UserDeleteListener::isTryingToDeleteLoggedInAdminUser() - Code Metrics - Inspection of "Add automated tests for autowiring in ResourceBund..." - pamil/Sylius - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — 1.4-autowiring-for-resource-bu... ( cfe966...176999 )

by Kamil

created 2019-01-05 12:50 UTC

isTryingToDeleteLoggedInAdminUser() A

↳ Parent: UserDeleteListener

Complexity

Conditions	5
Paths	4

Size

Total Lines

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	18
rs	9.3554
c	0
b	0
f	0
cc	5
nc	4
nop	1

<?php

/*
 * This file is part of the Sylius package.
 *
 * (c) Paweł Jędrzejewski
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

declare(strict_types=1);

namespace Sylius\Bundle\UserBundle\EventListener;

use Sylius\Bundle\ResourceBundle\Event\ResourceControllerEvent;
use Sylius\Component\User\Model\UserInterface;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\HttpFoundation\Session\Flash\FlashBagInterface;
use Symfony\Component\HttpFoundation\Session\SessionInterface;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
use Webmozart\Assert\Assert;

final class UserDeleteListener
{
    /** @var TokenStorageInterface */
    private $tokenStorage;

    /** @var SessionInterface */
    private $session;

    public function __construct(TokenStorageInterface $tokenStorage, SessionInterface $session)
    {
        $this->tokenStorage = $tokenStorage;
        $this->session = $session;
    }

    /**
     * @throws \InvalidArgumentException
     */
    public function deleteUser(ResourceControllerEvent $event): void
    {
        $user = $event->getSubject();

        Assert::isInstanceOf($user, UserInterface::class);

        if ($this->isTryingToDeleteLoggedInAdminUser($user)) {
            $event->stopPropagation();
            $event->setErrorCode(Response::HTTP_UNPROCESSABLE_ENTITY);
            $event->setMessage('Cannot remove currently logged in user.');

            /** @var FlashBagInterface $flashBag */
            $flashBag = $this->session->getBag('flashes');
            $flashBag->add('error', 'Cannot remove currently logged in user.');
        }
    }

    private function isTryingToDeleteLoggedInAdminUser(UserInterface $user): bool
    {
        if (!$user->hasRole('ROLE_ADMINISTRATION_ACCESS') && !$user->hasRole('ROLE_API_ACCESS')){
            return false;
        }

        $token = $this->tokenStorage->getToken();
        if (!$token) {
            return false;
        }

        $loggedUser = $token->getUser();
        if (!$loggedUser) {
            return false;
        }

        return $loggedUser->getId() === $user->getId();
    }
}


1			<?php
2
3			/*
4			* This file is part of the Sylius package.
5			*
6			* (c) Paweł Jędrzejewski
7			*
8			* For the full copyright and license information, please view the LICENSE
9			* file that was distributed with this source code.
10			*/
11
12			declare(strict_types=1);
13
14			namespace Sylius\Bundle\UserBundle\EventListener;
15
16			use Sylius\Bundle\ResourceBundle\Event\ResourceControllerEvent;
17			use Sylius\Component\User\Model\UserInterface;
18			use Symfony\Component\HttpFoundation\Response;
19			use Symfony\Component\HttpFoundation\Session\Flash\FlashBagInterface;
20			use Symfony\Component\HttpFoundation\Session\SessionInterface;
21			use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
22			use Webmozart\Assert\Assert;
23
24			final class UserDeleteListener
25			{
26			/** @var TokenStorageInterface */
27			private $tokenStorage;
28
29			/** @var SessionInterface */
30			private $session;
31
32			public function __construct(TokenStorageInterface $tokenStorage, SessionInterface $session)
33			{
34			$this->tokenStorage = $tokenStorage;
35			$this->session = $session;
36			}
37
38			/**
39			* @throws \InvalidArgumentException
40			*/
41			public function deleteUser(ResourceControllerEvent $event): void
42			{
43			$user = $event->getSubject();
44
45			Assert::isInstanceOf($user, UserInterface::class);
46
47			if ($this->isTryingToDeleteLoggedInAdminUser($user)) {
48			$event->stopPropagation();
49			$event->setErrorCode(Response::HTTP_UNPROCESSABLE_ENTITY);
50			$event->setMessage('Cannot remove currently logged in user.');
51
52			/** @var FlashBagInterface $flashBag */
53			$flashBag = $this->session->getBag('flashes');
54			$flashBag->add('error', 'Cannot remove currently logged in user.');
55			}
56			}
57
58			private function isTryingToDeleteLoggedInAdminUser(UserInterface $user): bool
59			{
60			if (!$user->hasRole('ROLE_ADMINISTRATION_ACCESS') && !$user->hasRole('ROLE_API_ACCESS')){
61			return false;
62			}
63
64			$token = $this->tokenStorage->getToken();
65			if (!$token) {
66			return false;
67			}
68
69			$loggedUser = $token->getUser();
70			if (!$loggedUser) {
71			return false;
72			}
73
74			return $loggedUser->getId() === $user->getId();
75			}
76			}
77

pamil / Sylius

Push — 1.4-autowiring-for-resource-bu... ( cfe966...176999 )

isTryingToDeleteLoggedInAdminUser() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like