Signer::getBase64Encoder() - Code Metrics - misantron/letsencrypt-client - Measure and Improve Code Quality continuously with Scrutinizer

Signer::getBase64Encoder() A
last analyzed 2020-04-08 15:23 UTC

↳ Parent: Signer

Complexity

Conditions	1
Paths	1

Size

Total Lines	3
Code Lines	1

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
eloc	1
c	0
b	0
f	0
dl	0
loc	3
rs	10
cc	1
nc	1
nop	0

<?php

declare(strict_types=1);

/*
 * This file is part of the LetsEncrypt ACME client.
 *
 * @author    Ivanov Aleksandr <[email protected]>
 * @copyright 2019-2020
 * @license   https://github.com/misantron/letsencrypt-client/blob/master/LICENSE MIT License
 */

namespace LetsEncrypt\Helper;

use LetsEncrypt\Exception\KeyPairException;

class Signer implements SignerInterface
{
    /**
     * @var Base64SafeEncoder
     */
    private $base64Encoder;

    public function __construct(Base64SafeEncoder $base64Encoder)
    {
        $this->base64Encoder = $base64Encoder;
    }

    public static function createWithBase64SafeEncoder(): self
    {
        return new static(new Base64SafeEncoder());
    }

    public function getBase64Encoder(): Base64SafeEncoder
    {
        return $this->base64Encoder;
    }

    /**
     * @throws KeyPairException
     */
    public function jws(array $payload, string $url, string $nonce, string $privateKeyPath): array
    {
        $privateKey = openssl_pkey_get_private('file://' . $privateKeyPath);
        if ($privateKey === false) {
            throw KeyPairException::privateKeyInvalid();
        }

        $protected = [
            'alg' => 'RS256',
            'jwk' => $this->jwk($privateKeyPath),
            'nonce' => $nonce,
            'url' => $url,
        ];

        return $this->sign($protected, $payload, $privateKey);
    }

    /**
     * @throws KeyPairException
     */
    public function kid(array $payload, string $kid, string $url, string $nonce, string $privateKeyPath): array
    {
        $privateKey = openssl_pkey_get_private('file://' . $privateKeyPath);
        if ($privateKey === false) {
            throw KeyPairException::privateKeyInvalid();
        }

        $protected = [
            'alg' => 'RS256',
            'kid' => $kid,
            'nonce' => $nonce,
            'url' => $url,
        ];

        return $this->sign($protected, $payload, $privateKey);
    }

    /**
     * @throws KeyPairException
     */
    public function kty(string $privateKeyPath): string
    {
        $header = json_encode($this->jwk($privateKeyPath));

        return $this->base64Encoder->hashEncode($header);
    }

    /**
     * @throws KeyPairException
     */
    public function jwk(string $privateKeyPath): array
    {
        $privateKey = openssl_pkey_get_private('file://' . $privateKeyPath);
        if ($privateKey === false) {
            throw KeyPairException::privateKeyInvalid();
        }

        $details = openssl_pkey_get_details($privateKey);
        if ($details === false) {
            throw KeyPairException::privateKeyDetailsError();
        }

        return [
            'kty' => 'RSA',
            'n' => $this->base64Encoder->encode($details['rsa']['n']),
            'e' => $this->base64Encoder->encode($details['rsa']['e']),
        ];
    }

    private function sign(array $protected, array $payload, $privateKey): array
    {
        // empty payload array must be encoded to empty string
        $payloadEncoded = $payload !== [] ?
            $this->base64Encoder->encode(str_replace('\\/', '/', json_encode($payload))) :
            '';
        $protectedEncoded = $this->base64Encoder->encode(json_encode($protected));

        openssl_sign($protectedEncoded . '.' . $payloadEncoded, $signature, $privateKey, OPENSSL_ALGO_SHA256);

        return [
            'protected' => $protectedEncoded,
            'payload' => $payloadEncoded,
            'signature' => $this->base64Encoder->encode($signature),
        ];
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			/*
6			* This file is part of the LetsEncrypt ACME client.
7			*
8			* @author Ivanov Aleksandr <[email protected]>
9			* @copyright 2019-2020
10			* @license https://github.com/misantron/letsencrypt-client/blob/master/LICENSE MIT License
11			*/
12
13			namespace LetsEncrypt\Helper;
14
15			use LetsEncrypt\Exception\KeyPairException;
16
17			class Signer implements SignerInterface
18			{
19			/**
20			* @var Base64SafeEncoder
21			*/
22			private $base64Encoder;
23
24			public function __construct(Base64SafeEncoder $base64Encoder)
25			{
26			$this->base64Encoder = $base64Encoder;
27			}
28
29			public static function createWithBase64SafeEncoder(): self
30			{
31			return new static(new Base64SafeEncoder());
32			}
33
34			public function getBase64Encoder(): Base64SafeEncoder
35			{
36			return $this->base64Encoder;
37			}
38
39			/**
40			* @throws KeyPairException
41			*/
42			public function jws(array $payload, string $url, string $nonce, string $privateKeyPath): array
43			{
44			$privateKey = openssl_pkey_get_private('file://' . $privateKeyPath);
45			if ($privateKey === false) {
46			throw KeyPairException::privateKeyInvalid();
47			}
48
49			$protected = [
50			'alg' => 'RS256',
51			'jwk' => $this->jwk($privateKeyPath),
52			'nonce' => $nonce,
53			'url' => $url,
54			];
55
56			return $this->sign($protected, $payload, $privateKey);
57			}
58
59			/**
60			* @throws KeyPairException
61			*/
62			public function kid(array $payload, string $kid, string $url, string $nonce, string $privateKeyPath): array
63			{
64			$privateKey = openssl_pkey_get_private('file://' . $privateKeyPath);
65			if ($privateKey === false) {
66			throw KeyPairException::privateKeyInvalid();
67			}
68
69			$protected = [
70			'alg' => 'RS256',
71			'kid' => $kid,
72			'nonce' => $nonce,
73			'url' => $url,
74			];
75
76			return $this->sign($protected, $payload, $privateKey);
77			}
78
79			/**
80			* @throws KeyPairException
81			*/
82			public function kty(string $privateKeyPath): string
83			{
84			$header = json_encode($this->jwk($privateKeyPath));
85
86			return $this->base64Encoder->hashEncode($header);
87			}
88
89			/**
90			* @throws KeyPairException
91			*/
92			public function jwk(string $privateKeyPath): array
93			{
94			$privateKey = openssl_pkey_get_private('file://' . $privateKeyPath);
95			if ($privateKey === false) {
96			throw KeyPairException::privateKeyInvalid();
97			}
98
99			$details = openssl_pkey_get_details($privateKey);
100			if ($details === false) {
101			throw KeyPairException::privateKeyDetailsError();
102			}
103
104			return [
105			'kty' => 'RSA',
106			'n' => $this->base64Encoder->encode($details['rsa']['n']),
107			'e' => $this->base64Encoder->encode($details['rsa']['e']),
108			];
109			}
110
111			private function sign(array $protected, array $payload, $privateKey): array
112			{
113			// empty payload array must be encoded to empty string
114			$payloadEncoded = $payload !== [] ?
115			$this->base64Encoder->encode(str_replace('\\/', '/', json_encode($payload))) :
116			'';
117			$protectedEncoded = $this->base64Encoder->encode(json_encode($protected));
118
119			openssl_sign($protectedEncoded . '.' . $payloadEncoded, $signature, $privateKey, OPENSSL_ALGO_SHA256);
120
121			return [
122			'protected' => $protectedEncoded,
123			'payload' => $payloadEncoded,
124			'signature' => $this->base64Encoder->encode($signature),
125			];
126			}
127			}
128

misantron / letsencrypt-client

Signer::getBase64Encoder() A last analyzed 2020-04-08 15:23 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

Signer::getBase64Encoder() A
last analyzed 2020-04-08 15:23 UTC