WebhookController::verifySignature() - Code Metrics - protonemedia/laravel-paddle - Measure and Improve Code Quality continuously with Scrutinizer

WebhookController::verifySignature() A
last analyzed 2021-04-25 20:18 UTC

↳ Parent: WebhookController

Complexity

Conditions	4
Paths	6

Size

Total Lines

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	23
rs	9.552
c	0
b	0
f	0
cc	4
nc	6
nop	2

<?php

namespace ProtoneMedia\LaravelPaddle\Http;

use Illuminate\Http\Request;
use Illuminate\Support\Arr;
use ProtoneMedia\LaravelPaddle\Events\Event;

class WebhookController
{
    /**
     * https://developer.paddle.com/webhook-reference/verifying-webhooks
     *
     * @param  string $encodedSignature
     * @param  array  $data
     * @return void
     *
     * @throws \Symfony\Component\HttpKernel\Exception\HttpException
     */
    private function verifySignature(string $encodedSignature = null, array $data)
    {
        ksort($data);

        foreach ($data as $key => $value) {
            if (in_array(gettype($value), ['object', 'array'])) {
                continue;
            }

            $data[$key] = "$value";
        }

        $verified = openssl_verify(
            serialize($data),
            base64_decode($encodedSignature),
            openssl_get_publickey(config('paddle.public_key')),
            OPENSSL_ALGO_SHA1
        );

        if ($verified !== 1) {
            abort(403);
        }
    }

    /**
     * Verify the request signature and fire the event.
     *
     * @param  \Illuminate\Http\Request $request
     * @return void
     */
    public function __invoke(Request $request)
    {
        $data = Arr::except($request->all(), $signatureKey = 'p_signature');

        $this->verifySignature($request->input($signatureKey), $data);

        Event::fire($data, $request);
    }
}


1			<?php
2
3			namespace ProtoneMedia\LaravelPaddle\Http;
4
5			use Illuminate\Http\Request;
6			use Illuminate\Support\Arr;
7			use ProtoneMedia\LaravelPaddle\Events\Event;
8
9			class WebhookController
10			{
11			/**
12			* https://developer.paddle.com/webhook-reference/verifying-webhooks
13			*
14			* @param string $encodedSignature
15			* @param array $data
16			* @return void
17			*
18			* @throws \Symfony\Component\HttpKernel\Exception\HttpException
19			*/
20			private function verifySignature(string $encodedSignature = null, array $data)
21			{
22			ksort($data);
23
24			foreach ($data as $key => $value) {
25			if (in_array(gettype($value), ['object', 'array'])) {
26			continue;
27			}
28
29			$data[$key] = "$value";
30			}
31
32			$verified = openssl_verify(
33			serialize($data),
34			base64_decode($encodedSignature),
35			openssl_get_publickey(config('paddle.public_key')),
36			OPENSSL_ALGO_SHA1
37			);
38
39			if ($verified !== 1) {
40			abort(403);
41			}
42			}
43
44			/**
45			* Verify the request signature and fire the event.
46			*
47			* @param \Illuminate\Http\Request $request
48			* @return void
49			*/
50			public function __invoke(Request $request)
51			{
52			$data = Arr::except($request->all(), $signatureKey = 'p_signature');
53
54			$this->verifySignature($request->input($signatureKey), $data);
55
56			Event::fire($data, $request);
57			}
58			}
59

protonemedia / laravel-paddle

GitHub Access Token became invalid

WebhookController::verifySignature() A last analyzed 2021-04-25 20:18 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

WebhookController::verifySignature() A
last analyzed 2021-04-25 20:18 UTC