MetaEditor::main() - Code Metrics - Inspection of "Add controller + tests" - simplesamlphp/simplesamlphp-module-metaedit - Measure and Improve Code Quality continuously with Scrutinizer

Passed
Pull Request — master (#2)

by Tim
created 2021-08-22 20:41 UTC
MetaEditor::main() B

↳ Parent: MetaEditor
Complexity

Conditions	6
Paths	9
Size

Total Lines	45
Code Lines	27
Duplication

Lines	0
Ratio	0 %
Importance

Changes	1
Bugs	0	Features	0
Metric	Value
cc	6
eloc	27
c	1
b	0
f	0
nc	9
nop	1
dl	0
loc	45
rs	8.8657
<?php

declare(strict_types=1);

namespace SimpleSAML\Module\metaedit\Controller;

use Exception;
use SAML2\Constants;
use SimpleSAML\Auth;
use SimpleSAML\Configuration;
use SimpleSAML\Error;
use SimpleSAML\Metadata;
use SimpleSAML\Module\metaedit\MetaEditor as Editor;
use SimpleSAML\Session;
use SimpleSAML\Utils;
use SimpleSAML\XHTML\Template;
use Symfony\Component\HttpFoundation\Request;

use function array_key_exists;
use function array_pop;

/**
 * Controller class for the metaedit module.
 *
 * This class serves the different views available in the module.
 *
 * @package simplesamlphp/simplesamlphp-module-metaedit
 */
class MetaEditor
{
    /** @var \SimpleSAML\Configuration */
    protected Configuration $config;

    /** @var \SimpleSAML\Session */
    protected Session $session;


    /**
     * Controller constructor.
     *
     * It initializes the global configuration and session for the controllers implemented here.
     *
     * @param \SimpleSAML\Configuration $config The configuration to use by the controllers.
     * @param \SimpleSAML\Session $session The session to use by the controllers.
     *
     * @throws \Exception
     */
    public function __construct(
        Configuration $config,
        Session $session
    ) {
        $this->config = $config;
        $this->session = $session;
    }


    /**
     * Main index
     *
     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
     *
     * @return \SimpleSAML\XHTML\Template
     */
    public function main(Request $request): Template
    {
        /* Load simpleSAMLphp, configuration and metadata */
        $moduleConfig = Configuration::getConfig('module_metaedit.php');

        $authsource = $moduleConfig->getValue('auth', 'login-admin');
        $useridattr = $moduleConfig->getValue('useridattr', 'eduPersonPrincipalName');

        $as = new Auth\Simple($authsource);
        $as->requireAuth();
        $attributes = $as->getAttributes();

        // Check if userid exists
        if (!isset($attributes[$useridattr])) {
            throw new Error\Exception('User ID is missing');
        }
        $userid = $attributes[$useridattr][0];

        $mdh = new Metadata\MetaDataStorageHandlerSerialize($moduleConfig->getArray('metahandlerConfig', []));

        $delete = $request->get('delete');
        if ($delete !== null) {
            $premetadata = $mdh->getMetadata($delete, 'saml20-sp-remote');
            $this->requireOwnership($premetadata, $userid);
            $this->requireOwnership(/** @scrutinizer ignore-type */ $premetadata, $userid);
            $mdh->deleteMetadata($delete, 'saml20-sp-remote');
        }

        $list = $mdh->getMetadataSet('saml20-sp-remote');

        $slist = ['mine' => [], 'others' => []];
        foreach ($list as $listitem) {
            if (array_key_exists('owner', $listitem)) {
                if ($listitem['owner'] === $userid) {
                    $slist['mine'][] = $listitem;
                    continue;
                }
            }
            $slist['others'][] = $listitem;
        }

        $t = new Template($this->config, 'metaedit:metalist.twig');
        $t->data['metadata'] = $slist;
        $t->data['userid'] = $userid;

        return $t;
    }


    /**
     * Editor
     *
     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
     *
     * @return \SimpleSAML\XHTML\Template
     */
    public function edit(Request $request): Template
    {
        /* Load configuration and metadata */
        $moduleConfig = Configuration::getConfig('module_metaedit.php');

        $authsource = $moduleConfig->getValue('auth', 'login-admin');
        $useridattr = $moduleConfig->getValue('useridattr', 'eduPersonPrincipalName');

        $as = new Auth\Simple($authsource);
        $as->requireAuth();

        $attributes = $as->getAttributes();
        // Check if userid exists
        if (!isset($attributes[$useridattr])) {
            throw new Error\Exception('User ID is missing');
        }
        $userid = $attributes[$useridattr][0];

        $entityId = $request->get('entityid');
        $xmlMetadata = $request->get('xmlmetadata');

        $mdh = new Metadata\MetaDataStorageHandlerSerialize($moduleConfig->getArray('metahandlerConfig', []));

        if ($entityId !== null) {
            $metadata = $mdh->getMetadata($entityId, 'saml20-sp-remote');
            $this->requireOwnership($metadata, $userid);
            $this->requireOwnership(/** @scrutinizer ignore-type */ $metadata, $userid);
        } elseif ($xmlMetadata !== null) {
            $xmlUtils = new Utils\XML();
            $xmlUtils->checkSAMLMessage($xmlMetadata, 'saml-meta');
            $entities = Metadata\SAMLParser::parseDescriptorsString($xmlMetadata);
            $entity = array_pop($entities);
            $metadata =  $entity->getMetadata20SP();

            /* Trim metadata endpoint arrays. */
            $metadata['AssertionConsumerService'] = [
                Utils\Config\Metadata::getDefaultEndpoint(
                    $metadata['AssertionConsumerService'],
                    [Constants::BINDING_HTTP_POST]
                )
            ];
            $metadata['SingleLogoutService'] = [
                Utils\Config\Metadata::getDefaultEndpoint(
                    $metadata['SingleLogoutService'],
                    [Constants::BINDING_HTTP_REDIRECT]
                )
            ];
        } else {
            $metadata = [
                'owner' => $userid,
            ];
        }

        $editor = new Editor();

        if ($request->get('submit')) {
            $editor->checkForm($request->request->all());
            $metadata = $editor->formToMeta($request->request->all(), [], ['owner' => $userid]);
            $wasEntityId = $request->get('was-entityid');
            if (($wasEntityId !== null) && ($wasEntityId !== $metadata['entityid'])) {
                $premetadata = $mdh->getMetadata($wasEntityId, 'saml20-sp-remote');
                $this->requireOwnership($premetadata, $userid);
                $mdh->deleteMetadata($wasEntityId, 'saml20-sp-remote');
            }

            try {
                $testmetadata = $mdh->getMetadata($metadata['entityid'], 'saml20-sp-remote');
            } catch (Exception $e) {
                // catch
                $testmetadata = null;
            }

            if ($testmetadata) {
                $this->requireOwnership($testmetadata, $userid);
            }

            $result = $mdh->saveMetadata($metadata['entityid'], 'saml20-sp-remote', $metadata);
            if ($result === false) {
                throw new Error\Exception("Could not save metadata. See log for details");
            }

            return new Template($this->config, 'metaedit:saved.twig');
        }

        $form = $editor->metaToForm($metadata);

        $t = new Template($this->config, 'metaedit:formedit.twig');
        $t->data['form'] = $form;

        return $t;
    }


    /**
     * Importer
     *
     * @param \Symfony\Component\HttpFoundation\Request $request The current request.
     *
     * @return \SimpleSAML\XHTML\Template
     */
    public function import(Request $request): Template
    public function import(/** @scrutinizer ignore-unused */ Request $request): Template
    {
        /* Load simpleSAMLphp, configuration and metadata */
        return new Template($this->config, 'metaedit:xmlimport.twig');
    }


    /**
     * @param array $metadata
     * @param string $userid
     * @return void
     */
    private function requireOwnership(array $metadata, string $userid): void
    {
        if (!isset($metadata['owner'])) {
            throw new Exception('Metadata has no owner. Which means no one is granted access, not even you.');
        }

        if ($metadata['owner'] !== $userid) {
            throw new Exception(
                'Metadata has an owner that is not equal to your userid, hence you are not granted access.'
            );
        }
    }
}

simplesamlphp / simplesamlphp-module-metaedit

Pull Request — master (#2)

MetaEditor::main() B

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like
