for testing and deploying your application
for finding and fixing issues
for empowering human code reviews
These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more
<?php
namespace Waca\Security;
/**
* Class SecurityConfiguration
* @package Waca
* @category Security-Critical
*/
final class SecurityConfiguration
{
const ALLOW = "allow";
const DENY = "deny";
private $admin = "default";
private $user = "default";
private $checkuser = "default";
private $community = "default";
private $suspended = "default";
private $declined = "default";
private $new = "default";
private $requireIdentified;
* SecurityConfiguration constructor.
public function __construct()
global $forceIdentification;
global
Instead of relying on global state, we recommend one of these alternatives:
function myFunction($a, $b) { // Do something }
class MyClass { private $a; private $b; public function __construct($a, $b) { $this->a = $a; $this->b = $b; } public function myFunction() { // Do something } }
// Initialise require identified to the boolean value of $forceIdentification. Test for truthiness not true
// because I think we set this to 1/0 instead of true/false.
$this->requireIdentified = ($forceIdentification == 1);
}
* Sets whether a checkuser is able to gain access.
*
* This is private because it's DANGEROUS. Checkusers are not mutually-exclusive with other rights. As such, a
* suspended checkuser who tries to access a page which allows checkusers will be granted access to the page, UNLESS
* that page is also set to DENY (note, not default) New/Declined/Suspended users. I have no problem with this
* method being used, but please ONLY use it in this class in static methods of Security. Nowhere else.
* @param string $checkuser
* @return SecurityConfiguration
public function setCheckuser($checkuser)
$this->checkuser = $checkuser;
return $this;
* Returns if a user is required to be identified.
* @return boolean
public function requiresIdentifiedUser()
return $this->requireIdentified;
* @return string
public function getAdmin()
return $this->admin;
* @param string $admin
public function setAdmin($admin)
$this->admin = $admin;
public function getUser()
return $this->user;
* @param string $user
public function setUser($user)
$this->user = $user;
public function getCheckuser()
return $this->checkuser;
public function getCommunity()
return $this->community;
* @param string $community
public function setCommunity($community)
$this->community = $community;
public function getSuspended()
return $this->suspended;
* @param string $suspended
public function setSuspended($suspended)
$this->suspended = $suspended;
public function getDeclined()
return $this->declined;
* @param string $declined
public function setDeclined($declined)
$this->declined = $declined;
public function getNew()
return $this->new;
* @param string $new
public function setNew($new)
$this->new = $new;
* @param boolean $requireIdentified
public function setRequireIdentified($requireIdentified)
$this->requireIdentified = $requireIdentified;
stwalkerster /
waca
Simon Walker
Instead of relying on
globalstate, we recommend one of these alternatives:1. Pass all data via parameters
2. Create a class that maintains your state