SAMLSecurityExtension - Code Metrics - Inspection of "SilverStripe 4 compatibility" - silverstripe/silverstripe-activedirectory - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Pull Request — master (#84)

by Robbie

created 2017-01-16 20:55 UTC

SAMLSecurityExtension A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	52
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	5

Importance

Changes

Metric	Value
wmc	10
lcom	1
cbo	5
dl	0
loc	52
rs	10
c	0
b	0
f	0

1 Method

Rating	Name	Duplication	Size	Complexity
D	onBeforeSecurityLogin()	0	39	10

<?php

namespace SilverStripe\ActiveDirectory\Authenticators;

use SilverStripe\Control\Session;
use SilverStripe\Core\Extension;
use SilverStripe\Core\Injector\Injector;
use SilverStripe\Security\Authenticator;
use SilverStripe\Security\Member;

/**
 * Class SAMLSecurityExtension
 *
 * Extensions to the {@link Security} controller to support {@link SAMLAuthenticator}
 *
 * @package activedirectory
 */
class SAMLSecurityExtension extends Extension
{
    /**
     * Will redirect the user directly to the IdP login endpoint if:
     *
     * 1) the 'SAMLAuthenticator' is the default authenticator
     * 2) there isn't a GET param showloginform set to 1
     * 3) the member is not currently logged in
     * 4) there are no form messages (errors or notices)
     *
     * @return void
     */
    public function onBeforeSecurityLogin()
    {
        if (Authenticator::get_default_authenticator() != 'SilverStripe\\ActiveDirectory\\Authenticators\\SAMLAuthenticator') {
            return;
        }

        // by going to the URL Security/login?showloginform=1 we bypass the auto sign on
        if ($this->owner->request->getVar('showloginform') == 1) {
            return;
        }

        // if member is already logged in, don't auto-sign-on, this is most likely because
        // of unsufficient permissions.
        $member = Member::currentUser();
        if ($member && $member->exists()) {
            return;
        }

        // if there are form messages, don't auto-sign-on, this is most likely because of
        // login errors / failures or other notices.
        if (Session::get('FormInfo')) {
            // since FormInfo can be a "nulled" array, we have to check
            foreach (Session::get('FormInfo') as $form => $info) {
                foreach ($info as $name => $value) {
                    if ($value !== null) {
                        return;
                    }
                }
            }
        }

        $backURL = Session::get('BackURL');
        if ($this->owner->request->getVar('BackURL')) {
            $backURL = $this->owner->request->getVar('BackURL');
        }

        $authenticator = Injector::inst()->create('SilverStripe\\ActiveDirectory\\Authenticators\\SAMLAuthenticator');
        $authenticator->authenticate(['BackURL' => $backURL]);
    }
}


1			<?php
2
3			namespace SilverStripe\ActiveDirectory\Authenticators;
4
5			use SilverStripe\Control\Session;
6			use SilverStripe\Core\Extension;
7			use SilverStripe\Core\Injector\Injector;
8			use SilverStripe\Security\Authenticator;
9			use SilverStripe\Security\Member;
10
11			/**
12			* Class SAMLSecurityExtension
13			*
14			* Extensions to the {@link Security} controller to support {@link SAMLAuthenticator}
15			*
16			* @package activedirectory
17			*/
18			class SAMLSecurityExtension extends Extension
19			{
20			/**
21			* Will redirect the user directly to the IdP login endpoint if:
22			*
23			* 1) the 'SAMLAuthenticator' is the default authenticator
24			* 2) there isn't a GET param showloginform set to 1
25			* 3) the member is not currently logged in
26			* 4) there are no form messages (errors or notices)
27			*
28			* @return void
29			*/
30			public function onBeforeSecurityLogin()
31			{
32			if (Authenticator::get_default_authenticator() != 'SilverStripe\\ActiveDirectory\\Authenticators\\SAMLAuthenticator') {
33			return;
34			}
35
36			// by going to the URL Security/login?showloginform=1 we bypass the auto sign on
37			if ($this->owner->request->getVar('showloginform') == 1) {
38			return;
39			}
40
41			// if member is already logged in, don't auto-sign-on, this is most likely because
42			// of unsufficient permissions.
43			$member = Member::currentUser();
44			if ($member && $member->exists()) {
45			return;
46			}
47
48			// if there are form messages, don't auto-sign-on, this is most likely because of
49			// login errors / failures or other notices.
50			if (Session::get('FormInfo')) {
51			// since FormInfo can be a "nulled" array, we have to check
52			foreach (Session::get('FormInfo') as $form => $info) {
53			foreach ($info as $name => $value) {
54			if ($value !== null) {
55			return;
56			}
57			}
58			}
59			}
60
61			$backURL = Session::get('BackURL');
62			if ($this->owner->request->getVar('BackURL')) {
63			$backURL = $this->owner->request->getVar('BackURL');
64			}
65
66			$authenticator = Injector::inst()->create('SilverStripe\\ActiveDirectory\\Authenticators\\SAMLAuthenticator');
67			$authenticator->authenticate(['BackURL' => $backURL]);
68			}
69			}
70

silverstripe / silverstripe-activedirectory

Pull Request — master (#84)

SAMLSecurityExtension A

Complexity

Size/Duplication

Coupling/Cohesion

Importance

1 Method

Duplication Side-by-Side

Filter issues like