AuthorizationRequestBuilder - Code Metrics - php-guard/oauth-server - Measure and Improve Code Quality continuously with Scrutinizer

AuthorizationRequestBuilder A
last analyzed 2018-06-23 21:42 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	42
Duplicated Lines	0 %

Importance

Changes

Metric	Value
dl	0
loc	42
rs	10
c	0
b	0
f	0
wmc	6

1 Method

Rating	Name	Duplication	Size	Complexity
B	build()	0	32	6

<?php
/**
 * Created by PhpStorm.
 * User: Alexandre
 * Date: 11/06/2018
 * Time: 21:06
 */

namespace OAuth2\Extensions\PKCE\Endpoints\Authorization;


use OAuth2\Endpoints\Authorization\AuthorizationRequestInterface;
use OAuth2\Exceptions\InvalidAuthorizationRequest;
use OAuth2\Exceptions\InvalidRequestMethod;
use OAuth2\Exceptions\OAuthException;
use OAuth2\Roles\ClientTypes\PublicClient;
use OAuth2\Roles\ResourceOwnerInterface;
use Psr\Http\Message\ServerRequestInterface;

class AuthorizationRequestBuilder extends \OAuth2\Endpoints\Authorization\AuthorizationRequestBuilder
{
    /**
     * @param ServerRequestInterface $request
     * @param ResourceOwnerInterface $resourceOwner
     * @return AuthorizationRequestInterface
     * @throws InvalidRequestMethod
     * @throws OAuthException
     * @throws InvalidAuthorizationRequest
     */
    public function build(ServerRequestInterface $request, ResourceOwnerInterface $resourceOwner): AuthorizationRequestInterface
    {
        $authorizationRequest = parent::build($request, $resourceOwner);

        try {
            $codeChallenge = $authorizationRequest->getData()['code_challenge'] ?? null;

            $codeChallengeMethod = 'plain';
            if(!empty($authorizationRequest->getData()['code_challenge_method'])) {
                $codeChallengeMethod = $authorizationRequest->getData()['code_challenge_method'];
            }

            if (empty($codeChallenge)) {
                if ($authorizationRequest->getClient() instanceof PublicClient) {
                    throw new OAuthException('invalid_request',
                        'The request is missing the required parameter code_challenge for public clients.',
                        'https://tools.ietf.org/html/rfc7636#section-4.4');
                }
                return $authorizationRequest;
            }

            if (!in_array($codeChallengeMethod, ['plain', 'S256'])) {
                throw new OAuthException('invalid_request',
                    'The request includes the invalid parameter code_challenge_method. Supported : plain, S256.',
                    'https://tools.ietf.org/html/rfc7636#section-4');
            }
        } catch (OAuthException $e) {
            throw new InvalidAuthorizationRequest($e, $authorizationRequest->getRedirectUri(),
                $authorizationRequest->getResponseMode(), $authorizationRequest->getState());
        }

        return new AuthorizationRequest($authorizationRequest, $codeChallenge, $codeChallengeMethod);
    }
}

1			<?php
2			/**
3			* Created by PhpStorm.
4			* User: Alexandre
5			* Date: 11/06/2018
6			* Time: 21:06
7			*/
8
9			namespace OAuth2\Extensions\PKCE\Endpoints\Authorization;
10
11
12			use OAuth2\Endpoints\Authorization\AuthorizationRequestInterface;
13			use OAuth2\Exceptions\InvalidAuthorizationRequest;
14			use OAuth2\Exceptions\InvalidRequestMethod;
15			use OAuth2\Exceptions\OAuthException;
16			use OAuth2\Roles\ClientTypes\PublicClient;
17			use OAuth2\Roles\ResourceOwnerInterface;
18			use Psr\Http\Message\ServerRequestInterface;
19
20			class AuthorizationRequestBuilder extends \OAuth2\Endpoints\Authorization\AuthorizationRequestBuilder
21			{
22			/**
23			* @param ServerRequestInterface $request
24			* @param ResourceOwnerInterface $resourceOwner
25			* @return AuthorizationRequestInterface
26			* @throws InvalidRequestMethod
27			* @throws OAuthException
28			* @throws InvalidAuthorizationRequest
29			*/
30			public function build(ServerRequestInterface $request, ResourceOwnerInterface $resourceOwner): AuthorizationRequestInterface
31			{
32			$authorizationRequest = parent::build($request, $resourceOwner);
33
34			try {
35			$codeChallenge = $authorizationRequest->getData()['code_challenge'] ?? null;
36
37			$codeChallengeMethod = 'plain';
38			if(!empty($authorizationRequest->getData()['code_challenge_method'])) {
39			$codeChallengeMethod = $authorizationRequest->getData()['code_challenge_method'];
40			}
41
42			if (empty($codeChallenge)) {
43			if ($authorizationRequest->getClient() instanceof PublicClient) {
44			throw new OAuthException('invalid_request',
45			'The request is missing the required parameter code_challenge for public clients.',
46			'https://tools.ietf.org/html/rfc7636#section-4.4');
47			}
48			return $authorizationRequest;
49			}
50
51			if (!in_array($codeChallengeMethod, ['plain', 'S256'])) {
52			throw new OAuthException('invalid_request',
53			'The request includes the invalid parameter code_challenge_method. Supported : plain, S256.',
54			'https://tools.ietf.org/html/rfc7636#section-4');
55			}
56			} catch (OAuthException $e) {
57			throw new InvalidAuthorizationRequest($e, $authorizationRequest->getRedirectUri(),
58			$authorizationRequest->getResponseMode(), $authorizationRequest->getState());
59			}
60
61			return new AuthorizationRequest($authorizationRequest, $codeChallenge, $codeChallengeMethod);
62			}
63			}

php-guard / oauth-server

AuthorizationRequestBuilder A last analyzed 2018-06-23 21:42 UTC

Complexity

Size/Duplication

Importance

1 Method

Duplication Side-by-Side

Filter issues like

AuthorizationRequestBuilder A
last analyzed 2018-06-23 21:42 UTC