User - Code Metrics - Inspection of "Fixed request to api when user is not authenticate..." - hiqdev/hipanel-core - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 40378f...f89ef7 )

by Andrii

created 2018-07-23 15:43 UTC

User A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	95
Duplicated Lines	0 %

Coupling/Cohesion

Components	3
Dependencies	4

Test Coverage

Coverage

Importance

Changes

Metric	Value
wmc	15
lcom	3
cbo	4
dl	0
loc	95
ccs	0
cts	51
cp	0
rs	10
c	0
b	0
f	0

8 Methods

Rating	Name	Size	Complexity
A	init()	7	2
A	not()	9	2
A	is()	9	2
A	getIsGuest()	4	1
A	getAuthData()	4	2
A	getGuestAuthData()	11	2
A	getAuthorizedAuthData()	19	3
A	redirectLogin()	5	1

<?php
/**
 * HiPanel core package.
 *
 * @link      https://hipanel.com/
 * @package   hipanel-core
 * @license   BSD-3-Clause
 * @copyright Copyright (c) 2014-2017, HiQDev (http://hiqdev.com/)
 */

namespace hipanel\components;

use Yii;
use yii\base\InvalidCallException;
use yii\base\InvalidConfigException;

class User extends \yii\web\User
{
    public $isGuestAllowed = false;

    /**
     * @var string the seller login
     */
    public $seller;

    public function init()
    {
        parent::init();
        if (empty($this->seller)) {
            throw new InvalidConfigException('User "seller" must be set');
        }
    }

    public function not($key)
    {
        $identity = $this->getIdentity();
        if (!$identity) {
$a = canBeFalseAndNull();

// Instead of
if ( ! $a) { }

// Better use one of the explicit versions:
if ($a !== null) { }
if ($a !== false) { }
if ($a !== null && $a !== false) { }
            throw new InvalidCallException();
        }

        return $identity->not($key);

    }

    public function is($key)
    {
        $identity = $this->getIdentity();
        if (!$identity) {
$a = canBeFalseAndNull();

// Instead of
if ( ! $a) { }

// Better use one of the explicit versions:
if ($a !== null) { }
if ($a !== false) { }
if ($a !== null && $a !== false) { }
            throw new InvalidCallException();
        }

        return $identity->is($key);

    }

    /**
     * {@inheritdoc}
     * XXX fixes redirect loop when identity is set but the object is empty.
     * @return bool
     */
    public function getIsGuest()
    {
        return empty($this->getIdentity()->id);
    }

    /**
     * Prepares authorization data.
     * Redirects to authorization if necessary.
     * @return array
     */
    public function getAuthData()
    {
        return $this->isGuest ? $this->getGuestAuthData() : $this->getAuthorizedAuthData();
    }

    protected function getGuestAuthData()
    {
        if (!$this->isGuestAllowed) {
            $this->redirectLogin();
        }

        return [
            'auth_ip' => Yii::$app->request->getUserIP(),
            'seller' => Yii::$app->params['user.seller'],
        ];
    }

    protected function getAuthorizedAuthData()
    {
        try {
            $token = $this->identity->getAccessToken();
interface User
{
    /** @return string */
    public function getPassword();
}

class MyUser implements User
{
    public function getPassword()
    {
        // return something
    }

    public function getDisplayName()
    {
        // return some name.
    }
}

class AuthSystem
{
    public function authenticate(User $user)
    {
        $this->logger->info(sprintf('Authenticating %s.', $user->getDisplayName()));
        // do something.
    }
}
        } catch (\Exception $e) {
            $token = null;
        }

        if (empty($token)) {
            /// logout() is very important here, else - redirect loop
            $this->logout();
            $this->redirectLogin();
        }

        return [
            'access_token' => $token,
            'auth_ip' => Yii::$app->request->getUserIP(),
        ];
    }

    public function redirectLogin()
    {
        $this->loginRequired();
        Yii::$app->end();
    }
}


1			<?php
2			/**
3			* HiPanel core package.
4			*
5			* @link https://hipanel.com/
6			* @package hipanel-core
7			* @license BSD-3-Clause
8			* @copyright Copyright (c) 2014-2017, HiQDev (http://hiqdev.com/)
9			*/
10
11			namespace hipanel\components;
12
13			use Yii;
14			use yii\base\InvalidCallException;
15			use yii\base\InvalidConfigException;
16
17			class User extends \yii\web\User
18			{
19			public $isGuestAllowed = false;
20
21			/**
22			* @var string the seller login
23			*/
24			public $seller;
25
26			public function init()
27			{
28			parent::init();
29			if (empty($this->seller)) {
30			throw new InvalidConfigException('User "seller" must be set');
31			}
32			}
33
34			public function not($key)
35			{
36			$identity = $this->getIdentity();
37			if (!$identity) {
			0 ignored issues – show Bug Best Practice introduced 2016-03-31 13:05 UTC by Report Bug Copy Issue Report The expression `$identity` of type `null\|boolean` is loosely compared to `false`; this is ambiguous if the boolean can be false. You might want to explicitly use `!== null` instead. If an expression can have both `false`, and `null` as possible values. It is generally a good practice to always use strict comparison to clearly distinguish between those two values. $a = canBeFalseAndNull(); // Instead of if ( ! $a) { } // Better use one of the explicit versions: if ($a !== null) { } if ($a !== false) { } if ($a !== null && $a !== false) { } Loading history...
38			throw new InvalidCallException();
39			}
40
41			return $identity->not($key);
			0 ignored issues – show Bug introduced 2016-03-31 13:05 UTC by Report Bug Copy Issue Report The method `not` cannot be called on `$identity` (of type `boolean`). Methods can only be called on objects. This check looks for methods being called on variables that have been inferred to never be objects. Loading history...
42			}
43
44			public function is($key)
45			{
46			$identity = $this->getIdentity();
47			if (!$identity) {
			0 ignored issues – show Bug Best Practice introduced 2016-03-31 13:05 UTC by Report Bug Copy Issue Report The expression `$identity` of type `null\|boolean` is loosely compared to `false`; this is ambiguous if the boolean can be false. You might want to explicitly use `!== null` instead. If an expression can have both `false`, and `null` as possible values. It is generally a good practice to always use strict comparison to clearly distinguish between those two values. $a = canBeFalseAndNull(); // Instead of if ( ! $a) { } // Better use one of the explicit versions: if ($a !== null) { } if ($a !== false) { } if ($a !== null && $a !== false) { } Loading history...
48			throw new InvalidCallException();
49			}
50
51			return $identity->is($key);
			0 ignored issues – show Bug introduced 2016-03-31 13:05 UTC by Report Bug Copy Issue Report The method `is` cannot be called on `$identity` (of type `boolean`). Methods can only be called on objects. This check looks for methods being called on variables that have been inferred to never be objects. Loading history...
52			}
53
54			/**
55			* {@inheritdoc}
56			* XXX fixes redirect loop when identity is set but the object is empty.
57			* @return bool
58			*/
59			public function getIsGuest()
60			{
61			return empty($this->getIdentity()->id);
62			}
63
64			/**
65			* Prepares authorization data.
66			* Redirects to authorization if necessary.
67			* @return array
68			*/
69			public function getAuthData()
70			{
71			return $this->isGuest ? $this->getGuestAuthData() : $this->getAuthorizedAuthData();
72			}
73
74			protected function getGuestAuthData()
75			{
76			if (!$this->isGuestAllowed) {
77			$this->redirectLogin();
78			}
79
80			return [
81			'auth_ip' => Yii::$app->request->getUserIP(),
82			'seller' => Yii::$app->params['user.seller'],
83			];
84			}
85
86			protected function getAuthorizedAuthData()
87			{
88			try {
89			$token = $this->identity->getAccessToken();
			0 ignored issues – show Bug introduced 2017-02-03 16:47 UTC by Report Bug Copy Issue Report It seems like you code against a concrete implementation and not the interface `yii\web\IdentityInterface` as the method `getAccessToken()` does only exist in the following implementations of said interface: `hipanel\models\User`. Let’s take a look at an example: interface User { /** @return string / public function getPassword(); } class MyUser implements User { public function getPassword() { // return something } public function getDisplayName() { // return some name. } } class AuthSystem { public function authenticate(User $user) { $this->logger->info(sprintf('Authenticating %s.', $user->getDisplayName())); // do something. } } In the above example, the authenticate() method works fine as long as you just pass instances of MyUser. However, if you now also want to pass a different implementation of User which does not have a getDisplayName() method, the code will break. Available Fixes Change the type-hint for the parameter: class AuthSystem { public function authenticate(MyUser $user) { / ... / } } Add an additional type-check: class AuthSystem { public function authenticate(User $user) { if ($user instanceof MyUser) { $this->logger->info(/* ... /); } // or alternatively if ( ! $user instanceof MyUser) { throw new \LogicException( '$user must be an instance of MyUser, ' .'other instances are not supported.' ); } } } Note:* PHP Analyzer uses reverse abstract interpretation to narrow down the types inside the if block in such a case. Add the method to the interface: interface User { /** @return string / public function getPassword(); /* @return string */ public function getDisplayName(); } Loading history...
90			} catch (\Exception $e) {
91			$token = null;
92			}
93
94			if (empty($token)) {
95			/// logout() is very important here, else - redirect loop
96			$this->logout();
97			$this->redirectLogin();
98			}
99
100			return [
101			'access_token' => $token,
102			'auth_ip' => Yii::$app->request->getUserIP(),
103			];
104			}
105
106			public function redirectLogin()
107			{
108			$this->loginRequired();
109			Yii::$app->end();
110			}
111			}
112

hiqdev / hipanel-core

Push — master ( 40378f...f89ef7 )

User A

Complexity

Size/Duplication

Coupling/Cohesion

Test Coverage

Importance

8 Methods

Available Fixes

Duplication Side-by-Side

Filter issues like