AccessTokenTrait::initJwtConfiguration() - Code Metrics - Inspection of "Allow configuring the JWT builder when generating..." - thephpleague/oauth2-server - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#1328)

unknown

created 2025-02-07 14:49 UTC

AccessTokenTrait::initJwtConfiguration() A

↳ Parent: AccessTokenTrait

Complexity

Conditions	2
Paths	2

Size

Total Lines	12
Code Lines	7

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	7
CRAP Score	2.0078

Importance

Changes	3
Bugs	0	Features	0

Metric	Value
cc	2
eloc	7
nc	2
nop	0
dl	0
loc	12
ccs	7
cts	8
cp	0.875
crap	2.0078
rs	10
c	3
b	0
f	0

<?php

/**
 * @author      Alex Bilbie <[email protected]>
 * @copyright   Copyright (c) Alex Bilbie
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */

declare(strict_types=1);

namespace League\OAuth2\Server\Entities\Traits;

use DateTimeImmutable;
use Lcobucci\JWT\Builder;
use Lcobucci\JWT\Configuration;
use Lcobucci\JWT\Signer\Key\InMemory;
use Lcobucci\JWT\Signer\Rsa\Sha256;
use Lcobucci\JWT\Token;
use League\OAuth2\Server\CryptKeyInterface;
use League\OAuth2\Server\Entities\ClientEntityInterface;
use League\OAuth2\Server\Entities\ScopeEntityInterface;
use RuntimeException;

trait AccessTokenTrait
{
    private CryptKeyInterface $privateKey;

    private Configuration $jwtConfiguration;

    /**
     * Set the private key used to encrypt this access token.
     */
    public function setPrivateKey(CryptKeyInterface $privateKey): void
    {
        $this->privateKey = $privateKey;
    }

    /**
     * Initialise the JWT Configuration.
     */
    public function initJwtConfiguration(): void
    {
        $privateKeyContents = $this->privateKey->getKeyContents();

        if ($privateKeyContents === '') {
            throw new RuntimeException('Private key is empty');
        }

        $this->jwtConfiguration = Configuration::forAsymmetricSigner(
            new Sha256(),
            InMemory::plainText($privateKeyContents, $this->privateKey->getPassPhrase() ?? ''),
            InMemory::plainText('empty', 'empty')
        );
    }

    /**
     * Configure the JWT builder instance.
     */
    protected function withJwtBuilder(Builder $builder): Builder
    {
        return $builder;
    }

    /**
     * Generate a JWT from the access token
     */
    private function convertToJWT(): Token
    {
        $this->initJwtConfiguration();

        return $this->withJwtBuilder($this->jwtConfiguration->builder()
            ->permittedFor($this->getClient()->getIdentifier())
            ->identifiedBy($this->getIdentifier())
            ->issuedAt(new DateTimeImmutable())
            ->canOnlyBeUsedAfter(new DateTimeImmutable())
            ->expiresAt($this->getExpiryDateTime())
            ->relatedTo($this->getSubjectIdentifier())
            ->withClaim('scopes', $this->getScopes()))
            ->getToken($this->jwtConfiguration->signer(), $this->jwtConfiguration->signingKey());
    }

    /**
     * Generate a string representation from the access token
     */
    public function toString(): string
    {
        return $this->convertToJWT()->toString();
    }

    abstract public function getClient(): ClientEntityInterface;

    abstract public function getExpiryDateTime(): DateTimeImmutable;

    /**
     * @return non-empty-string|null

     */
    abstract public function getUserIdentifier(): string|null;

    /**
     * @return ScopeEntityInterface[]
     */
    abstract public function getScopes(): array;

    /**
     * @return non-empty-string

     */
    abstract public function getIdentifier(): string;

    /**
     * @return non-empty-string

     */
    private function getSubjectIdentifier(): string
    {
        return $this->getUserIdentifier() ?? $this->getClient()->getIdentifier();
    }
}


1		<?php
2
3		/**
4		* @author Alex Bilbie <[email protected]>
5		* @copyright Copyright (c) Alex Bilbie
6		* @license http://mit-license.org/
7		*
8		* @link https://github.com/thephpleague/oauth2-server
9		*/
10
11		declare(strict_types=1);
12
13		namespace League\OAuth2\Server\Entities\Traits;
14
15		use DateTimeImmutable;
16		use Lcobucci\JWT\Builder;
17		use Lcobucci\JWT\Configuration;
18		use Lcobucci\JWT\Signer\Key\InMemory;
19		use Lcobucci\JWT\Signer\Rsa\Sha256;
20		use Lcobucci\JWT\Token;
21		use League\OAuth2\Server\CryptKeyInterface;
22		use League\OAuth2\Server\Entities\ClientEntityInterface;
23		use League\OAuth2\Server\Entities\ScopeEntityInterface;
24		use RuntimeException;
25
26		trait AccessTokenTrait
27		{
28		private CryptKeyInterface $privateKey;
29
30		private Configuration $jwtConfiguration;
31
32		/**
33		* Set the private key used to encrypt this access token.
34	35	*/
35		public function setPrivateKey(CryptKeyInterface $privateKey): void
36	35	{
37		$this->privateKey = $privateKey;
38		}
39
40		/**
41		* Initialise the JWT Configuration.
42	10	*/
43		public function initJwtConfiguration(): void
44	10	{
45		$privateKeyContents = $this->privateKey->getKeyContents();
46	10
47		if ($privateKeyContents === '') {
48		throw new RuntimeException('Private key is empty');
49		}
50	10
51	10	$this->jwtConfiguration = Configuration::forAsymmetricSigner(
52	10	new Sha256(),
53	10	InMemory::plainText($privateKeyContents, $this->privateKey->getPassPhrase() ?? ''),
54	10	InMemory::plainText('empty', 'empty')
55		);
56		}
57
58		/**
59		* Configure the JWT builder instance.
60	10	*/
61		protected function withJwtBuilder(Builder $builder): Builder
62	10	{
63		return $builder;
64	10	}
65	10
66	10	/**
67	10	* Generate a JWT from the access token
68	10	*/
69	10	private function convertToJWT(): Token
70	10	{
71	10	$this->initJwtConfiguration();
72	10
73		return $this->withJwtBuilder($this->jwtConfiguration->builder()
74		->permittedFor($this->getClient()->getIdentifier())
75		->identifiedBy($this->getIdentifier())
76		->issuedAt(new DateTimeImmutable())
77		->canOnlyBeUsedAfter(new DateTimeImmutable())
78	10	->expiresAt($this->getExpiryDateTime())
79		->relatedTo($this->getSubjectIdentifier())
80	10	->withClaim('scopes', $this->getScopes()))
81		->getToken($this->jwtConfiguration->signer(), $this->jwtConfiguration->signingKey());
82		}
83
84		/**
85		* Generate a string representation from the access token
86		*/
87		public function toString(): string
88		{
89		return $this->convertToJWT()->toString();
90		}
91
92		abstract public function getClient(): ClientEntityInterface;
93
94		abstract public function getExpiryDateTime(): DateTimeImmutable;
95
96		/**
97		* @return non-empty-string\|null
		0 ignored issues – show Documentation Bug introduced 2024-03-27 00:04 UTC by Report Bug Copy Issue Report The doc comment `non-empty-string\|null` at position `0` could not be parsed: Unknown type name 'non-empty-string' at position 0 in non-empty-string\|null. Loading history...
98		*/
99		abstract public function getUserIdentifier(): string\|null;
100
101		/**
102		* @return ScopeEntityInterface[]
103		*/
104		abstract public function getScopes(): array;
105	10
106		/**
107	10	* @return non-empty-string
		0 ignored issues – show Documentation Bug introduced 2024-03-27 00:04 UTC by Report Bug Copy Issue Report The doc comment `non-empty-string` at position `0` could not be parsed: Unknown type name 'non-empty-string' at position 0 in non-empty-string. Loading history...
108		*/
109		abstract public function getIdentifier(): string;
110
111		/**
112		* @return non-empty-string
		0 ignored issues – show Documentation Bug introduced 2024-03-27 00:04 UTC by Report Bug Copy Issue Report The doc comment `non-empty-string` at position `0` could not be parsed: Unknown type name 'non-empty-string' at position 0 in non-empty-string. Loading history...
113		*/
114		private function getSubjectIdentifier(): string
115		{
116		return $this->getUserIdentifier() ?? $this->getClient()->getIdentifier();
117		}
118		}
119

thephpleague / oauth2-server

Pull Request — master (#1328)

AccessTokenTrait::initJwtConfiguration() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like