
        $authorizations = $this->authorizations($request->header('authorization'));
        $headers = preg_split('/\s+/', $authorizations['headers'] ?? []);

It seems like $authorizations['headers'] ?? array() can also be of type array; however, parameter $subject of preg_split() does only seem to accept string, maybe add an additional type check?

        if (!in_array('fingerprint', $headers)) {

It seems like $headers can also be of type false; however, parameter $haystack of in_array() does only seem to accept array, maybe add an additional type check?

            return response()->json([

The function response was not found. Maybe you did not declare it correctly or list all dependencies?

                'message' => 'HMAC signature missing fingerprint header',
            ], 401);
        }

        $fingerprint = $this->fingerprint($request->method(), $request->url(), $request->all());
        if ($fingerprint !== $request->header('fingerprint')) {
            return response()->json([
                'message' => 'fingerprint does not match',
            ], 401);
        }

        return $next($request);
    }

    /**
     * @param string $authorization
     *
     * @return array
     */
    protected function authorizations($authorization)
    {
        $authorization = preg_replace('/^hmac/i', '', $authorization);
        $params = array_map('trim', explode(',', $authorization));

        $params = array_map(function ($item) {
            parse_str($item, $parsed);
            return array_map(function ($value) {
                return trim($value, '"\'');
            }, $parsed);
        }, $params);

        $result = [];
        foreach ($params as $param) {
            $result = array_merge($result, $param);
        }

        return $result;
    }
}