LM\AuthAbstractor\Challenge\CredentialChallenge

Complexity

Total Complexity

8

Size/Duplication

Total Lines	85
Duplicated Lines	0 %

Importance

Changes

0

2 Methods

Rating	Name	Duplication	Size	Complexity
A	__construct()	0	10	1
B	process()	0	53	7

<?php

declare(strict_types=1);

namespace LM\AuthAbstractor\Challenge;

use LM\AuthAbstractor\Configuration\IApplicationConfiguration;
use LM\AuthAbstractor\Model\AuthenticationProcess;
use LM\AuthAbstractor\Model\IAuthenticationProcess;
use LM\Common\Model\StringObject;
use Psr\Http\Message\ServerRequestInterface;
use Symfony\Bridge\PsrHttpMessage\Factory\HttpFoundationFactory;
use LM\AuthAbstractor\Model\IChallengeResponse;
use LM\AuthAbstractor\Implementation\ChallengeResponse;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Form\Extension\Core\Type\PasswordType;
use Symfony\Component\Form\Extension\Core\Type\SubmitType;
use Symfony\Component\Form\FormError;
use Symfony\Component\Form\FormFactoryInterface;
use Twig_Environment;

/**
 * A challenge providing credential-based authentication (username + password).
 */
class CredentialChallenge implements IChallenge
{
    /** @var IApplicationConfiguration */
    private $appConfig;

    /** @var FormFactoryInterface */
    private $formFactory;

    /** @var HttpFoundationFactory */
    private $httpFoundationFactory;

    /** @var Twig_Environment */
    private $twig;

    /**
     * @internal
     */
    public function __construct(
        IApplicationConfiguration $appConfig,
        FormFactoryInterface $formFactory,
        HttpFoundationFactory $httpFoundationFactory,
        Twig_Environment $twig
    ) {
        $this->appConfig = $appConfig;
        $this->formFactory = $formFactory;
        $this->httpFoundationFactory = $httpFoundationFactory;
        $this->twig = $twig;
    }

    /**
     * @internal
     */
    public function process(
        IAuthenticationProcess $process,
        ?ServerRequestInterface $httpRequest
    ): IChallengeResponse {
        $form = $this
            ->formFactory
            ->createBuilder()
            ->add('username')
            ->add('password', PasswordType::class)
            ->add('submit', SubmitType::class)
            ->getForm()
        ;

        if (null !== $httpRequest) {
            $form->handleRequest($this->httpFoundationFactory->createRequest($httpRequest));
        }
        if ($form->isSubmitted()) {
            if (!$this->appConfig->isExistingMember($form['username']->getData())) {
                $form->addError(new FormError('Invalid credentials'));
            } else {
                $member = $this->appConfig->getMember($form['username']->getData());
                if (!password_verify($form['password']->getData(), $member->getHashedPassword())) {
                    $form->addError(new FormError('Invalid credentials'));
                }
            }
        }
        if ($form->isSubmitted() && $form->isValid()) {
            $authProcess = new AuthenticationProcess($process

The function LM\AuthAbstractor\Model\IAuthenticationProcess::getTypedMap() has been deprecated.

                ->getTypedMap()
                ->add(
                    'username',
                    new StringObject($form['username']->getData()),
                    StringObject::class
                ))
            ;

            return new ChallengeResponse(
                $authProcess,
                null,
                false,
                true
            )
            ;
        }
        $httpResponse = new Response($this->twig->render("credential_authentication.html.twig", [
            "form" => $form->createView(),
        ]));

        return new ChallengeResponse(
            $process,
            $httpResponse,
            $form->isSubmitted(),
            false
        )
        ;
    }
}