simplesamlphp /
simplesamlphp-module-casserver
| Conditions | 14 |
| Paths | 42 |
| Total Lines | 84 |
| Code Lines | 53 |
| Lines | 0 |
| Ratio | 0 % |
| Changes | 2 | ||
| Bugs | 0 | Features | 0 |
Small methods make your code easier to understand, in particular if combined with a good name. Besides, if your method is small, finding a good name is usually much easier.
For example, if you find yourself adding comments to a method's body, this is usually a good sign to extract the commented part to a new method, and use the comment as a starting point when coming up with a good name for this new method.
Commonly applied refactorings include:
If many parameters/temporary variables are present:
| 1 | <?php |
||
| 70 | public function validate(Request $request): Response |
||
| 71 | { |
||
| 72 | // Check if any of the required query parameters are missing |
||
| 73 | if (!$request->query->has('service')) { |
||
| 74 | Logger::debug('casserver: Missing service parameter: [service]'); |
||
| 75 | return new Response( |
||
| 76 | $this->cas10Protocol->getValidateFailureResponse(), |
||
| 77 | Response::HTTP_BAD_REQUEST, |
||
| 78 | ); |
||
| 79 | } elseif (!$request->query->has('ticket')) { |
||
| 80 | Logger::debug('casserver: Missing service parameter: [ticket]'); |
||
| 81 | return new Response( |
||
| 82 | $this->cas10Protocol->getValidateFailureResponse(), |
||
| 83 | Response::HTTP_BAD_REQUEST, |
||
| 84 | ); |
||
| 85 | } |
||
| 86 | |||
| 87 | // Check if we are required to force an authentication |
||
| 88 | $forceAuthn = $request->query->has('renew') && $request->query->get('renew'); |
||
| 89 | // Get the ticket |
||
| 90 | $ticket = $request->query->get('ticket'); |
||
| 91 | // Get the service |
||
| 92 | $service = $request->query->get('service'); |
||
| 93 | |||
| 94 | try { |
||
| 95 | // Get the service ticket |
||
| 96 | $serviceTicket = $this->ticketStore->getTicket($ticket); |
||
| 97 | // Delete the ticket |
||
| 98 | $this->ticketStore->deleteTicket($ticket); |
||
| 99 | } catch (\Exception $e) { |
||
| 100 | Logger::error('casserver:validate: internal server error. ' . var_export($e->getMessage(), true)); |
||
| 101 | return new Response( |
||
| 102 | $this->cas10Protocol->getValidateFailureResponse(), |
||
| 103 | Response::HTTP_INTERNAL_SERVER_ERROR, |
||
| 104 | ); |
||
| 105 | } |
||
| 106 | |||
| 107 | $failed = false; |
||
| 108 | $message = ''; |
||
| 109 | // No ticket |
||
| 110 | if ($serviceTicket === null) { |
||
| 111 | $message = 'ticket: ' . var_export($ticket, true) . ' not recognized'; |
||
| 112 | $failed = true; |
||
| 113 | // This is not a service ticket |
||
| 114 | } elseif (!$this->ticketFactory->isServiceTicket($serviceTicket)) { |
||
| 115 | $message = 'ticket: ' . var_export($ticket, true) . ' is not a service ticket'; |
||
| 116 | $failed = true; |
||
| 117 | // the ticket has expired |
||
| 118 | } elseif ($this->ticketFactory->isExpired($serviceTicket)) { |
||
| 119 | $message = 'Ticket has ' . var_export($ticket, true) . ' expired'; |
||
| 120 | $failed = true; |
||
| 121 | } elseif ($this->sanitize($serviceTicket['service']) === $this->sanitize($service)) { |
||
| 122 | $message = 'Mismatching service parameters: expected ' . |
||
| 123 | var_export($serviceTicket['service'], true) . |
||
| 124 | ' but was: ' . var_export($service, true); |
||
| 125 | $failed = true; |
||
| 126 | } elseif ($forceAuthn && isset($serviceTicket['forceAuthn']) && $serviceTicket['forceAuthn']) { |
||
| 127 | $message = 'Ticket was issued from single sign on session'; |
||
| 128 | $failed = true; |
||
| 129 | } |
||
| 130 | |||
| 131 | if ($failed) { |
||
| 132 | Logger::error('casserver:validate: ' . $message, true); |
||
| 133 | return new Response( |
||
| 134 | $this->cas10Protocol->getValidateFailureResponse(), |
||
| 135 | Response::HTTP_BAD_REQUEST, |
||
| 136 | ); |
||
| 137 | } |
||
| 138 | |||
| 139 | // Get the username field |
||
| 140 | $usernameField = $this->casConfig->getOptionalValue('attrname', 'eduPersonPrincipalName'); |
||
| 141 | |||
| 142 | // Fail if the username field is not present in the attribute list |
||
| 143 | if (!\array_key_exists($usernameField, $serviceTicket['attributes'])) { |
||
| 144 | Logger::error( |
||
| 145 | 'casserver:validate: internal server error. Missing user name attribute: ' |
||
| 146 | . var_export($usernameField, true), |
||
| 147 | ); |
||
| 148 | } |
||
| 149 | |||
| 150 | // Successful validation |
||
| 151 | return new Response( |
||
| 152 | $this->cas10Protocol->getValidateSuccessResponse($serviceTicket['attributes'][$usernameField][0]), |
||
| 153 | Response::HTTP_OK, |
||
| 154 | ); |
||
| 157 |
Loading history...