PageEditComment - Code Metrics - mdaniels5757/waca - Measure and Improve Code Quality continuously with Scrutinizer

PageEditComment A
last analyzed 2025-11-01 00:56 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	155
Duplicated Lines	0 %

Importance

Changes

Metric	Value
wmc	40
eloc	76
c	0
b	0
f	0
dl	0
loc	155
rs	9.2

4 Methods

Rating	Name	Size	Complexity
C	checkCommentAccess()	30	14
A	redirectBack()	9	2
A	updateCommentData()	12	5
D	main()	83	19

How to fix Complexity

<?php
/******************************************************************************
 * Wikipedia Account Creation Assistance tool                                 *
 * ACC Development Team. Please see team.json for a list of contributors.     *
 *                                                                            *
 * This is free and unencumbered software released into the public domain.    *
 * Please see LICENSE.md for the full licencing statement.                    *
 ******************************************************************************/

namespace Waca\Pages;

use Exception;
use Waca\DataObjects\Comment;
use Waca\DataObjects\Request;
use Waca\DataObjects\User;
use Waca\Exceptions\AccessDeniedException;
use Waca\Exceptions\ApplicationLogicException;
use Waca\Helpers\Logger;
use Waca\SessionAlert;
use Waca\Tasks\InternalPageBase;
use Waca\WebRequest;

class PageEditComment extends InternalPageBase
{
    /**
     * Main function for this page, when no specific actions are called.
     * @throws ApplicationLogicException
     * @throws Exception
     */
    protected function main()
    {
        $commentId = WebRequest::getInt('id');
        if ($commentId === null) {
            throw new ApplicationLogicException('Comment ID not specified');
        }

        $database = $this->getDatabase();

        /** @var Comment|false $comment */
        $comment = Comment::getById($commentId, $database);
        if ($comment === false) {

            throw new ApplicationLogicException('Comment not found');
        }

        $currentUser = User::getCurrent($database);

        $this->checkCommentAccess($comment, $currentUser);

        /** @var Request|false $request */
        $request = Request::getById($comment->getRequest(), $database);

        if ($request === false) {

            throw new ApplicationLogicException('Request was not found.');
        }

        $canUnflag = $this->barrierTest('unflag', $currentUser, PageFlagComment::class);

        if (WebRequest::wasPosted()) {
            $this->validateCSRFToken();
            $newComment = WebRequest::postString('newcomment');
            $visibility = WebRequest::postString('visibility');
            $doUnflag = WebRequest::postBoolean('unflag');

            if ($newComment === null || $newComment === '') {
                throw new ApplicationLogicException('Comment cannot be empty!');
            }

            $commentDataUnchanged = $newComment === $comment->getComment()
                && ($comment->getVisibility() === 'requester' || $comment->getVisibility() === $visibility);
            $flagStatusUnchanged = (!$canUnflag || $comment->getFlagged() && !$doUnflag);

            if ($commentDataUnchanged && $flagStatusUnchanged) {
                // No change was made; redirect back.
                $this->redirectBack($comment->getRequest());

                return;
            }

            // optimistically lock from the load of the edit comment form
            $updateVersion = WebRequest::postInt('updateversion');

            // comment data has changed, update the object
            if (!$commentDataUnchanged) {
                $this->updateCommentData($comment, $visibility, $newComment);
            }

            if ($doUnflag && $canUnflag) {
                $comment->setFlagged(false);
            }

            $comment->setUpdateVersion($updateVersion);
            $comment->save();

            if (!$commentDataUnchanged) {
                Logger::editComment($database, $comment, $request);
                $this->getNotificationHelper()->commentEdited($comment, $request);
            }

            if ($doUnflag && $canUnflag) {
                Logger::unflaggedComment($database, $comment, $request->getDomain());
            }

            SessionAlert::success('Comment has been saved successfully');
            $this->redirectBack($comment->getRequest());
        }
        else {
            $this->assignCSRFToken();
            $this->assign('comment', $comment);
            $this->assign('request', $request);
            $this->assign('user', User::getById($comment->getUser(), $database));
            $this->assign('canUnflag', $canUnflag);
            $this->setTemplate('edit-comment.tpl');
        }
    }

    /**
     * @throws AccessDeniedException
     */
    private function checkCommentAccess(Comment $comment, User $currentUser): void
    {
        if ($comment->getUser() !== $currentUser->getId() && !$this->barrierTest('editOthers', $currentUser)) {
            throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
        }

        $restrictedVisibility = $comment->getFlagged()
            || $comment->getVisibility() === 'admin'
            || $comment->getVisibility() === 'checkuser';

        if ($restrictedVisibility && !$this->barrierTest('alwaysSeePrivateData', $currentUser, 'RequestData')) {
            // Restricted visibility comments can only be seen if the user has a request reserved.
            /** @var Request $request */
            $request = Request::getById($comment->getRequest(), $comment->getDatabase());

            if ($request->getReserved() !== $currentUser->getId()) {
                throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
            }
        }

        if ($comment->getVisibility() === 'admin'
            && !$this->barrierTest('seeRestrictedComments', $currentUser, 'RequestData')
            && $comment->getUser() !== $currentUser->getId()) {
            throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
        }

        if ($comment->getVisibility() === 'checkuser'
            && !$this->barrierTest('seeCheckuserComments', $currentUser, 'RequestData')
            && $comment->getUser() !== $currentUser->getId()) {
            throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
        }
    }

    /**
     * @throws ApplicationLogicException
     */
    private function updateCommentData(Comment $comment, ?string $visibility, string $newComment): void
    {
        if ($comment->getVisibility() !== 'requester') {
            if ($visibility !== 'user' && $visibility !== 'admin' && $visibility !== 'checkuser') {
                throw new ApplicationLogicException('Comment visibility is not valid');
            }

            $comment->setVisibility($visibility);
        }

        $comment->setComment($newComment);
        $comment->touchEdited();
    }

    private function redirectBack(int $requestId): void
    {
        $source = WebRequest::getString('from');

        if ($source == 'flagged') {
            $this->redirect('flaggedComments');
        }
        else {
            $this->redirect('viewRequest', null, array('id' => $requestId));
        }
    }
}


1			<?php
2			/******************************************************************************
3			* Wikipedia Account Creation Assistance tool *
4			* ACC Development Team. Please see team.json for a list of contributors. *
5			* *
6			* This is free and unencumbered software released into the public domain. *
7			* Please see LICENSE.md for the full licencing statement. *
8			******************************************************************************/
9
10			namespace Waca\Pages;
11
12			use Exception;
13			use Waca\DataObjects\Comment;
14			use Waca\DataObjects\Request;
15			use Waca\DataObjects\User;
16			use Waca\Exceptions\AccessDeniedException;
17			use Waca\Exceptions\ApplicationLogicException;
18			use Waca\Helpers\Logger;
19			use Waca\SessionAlert;
20			use Waca\Tasks\InternalPageBase;
21			use Waca\WebRequest;
22
23			class PageEditComment extends InternalPageBase
24			{
25			/**
26			* Main function for this page, when no specific actions are called.
27			* @throws ApplicationLogicException
28			* @throws Exception
29			*/
30			protected function main()
31			{
32			$commentId = WebRequest::getInt('id');
33			if ($commentId === null) {
34			throw new ApplicationLogicException('Comment ID not specified');
35			}
36
37			$database = $this->getDatabase();
38
39			/** @var Comment\|false $comment */
40			$comment = Comment::getById($commentId, $database);
41			if ($comment === false) {
			0 ignored issues – show introduced 2023-12-29 02:08 UTC by Report Bug Copy Issue Report The condition `$comment === false` is always `false`. Loading history...
42			throw new ApplicationLogicException('Comment not found');
43			}
44
45			$currentUser = User::getCurrent($database);
46
47			$this->checkCommentAccess($comment, $currentUser);
48
49			/** @var Request\|false $request */
50			$request = Request::getById($comment->getRequest(), $database);
51
52			if ($request === false) {
			0 ignored issues – show introduced 2020-04-26 01:56 UTC by Report Bug Copy Issue Report The condition `$request === false` is always `false`. Loading history...
53			throw new ApplicationLogicException('Request was not found.');
54			}
55
56			$canUnflag = $this->barrierTest('unflag', $currentUser, PageFlagComment::class);
57
58			if (WebRequest::wasPosted()) {
59			$this->validateCSRFToken();
60			$newComment = WebRequest::postString('newcomment');
61			$visibility = WebRequest::postString('visibility');
62			$doUnflag = WebRequest::postBoolean('unflag');
63
64			if ($newComment === null \|\| $newComment === '') {
65			throw new ApplicationLogicException('Comment cannot be empty!');
66			}
67
68			$commentDataUnchanged = $newComment === $comment->getComment()
69			&& ($comment->getVisibility() === 'requester' \|\| $comment->getVisibility() === $visibility);
70			$flagStatusUnchanged = (!$canUnflag \|\| $comment->getFlagged() && !$doUnflag);
71
72			if ($commentDataUnchanged && $flagStatusUnchanged) {
73			// No change was made; redirect back.
74			$this->redirectBack($comment->getRequest());
75
76			return;
77			}
78
79			// optimistically lock from the load of the edit comment form
80			$updateVersion = WebRequest::postInt('updateversion');
81
82			// comment data has changed, update the object
83			if (!$commentDataUnchanged) {
84			$this->updateCommentData($comment, $visibility, $newComment);
85			}
86
87			if ($doUnflag && $canUnflag) {
88			$comment->setFlagged(false);
89			}
90
91			$comment->setUpdateVersion($updateVersion);
92			$comment->save();
93
94			if (!$commentDataUnchanged) {
95			Logger::editComment($database, $comment, $request);
96			$this->getNotificationHelper()->commentEdited($comment, $request);
97			}
98
99			if ($doUnflag && $canUnflag) {
100			Logger::unflaggedComment($database, $comment, $request->getDomain());
101			}
102
103			SessionAlert::success('Comment has been saved successfully');
104			$this->redirectBack($comment->getRequest());
105			}
106			else {
107			$this->assignCSRFToken();
108			$this->assign('comment', $comment);
109			$this->assign('request', $request);
110			$this->assign('user', User::getById($comment->getUser(), $database));
111			$this->assign('canUnflag', $canUnflag);
112			$this->setTemplate('edit-comment.tpl');
113			}
114			}
115
116			/**
117			* @throws AccessDeniedException
118			*/
119			private function checkCommentAccess(Comment $comment, User $currentUser): void
120			{
121			if ($comment->getUser() !== $currentUser->getId() && !$this->barrierTest('editOthers', $currentUser)) {
122			throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
123			}
124
125			$restrictedVisibility = $comment->getFlagged()
126			\|\| $comment->getVisibility() === 'admin'
127			\|\| $comment->getVisibility() === 'checkuser';
128
129			if ($restrictedVisibility && !$this->barrierTest('alwaysSeePrivateData', $currentUser, 'RequestData')) {
130			// Restricted visibility comments can only be seen if the user has a request reserved.
131			/** @var Request $request */
132			$request = Request::getById($comment->getRequest(), $comment->getDatabase());
133
134			if ($request->getReserved() !== $currentUser->getId()) {
135			throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
136			}
137			}
138
139			if ($comment->getVisibility() === 'admin'
140			&& !$this->barrierTest('seeRestrictedComments', $currentUser, 'RequestData')
141			&& $comment->getUser() !== $currentUser->getId()) {
142			throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
143			}
144
145			if ($comment->getVisibility() === 'checkuser'
146			&& !$this->barrierTest('seeCheckuserComments', $currentUser, 'RequestData')
147			&& $comment->getUser() !== $currentUser->getId()) {
148			throw new AccessDeniedException($this->getSecurityManager(), $this->getDomainAccessManager());
149			}
150			}
151
152			/**
153			* @throws ApplicationLogicException
154			*/
155			private function updateCommentData(Comment $comment, ?string $visibility, string $newComment): void
156			{
157			if ($comment->getVisibility() !== 'requester') {
158			if ($visibility !== 'user' && $visibility !== 'admin' && $visibility !== 'checkuser') {
159			throw new ApplicationLogicException('Comment visibility is not valid');
160			}
161
162			$comment->setVisibility($visibility);
163			}
164
165			$comment->setComment($newComment);
166			$comment->touchEdited();
167			}
168
169			private function redirectBack(int $requestId): void
170			{
171			$source = WebRequest::getString('from');
172
173			if ($source == 'flagged') {
174			$this->redirect('flaggedComments');
175			}
176			else {
177			$this->redirect('viewRequest', null, array('id' => $requestId));
178			}
179			}
180			}
181

mdaniels5757 / waca

PageEditComment A last analyzed 2025-11-01 00:56 UTC

Complexity

Size/Duplication

Importance

4 Methods

How to fix Complexity

Complex Class

Duplication Side-by-Side

Filter issues like

PageEditComment A
last analyzed 2025-11-01 00:56 UTC