Issues in console.php - New Issues - Inspection of "Develop (#685)" - redaxscript/redaxscript - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( aff54e...f49a25 )

by Henry

created 2020-09-01 07:08 UTC

console.php (2 issues)

Labels

Severity

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
namespace Redaxscript;

use function htmlentities;
use function php_sapi_name;
use function set_include_path;
use function strlen;

/* bootstrap */

include_once('includes' . DIRECTORY_SEPARATOR . 'bootstrap.php');

/* header */

Header::init();

/* get instance */

$registry = Registry::getInstance();
$request = Request::getInstance();
$language = Language::getInstance();
$config = Config::getInstance();
$accessValidator = new Validator\Access();

/* command line */

if (php_sapi_name() === 'cli')
{
	$console = new Console\Console($registry, $request, $language, $config);
	$output = $console->init('cli');
	if (strlen($output))
	{
		echo $output;
	}
}

/* restrict access */

else if (!$config->get('lock') || $accessValidator->validate('1', $registry->get('myGroups')))
''   == false // true
''   == null  // true
'ab' == false // false
'ab' == null  // false

// It is often better to use strict comparison
'' === false // false
'' === null  // false
{
	/* ajax request */

	if ($request->getServer('HTTP_X_REQUESTED_WITH') === 'XMLHttpRequest')
	{
		$console = new Console\Console($registry, $request, $language, $config);
		$output = $console->init('template');
		if (strlen($output))
		{
			echo htmlentities($output, ENT_QUOTES);
		}
	}

	/* else template */

	else
	{
		set_include_path('templates');
		include_once('console' . DIRECTORY_SEPARATOR . 'index.phtml');
	}
}
else
{
	Header::responseCode(403);
	exit;
}


1			<?php
2			namespace Redaxscript;
3
4			use function htmlentities;
5			use function php_sapi_name;
6			use function set_include_path;
7			use function strlen;
8
9			/* bootstrap */
10
11			include_once('includes' . DIRECTORY_SEPARATOR . 'bootstrap.php');
12
13			/* header */
14
15			Header::init();
16
17			/* get instance */
18
19			$registry = Registry::getInstance();
20			$request = Request::getInstance();
21			$language = Language::getInstance();
22			$config = Config::getInstance();
23			$accessValidator = new Validator\Access();
24
25			/* command line */
26
27			if (php_sapi_name() === 'cli')
28			{
29			$console = new Console\Console($registry, $request, $language, $config);
30			$output = $console->init('cli');
31			if (strlen($output))
32			{
33			echo $output;
34			}
35			}
36
37			/* restrict access */
38
39			else if (!$config->get('lock') \|\| $accessValidator->validate('1', $registry->get('myGroups')))
			0 ignored issues – show Bug introduced 2020-09-01 07:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `$registry->get('myGroups')` targeting `Redaxscript\Registry::get()` can also be of type `array`; however, `Redaxscript\Validator\Access::validate()` does only seem to accept `null\|string`, maybe add an additional type check? This check looks at variables that are passed out again to other methods. If the outgoing method call has stricter type requirements than the method itself, an issue is raised. An additional type check may prevent trouble. Loading history... Bug Best Practice introduced 2020-09-01 07:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this The expression `$config->get('lock')` of type `string\|null` is loosely compared to `false`; this is ambiguous if the string can be empty. You might want to explicitly use `=== null` instead. In PHP, under loose comparison (like `==`, or `!=`, or `switch` conditions), values of different types might be equal. For `string` values, the empty string `''` is a special case, in particular the following results might be unexpected: '' == false // true '' == null // true 'ab' == false // false 'ab' == null // false // It is often better to use strict comparison '' === false // false '' === null // false Loading history...
40			{
41			/* ajax request */
42
43			if ($request->getServer('HTTP_X_REQUESTED_WITH') === 'XMLHttpRequest')
44			{
45			$console = new Console\Console($registry, $request, $language, $config);
46			$output = $console->init('template');
47			if (strlen($output))
48			{
49			echo htmlentities($output, ENT_QUOTES);
50			}
51			}
52
53			/* else template */
54
55			else
56			{
57			set_include_path('templates');
58			include_once('console' . DIRECTORY_SEPARATOR . 'index.phtml');
59			}
60			}
61			else
62			{
63			Header::responseCode(403);
64			exit;
65			}
66

redaxscript / redaxscript

Push — master ( aff54e...f49a25 )

console.php (2 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like