ClientPasswordAuthenticator::authenticate() - Code Metrics - Inspection of "refactor" - php-guard/oauth-server - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 6e52f0...d9a404 )

by Alexandre

created 2018-03-04 18:01 UTC

ClientPasswordAuthenticator::authenticate() C

↳ Parent: ClientPasswordAuthenticator

Complexity

Conditions	12
Paths	19

Size

Total Lines	50
Code Lines	32

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	12
eloc	32
nc	19
nop	1
dl	0
loc	50
rs	5.3904
c	0
b	0
f	0

How to fix Complexity

<?php
/**
 * Created by PhpStorm.
 * User: Alexandre
 * Date: 07/01/2018
 * Time: 14:19
 */

namespace OAuth2OLD\ClientAuthentication\Authenticators;


use OAuth2OLD\Role\Client\Type\ClientPassword;
filter:
    dependency_paths: ["lib/*"]
use OAuth2OLD\Role\Client\Type\ConfidentialClient;
use OAuth2OLD\Roles\ClientInterface;
use OAuth2OLD\Roles\Clients\ConfidentialClientInterface;
use OAuth2OLD\Storages\ClientStorageInterface;
use Psr\Http\Message\ServerRequestInterface;

class ClientPasswordAuthenticator implements ClientAuthenticatorInterface
{
    /**
     * @var ClientStorageInterface
     */
    private $clientStorage;
    /**
     * @var bool
     */
    private $supportCredentialsInBody;

    public function __construct(ClientStorageInterface $clientStorage, ?bool $supportCredentialsInBody = null)
    {
        $this->clientStorage = $clientStorage;
        $this->supportCredentialsInBody = $supportCredentialsInBody;
    }

    public function isPasswordAuthentication(): bool
    {
        return true;
    }

    public function support(ServerRequestInterface $request): bool
    {
        if ($request->hasHeader('Authorization')) {
            return true;
        }

        $body = $request->getParsedBody();
        return isset($body['client_id'], $body['client_secret']);
    }

    /**
     * @param ServerRequestInterface $request
     * @return ClientInterface
     * @throws \Exception
     */
    public function authenticate(ServerRequestInterface $request): ClientInterface
    {
        $identifier = null;
        $password = null;
        $useHTTPAuthenticationScheme = true;
        $body = $request->getParsedBody();
        if ($request->hasHeader('Authorization')) {
            // 2.3 The client MUST NOT use more than one authentication method in each request
            if (isset($body['client_secret'])) {
                throw new \Exception('Multiple authentication methods used');
            }

            $authorization = $request->getHeader('Authorization')[0] ?? '';
            $authorization = explode(' ', trim($authorization));
            $method = $authorization[0];
            if (strtolower($method) === 'basic') {
                $authorization = explode(':', base64_decode($authorization[1]));
                $identifier = $authorization[0] ?? null;
                $password = $authorization[1] ?? '';
            }
        } else {
            $identifier = $body['client_id'] ?? null;
            $password = $body['client_secret'] ?? '';
            $useHTTPAuthenticationScheme = false;
        }

        if (is_null($identifier)) {
            throw new \Exception('No client authentication included');
        }

        $client = $this->clientStorage->get($identifier);
        if (!$client) {
            throw new \Exception('Unknown client');
        }

        if (!$useHTTPAuthenticationScheme &&
            ($this->supportCredentialsInBody === false ||
                (is_null($this->supportCredentialsInBody) && $client->isHttpBasicAuthenticationSchemeSupported()))) {
            throw new \Exception('Authentication method is limited to HTTP Basic authentication scheme');
        }

        if (!$client instanceof ConfidentialClientInterface) {
            throw new \Exception('Unsupported authentication method');
        }

        if ($client->getPassword() !== $password) {
            throw new \Exception('Authentication failed');
        }

        return $client;
    }
}

1			<?php
2			/**
3			* Created by PhpStorm.
4			* User: Alexandre
5			* Date: 07/01/2018
6			* Time: 14:19
7			*/
8
9			namespace OAuth2OLD\ClientAuthentication\Authenticators;
10
11
12			use OAuth2OLD\Role\Client\Type\ClientPassword;
			0 ignored issues – show Bug introduced 2018-03-04 18:03 UTC by Report Bug Copy Issue Report The type `OAuth2OLD\Role\Client\Type\ClientPassword` was not found. Maybe you did not declare it correctly or list all dependencies? The issue could also be caused by a filter entry in the build configuration. If the path has been excluded in your configuration, e.g. `excluded_paths: ["lib/"]`, you can move it to the dependency path list as follows: filter: dependency_paths: ["lib/"] For further information see https://scrutinizer-ci.com/docs/tools/php/php-scrutinizer/#list-dependency-paths Loading history...
13			use OAuth2OLD\Role\Client\Type\ConfidentialClient;
14			use OAuth2OLD\Roles\ClientInterface;
15			use OAuth2OLD\Roles\Clients\ConfidentialClientInterface;
16			use OAuth2OLD\Storages\ClientStorageInterface;
17			use Psr\Http\Message\ServerRequestInterface;
18
19			class ClientPasswordAuthenticator implements ClientAuthenticatorInterface
20			{
21			/**
22			* @var ClientStorageInterface
23			*/
24			private $clientStorage;
25			/**
26			* @var bool
27			*/
28			private $supportCredentialsInBody;
29
30			public function __construct(ClientStorageInterface $clientStorage, ?bool $supportCredentialsInBody = null)
31			{
32			$this->clientStorage = $clientStorage;
33			$this->supportCredentialsInBody = $supportCredentialsInBody;
34			}
35
36			public function isPasswordAuthentication(): bool
37			{
38			return true;
39			}
40
41			public function support(ServerRequestInterface $request): bool
42			{
43			if ($request->hasHeader('Authorization')) {
44			return true;
45			}
46
47			$body = $request->getParsedBody();
48			return isset($body['client_id'], $body['client_secret']);
49			}
50
51			/**
52			* @param ServerRequestInterface $request
53			* @return ClientInterface
54			* @throws \Exception
55			*/
56			public function authenticate(ServerRequestInterface $request): ClientInterface
57			{
58			$identifier = null;
59			$password = null;
60			$useHTTPAuthenticationScheme = true;
61			$body = $request->getParsedBody();
62			if ($request->hasHeader('Authorization')) {
63			// 2.3 The client MUST NOT use more than one authentication method in each request
64			if (isset($body['client_secret'])) {
65			throw new \Exception('Multiple authentication methods used');
66			}
67
68			$authorization = $request->getHeader('Authorization')[0] ?? '';
69			$authorization = explode(' ', trim($authorization));
70			$method = $authorization[0];
71			if (strtolower($method) === 'basic') {
72			$authorization = explode(':', base64_decode($authorization[1]));
73			$identifier = $authorization[0] ?? null;
74			$password = $authorization[1] ?? '';
75			}
76			} else {
77			$identifier = $body['client_id'] ?? null;
78			$password = $body['client_secret'] ?? '';
79			$useHTTPAuthenticationScheme = false;
80			}
81
82			if (is_null($identifier)) {
83			throw new \Exception('No client authentication included');
84			}
85
86			$client = $this->clientStorage->get($identifier);
87			if (!$client) {
88			throw new \Exception('Unknown client');
89			}
90
91			if (!$useHTTPAuthenticationScheme &&
92			($this->supportCredentialsInBody === false \|\|
93			(is_null($this->supportCredentialsInBody) && $client->isHttpBasicAuthenticationSchemeSupported()))) {
94			throw new \Exception('Authentication method is limited to HTTP Basic authentication scheme');
95			}
96
97			if (!$client instanceof ConfidentialClientInterface) {
98			throw new \Exception('Unsupported authentication method');
99			}
100
101			if ($client->getPassword() !== $password) {
102			throw new \Exception('Authentication failed');
103			}
104
105			return $client;
106			}
107			}

php-guard / oauth-server

Push — master ( 6e52f0...d9a404 )

ClientPasswordAuthenticator::authenticate() C

Complexity

Size

Duplication

Importance

How to fix Complexity

Long Method

Duplication Side-by-Side

Filter issues like