Kristuff\AbuseIPDB\ApiHandler

Complexity

Total Complexity

42

Size/Duplication

Total Lines	493
Duplicated Lines	0 %

Importance

Changes	1
Bugs	0	Features	0

12 Methods

Rating	Name	Duplication	Size	Complexity
A	cleanMessage()	0	16	2
B	loadJsonFile()	0	20	7
A	checkBlock()	0	21	4
A	getBlacklist()	0	26	4
A	clear()	0	14	2
A	report()	0	32	4
A	fromConfigFile()	0	25	5
A	apiRequest()	0	44	3
A	__construct()	0	5	1
A	getConfig()	0	6	1
A	bulkReport()	0	16	4
A	check()	0	26	5

<?php

/**
 *     _    _                    ___ ____  ____  ____
 *    / \  | |__  _   _ ___  ___|_ _|  _ \|  _ \| __ )
 *   / _ \ | '_ \| | | / __|/ _ \| || |_) | | | |  _ \
 *  / ___ \| |_) | |_| \__ \  __/| ||  __/| |_| | |_) |
 * /_/   \_\_.__/ \__,_|___/\___|___|_|   |____/|____/
 *
 * This file is part of Kristuff\AbsuseIPDB.
 *
 * (c) Kristuff <contact@kristuff.fr>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 *
 * @version    0.9.7
 * @copyright  2020-2021 Kristuff
 */

namespace Kristuff\AbuseIPDB;

/**
 * Class ApiHandler
 * 
 * The main class to work with the AbuseIPDB API v2 
 */
class ApiHandler extends ApiBase
{
    /**
     * Curl helper functions
     */
    use CurlTrait;

    /**
     * The ips to remove from message
     * Generally you will add to this list yours ipv4 and ipv6, and the hostname
     * 
     * @access protected
     * @var array $selfIps  
     */
    protected $selfIps = []; 

    /**
     * Constructor
     * 
     * @access public
     * @param string  $apiKey     The AbuseIPDB api key
     * @param string  $userId     The AbuseIPDB user's id
     * @param array   $myIps      The Ips/domain name you dont want to display in report messages
     * 
     */
    public function __construct(string $apiKey, string $userId, array $myIps = [])
    {
        $this->aipdbApiKey = $apiKey;
        $this->aipdbUserId = $userId;
        $this->selfIps = $myIps;
    }

    /**
     * Get the current configuration in a indexed array
     * 
     * @access public 
     * @return array
     */
    public function getConfig()
    {
        return array(
            'userId'  => $this->aipdbUserId,
            'apiKey'  => $this->aipdbApiKey,
            'selfIps' => $this->selfIps,
            // TODO  default report cat 
        );
    }

    /**
     * Get a new instance of ApiHandler with config stored in a Json file
     * 
     * @access public 
     * @static
     * @param string    $configPath     The configuration file path
     * 
     * @return \Kristuff\AbuseIPDB\ApiHandler
     * @throws \InvalidArgumentException                        If the given file does not exist
     * @throws \Kristuff\AbuseIPDB\InvalidPermissionException   If the given file is not readable 
     */
    public static function fromConfigFile(string $configPath)
    {

        // check file exists
        if (!file_exists($configPath) || !is_file($configPath)){
            throw new \InvalidArgumentException('The file [' . $configPath . '] does not exist.');
        }

        // check file is readable
        if (!is_readable($configPath)){
            throw new InvalidPermissionException('The file [' . $configPath . '] is not readable.');
        }

        $keyConfig = self::loadJsonFile($configPath);
        $selfIps = [];
        
        // Look for other optional config files in the same directory 
        $selfIpsConfigPath = pathinfo($configPath, PATHINFO_DIRNAME) . DIRECTORY_SEPARATOR . 'self_ips.json';

Are you sure pathinfo($configPath, Kristuff\AbuseIPDB\PATHINFO_DIRNAME) of type array|string can be used in concatenation?

        if (file_exists($selfIpsConfigPath)){
            $selfIps = self::loadJsonFile($selfIpsConfigPath)->self_ips;
        }

        $app = new self($keyConfig->api_key, $keyConfig->user_id, $selfIps);
        
        return $app;
    }

    /**
     * Performs a 'report' api request
     * 
     * Result, in json format will be something like this:
     *  {
     *       "data": {
     *         "ipAddress": "127.0.0.1",
     *         "abuseConfidenceScore": 52
     *       }
     *  }
     * 
     * @access public
     * @param string    $ip             The ip to report
     * @param string    $categories     The report categories
     * @param string    $message        The report message
     * @param bool      $returnArray    True to return an indexed array instead of object. Default is false. 
     *
     * @return object|array
     * @throws \InvalidArgumentException
     */
    public function report(string $ip = '', string $categories = '', string $message = '', bool $returnArray = false)
    {
         // ip must be set
        if (empty($ip)){
            throw new \InvalidArgumentException('Ip was empty');
        }

        // categories must be set
        if (empty($categories)){
            throw new \InvalidArgumentException('categories list was empty');
        }

        // message must be set
          if (empty($message)){
            throw new \InvalidArgumentException('report message was empty');
        }

        // validates categories, clean message 
        $cats = $this->validateReportCategories($categories);
        $msg = $this->cleanMessage($message);

        // AbuseIPDB request
        $response = $this->apiRequest(
            'report', [
                'ip' => $ip,
                'categories' => $cats,
                'comment' => $msg
            ],
            'POST'
        );

        return json_decode($response, $returnArray);

It seems like $response can also be of type true; however, parameter $json of json_decode() does only seem to accept string, maybe add an additional type check?

    }

    /**
     * Performs a 'bulk-report' api request
     * 
     * Result, in json format will be something like this:
     *   {
     *     "data": {
     *       "savedReports": 60,
     *       "invalidReports": [
     *         {
     *           "error": "Duplicate IP",
     *           "input": "41.188.138.68",
     *           "rowNumber": 5
     *         },
     *         {
     *           "error": "Invalid IP",
     *           "input": "127.0.foo.bar",
     *           "rowNumber": 6
     *         },
     *         {
     *           "error": "Invalid Category",
     *           "input": "189.87.146.50",
     *           "rowNumber": 8
     *         }
     *       ]
     *     }
     *   }
     *  
     * @access public
     * @param string    $ip             The ip to report
     * @param string    $categories     The report categories
     * @param string    $message        The report message
     * @param bool      $returnArray    True to return an indexed array instead of object. Default is false. 
     *
     * @return object|array
     * @throws \InvalidArgumentException
     */
    public function bulkReport(string $filePath, bool $returnArray = false)
    {
        // check file exists
        if (!file_exists($filePath) || !is_file($filePath)){
            throw new \InvalidArgumentException('The file [' . $filePath . '] does not exist.');
        }

        // check file is readable
        if (!is_readable($filePath)){
            throw new InvalidPermissionException('The file [' . $filePath . '] is not readable.');
        }

        // AbuseIPDB request
        $response = $this->apiRequest('bulk-report', [], 'POST', $filePath);

        return json_decode($response, $returnArray);

It seems like $response can also be of type true; however, parameter $json of json_decode() does only seem to accept string, maybe add an additional type check?

    }

    /**
     * Perform a 'clear-address' api request
     * 
     *  Sample response:
     * 
     *    {
     *      "data": {
     *        "numReportsDeleted": 0
     *      }
     *    }
     * 
     * @access public
     * @param string    $ip             The ip to check
     * @param bool      $returnArray    True to return an indexed array instead of object. Default is false. 
     * 
     * @return object|array
     * @throws \InvalidArgumentException    When ip value was not set. 
     */
    public function clear(string $ip = null, bool $returnArray = false)
    {
        // ip must be set
        if (empty($ip)){
            throw new \InvalidArgumentException('ip argument must be set (null given)');
        }

        // minimal data
        $data = [
            'ipAddress'     => $ip, 
        ];

        $response = $this->apiRequest('clear-address', $data, "DELETE") ;
        return json_decode($response, $returnArray);

It seems like $response can also be of type true; however, parameter $json of json_decode() does only seem to accept string, maybe add an additional type check?

    }

    /**
     * Perform a 'check' api request
     * 
     * @access public
     * @param string    $ip             The ip to check
     * @param int       $maxAge         Max age in days
     * @param bool      $verbose        True to get the full response. Default is false
     * @param bool      $returnArray    True to return an indexed array instead of object. Default is false. 
     * 
     * @return object|array
     * @throws \InvalidArgumentException    when maxAge is less than 1 or greater than 365, or when ip value was not set. 
     */
    public function check(string $ip = null, int $maxAge = 30, bool $verbose = false, bool $returnArray = false)
    {
        // max age must be less or equal to 365
        if ($maxAge > 365 || $maxAge < 1){
            throw new \InvalidArgumentException('maxAge must be at least 1 and less than 365 (' . $maxAge . ' was given)');
        }

        // ip must be set
        if (empty($ip)){
            throw new \InvalidArgumentException('ip argument must be set (null given)');
        }

        // minimal data
        $data = [
            'ipAddress'     => $ip, 
            'maxAgeInDays'  => $maxAge,  
        ];

        // option
        if ($verbose){
           $data['verbose'] = true;
        }

        $response = $this->apiRequest('check', $data, 'GET') ;

        return json_decode($response, $returnArray);

It seems like $response can also be of type true; however, parameter $json of json_decode() does only seem to accept string, maybe add an additional type check?

    }

    /**
     * Perform a 'check-block' api request
     * 
     * 
     * Sample json response for 127.0.0.1/24
     * 
     * {
     *    "data": {
     *      "networkAddress": "127.0.0.0",
     *      "netmask": "255.255.255.0",
     *      "minAddress": "127.0.0.1",
     *      "maxAddress": "127.0.0.254",
     *      "numPossibleHosts": 254,
     *      "addressSpaceDesc": "Loopback",
     *      "reportedAddress": [
     *        {
     *          "ipAddress": "127.0.0.1",
     *          "numReports": 631,
     *          "mostRecentReport": "2019-03-21T16:35:16+00:00",
     *          "abuseConfidenceScore": 0,
     *          "countryCode": null
     *        },
     *        {
     *          "ipAddress": "127.0.0.2",
     *          "numReports": 16,
     *          "mostRecentReport": "2019-03-12T20:31:17+00:00",
     *          "abuseConfidenceScore": 0,
     *          "countryCode": null
     *        },
     *        ...
     *      ]
     *    }
     *  }
     * 
     * 
     * @access public
     * @param string    $network        The network to check
     * @param int       $maxAge         Max age in days
     * @param bool      $returnArray    True to return an indexed array instead of object. Default is false. 
     * 
     * @return object|array
     * @throws \InvalidArgumentException    when maxAge is less than 1 or greater than 365, or when network value was not set. 
     */
    public function checkBlock(string $network = null, int $maxAge = 30, bool $returnArray = false)
    {
        // max age must be less or equal to 365
        if ($maxAge > 365 || $maxAge < 1){
            throw new \InvalidArgumentException('maxAge must be at least 1 and less than 365 (' . $maxAge . ' was given)');
        }

        // ip must be set
        if (empty($network)){
            throw new \InvalidArgumentException('network argument must be set (null given)');
        }

        // minimal data
        $data = [
            'network'       => $network, 
            'maxAgeInDays'  => $maxAge,  
        ];

        $response = $this->apiRequest('check-block', $data, 'GET') ;

        return json_decode($response, $returnArray);

It seems like $response can also be of type true; however, parameter $json of json_decode() does only seem to accept string, maybe add an additional type check?

    }

    /**
     * Perform a 'blacklist' api request
     * 
     * @access public
     * @param int       $limit          The blacklist limit. Default is TODO (the api default limit) 
     * @param bool      $plainText      True to get the response in plain text list. Default is false
     * @param bool      $returnArray    True to return an indexed array instead of object (when $plainText is set to false). Default is false. 
     * 
     * @return object|array|string
     * @throws \InvalidArgumentException    When maxAge is not a numeric value, when maxAge is less than 1 or 
     *                                      greater than 365, or when ip value was not set. 
     */
    public function getBlacklist(int $limit = 10000, bool $plainText = false, bool $returnArray = false)
    {

        if ($limit < 1){
            throw new \InvalidArgumentException('limit must be at least 1 (' . $limit . ' was given)');
        }

        // minimal data
        $data = [
            'confidenceMinimum' => 100, // The abuseConfidenceScore parameter is a subscriber feature. 
            'limit'             => $limit,
        ];

        // plaintext paremeter has no value and must be added only when true 
        // (set plaintext=false won't work)
        if ($plainText){
            $data['plaintext'] = $plainText;
        }

        $response = $this->apiRequest('blacklist', $data, 'GET');

        if ($plainText){
            return $response;

The expression return $response also could return the type true which is incompatible with the documented return type array|object|string.

        } 
       
        return json_decode($response, $returnArray);

It seems like $response can also be of type true; however, parameter $json of json_decode() does only seem to accept string, maybe add an additional type check?

    }
  
    /**
     * Perform a cURL request       
     * 
     * @access protected
     * @param string    $path           The api end path 
     * @param array     $data           The request data 
     * @param string    $method         The request method. Default is 'GET' 
     * @param bool      $csvFilePath    The file path for csv file. When not empty, $data parameter is ignored and in place,
     *                                  the content of the given file if passed as csv. Default is empty string. 
     * 
     * @return mixed
     * @throws \RuntimeException
     */
    protected function apiRequest(string $path, array $data, string $method = 'GET', string $csvFilePath = '') 
    {
        // set api url
        $url = $this->aipdbApiEndpoint . $path; 

        // set the wanted format, JSON (required to prevent having full html page on error)
        // and the AbuseIPDB API Key as a header
        $headers = [
            'Accept: application/json;',
            'Key: ' . $this->aipdbApiKey,
        ];

        // open curl connection
        $ch = curl_init(); 
  
        // for csv
        if (!empty($csvFilePath)){
            $cfile = new \CurlFile($csvFilePath,  'text/csv', 'csv');
            //curl file itself return the realpath with prefix of @
            $data = array('csv' => $cfile);
        }

        // set the method and data to send
        if ($method == 'POST') {
            $this->setCurlOption($ch, CURLOPT_POST, true);

It seems like $ch can also be of type CurlHandle; however, parameter $ch of Kristuff\AbuseIPDB\ApiHandler::setCurlOption() does only seem to accept resource, maybe add an additional type check?

            $this->setCurlOption($ch, CURLOPT_POSTFIELDS, $data);
        } else {
            $this->setCurlOption($ch, CURLOPT_CUSTOMREQUEST, $method);
            $url .= '?' . http_build_query($data);
        }

        // set the url to call
        $this->setCurlOption($ch, CURLOPT_URL, $url);
        $this->setCurlOption($ch, CURLOPT_RETURNTRANSFER, 1); 
        $this->setCurlOption($ch, CURLOPT_HTTPHEADER, $headers);
    
        // execute curl call
        $result = curl_exec($ch);
    
        // close connection
        curl_close($ch);
  
        // return response as is (JSON or plain text)
        return $result;
    }

    /** 
     * Clean message in case it comes from fail2ban <matches>
     * Remove backslashes and sensitive information from the report
     * @see https://wiki.shaunc.com/wikka.php?wakka=ReportingToAbuseIPDBWithFail2Ban
     * 
     * @access public
     * @param string      $message           The original message 
     *  
	 * @return string
     */
    protected function cleanMessage(string $message)
    {
        // Remove backslashes
        $message = str_replace('\\', '', $message);

        // Remove self ips
        foreach ($this->selfIps as $ip){
            $message = str_replace($ip, '*', $message);
        }

        // If we're reporting spam, further munge any email addresses in the report
        $emailPattern = "/[^@\s]*@[^@\s]*\.[^@\s]*/";
        $message = preg_replace($emailPattern, "*", $message);
        
        // Make sure message is less 1024 chars
        return substr($message, 0, 1024);
    }

    /** 
     * Load and returns decoded Json from given file  
     *
     * @access public
     * @static
	 * @param string    $filePath       The file's full path
	 * @param bool      $throwError     Throw error on true or silent process. Default is true
     *  
	 * @return object|null 
     * @throws \Exception
     * @throws \LogicException
     */
    protected static function loadJsonFile(string $filePath, bool $throwError = true)
    {
        // check file exists
        if (!file_exists($filePath) || !is_file($filePath)){
           if ($throwError) {
                throw new \Exception('Config file not found');
           }
           return null;  
        }

        // get and parse content
        $content = utf8_encode(file_get_contents($filePath));
        $json    = json_decode($content);

        // check for errors
        if ($json == null && json_last_error() != JSON_ERROR_NONE && $throwError) {
            throw new \LogicException(sprintf("Failed to parse config file Error: '%s'", json_last_error_msg()));
        }

        return $json;        
    }
}