SAMLSecurityExtension::onBeforeSecurityLogin() - Code Metrics - silverstripe/silverstripe-activedirectory - Measure and Improve Code Quality continuously with Scrutinizer

SAMLSecurityExtension::onBeforeSecurityLogin() B
last analyzed 2018-07-22 22:44 UTC

↳ Parent: SAMLSecurityExtension

Complexity

Conditions	10
Paths	8

Size

Total Lines

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	39
rs	7.6666
c	0
b	0
f	0
cc	10
nc	8
nop	0

How to fix Complexity

<?php
/**
 * Class SAMLSecurityExtension
 *
 * Extensions to the {@link Security} controller to support {@link SAMLAuthenticator}
 */
class SAMLSecurityExtension extends Extension
namespace YourVendor;

class YourClass { }
{
    /**
     * Will redirect the user directly to the IdP login endpoint if:
     *
     * 1) the 'SAMLAuthenticator' is the default authenticator
     * 2) there isn't a GET param showloginform set to 1
     * 3) the member is not currently logged in
     * 4) there are no form messages (errors or notices)
     *
     * @return void
     */
    public function onBeforeSecurityLogin()
    {
        if (Authenticator::get_default_authenticator() != 'SAMLAuthenticator') {
            return;
        }

        // by going to the URL Security/login?showloginform=1 we bypass the auto sign on
        if ($this->owner->request->getVar('showloginform') == 1) {

            return;
        }

        // if member is already logged in, don't auto-sign-on, this is most likely because
        // of unsufficient permissions.
        $member = Member::currentUser();
        if ($member && $member->exists()) {
            return;
        }

        // if there are form messages, don't auto-sign-on, this is most likely because of
        // login errors / failures or other notices.
        if (Session::get('FormInfo')) {
            // since FormInfo can be a "nulled" array, we have to check
            foreach (Session::get('FormInfo') as $form => $info) {
                foreach ($info as $name => $value) {
                    if ($value !== null) {
                        return;
                    }
                }
            }
        }

        $backURL = Session::get('BackURL');
        if ($this->owner->request->getVar('BackURL')) {
            $backURL = $this->owner->request->getVar('BackURL');
        }

        $authenticator = Injector::inst()->create('SAMLAuthenticator');
        $authenticator->authenticate(["BackURL" => $backURL]);
    }
}


1			<?php
2			/**
3			* Class SAMLSecurityExtension
4			*
5			* Extensions to the {@link Security} controller to support {@link SAMLAuthenticator}
6			*/
7			class SAMLSecurityExtension extends Extension
			0 ignored issues – show Coding Style Compatibility introduced 2016-03-22 20:04 UTC by Report Bug Copy Issue Report PSR1 recommends that each class must be in a namespace of at least one level to avoid collisions. You can fix this by adding a namespace to your class: namespace YourVendor; class YourClass { } When choosing a vendor namespace, try to pick something that is not too generic to avoid conflicts with other libraries. Loading history...
8			{
9			/**
10			* Will redirect the user directly to the IdP login endpoint if:
11			*
12			* 1) the 'SAMLAuthenticator' is the default authenticator
13			* 2) there isn't a GET param showloginform set to 1
14			* 3) the member is not currently logged in
15			* 4) there are no form messages (errors or notices)
16			*
17			* @return void
18			*/
19			public function onBeforeSecurityLogin()
20			{
21			if (Authenticator::get_default_authenticator() != 'SAMLAuthenticator') {
22			return;
23			}
24
25			// by going to the URL Security/login?showloginform=1 we bypass the auto sign on
26			if ($this->owner->request->getVar('showloginform') == 1) {
			0 ignored issues – show Bug introduced 2018-06-17 22:06 UTC by Report Bug Copy Issue Report The property `request` does not seem to exist in `SS_Object`. An attempt at access to an undefined property has been detected. This may either be a typographical error or the property has been renamed but there are still references to its old name. If you really want to allow access to undefined properties, you can define magic methods to allow access. See the php core documentation on Overloading. Loading history...
27			return;
28			}
29
30			// if member is already logged in, don't auto-sign-on, this is most likely because
31			// of unsufficient permissions.
32			$member = Member::currentUser();
33			if ($member && $member->exists()) {
34			return;
35			}
36
37			// if there are form messages, don't auto-sign-on, this is most likely because of
38			// login errors / failures or other notices.
39			if (Session::get('FormInfo')) {
40			// since FormInfo can be a "nulled" array, we have to check
41			foreach (Session::get('FormInfo') as $form => $info) {
42			foreach ($info as $name => $value) {
43			if ($value !== null) {
44			return;
45			}
46			}
47			}
48			}
49
50			$backURL = Session::get('BackURL');
51			if ($this->owner->request->getVar('BackURL')) {
52			$backURL = $this->owner->request->getVar('BackURL');
53			}
54
55			$authenticator = Injector::inst()->create('SAMLAuthenticator');
56			$authenticator->authenticate(["BackURL" => $backURL]);
57			}
58			}
59

silverstripe / silverstripe-activedirectory

SAMLSecurityExtension::onBeforeSecurityLogin() B last analyzed 2018-07-22 22:44 UTC

Complexity

Size

Duplication

Importance

How to fix Complexity

Long Method

Duplication Side-by-Side

Filter issues like

SAMLSecurityExtension::onBeforeSecurityLogin() B
last analyzed 2018-07-22 22:44 UTC