AcceptHeaderToken::__invoke() - Code Metrics - schnittstabil/psr7-csrf-middleware - Measure and Improve Code Quality continuously with Scrutinizer

AcceptHeaderToken::__invoke() A
last analyzed 2017-02-24 02:58 UTC

↳ Parent: AcceptHeaderToken

Complexity

Conditions	3
Paths	3

Size

Total Lines	20
Code Lines	12

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	20
rs	9.4285
c	0
b	0
f	0
cc	3
eloc	12
nc	3
nop	3

<?php

namespace Schnittstabil\Psr7\Csrf\Middlewares;

use Psr\Http\Message\ServerRequestInterface;
use Psr\Http\Message\ResponseInterface;
use Schnittstabil\Psr7\Csrf\RequestAttributesTrait;

/**
 * Middleware for accepting CSRF tokens sent by HTTP headers.
 */
class AcceptHeaderToken
{
    use RequestAttributesTrait;

    /**
     * Used to validate tokens.
     *
     * @var callable
     */
    protected $tokenValidator;

    /**
     * Header field name.
     *
     * @var string
     */
    protected $headerName;

    /**
     * Create new AcceptHeaderToken middleware.
     *
     * @param callable $tokenValidator Used to validate tokens
     * @param string   $headerName     Header field name
     */
    public function __construct(callable $tokenValidator, $headerName = 'X-XSRF-TOKEN')
    {
        $this->tokenValidator = $tokenValidator;
        $this->headerName = $headerName;
    }

    /**
     * Invoke middleware.
     *
     * @param ServerRequestInterface $request  request object
     * @param ResponseInterface      $response response object
     * @param callable               $next     next middleware
     *
     * @return ResponseInterface response object
     */
    public function __invoke(ServerRequestInterface $request, ResponseInterface $response, callable $next)
    {
        $isValid = $request->getAttribute(self::$isValidAttribute, false);
        $violations = $request->getAttribute(self::$violationsAttribute, []);

        foreach ($request->getHeader($this->headerName) as $token) {
            $tokenViolations = call_user_func($this->tokenValidator, $token);

            if (count($tokenViolations) === 0) {
                $isValid = true;
                continue;
            }

            $violations = array_merge($violations, $tokenViolations);
        }

        return $next($request
            ->withAttribute(self::$isValidAttribute, $isValid)
            ->withAttribute(self::$violationsAttribute, $violations), $response);
    }
}


1			<?php
2
3			namespace Schnittstabil\Psr7\Csrf\Middlewares;
4
5			use Psr\Http\Message\ServerRequestInterface;
6			use Psr\Http\Message\ResponseInterface;
7			use Schnittstabil\Psr7\Csrf\RequestAttributesTrait;
8
9			/**
10			* Middleware for accepting CSRF tokens sent by HTTP headers.
11			*/
12			class AcceptHeaderToken
13			{
14			use RequestAttributesTrait;
15
16			/**
17			* Used to validate tokens.
18			*
19			* @var callable
20			*/
21			protected $tokenValidator;
22
23			/**
24			* Header field name.
25			*
26			* @var string
27			*/
28			protected $headerName;
29
30			/**
31			* Create new AcceptHeaderToken middleware.
32			*
33			* @param callable $tokenValidator Used to validate tokens
34			* @param string $headerName Header field name
35			*/
36			public function __construct(callable $tokenValidator, $headerName = 'X-XSRF-TOKEN')
37			{
38			$this->tokenValidator = $tokenValidator;
39			$this->headerName = $headerName;
40			}
41
42			/**
43			* Invoke middleware.
44			*
45			* @param ServerRequestInterface $request request object
46			* @param ResponseInterface $response response object
47			* @param callable $next next middleware
48			*
49			* @return ResponseInterface response object
50			*/
51			public function __invoke(ServerRequestInterface $request, ResponseInterface $response, callable $next)
52			{
53			$isValid = $request->getAttribute(self::$isValidAttribute, false);
54			$violations = $request->getAttribute(self::$violationsAttribute, []);
55
56			foreach ($request->getHeader($this->headerName) as $token) {
57			$tokenViolations = call_user_func($this->tokenValidator, $token);
58
59			if (count($tokenViolations) === 0) {
60			$isValid = true;
61			continue;
62			}
63
64			$violations = array_merge($violations, $tokenViolations);
65			}
66
67			return $next($request
68			->withAttribute(self::$isValidAttribute, $isValid)
69			->withAttribute(self::$violationsAttribute, $violations), $response);
70			}
71			}
72

schnittstabil / psr7-csrf-middleware

AcceptHeaderToken::__invoke() A last analyzed 2017-02-24 02:58 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

AcceptHeaderToken::__invoke() A
last analyzed 2017-02-24 02:58 UTC