RefreshTokenGrantType - Code Metrics - Inspection of "refactor" - php-guard/oauth-server - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 6e52f0...d9a404 )

by Alexandre

created 2018-03-04 18:01 UTC

RefreshTokenGrantType A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	80
Duplicated Lines	0 %

Importance

Changes

Metric	Value
dl	0
loc	80
rs	10
c	0
b	0
f	0
wmc	13

3 Methods

Rating	Name	Size	Complexity
C	grant()	45	11
A	__construct()	9	1
A	getUri()	3	1

<?php
/**
 * Created by PhpStorm.
 * User: GCC-MED
 * Date: 18/01/2018
 * Time: 12:00
 */

namespace OAuth2OLD\GrantTypes;


use OAuth2OLD\Config;
use OAuth2OLD\EndpointMessages\Token\AccessTokenResponse;
use OAuth2OLD\Exceptions\OAuthException;
use OAuth2OLD\Repositories\ConfigurationRepository;
use OAuth2OLD\Roles\ClientInterface;
use OAuth2OLD\Roles\Clients\RegisteredClient;
use OAuth2OLD\ScopePolicy\ScopePolicyManager;
use OAuth2OLD\Storages\AccessTokenStorageInterface;
use OAuth2OLD\Storages\RefreshTokenStorageInterface;
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;

class RefreshTokenGrantType implements GrantTypeInterface
{
    /**
     * @var AccessTokenStorageInterface
     */
    private $accessTokenStorage;
    /**
     * @var RefreshTokenStorageInterface
     */
    private $refreshTokenStorage;
    /**
     * @var ScopePolicyManager
     */
    private $scopePolicyManager;
    /**
     * @var ConfigurationRepository
     */
    private $configurationRepository;

    public function __construct(ConfigurationRepository $configurationRepository,
                                ScopePolicyManager $scopePolicyManager,
                                AccessTokenStorageInterface $accessTokenStorage,
                                RefreshTokenStorageInterface $refreshTokenStorage)
    {
        $this->scopePolicyManager = $scopePolicyManager;
        $this->accessTokenStorage = $accessTokenStorage;
        $this->refreshTokenStorage = $refreshTokenStorage;
        $this->configurationRepository = $configurationRepository;
    }

    function getUri(): string

    {
        return 'refresh_token';
    }

    function grant(ServerRequestInterface $request, ClientInterface $client): ResponseInterface

    {
        if (!$client instanceof RegisteredClient) {
            throw new OAuthException('unauthorized_client',
                'Unauthorized client type',
                'https://tools.ietf.org/html/rfc6749#section-5.2');
        }

        $refreshToken = $request->getParsedBody()['refresh_token'] ?? '';
        if(!$refreshToken) {
            throw new OAuthException('invalid_request', 'Missing a required parameter : refresh_token',
                'https://tools.ietf.org/html/rfc6749#section-4.3');
        }

        $refreshToken = $this->refreshTokenStorage->get($refreshToken);
        if(!$refreshToken || $refreshToken->getClientId() !== $client->getIdentifier()) {
            throw new OAuthException('invalid_grant', 'Refresh token is invalid',
                'https://tools.ietf.org/html/rfc6749#section-4.3');
        }

        if(!is_null($refreshToken->getExpiresAt()) && $refreshToken->getExpiresAt() < time()) {
            $this->refreshTokenStorage->revoke($refreshToken->getToken());

            throw new OAuthException('invalid_grant', 'Refresh token has expired',
                'https://tools.ietf.org/html/rfc6749#section-4.3');
        }

        $includedScopes = isset($request->getParsedBody()['scope']) ? explode(' ', $request->getParsedBody()['scope']) : null;
        if(is_array($includedScopes) && !empty(array_diff($includedScopes, explode(' ', $refreshToken->getToken())))) {
            throw new OAuthException('invalid_scope',
                'Some of scope included are not granted for this token. Scope granted : ' . $refreshToken->getScope(),
                'https://tools.ietf.org/html/rfc6749#section-6');
        }

        // issue an access token token and, optionally, a refresh token
        $accessToken = $this->accessTokenStorage->create($client->getIdentifier(), $refreshToken->getUserId(), $refreshToken->getScope());
        $newRefreshToken = null;
        if($this->configurationRepository->getConfig(Config::REGENERATE_REFRESH_TOKENS_AFTER_USE)) {
            $this->refreshTokenStorage->revoke($refreshToken->getToken());
            $newRefreshToken = $this->refreshTokenStorage->create(
                $refreshToken->getClientId(), $refreshToken->getUserId(), $refreshToken->getScope())->getToken();
        }

        return new AccessTokenResponse($accessToken->getToken(), $accessToken->getType(),
            $accessToken->getExpiresAt() - time(), $newRefreshToken);
    }
}

1			<?php
2			/**
3			* Created by PhpStorm.
4			* User: GCC-MED
5			* Date: 18/01/2018
6			* Time: 12:00
7			*/
8
9			namespace OAuth2OLD\GrantTypes;
10
11
12			use OAuth2OLD\Config;
13			use OAuth2OLD\EndpointMessages\Token\AccessTokenResponse;
14			use OAuth2OLD\Exceptions\OAuthException;
15			use OAuth2OLD\Repositories\ConfigurationRepository;
16			use OAuth2OLD\Roles\ClientInterface;
17			use OAuth2OLD\Roles\Clients\RegisteredClient;
18			use OAuth2OLD\ScopePolicy\ScopePolicyManager;
19			use OAuth2OLD\Storages\AccessTokenStorageInterface;
20			use OAuth2OLD\Storages\RefreshTokenStorageInterface;
21			use Psr\Http\Message\ResponseInterface;
22			use Psr\Http\Message\ServerRequestInterface;
23
24			class RefreshTokenGrantType implements GrantTypeInterface
25			{
26			/**
27			* @var AccessTokenStorageInterface
28			*/
29			private $accessTokenStorage;
30			/**
31			* @var RefreshTokenStorageInterface
32			*/
33			private $refreshTokenStorage;
34			/**
35			* @var ScopePolicyManager
36			*/
37			private $scopePolicyManager;
38			/**
39			* @var ConfigurationRepository
40			*/
41			private $configurationRepository;
42
43			public function __construct(ConfigurationRepository $configurationRepository,
44			ScopePolicyManager $scopePolicyManager,
45			AccessTokenStorageInterface $accessTokenStorage,
46			RefreshTokenStorageInterface $refreshTokenStorage)
47			{
48			$this->scopePolicyManager = $scopePolicyManager;
49			$this->accessTokenStorage = $accessTokenStorage;
50			$this->refreshTokenStorage = $refreshTokenStorage;
51			$this->configurationRepository = $configurationRepository;
52			}
53
54			function getUri(): string
			0 ignored issues – show Best Practice introduced 2018-01-23 09:18 UTC by Report Bug Copy Issue Report It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
55			{
56			return 'refresh_token';
57			}
58
59			function grant(ServerRequestInterface $request, ClientInterface $client): ResponseInterface
			0 ignored issues – show Best Practice introduced 2018-01-23 09:18 UTC by Report Bug Copy Issue Report It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
60			{
61			if (!$client instanceof RegisteredClient) {
62			throw new OAuthException('unauthorized_client',
63			'Unauthorized client type',
64			'https://tools.ietf.org/html/rfc6749#section-5.2');
65			}
66
67			$refreshToken = $request->getParsedBody()['refresh_token'] ?? '';
68			if(!$refreshToken) {
69			throw new OAuthException('invalid_request', 'Missing a required parameter : refresh_token',
70			'https://tools.ietf.org/html/rfc6749#section-4.3');
71			}
72
73			$refreshToken = $this->refreshTokenStorage->get($refreshToken);
74			if(!$refreshToken \|\| $refreshToken->getClientId() !== $client->getIdentifier()) {
75			throw new OAuthException('invalid_grant', 'Refresh token is invalid',
76			'https://tools.ietf.org/html/rfc6749#section-4.3');
77			}
78
79			if(!is_null($refreshToken->getExpiresAt()) && $refreshToken->getExpiresAt() < time()) {
80			$this->refreshTokenStorage->revoke($refreshToken->getToken());
81
82			throw new OAuthException('invalid_grant', 'Refresh token has expired',
83			'https://tools.ietf.org/html/rfc6749#section-4.3');
84			}
85
86			$includedScopes = isset($request->getParsedBody()['scope']) ? explode(' ', $request->getParsedBody()['scope']) : null;
87			if(is_array($includedScopes) && !empty(array_diff($includedScopes, explode(' ', $refreshToken->getToken())))) {
88			throw new OAuthException('invalid_scope',
89			'Some of scope included are not granted for this token. Scope granted : ' . $refreshToken->getScope(),
90			'https://tools.ietf.org/html/rfc6749#section-6');
91			}
92
93			// issue an access token token and, optionally, a refresh token
94			$accessToken = $this->accessTokenStorage->create($client->getIdentifier(), $refreshToken->getUserId(), $refreshToken->getScope());
95			$newRefreshToken = null;
96			if($this->configurationRepository->getConfig(Config::REGENERATE_REFRESH_TOKENS_AFTER_USE)) {
97			$this->refreshTokenStorage->revoke($refreshToken->getToken());
98			$newRefreshToken = $this->refreshTokenStorage->create(
99			$refreshToken->getClientId(), $refreshToken->getUserId(), $refreshToken->getScope())->getToken();
100			}
101
102			return new AccessTokenResponse($accessToken->getToken(), $accessToken->getType(),
103			$accessToken->getExpiresAt() - time(), $newRefreshToken);
104			}
105			}

php-guard / oauth-server

Push — master ( 6e52f0...d9a404 )

RefreshTokenGrantType A

Complexity

Size/Duplication

Importance

3 Methods

Duplication Side-by-Side

Filter issues like