League\OAuth2\Server\Handlers\AbstractTokenHandler

Complexity

Total Complexity

11

Size/Duplication

Total Lines	89
Duplicated Lines	0 %

Importance

Changes	1
Bugs	0	Features	0

6 Methods

Rating	Name	Duplication	Size	Complexity
A	validateToken()	0	18	2
A	setJwtValidator()	0	3	1
A	validateRefreshToken()	0	12	2
A	setPublicKey()	0	3	1
A	getJwtValidator()	0	11	3
A	validateAccessToken()	0	12	2

<?php

declare(strict_types=1);

namespace League\OAuth2\Server\Handlers;

use League\OAuth2\Server\AbstractHandler;
use League\OAuth2\Server\AuthorizationValidators\BearerTokenValidator;
use League\OAuth2\Server\AuthorizationValidators\JwtValidatorInterface;
use League\OAuth2\Server\CryptKeyInterface;
use League\OAuth2\Server\Entities\ClientEntityInterface;
use League\OAuth2\Server\Exception\OAuthServerException;
use Psr\Http\Message\ServerRequestInterface;

abstract class AbstractTokenHandler extends AbstractHandler implements TokenHandlerInterface
{
    private CryptKeyInterface $publicKey;

    private ?JwtValidatorInterface $jwtValidator = null;

    public function setPublicKey(CryptKeyInterface $publicKey): void
    {
        $this->publicKey = $publicKey;
    }

    public function setJwtValidator(JwtValidatorInterface $jwtValidator): void
    {
        $this->jwtValidator = $jwtValidator;
    }

    protected function getJwtValidator(): JwtValidatorInterface
    {
        if ($this->jwtValidator instanceof JwtValidatorInterface === false) {
            $this->jwtValidator = new BearerTokenValidator($this->accessTokenRepository);
        }

        if ($this->jwtValidator instanceof BearerTokenValidator === true) {
            $this->jwtValidator->setPublicKey($this->publicKey);

The method setPublicKey() does not exist on League\OAuth2\Server\AuthorizationValidators\JwtValidatorInterface. Since it exists in all sub-types, consider adding an abstract or default implementation to League\OAuth2\Server\AuthorizationValidators\JwtValidatorInterface.

The method setPublicKey() does not exist on null.

        }

        return $this->jwtValidator;

The expression return $this->jwtValidator could return the type null which is incompatible with the type-hinted return League\OAuth2\Server\AuthorizationValidators\JwtValidatorInterface. Consider adding an additional type-check to rule them out.

    }

    /**
     * @return array{0:non-empty-string, 1:array<non-empty-string, mixed>}|array{0:null, 1:null}

The doc comment array{0:non-empty-string, 1:array<non-empty-string, mixed>}|array{0:null, 1:null} at position 4 could not be parsed: Unknown type name 'non-empty-string' at position 4 in array{0:non-empty-string, 1:array<non-empty-string, mixed>}|array{0:null, 1:null}.

     *
     * @throws OAuthServerException
     */
    protected function validateToken(
        ServerRequestInterface $request,
        ClientEntityInterface $client
    ): array {
        $token = $this->getRequestParameter('token', $request)
            ?? throw OAuthServerException::invalidRequest('token');

        $tokenTypeHint = $this->getRequestParameter('token_type_hint', $request, 'access_token');

        if ($tokenTypeHint === 'refresh_token') {
            return $this->validateRefreshToken($request, $token, $client)
                ?? $this->validateAccessToken($request, $token, $client)
                ?? [null, null];
        }

        return $this->validateAccessToken($request, $token, $client)
            ?? $this->validateRefreshToken($request, $token, $client)
            ?? [null, null];
    }

    /**
     * @return array{0:non-empty-string, 1:array<non-empty-string, mixed>}|null

The doc comment array{0:non-empty-string, 1:array<non-empty-string, mixed>}|null at position 4 could not be parsed: Unknown type name 'non-empty-string' at position 4 in array{0:non-empty-string, 1:array<non-empty-string, mixed>}|null.

     */
    protected function validateRefreshToken(
        ServerRequestInterface $request,
        string $refreshToken,
        ClientEntityInterface $client
    ): ?array {
        try {
            return [
                'refresh_token',
                $this->validateEncryptedRefreshToken($request, $refreshToken, $client->getIdentifier()),
            ];
        } catch (OAuthServerException) {
            return null;
        }
    }

    /**
     * @param non-empty-string $accessToken

The doc comment non-empty-string at position 0 could not be parsed: Unknown type name 'non-empty-string' at position 0 in non-empty-string.

     *
     * @return array{0:non-empty-string, 1:array<non-empty-string, mixed>}|null

The doc comment array{0:non-empty-string, 1:array<non-empty-string, mixed>}|null at position 4 could not be parsed: Unknown type name 'non-empty-string' at position 4 in array{0:non-empty-string, 1:array<non-empty-string, mixed>}|null.

     */
    protected function validateAccessToken(
        ServerRequestInterface $request,
        string $accessToken,
        ClientEntityInterface $client
    ): ?array {
        try {
            return [
                'access_token',
                $this->getJwtValidator()->validateJwt($request, $accessToken, $client->getIdentifier()),
            ];
        } catch (OAuthServerException) {
            return null;
        }
    }
}