Wsse::authenticate() - Code Metrics - Inspection of "Add authentication" - php-http/message - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Pull Request — master (#3)

by Márk

created 2015-12-21 09:33 UTC

Wsse::authenticate() A

↳ Parent: Wsse

Complexity

Conditions	1
Paths	1

Size

Total Lines	20
Code Lines	13

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	13
CRAP Score	1

Importance

Changes	1
Bugs	0	Features	1

Metric	Value
c	1
b	0
f	1
dl	0
loc	20
ccs	13
cts	13
cp	1
rs	9.4286
cc	1
eloc	13
nc	1
nop	1
crap	1

<?php

namespace Http\Message\Authentication;

use Http\Message\Authentication;
use Psr\Http\Message\RequestInterface;

/**
 * Authenticate a PSR-7 Request using WSSE.
 *
 * @author Márk Sági-Kazár <[email protected]>
 */
final class Wsse implements Authentication
{
    use UserPasswordPair;

    /**
     * @param string $username
     * @param string $password
     */
    public function __construct($username, $password)
    {
        $this->username = $username;
        $this->password = $password;
    }

    /**
     * {@inheritdoc}
     */
    public function authenticate(RequestInterface $request)
    {
        // TODO: generate better nonce?
        $nonce = substr(md5(uniqid(uniqid().'_', true)), 0, 16);
        $created = date('c');
        $digest = base64_encode(sha1(base64_decode($nonce).$created.$this->password, true));

        $wsse = sprintf(
            'UsernameToken Username="%s", PasswordDigest="%s", Nonce="%s", Created="%s"',
            $this->username,
            $digest,
            $nonce,
            $created
        );

        return $request
            ->withHeader('Authorization', 'WSSE profile="UsernameToken"')
            ->withHeader('X-WSSE', $wsse)
        ;
    }
}


1		<?php
2
3		namespace Http\Message\Authentication;
4
5		use Http\Message\Authentication;
6		use Psr\Http\Message\RequestInterface;
7
8		/**
9		* Authenticate a PSR-7 Request using WSSE.
10		*
11		* @author Márk Sági-Kazár <[email protected]>
12		*/
13		final class Wsse implements Authentication
14		{
15		use UserPasswordPair;
16
17		/**
18		* @param string $username
19		* @param string $password
20		*/
21	7	public function __construct($username, $password)
22		{
23	7	$this->username = $username;
24	7	$this->password = $password;
25	7	}
26
27		/**
28		* {@inheritdoc}
29		*/
30	1	public function authenticate(RequestInterface $request)
31		{
32		// TODO: generate better nonce?
33	1	$nonce = substr(md5(uniqid(uniqid().'_', true)), 0, 16);
34	1	$created = date('c');
35	1	$digest = base64_encode(sha1(base64_decode($nonce).$created.$this->password, true));
36
37	1	$wsse = sprintf(
38	1	'UsernameToken Username="%s", PasswordDigest="%s", Nonce="%s", Created="%s"',
39	1	$this->username,
40	1	$digest,
41	1	$nonce,
42		$created
43	1	);
44
45		return $request
46	1	->withHeader('Authorization', 'WSSE profile="UsernameToken"')
47	1	->withHeader('X-WSSE', $wsse)
48	1	;
49		}
50		}
51

php-http / message

Pull Request — master (#3)

Wsse::authenticate() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like