ResponseSignatureMiddleware::__invoke() - Code Metrics - link0/bunq - Measure and Improve Code Quality continuously with Scrutinizer

ResponseSignatureMiddleware::__invoke() C
last analyzed 2017-06-28 22:26 UTC

↳ Parent: ResponseSignatureMiddleware

Complexity

Conditions	7
Paths	3

Size

Total Lines	41
Code Lines	21

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	41
rs	6.7272
c	0
b	0
f	0
cc	7
eloc	21
nc	3
nop	1

<?php declare(strict_types = 1);

namespace Link0\Bunq\Middleware;

use Link0\Bunq\Domain\Keypair\PublicKey;
use Psr\Http\Message\ResponseInterface;

final class ResponseSignatureMiddleware
{
    const SIGNATURE_ALGORITHM = OPENSSL_ALGO_SHA256;

    /**
     * @var PublicKey
     */
    private $publicKey;

    /**
     * @param PublicKey $serverPublicKey
     */
    public function __construct(PublicKey $serverPublicKey)
    {
        $this->publicKey = $serverPublicKey;
    }

    /**
     * @param ResponseInterface $response
     * @return ResponseInterface
     * @throws \Exception
     */
    public function __invoke(ResponseInterface $response)
    {
        $header = $response->getHeader('X-Bunq-Server-Signature');

        if (isset($header[0])) {
            $serverSignature = $header[0];

            $signatureData = $response->getStatusCode();

            $headers = $response->getHeaders();
            ksort($headers);

            foreach ($headers as $header => $values) {
                // Skip the server signature itself
                if ($header === 'X-Bunq-Server-Signature') {
                    continue;
                }

                // Skip all headers that are not X-Bunq-
                if (substr($header, 0, 7) !== 'X-Bunq-') {
                    continue;
                }

                // Add all header data to verify signature
                foreach ($values as $value) {
                    $signatureData .= PHP_EOL . $header . ': ' . $value;
                }
            }

            $signatureData .= "\n\n";
            $signatureData .= (string) $response->getBody();

            $rawSignature = base64_decode($serverSignature);
            $verify = openssl_verify($signatureData, $rawSignature, $this->publicKey, self::SIGNATURE_ALGORITHM);
            if ($verify !== 1) {
                throw new \Exception("Server signature does not match response");
            }
        }

        return $response;
    }
}


1			<?php declare(strict_types = 1);
2
3			namespace Link0\Bunq\Middleware;
4
5			use Link0\Bunq\Domain\Keypair\PublicKey;
6			use Psr\Http\Message\ResponseInterface;
7
8			final class ResponseSignatureMiddleware
9			{
10			const SIGNATURE_ALGORITHM = OPENSSL_ALGO_SHA256;
11
12			/**
13			* @var PublicKey
14			*/
15			private $publicKey;
16
17			/**
18			* @param PublicKey $serverPublicKey
19			*/
20			public function __construct(PublicKey $serverPublicKey)
21			{
22			$this->publicKey = $serverPublicKey;
23			}
24
25			/**
26			* @param ResponseInterface $response
27			* @return ResponseInterface
28			* @throws \Exception
29			*/
30			public function __invoke(ResponseInterface $response)
31			{
32			$header = $response->getHeader('X-Bunq-Server-Signature');
33
34			if (isset($header[0])) {
35			$serverSignature = $header[0];
36
37			$signatureData = $response->getStatusCode();
38
39			$headers = $response->getHeaders();
40			ksort($headers);
41
42			foreach ($headers as $header => $values) {
43			// Skip the server signature itself
44			if ($header === 'X-Bunq-Server-Signature') {
45			continue;
46			}
47
48			// Skip all headers that are not X-Bunq-
49			if (substr($header, 0, 7) !== 'X-Bunq-') {
50			continue;
51			}
52
53			// Add all header data to verify signature
54			foreach ($values as $value) {
55			$signatureData .= PHP_EOL . $header . ': ' . $value;
56			}
57			}
58
59			$signatureData .= "\n\n";
60			$signatureData .= (string) $response->getBody();
61
62			$rawSignature = base64_decode($serverSignature);
63			$verify = openssl_verify($signatureData, $rawSignature, $this->publicKey, self::SIGNATURE_ALGORITHM);
64			if ($verify !== 1) {
65			throw new \Exception("Server signature does not match response");
66			}
67			}
68
69			return $response;
70			}
71			}
72

link0 / bunq

ResponseSignatureMiddleware::__invoke() C last analyzed 2017-06-28 22:26 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

ResponseSignatureMiddleware::__invoke() C
last analyzed 2017-06-28 22:26 UTC