ApiAuthController - Code Metrics - nerds-and-company/craft-api-authentication-plugin - Measure and Improve Code Quality continuously with Scrutinizer

ApiAuthController A
last analyzed 2016-01-28 10:30 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	91
Duplicated Lines	0 %

Coupling/Cohesion

Components	0
Dependencies	0

Test Coverage

Coverage

87.23%

Importance

Changes	9
Bugs	2	Features	1

Metric	Value
wmc	10
c	9
b	2
f	1
lcom	0
cbo	0
dl	0
loc	91
ccs	41
cts	47
cp	0.8723
rs	10

4 Methods

Rating	Name	Size	Complexity
A	init()	7	2
B	actionAuthenticate()	30	4
A	actionResetPassword()	19	3
A	extractUserData()	10	1

<?php

namespace Craft;

/**
 * Class ApiAuthController
 *
 * Api authentication using user keys
 *
 * @author    Nerds & Company
 * @copyright Copyright (c) 2015, Nerds & Company
 * @license   MIT
 *
 * @link      http://www.nerds.company
 */
class ApiAuthController extends BaseController
{
    /** @var bool */
    protected $allowAnonymous = array('authenticate', 'resetPassword');

    /**
     * Set cors headers and check for options request
     */
    public function init()
    {
        craft()->apiAuth->setCorsHeaders();
        if (craft()->apiAuth->isOptionsRequest()) {
            craft()->end();
        }
    }

    /**
     * Authenticate action.
     */
    public function actionAuthenticate()
    {
        try {
            $this->requirePostRequest();

            $username = craft()->request->getRequiredPost('username');
            $password = craft()->request->getRequiredPost('password');

            if (craft()->userSession->login($username, $password)) {
                $key = craft()->apiAuth->generateKey();
                $user = craft()->userSession->getUser();

                if (craft()->apiAuth->saveKey($user, $key)) {
                    $this->returnJson(array(
                        'key' => $key,
                        'user' => $this->extractUserData($user),
                    ));
                } else {
                    HeaderHelper::setHeader('HTTP/ 500 Internal server error');
                    $this->returnErrorJson(Craft::t('Something went wrong'));
                }
            } else {
                HeaderHelper::setHeader('HTTP/ 401 Bad Credentials');
                $this->returnErrorJson(Craft::t('Invalid username or password'));
            }
        } catch (HttpException $e) {

            HeaderHelper::setHeader('HTTP/ ' . $e->statusCode);
            $this->returnErrorJson($e->getMessage());
        }
    }

    /**
     * Forgot password action
     */
    public function actionResetPassword()
    {
        try {
            $this->requirePostRequest();

            $username = craft()->request->getRequiredPost('username');
            $user = craft()->users->getUserByUsernameOrEmail($username);

            if ($user) {
                craft()->users->sendPasswordResetEmail($user);
            }

            $this->returnJson(array('message' => Craft::t('Email has been sent if address exists')));

        } catch (HttpException $e) {

            HeaderHelper::setHeader('HTTP/ ' . $e->statusCode);
            $this->returnErrorJson($e->getMessage());
        }
    }

    /**
     * Exposes interesting user fields to the API.
     *
     * @param UserModel $user
     *
     * @return array
     */
    private function extractUserData(UserModel $user)
    {
        return array(
            'username'  => $user->username,
            'photo'     => $user->photo,
            'firstName' => $user->firstName,
            'lastName'  => $user->lastName,
            'email'     => $user->email,
        );
    }
}


1		<?php
2
3		namespace Craft;
4
5		/**
6		* Class ApiAuthController
7		*
8		* Api authentication using user keys
9		*
10		* @author Nerds & Company
11		* @copyright Copyright (c) 2015, Nerds & Company
12		* @license MIT
13		*
14		* @link http://www.nerds.company
15		*/
16		class ApiAuthController extends BaseController
17		{
18		/** @var bool */
19		protected $allowAnonymous = array('authenticate', 'resetPassword');
20
21		/**
22		* Set cors headers and check for options request
23		*/
24		public function init()
25		{
26		craft()->apiAuth->setCorsHeaders();
27		if (craft()->apiAuth->isOptionsRequest()) {
28		craft()->end();
29		}
30		}
31
32		/**
33		* Authenticate action.
34		*/
35	4	public function actionAuthenticate()
36		{
37		try {
38	4	$this->requirePostRequest();
39
40	3	$username = craft()->request->getRequiredPost('username');
41	3	$password = craft()->request->getRequiredPost('password');
42
43	3	if (craft()->userSession->login($username, $password)) {
44	2	$key = craft()->apiAuth->generateKey();
45	2	$user = craft()->userSession->getUser();
46
47	2	if (craft()->apiAuth->saveKey($user, $key)) {
48	1	$this->returnJson(array(
49	1	'key' => $key,
50	1	'user' => $this->extractUserData($user),
51	1	));
52	1	} else {
53	1	HeaderHelper::setHeader('HTTP/ 500 Internal server error');
54	1	$this->returnErrorJson(Craft::t('Something went wrong'));
55		}
56	2	} else {
57	1	HeaderHelper::setHeader('HTTP/ 401 Bad Credentials');
58	1	$this->returnErrorJson(Craft::t('Invalid username or password'));
59		}
60	4	} catch (HttpException $e) {
		0 ignored issues – show Bug introduced 2015-12-01 15:27 UTC by Report Bug Copy Issue Report The class `Craft\HttpException` does not exist. Did you forget a USE statement, or did you not list all dependencies? Scrutinizer analyzes your `composer.json`/`composer.lock` file if available to determine the classes, and functions that are defined by your dependencies. It seems like the listed class was neither found in your dependencies, nor was it found in the analyzed files in your repository. If you are using some other form of dependency management, you might want to disable this analysis. Loading history...
61	1	HeaderHelper::setHeader('HTTP/ ' . $e->statusCode);
62	1	$this->returnErrorJson($e->getMessage());
63		}
64	4	}
65
66		/**
67		* Forgot password action
68		*/
69	3	public function actionResetPassword()
70		{
71		try {
72	3	$this->requirePostRequest();
73
74	2	$username = craft()->request->getRequiredPost('username');
75	2	$user = craft()->users->getUserByUsernameOrEmail($username);
76
77	2	if ($user) {
78	1	craft()->users->sendPasswordResetEmail($user);
79	1	}
80
81	2	$this->returnJson(array('message' => Craft::t('Email has been sent if address exists')));
82
83	3	} catch (HttpException $e) {
		0 ignored issues – show Bug introduced 2015-11-24 13:14 UTC by Report Bug Copy Issue Report The class `Craft\HttpException` does not exist. Did you forget a USE statement, or did you not list all dependencies? Scrutinizer analyzes your `composer.json`/`composer.lock` file if available to determine the classes, and functions that are defined by your dependencies. It seems like the listed class was neither found in your dependencies, nor was it found in the analyzed files in your repository. If you are using some other form of dependency management, you might want to disable this analysis. Loading history...
84	1	HeaderHelper::setHeader('HTTP/ ' . $e->statusCode);
85	1	$this->returnErrorJson($e->getMessage());
86		}
87	3	}
88
89		/**
90		* Exposes interesting user fields to the API.
91		*
92		* @param UserModel $user
93		*
94		* @return array
95		*/
96	1	private function extractUserData(UserModel $user)
97		{
98		return array(
99	1	'username' => $user->username,
100	1	'photo' => $user->photo,
101	1	'firstName' => $user->firstName,
102	1	'lastName' => $user->lastName,
103	1	'email' => $user->email,
104	1	);
105		}
106		}
107

nerds-and-company / craft-api-authentication-plugin

ApiAuthController A last analyzed 2016-01-28 10:30 UTC

Complexity

Size/Duplication

Coupling/Cohesion

Test Coverage

Importance

4 Methods

Duplication Side-by-Side

Filter issues like

ApiAuthController A
last analyzed 2016-01-28 10:30 UTC