AnonymousOptionsPlugin::isRequestInRoot() - Code Metrics - Inspection of "Merge pull request #16739 from nextcloud/office/he..." - nextcloud/server - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( d013ff...c6e467 )

by Roeland

created 2019-08-14 18:11 UTC

AnonymousOptionsPlugin::isRequestInRoot() A

↳ Parent: AnonymousOptionsPlugin

Complexity

Conditions	3
Paths	3

Size

Total Lines	2
Code Lines	1

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	3
eloc	1
nc	3
nop	1
dl	0
loc	2
rs	10
c	0
b	0
f	0

<?php
/**
 * @copyright Copyright (c) 2018 Robin Appelman <[email protected]>
 *
 * @license GNU AGPL version 3 or any later version
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as
 * published by the Free Software Foundation, either version 3 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 *
 */

namespace OCA\DAV\Connector\Sabre;

use Sabre\DAV\CorePlugin;
use Sabre\DAV\FS\Directory;
.
|-- OtherDir
|   |-- Bar.php
|   `-- Foo.php
`-- SomeDir
    `-- Foo.php
use Sabre\DAV\ServerPlugin;
use Sabre\DAV\Tree;
use Sabre\HTTP\RequestInterface;
use Sabre\HTTP\ResponseInterface;

class AnonymousOptionsPlugin extends ServerPlugin {

	/**
	 * @var \Sabre\DAV\Server
	 */
	private $server;

	/**
	 * @param \Sabre\DAV\Server $server
	 * @return void
	 */
	public function initialize(\Sabre\DAV\Server $server) {
		$this->server = $server;
		// before auth
		$this->server->on('beforeMethod', [$this, 'handleAnonymousOptions'], 9);
	}

	/**
	 * @return bool
	 */
	public function isRequestInRoot($path) {
		return $path === '' || (is_string($path) && strpos($path, '/') === FALSE);
	}

	/**
	 * @throws \Sabre\DAV\Exception\Forbidden
	 * @return bool
	 */
	public function handleAnonymousOptions(RequestInterface $request, ResponseInterface $response) {
		$isOffice = preg_match('/Microsoft Office/i', $request->getHeader('User-Agent'));
		$isAnonymousOption = ($request->getMethod() === 'OPTIONS' && ($request->getHeader('Authorization') === null || trim($request->getHeader('Authorization')) === 'Bearer') && $this->isRequestInRoot($request->getPath()));
		$isOfficeHead = $request->getMethod() === 'HEAD' && $isOffice && $request->getHeader('Authorization') === 'Bearer';
		if ($isAnonymousOption || $isOfficeHead) {
			/** @var CorePlugin $corePlugin */
			$corePlugin = $this->server->getPlugin('core');
			// setup a fake tree for anonymous access
			$this->server->tree = new Tree(new Directory(''));
			$corePlugin->httpOptions($request, $response);
			$this->server->emit('afterMethod', [$request, $response]);
			$this->server->emit('afterMethod:OPTIONS', [$request, $response]);

			$this->server->sapi->sendResponse($response);
			return false;
		}
	}
}


1			<?php
2			/**
3			* @copyright Copyright (c) 2018 Robin Appelman <[email protected]>
4			*
5			* @license GNU AGPL version 3 or any later version
6			*
7			* This program is free software: you can redistribute it and/or modify
8			* it under the terms of the GNU Affero General Public License as
9			* published by the Free Software Foundation, either version 3 of the
10			* License, or (at your option) any later version.
11			*
12			* This program is distributed in the hope that it will be useful,
13			* but WITHOUT ANY WARRANTY; without even the implied warranty of
14			* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15			* GNU Affero General Public License for more details.
16			*
17			* You should have received a copy of the GNU Affero General Public License
18			* along with this program. If not, see <http://www.gnu.org/licenses/>.
19			*
20			*/
21
22			namespace OCA\DAV\Connector\Sabre;
23
24			use Sabre\DAV\CorePlugin;
25			use Sabre\DAV\FS\Directory;
			0 ignored issues – show Bug introduced 2018-10-24 12:40 UTC by Report Bug Copy Issue Report This use statement conflicts with another class in this namespace, `OCA\DAV\Connector\Sabre\Directory`. Consider defining an alias. Let?s assume that you have a directory layout like this: . \|-- OtherDir \| \|-- Bar.php \| `-- Foo.php `-- SomeDir `-- Foo.php and let?s assume the following content of `Bar.php`: // Bar.php namespace OtherDir; use SomeDir\Foo; // This now conflicts the class OtherDir\Foo If both files `OtherDir/Foo.php` and `SomeDir/Foo.php` are loaded in the same runtime, you will see a PHP error such as the following: PHP Fatal error: Cannot use SomeDir\Foo as Foo because the name is already in use in OtherDir/Foo.php However, as `OtherDir/Foo.php` does not necessarily have to be loaded and the error is only triggered if it is loaded before `OtherDir/Bar.php`, this problem might go unnoticed for a while. In order to prevent this error from surfacing, you must import the namespace with a different alias: // Bar.php namespace OtherDir; use SomeDir\Foo as SomeDirFoo; // There is no conflict anymore. Loading history...
26			use Sabre\DAV\ServerPlugin;
27			use Sabre\DAV\Tree;
28			use Sabre\HTTP\RequestInterface;
29			use Sabre\HTTP\ResponseInterface;
30
31			class AnonymousOptionsPlugin extends ServerPlugin {
32
33			/**
34			* @var \Sabre\DAV\Server
35			*/
36			private $server;
37
38			/**
39			* @param \Sabre\DAV\Server $server
40			* @return void
41			*/
42			public function initialize(\Sabre\DAV\Server $server) {
43			$this->server = $server;
44			// before auth
45			$this->server->on('beforeMethod', [$this, 'handleAnonymousOptions'], 9);
46			}
47
48			/**
49			* @return bool
50			*/
51			public function isRequestInRoot($path) {
52			return $path === '' \|\| (is_string($path) && strpos($path, '/') === FALSE);
53			}
54
55			/**
56			* @throws \Sabre\DAV\Exception\Forbidden
57			* @return bool
58			*/
59			public function handleAnonymousOptions(RequestInterface $request, ResponseInterface $response) {
60			$isOffice = preg_match('/Microsoft Office/i', $request->getHeader('User-Agent'));
61			$isAnonymousOption = ($request->getMethod() === 'OPTIONS' && ($request->getHeader('Authorization') === null \|\| trim($request->getHeader('Authorization')) === 'Bearer') && $this->isRequestInRoot($request->getPath()));
62			$isOfficeHead = $request->getMethod() === 'HEAD' && $isOffice && $request->getHeader('Authorization') === 'Bearer';
63			if ($isAnonymousOption \|\| $isOfficeHead) {
64			/** @var CorePlugin $corePlugin */
65			$corePlugin = $this->server->getPlugin('core');
66			// setup a fake tree for anonymous access
67			$this->server->tree = new Tree(new Directory(''));
68			$corePlugin->httpOptions($request, $response);
69			$this->server->emit('afterMethod', [$request, $response]);
70			$this->server->emit('afterMethod:OPTIONS', [$request, $response]);
71
72			$this->server->sapi->sendResponse($response);
73			return false;
74			}
75			}
76			}
77

nextcloud / server

Push — master ( d013ff...c6e467 )

AnonymousOptionsPlugin::isRequestInRoot() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like