RequestSignatureListener::__construct() - Code Metrics - rezzza/SecurityBundle - Measure and Improve Code Quality continuously with Scrutinizer

RequestSignatureListener::__construct() A
last analyzed 2017-09-06 12:57 UTC

↳ Parent: RequestSignatureListener

Complexity

Conditions	1
Paths	1

Size

Total Lines	14
Code Lines	11

Duplication

Lines	0
Ratio	0 %

Importance

Changes	2
Bugs	0	Features	0

Metric	Value
c	2
b	0
f	0
dl	0
loc	14
rs	9.4285
cc	1
eloc	11
nc	1
nop	5

<?php

namespace Rezzza\SecurityBundle\Security\Firewall;

use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\HttpKernel\Event\GetResponseEvent;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
use Symfony\Component\Security\Http\Firewall\ListenerInterface;
use Symfony\Component\Security\Core\Exception\AuthenticationException;
use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
use Rezzza\SecurityBundle\Security\RequestSignatureToken;
use Psr\Log\LoggerInterface;

/**
 * RequestSignatureListener
 *
 * @uses ListenerInterface
 * @author Stephane PY <[email protected]>
 */
class RequestSignatureListener implements ListenerInterface
{
    protected $tokenStorage;
    protected $authenticationManager;
    protected $signatureQueryParameters;
    protected $ignored;
    protected $logger;

    public function __construct(
        TokenStorageInterface $tokenStorage,
        AuthenticationManagerInterface $authenticationManager,
        SignatureQueryParameters $signatureQueryParameters,
        $ignored,
        LoggerInterface $logger = null
    )
    {
        $this->tokenStorage = $tokenStorage;
        $this->authenticationManager = $authenticationManager;
        $this->signatureQueryParameters = $signatureQueryParameters;
        $this->ignored = $ignored;
        $this->logger = $logger;
    }

    public function handle(GetResponseEvent $event)
    {
        if (true === $this->ignored) {
            if (null !== $this->tokenStorage->getToken()) {
                return;
            }

            $this->tokenStorage->setToken(new AnonymousToken('request_signature', 'anon.', array()));

            return;
        }

        $request = $event->getRequest();
        $authToken = new RequestSignatureToken;
        $authToken->signature = $request->get($this->signatureQueryParameters->getNonceQueryParameter());
        $authToken->signatureTime = $request->get($this->signatureQueryParameters->getTimeQueryParameter());
        $authToken->requestMethod = $request->server->get('REQUEST_METHOD');
        $authToken->requestHost = $request->server->get('HTTP_HOST');
        $authToken->requestPathInfo = $request->getPathInfo();
        $authToken->requestContent = rawurldecode($request->getContent());

        try {
            return $this->tokenStorage->setToken(
                $this->authenticationManager->authenticate($authToken)
            );
        } catch (AuthenticationException $e) {
            if ($this->logger) {
                $this->logger->info(sprintf('Authentication request failed: %s', $e->getMessage()));
            }
        }

        $response = new Response();
        $response->setStatusCode(403);
        $event->setResponse($response);
    }
}


1			<?php
2
3			namespace Rezzza\SecurityBundle\Security\Firewall;
4
5			use Symfony\Component\HttpFoundation\Response;
6			use Symfony\Component\HttpKernel\Event\GetResponseEvent;
7			use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
8			use Symfony\Component\Security\Http\Firewall\ListenerInterface;
9			use Symfony\Component\Security\Core\Exception\AuthenticationException;
10			use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
11			use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
12			use Rezzza\SecurityBundle\Security\RequestSignatureToken;
13			use Psr\Log\LoggerInterface;
14
15			/**
16			* RequestSignatureListener
17			*
18			* @uses ListenerInterface
19			* @author Stephane PY <[email protected]>
20			*/
21			class RequestSignatureListener implements ListenerInterface
22			{
23			protected $tokenStorage;
24			protected $authenticationManager;
25			protected $signatureQueryParameters;
26			protected $ignored;
27			protected $logger;
28
29			public function __construct(
30			TokenStorageInterface $tokenStorage,
31			AuthenticationManagerInterface $authenticationManager,
32			SignatureQueryParameters $signatureQueryParameters,
33			$ignored,
34			LoggerInterface $logger = null
35			)
36			{
37			$this->tokenStorage = $tokenStorage;
38			$this->authenticationManager = $authenticationManager;
39			$this->signatureQueryParameters = $signatureQueryParameters;
40			$this->ignored = $ignored;
41			$this->logger = $logger;
42			}
43
44			public function handle(GetResponseEvent $event)
45			{
46			if (true === $this->ignored) {
47			if (null !== $this->tokenStorage->getToken()) {
48			return;
49			}
50
51			$this->tokenStorage->setToken(new AnonymousToken('request_signature', 'anon.', array()));
52
53			return;
54			}
55
56			$request = $event->getRequest();
57			$authToken = new RequestSignatureToken;
58			$authToken->signature = $request->get($this->signatureQueryParameters->getNonceQueryParameter());
59			$authToken->signatureTime = $request->get($this->signatureQueryParameters->getTimeQueryParameter());
60			$authToken->requestMethod = $request->server->get('REQUEST_METHOD');
61			$authToken->requestHost = $request->server->get('HTTP_HOST');
62			$authToken->requestPathInfo = $request->getPathInfo();
63			$authToken->requestContent = rawurldecode($request->getContent());
64
65			try {
66			return $this->tokenStorage->setToken(
67			$this->authenticationManager->authenticate($authToken)
68			);
69			} catch (AuthenticationException $e) {
70			if ($this->logger) {
71			$this->logger->info(sprintf('Authentication request failed: %s', $e->getMessage()));
72			}
73			}
74
75			$response = new Response();
76			$response->setStatusCode(403);
77			$event->setResponse($response);
78			}
79			}
80

rezzza / SecurityBundle

RequestSignatureListener::__construct() A last analyzed 2017-09-06 12:57 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

RequestSignatureListener::__construct() A
last analyzed 2017-09-06 12:57 UTC