AccessTokenTrait - Code Metrics - Inspection of "Private claims implementation" - thephpleague/oauth2-server - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#1122)

by Sebastian

created 2020-06-04 14:04 UTC

AccessTokenTrait A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	79
Duplicated Lines	0 %

Test Coverage

Coverage

Importance

Changes	2
Bugs	0	Features	0

Metric	Value
eloc	16
c	2
b	0
f	0
dl	0
loc	79
ccs	0
cts	24
cp	0
rs	10
wmc	4

3 Methods

Rating	Name	Size	Complexity
A	convertToJWT()	18	2
A	setPrivateKey()	3	1
A	__toString()	3	1

<?php
/**
 * @author      Alex Bilbie <[email protected]>
 * @copyright   Copyright (c) Alex Bilbie
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */

namespace League\OAuth2\Server\Entities\Traits;

use DateTimeImmutable;
use Lcobucci\JWT\Builder;
use Lcobucci\JWT\Signer\Key;
use Lcobucci\JWT\Signer\Rsa\Sha256;
use Lcobucci\JWT\Token;
use League\OAuth2\Server\CryptKey;
use League\OAuth2\Server\Entities\ClaimEntityInterface;
use League\OAuth2\Server\Entities\ClientEntityInterface;
use League\OAuth2\Server\Entities\ScopeEntityInterface;

trait AccessTokenTrait
{
    /**
     * @var CryptKey
     */
    private $privateKey;

    /**
     * Set the private key used to encrypt this access token.
     */
    public function setPrivateKey(CryptKey $privateKey)
    {
        $this->privateKey = $privateKey;
    }

    /**
     * Generate a JWT from the access token
     *
     * @param CryptKey $privateKey
     *
     * @return Token
     */
    private function convertToJWT(CryptKey $privateKey)
    {
        $builder = new Builder();
        $builder->permittedFor($this->getClient()->getIdentifier())
            ->identifiedBy($this->getIdentifier())
            ->issuedAt(\time())
            ->canOnlyBeUsedAfter(\time())
            ->expiresAt($this->getExpiryDateTime()->getTimestamp())
            ->relatedTo((string)$this->getUserIdentifier());

        foreach ($this->getClaims() as $claim){
            $builder->withClaim($claim->getName(), $claim->getValue());
        }

        return $builder
            // Set scope claim late to prevent it from being overridden.
            ->withClaim('scopes', $this->getScopes())
            ->getToken(new Sha256(), new Key($privateKey->getKeyPath(), $privateKey->getPassPhrase()));
    }

    /**
     * Generate a string representation from the access token
     */
    public function __toString()
    {
        return (string) $this->convertToJWT($this->privateKey);
    }

    /**
     * @return ClientEntityInterface
     */
    abstract public function getClient();

    /**
     * @return DateTimeImmutable
     */
    abstract public function getExpiryDateTime();

    /**
     * @return string|int
     */
    abstract public function getUserIdentifier();

    /**
     * @return ScopeEntityInterface[]
     */
    abstract public function getScopes();

    /**
     * @return ClaimEntityInterface[]
     */
    abstract public function getClaims();

    /**
     * @return string
     */
    abstract public function getIdentifier();
}


1			<?php
2			/**
3			* @author Alex Bilbie <[email protected]>
4			* @copyright Copyright (c) Alex Bilbie
5			* @license http://mit-license.org/
6			*
7			* @link https://github.com/thephpleague/oauth2-server
8			*/
9
10			namespace League\OAuth2\Server\Entities\Traits;
11
12			use DateTimeImmutable;
13			use Lcobucci\JWT\Builder;
14			use Lcobucci\JWT\Signer\Key;
15			use Lcobucci\JWT\Signer\Rsa\Sha256;
16			use Lcobucci\JWT\Token;
17			use League\OAuth2\Server\CryptKey;
18			use League\OAuth2\Server\Entities\ClaimEntityInterface;
19			use League\OAuth2\Server\Entities\ClientEntityInterface;
20			use League\OAuth2\Server\Entities\ScopeEntityInterface;
21
22			trait AccessTokenTrait
23			{
24			/**
25			* @var CryptKey
26			*/
27			private $privateKey;
28
29			/**
30			* Set the private key used to encrypt this access token.
31			*/
32			public function setPrivateKey(CryptKey $privateKey)
33			{
34			$this->privateKey = $privateKey;
35			}
36
37			/**
38			* Generate a JWT from the access token
39			*
40			* @param CryptKey $privateKey
41			*
42			* @return Token
43			*/
44			private function convertToJWT(CryptKey $privateKey)
45			{
46			$builder = new Builder();
47			$builder->permittedFor($this->getClient()->getIdentifier())
48			->identifiedBy($this->getIdentifier())
49			->issuedAt(\time())
50			->canOnlyBeUsedAfter(\time())
51			->expiresAt($this->getExpiryDateTime()->getTimestamp())
52			->relatedTo((string)$this->getUserIdentifier());
53
54			foreach ($this->getClaims() as $claim){
55			$builder->withClaim($claim->getName(), $claim->getValue());
56			}
57
58			return $builder
59			// Set scope claim late to prevent it from being overridden.
60			->withClaim('scopes', $this->getScopes())
61			->getToken(new Sha256(), new Key($privateKey->getKeyPath(), $privateKey->getPassPhrase()));
62			}
63
64			/**
65			* Generate a string representation from the access token
66			*/
67			public function __toString()
68			{
69			return (string) $this->convertToJWT($this->privateKey);
70			}
71
72			/**
73			* @return ClientEntityInterface
74			*/
75			abstract public function getClient();
76
77			/**
78			* @return DateTimeImmutable
79			*/
80			abstract public function getExpiryDateTime();
81
82			/**
83			* @return string\|int
84			*/
85			abstract public function getUserIdentifier();
86
87			/**
88			* @return ScopeEntityInterface[]
89			*/
90			abstract public function getScopes();
91
92			/**
93			* @return ClaimEntityInterface[]
94			*/
95			abstract public function getClaims();
96
97			/**
98			* @return string
99			*/
100			abstract public function getIdentifier();
101			}
102

thephpleague / oauth2-server

Pull Request — master (#1122)

AccessTokenTrait A

Complexity

Size/Duplication

Test Coverage

Importance

3 Methods

Duplication Side-by-Side

Filter issues like