CodeResponseType::handle() - Code Metrics - Inspection of "open id" - php-guard/oauth-server - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( 0c0a9d...5256fe )

by Alexandre

created 2018-01-28 22:39 UTC

CodeResponseType::handle() D

↳ Parent: CodeResponseType

Complexity

Conditions	9
Paths	9

Size

Total Lines	25
Code Lines	15

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	11
CRAP Score	9.7971

Importance

Changes

Metric	Value
cc	9
eloc	15
nc	9
nop	5
dl	0
loc	25
ccs	11
cts	14
cp	0.7856
crap	9.7971
rs	4.909
c	0
b	0
f	0

<?php
/**
 * Created by PhpStorm.
 * User: Alexandre
 * Date: 07/01/2018
 * Time: 13:33
 */

namespace OAuth2\ResponseTypes;


use OAuth2\Exceptions\OAuthException;
use OAuth2\OpenID\ResponseModes\ResponseModeInterface;
use OAuth2\Roles\Clients\RegisteredClient;
use OAuth2\Roles\ResourceOwnerInterface;
use OAuth2\Storages\AuthorizationCodeStorageInterface;
use Psr\Http\Message\ServerRequestInterface;


class CodeResponseType implements ResponseTypeInterface
{
    /**
     * @var AuthorizationCodeStorageInterface
     */
    private $authorizationCodeStorage;

    public function __construct(AuthorizationCodeStorageInterface $authorizationCodeStorage)
    {
        $this->authorizationCodeStorage = $authorizationCodeStorage;
    }

    public function getResponseType(): string
    {
        return 'code';
    }

    /**
     * @param ServerRequestInterface $request
     * @param ResourceOwnerInterface $resourceOwner
     * @param RegisteredClient $client
     * @param array|null $scope
     * @param array|null $extendedResponseTypes
     * @return array
     * @throws OAuthException
     */
    public function handle(ServerRequestInterface $request, ResourceOwnerInterface $resourceOwner,
                           RegisteredClient $client, ?array $scope = null, ?array $extendedResponseTypes = null): array
    {
        if (is_array($client->getSupportedGrantTypes()) && !in_array('authorization_code', $client->getSupportedGrantTypes())) {
            throw new OAuthException('unauthorized_client',
                'Client is not authorized to request an authorization code with this method',
                'https://tools.ietf.org/html/rfc6749#section-5.2');
        }

        $redirectUri = $request->getQueryParams()['redirect_uri'] ?? $request->getParsedBody()['redirect_uri'] ?? null;

        $requestedScopes = $request->getQueryParams()['scope'] ?? $request->getParsedBody()['scope'] ?? null;
        $requestedScopes = $requestedScopes ? explode(' ', $requestedScopes) : [];

        $scopeRequestedIsIdentical = true;
        if ((empty($requestedScopes) && !is_null($scope)) || (is_array($scope) && !empty(array_diff($requestedScopes, $scope)))) {
            $scopeRequestedIsIdentical = false;
        }

        $scope = is_array($scope) ? implode(' ', $scope) : null;
        $authorizationCode = $this->authorizationCodeStorage->create(
            $client->getIdentifier(), $resourceOwner->getIdentifier(), $redirectUri, $scope, $scopeRequestedIsIdentical);

        return [
            'code' => $authorizationCode->getCode()
        ];
    }

    public function getDefaultResponseMode(): string
    {
        return ResponseModeInterface::RESPONSE_MODE_QUERY;
    }

    public function isImplicit(): bool
    {
        return false;
    }

    public function requireTLS(): bool
    {
        return true;
    }

    protected function generateCode()
    {
        return bin2hex(random_bytes(8));
    }

    public function verifyRequest(ServerRequestInterface $request): void
    {
    }

    public function isMultiValuedResponseTypeSupported(): bool
    {
        return true;
    }

    public function getExtendedResponseTypes(): ?array
    {
        return null;
    }

    public function isQueryResponseModeSupported(): bool
    {
        return true;
    }
}

1		<?php
2		/**
3		* Created by PhpStorm.
4		* User: Alexandre
5		* Date: 07/01/2018
6		* Time: 13:33
7		*/
8
9		namespace OAuth2\ResponseTypes;
10
11
12		use OAuth2\Exceptions\OAuthException;
13		use OAuth2\OpenID\ResponseModes\ResponseModeInterface;
14		use OAuth2\Roles\Clients\RegisteredClient;
15		use OAuth2\Roles\ResourceOwnerInterface;
16		use OAuth2\Storages\AuthorizationCodeStorageInterface;
17		use Psr\Http\Message\ServerRequestInterface;
18
19
20		class CodeResponseType implements ResponseTypeInterface
21		{
22		/**
23		* @var AuthorizationCodeStorageInterface
24		*/
25		private $authorizationCodeStorage;
26
27		public function __construct(AuthorizationCodeStorageInterface $authorizationCodeStorage)
28		{
29		$this->authorizationCodeStorage = $authorizationCodeStorage;
30		}
31
32		public function getResponseType(): string
33		{
34		return 'code';
35		}
36
37		/**
38		* @param ServerRequestInterface $request
39		* @param ResourceOwnerInterface $resourceOwner
40		* @param RegisteredClient $client
41		* @param array\|null $scope
42		* @param array\|null $extendedResponseTypes
43		* @return array
44		* @throws OAuthException
45	2	*/
46		public function handle(ServerRequestInterface $request, ResourceOwnerInterface $resourceOwner,
47	2	RegisteredClient $client, ?array $scope = null, ?array $extendedResponseTypes = null): array
48		{
49		if (is_array($client->getSupportedGrantTypes()) && !in_array('authorization_code', $client->getSupportedGrantTypes())) {
50		throw new OAuthException('unauthorized_client',
51		'Client is not authorized to request an authorization code with this method',
52		'https://tools.ietf.org/html/rfc6749#section-5.2');
53	2	}
54
55	2	$redirectUri = $request->getQueryParams()['redirect_uri'] ?? $request->getParsedBody()['redirect_uri'] ?? null;
56	2
57		$requestedScopes = $request->getQueryParams()['scope'] ?? $request->getParsedBody()['scope'] ?? null;
58	2	$requestedScopes = $requestedScopes ? explode(' ', $requestedScopes) : [];
59	2
60	2	$scopeRequestedIsIdentical = true;
61		if ((empty($requestedScopes) && !is_null($scope)) \|\| (is_array($scope) && !empty(array_diff($requestedScopes, $scope)))) {
62		$scopeRequestedIsIdentical = false;
63	2	}
64	2
65	2	$scope = is_array($scope) ? implode(' ', $scope) : null;
66		$authorizationCode = $this->authorizationCodeStorage->create(
67		$client->getIdentifier(), $resourceOwner->getIdentifier(), $redirectUri, $scope, $scopeRequestedIsIdentical);
68	2
69		return [
70		'code' => $authorizationCode->getCode()
71		];
72	2	}
73
74	2	public function getDefaultResponseMode(): string
75		{
76		return ResponseModeInterface::RESPONSE_MODE_QUERY;
77	2	}
78
79	2	public function isImplicit(): bool
80		{
81		return false;
82	2	}
83
84	2	public function requireTLS(): bool
85		{
86		return true;
87		}
88
89		protected function generateCode()
90		{
91		return bin2hex(random_bytes(8));
92	2	}
93
94	2	public function verifyRequest(ServerRequestInterface $request): void
95		{
96		}
97
98		public function isMultiValuedResponseTypeSupported(): bool
99		{
100		return true;
101		}
102
103		public function getExtendedResponseTypes(): ?array
104		{
105		return null;
106		}
107
108		public function isQueryResponseModeSupported(): bool
109		{
110		return true;
111		}
112		}

php-guard / oauth-server

Push — master ( 0c0a9d...5256fe )

CodeResponseType::handle() D

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like