for testing and deploying your application
for finding and fixing issues
for empowering human code reviews
<?php
namespace Sunnysideup\ArrayToCsvDownload\Control;
use SilverStripe\Security\Security;
use SilverStripe\Security\Permission;
use Sunnysideup\ArrayToCsvDownload\Api\ArrayToCSV;
use SilverStripe\Control\Director;
use SilverStripe\Control\Controller;
use SilverStripe\Control\HTTPRequest;
use SilverStripe\Core\Config\Config;
class HiddenDownloader extends Controller
{
private static $allowed_actions = [
'download' => true,
];
public function download(HTTPRequest $request)
$request
If this is a false-positive, you can also ignore this issue in your code via the ignore-unused annotation
ignore-unused
public function download(/** @scrutinizer ignore-unused */ HTTPRequest $request)
This check looks for parameters that have been defined for a function or method, but which are not used in the method body.
if(! Permission::check('ADMIN')) {
return Security::permissionFailure($this);
}
$fileName = $this->request->param('ID').'.csv';
$hiddenDownloadDir = Config::inst()->get(ArrayToCSV::class, 'hidden_download_dir') ?: '_csv_download_dir';
$path = Controller::join_links(Director::baseFolder(), $hiddenDownloadDir, $fileName);
return HTTPRequest::send_file(file_get_contents($path), $fileName, 'text/csv');
sunnysideup /
silverstripe-array-to-csv-download
This check looks for parameters that have been defined for a function or method, but which are not used in the method body.