ThreemaGateway_Helper_Message - Code Metrics - rugk/xenforo-threema-gateway - Measure and Improve Code Quality continuously with Scrutinizer

ThreemaGateway_Helper_Message A
last analyzed 2018-04-24 14:39 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	63
Duplicated Lines	0 %

Coupling/Cohesion

Components	0
Dependencies	0

Importance

Changes

Metric	Value
wmc	7
lcom	0
cbo	0
dl	0
loc	63
rs	10
c	0
b	0
f	0

2 Methods

Rating	Name	Duplication	Size	Complexity
B	isAtRiskOfReplayAttack()	0	23	4
A	getOldestPossibleReplayAttackDate()	0	16	3

<?php
/**
 * Helper for cron tasks.
 *
 * @package ThreemaGateway
 * @author rugk
 * @copyright Copyright (c) 2016 rugk
 * @license MIT
 */

class ThreemaGateway_Helper_Message
{
    /**
     * Checks whether a message is at risk of an replay attack.
     *
     * If the message is not at risk, it is usually just too old, so
     * that date checking mechanisms would prevent it to be delivered.
     *
     * @param array $messageMetaData the message data including, at least, the
     *                               meta data.
     *
     * @return bool
     */
    public static function isAtRiskOfReplayAttack(array $messageMetaData)
    {
        // in case the time is no valid/positive number, better return true
        if (!$messageMetaData['date_received']) {
            return true;
        }

        /* @var XenForo_Options $options */
        $xenOptions = XenForo_Application::getOptions();

        // when the hardened mode is activated, always return true
        if ($xenOptions->threema_gateway_harden_reply_attack_protection) {
            return true;
        }

        // if message has not been send at least 2 weeks ago (by default), it is attackable
        if ($messageMetaData['date_received'] >= self::getOldestPossibleReplayAttackDate()) {
            return true;
        }

        // older messages are fine
        return false;
    }

    /**
     * Returns the date/time where a message would still be accepted although
     * it is outdated.
     *
     * Note that for doing the actual replay attack check, this method *must not*
     * be used, but the option should rather be used directly.
     *
     * @return int
     */
    public static function getOldestPossibleReplayAttackDate()
    {
        /** @var XenForo_Options $options */
        $options = XenForo_Application::getOptions();
        /* @var int $rejectOldDefault the maximum age of a message as hardcoded/predefined fallback */
        $rejectOldDefault = strtotime('-14 days', XenForo_Application::$time);
        /* @var int $rejectOldOption the maximum age of a message according to the options */
        $rejectOldOption = $rejectOldDefault;
        if ($options->threema_gateway_verify_receive_time &&
            $options->threema_gateway_verify_receive_time['enabled']
        ) {
            $rejectOldOption = strtotime($options->threema_gateway_verify_receive_time['time'], XenForo_Application::$time);
        }

        return min($rejectOldDefault, $rejectOldOption);
    }
}


1			<?php
2			/**
3			* Helper for cron tasks.
4			*
5			* @package ThreemaGateway
6			* @author rugk
7			* @copyright Copyright (c) 2016 rugk
8			* @license MIT
9			*/
10
11			class ThreemaGateway_Helper_Message
12			{
13			/**
14			* Checks whether a message is at risk of an replay attack.
15			*
16			* If the message is not at risk, it is usually just too old, so
17			* that date checking mechanisms would prevent it to be delivered.
18			*
19			* @param array $messageMetaData the message data including, at least, the
20			* meta data.
21			*
22			* @return bool
23			*/
24			public static function isAtRiskOfReplayAttack(array $messageMetaData)
25			{
26			// in case the time is no valid/positive number, better return true
27			if (!$messageMetaData['date_received']) {
28			return true;
29			}
30
31			/* @var XenForo_Options $options */
32			$xenOptions = XenForo_Application::getOptions();
33
34			// when the hardened mode is activated, always return true
35			if ($xenOptions->threema_gateway_harden_reply_attack_protection) {
36			return true;
37			}
38
39			// if message has not been send at least 2 weeks ago (by default), it is attackable
40			if ($messageMetaData['date_received'] >= self::getOldestPossibleReplayAttackDate()) {
41			return true;
42			}
43
44			// older messages are fine
45			return false;
46			}
47
48			/**
49			* Returns the date/time where a message would still be accepted although
50			* it is outdated.
51			*
52			* Note that for doing the actual replay attack check, this method must not
53			* be used, but the option should rather be used directly.
54			*
55			* @return int
56			*/
57			public static function getOldestPossibleReplayAttackDate()
58			{
59			/** @var XenForo_Options $options */
60			$options = XenForo_Application::getOptions();
61			/* @var int $rejectOldDefault the maximum age of a message as hardcoded/predefined fallback */
62			$rejectOldDefault = strtotime('-14 days', XenForo_Application::$time);
63			/* @var int $rejectOldOption the maximum age of a message according to the options */
64			$rejectOldOption = $rejectOldDefault;
65			if ($options->threema_gateway_verify_receive_time &&
66			$options->threema_gateway_verify_receive_time['enabled']
67			) {
68			$rejectOldOption = strtotime($options->threema_gateway_verify_receive_time['time'], XenForo_Application::$time);
69			}
70
71			return min($rejectOldDefault, $rejectOldOption);
72			}
73			}
74

rugk / xenforo-threema-gateway

ThreemaGateway_Helper_Message A last analyzed 2018-04-24 14:39 UTC

Complexity

Size/Duplication

Coupling/Cohesion

Importance

2 Methods

Duplication Side-by-Side

Filter issues like

ThreemaGateway_Helper_Message A
last analyzed 2018-04-24 14:39 UTC