DeviceCodeGrant - Code Metrics - Inspection of "Device Authorization Grant" - thephpleague/oauth2-server - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#1074)

by Andrew

created 2019-12-21 16:24 UTC

DeviceCodeGrant A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	318
Duplicated Lines	0 %

Test Coverage

Coverage

84.21%

Importance

Changes	7
Bugs	2	Features	1

Metric	Value
eloc	113
dl	0
loc	318
ccs	96
cts	114
cp	0.8421
rs	9.92
c	7
b	2
f	1
wmc	31

12 Methods

Rating	Name	Size	Complexity
B	validateDeviceCode()	39	7
A	completeDeviceAuthorizationRequest()	29	2
A	respondToAccessTokenRequest()	37	3
A	setVerificationUri()	3	1
A	getIdentifier()	3	1
A	validateDeviceAuthorizationRequest()	22	2
A	issueDeviceCode()	27	5
A	generateUniqueUserCode()	19	5
A	setDeviceCodeRepository()	3	1
A	canRespondToDeviceAuthorizationRequest()	3	1
A	__construct()	13	1
A	decodeDeviceCode()	6	2

<?php
/**
 * OAuth 2.0 Device Code grant.
 *
 * @author      Alex Bilbie <[email protected]>
 * @copyright   Copyright (c) Alex Bilbie
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */

namespace League\OAuth2\Server\Grant;

use DateInterval;
use DateTimeImmutable;
use Error;
use Exception;
use League\OAuth2\Server\Entities\ClientEntityInterface;
use League\OAuth2\Server\Entities\DeviceCodeEntityInterface;
use League\OAuth2\Server\Entities\ScopeEntityInterface;
use League\OAuth2\Server\Exception\OAuthServerException;
use League\OAuth2\Server\Exception\UniqueTokenIdentifierConstraintViolationException;
use League\OAuth2\Server\Repositories\DeviceCodeRepositoryInterface;
use League\OAuth2\Server\Repositories\RefreshTokenRepositoryInterface;
use League\OAuth2\Server\RequestEvent;
use League\OAuth2\Server\RequestTypes\DeviceAuthorizationRequest;
use League\OAuth2\Server\ResponseTypes\DeviceCodeResponse;
use League\OAuth2\Server\ResponseTypes\ResponseTypeInterface;
use LogicException;
use Psr\Http\Message\ServerRequestInterface;
use TypeError;

/**
 * Device Code grant class.
 */
class DeviceCodeGrant extends AbstractGrant
{
    /**
     * @var DeviceCodeRepositoryInterface
     */
    protected $deviceCodeRepository;

    /**
     * @var DateInterval
     */
    private $deviceCodeTTL;

    /**
     * @var int
     */
    private $retryInterval;

    /**
     * @var string
     */
    private $verificationUri;

    /**
     * @param DeviceCodeRepositoryInterface   $deviceCodeRepository
     * @param RefreshTokenRepositoryInterface $refreshTokenRepository
     * @param DateInterval                    $deviceCodeTTL
     * @param int                             $retryInterval
     */
    public function __construct(
        DeviceCodeRepositoryInterface $deviceCodeRepository,
        RefreshTokenRepositoryInterface $refreshTokenRepository,
        DateInterval $deviceCodeTTL,
        $retryInterval = 5
    ) {
        $this->setDeviceCodeRepository($deviceCodeRepository);
        $this->setRefreshTokenRepository($refreshTokenRepository);

        $this->refreshTokenTTL = new DateInterval('P1M');

        $this->deviceCodeTTL = $deviceCodeTTL;
        $this->retryInterval = $retryInterval;
    }

    /**
     * {@inheritdoc}
     */
    public function canRespondToDeviceAuthorizationRequest(ServerRequestInterface $request)
    {
        return true;
    }

    /**
     * {@inheritdoc}
     */
    public function validateDeviceAuthorizationRequest(ServerRequestInterface $request)
    {
        $clientId = $this->getRequestParameter(
            'client_id',
            $request,
            $this->getServerParameter('PHP_AUTH_USER', $request)
        );

        if ($clientId === null) {
            throw OAuthServerException::invalidRequest('client_id');
        }

        $client = $this->getClientEntityOrFail($clientId, $request);

        $scopes = $this->validateScopes($this->getRequestParameter('scope', $request, $this->defaultScope));

        $deviceAuthorizationRequest = new DeviceAuthorizationRequest();
        $deviceAuthorizationRequest->setGrantTypeId($this->getIdentifier());
        $deviceAuthorizationRequest->setClient($client);
        $deviceAuthorizationRequest->setScopes($scopes);

        return $deviceAuthorizationRequest;
    }

    /**
     * {@inheritdoc}
     */
    public function completeDeviceAuthorizationRequest(DeviceAuthorizationRequest $deviceRequest)
    {
        $deviceCode = $this->issueDeviceCode(
            $this->deviceCodeTTL,
            $deviceRequest->getClient(),
            $this->verificationUri,
            $deviceRequest->getScopes()
        );

        $payload = [
            'client_id' => $deviceCode->getClient()->getIdentifier(),
            'device_code_id' => $deviceCode->getIdentifier(),
            'scopes' => $deviceCode->getScopes(),
            'user_code' => $deviceCode->getUserCode(),
            'expire_time' => $deviceCode->getExpiryDateTime()->getTimestamp(),
            'verification_uri' => $deviceCode->getVerificationUri(),
        ];

        $jsonPayload = \json_encode($payload);

        if ($jsonPayload === false) {
            throw new LogicException('An error was encountered when JSON encoding the authorization request response');
        }

        $response = new DeviceCodeResponse();
        $response->setDeviceCode($deviceCode);
        $response->setPayload($this->encrypt($jsonPayload));

        return $response;
    }

    /**
     * {@inheritdoc}
     */
    public function respondToAccessTokenRequest(
        ServerRequestInterface $request,
        ResponseTypeInterface $responseType,
        DateInterval $accessTokenTTL
    ) {
        // Validate request
        $client = $this->validateClient($request);
        $scopes = $this->validateScopes($this->getRequestParameter('scope', $request, $this->defaultScope));
        $deviceCode = $this->validateDeviceCode($request, $client);

        // TODO: if the request is too fast, respond with slow down


        // if device code has no user associated, respond with pending
        if (\is_null($deviceCode->getUserIdentifier())) {
            throw OAuthServerException::authorizationPending();
        }

        // Finalize the requested scopes
        $finalizedScopes = $this->scopeRepository->finalizeScopes($scopes, $this->getIdentifier(), $client, (string) $deviceCode->getUserIdentifier());

        // Issue and persist new access token
        $accessToken = $this->issueAccessToken($accessTokenTTL, $client, (string) $deviceCode->getUserIdentifier(), $finalizedScopes);
        $this->getEmitter()->emit(new RequestEvent(RequestEvent::ACCESS_TOKEN_ISSUED, $request));
        $responseType->setAccessToken($accessToken);

        // Issue and persist new refresh token if given
        $refreshToken = $this->issueRefreshToken($accessToken);

        if ($refreshToken !== null) {
            $this->getEmitter()->emit(new RequestEvent(RequestEvent::REFRESH_TOKEN_ISSUED, $request));
            $responseType->setRefreshToken($refreshToken);
        }

        $this->deviceCodeRepository->revokeDeviceCode($deviceCode->getIdentifier());

        return $responseType;
    }

    /**
     * @param ServerRequestInterface $request
     * @param ClientEntityInterface  $client
     *
     * @throws OAuthServerException
     *
     * @return DeviceCodeEntityInterface
     */
    protected function validateDeviceCode(ServerRequestInterface $request, ClientEntityInterface $client)
    {
        $encryptedDeviceCode = $this->getRequestParameter('device_code', $request);

        if (\is_null($encryptedDeviceCode)) {
            throw OAuthServerException::invalidRequest('device_code');
        }

        $deviceCodePayload = $this->decodeDeviceCode($encryptedDeviceCode);

        if (!\property_exists($deviceCodePayload, 'device_code_id')) {
            throw OAuthServerException::invalidRequest('device_code', 'Device code malformed');
        }

        if (\time() > $deviceCodePayload->expire_time) {
            throw OAuthServerException::expiredToken('device_code');
        }

        if ($this->deviceCodeRepository->isDeviceCodeRevoked($deviceCodePayload->device_code_id) === true) {
            throw OAuthServerException::invalidRequest('device_code', 'Device code has been revoked');
        }

        if ($deviceCodePayload->client_id !== $client->getIdentifier()) {
            throw OAuthServerException::invalidRequest('device_code', 'Device code was not issued to this client');
        }

        $deviceCode = $this->deviceCodeRepository->getDeviceCodeEntityByDeviceCode(
            $deviceCodePayload->device_code_id,
            $this->getIdentifier(),
            $client
        );

        if ($deviceCode instanceof DeviceCodeEntityInterface === false) {
            $this->getEmitter()->emit(new RequestEvent(RequestEvent::USER_AUTHENTICATION_FAILED, $request));

            throw OAuthServerException::invalidGrant();
        }

        return $deviceCode;
    }

    /**
     * @param string $encryptedDeviceCode
     *
     * @throws OAuthServerException
     *
     * @return \stdClass
     */
    protected function decodeDeviceCode($encryptedDeviceCode)
    {
        try {
            return \json_decode($this->decrypt($encryptedDeviceCode));
        } catch (LogicException $e) {
            throw OAuthServerException::invalidRequest('device_code', 'Cannot decrypt the device code', $e);
        }
    }

    /**
     * Set the verification uri
     *
     * @param string $verificationUri
     */
    public function setVerificationUri($verificationUri)
    {
        $this->verificationUri = $verificationUri;
    }

    /**
     * {@inheritdoc}
     */
    public function getIdentifier()
    {
        return 'urn:ietf:params:oauth:grant-type:device_code';
    }

    /**
     * @param DeviceCodeRepositoryInterface $deviceCodeRepository
     */
    public function setDeviceCodeRepository(DeviceCodeRepositoryInterface $deviceCodeRepository)
    {
        $this->deviceCodeRepository = $deviceCodeRepository;
    }

    /**
     * Issue a device code.
     *
     * @param DateInterval           $deviceCodeTTL
     * @param ClientEntityInterface  $client
     * @param string                 $verificationUri
     * @param ScopeEntityInterface[] $scopes
     *
     * @return DeviceCodeEntityInterface
     *
     * @throws OAuthServerException
     * @throws UniqueTokenIdentifierConstraintViolationException
     */
    protected function issueDeviceCode(
        DateInterval $deviceCodeTTL,
        ClientEntityInterface $client,
        $verificationUri,
        array $scopes = []
    ) {
        $maxGenerationAttempts = self::MAX_RANDOM_TOKEN_GENERATION_ATTEMPTS;

        $deviceCode = $this->deviceCodeRepository->getNewDeviceCode();
        $deviceCode->setExpiryDateTime((new DateTimeImmutable())->add($deviceCodeTTL));
        $deviceCode->setClient($client);
        $deviceCode->setVerificationUri($verificationUri);

        foreach ($scopes as $scope) {
            $deviceCode->addScope($scope);
        }

        while ($maxGenerationAttempts-- > 0) {
            $deviceCode->setIdentifier($this->generateUniqueIdentifier());
            $deviceCode->setUserCode($this->generateUniqueUserCode());
            try {
                $this->deviceCodeRepository->persistNewDeviceCode($deviceCode);

                return $deviceCode;
            } catch (UniqueTokenIdentifierConstraintViolationException $e) {
                if ($maxGenerationAttempts === 0) {
                    throw $e;
                }
            }
        }
    }

    /**
     * Generate a new unique user code.
     *
     * @param int $length
     *
     * @return string
     *
     * @throws OAuthServerException
     */
    protected function generateUniqueUserCode($length = 8)
    {
        try {
            $userCode = '';
            $userCodeCharacters = 'BCDFGHJKLMNPQRSTVWXZ';

            while (\strlen($userCode) < $length) {
                $userCode .= $userCodeCharacters[\random_int(0, 19)];
            }

            return $userCode;
            // @codeCoverageIgnoreStart
        } catch (TypeError $e) {
            throw OAuthServerException::serverError('An unexpected error has occurred', $e);
        } catch (Error $e) {
            throw OAuthServerException::serverError('An unexpected error has occurred', $e);
        } catch (Exception $e) {
            // If you get this message, the CSPRNG failed hard.
            throw OAuthServerException::serverError('Could not generate a random string', $e);
        }
        // @codeCoverageIgnoreEnd
    }
}


1		<?php
2		/**
3		* OAuth 2.0 Device Code grant.
4		*
5		* @author Alex Bilbie <[email protected]>
6		* @copyright Copyright (c) Alex Bilbie
7		* @license http://mit-license.org/
8		*
9		* @link https://github.com/thephpleague/oauth2-server
10		*/
11
12		namespace League\OAuth2\Server\Grant;
13
14		use DateInterval;
15		use DateTimeImmutable;
16		use Error;
17		use Exception;
18		use League\OAuth2\Server\Entities\ClientEntityInterface;
19		use League\OAuth2\Server\Entities\DeviceCodeEntityInterface;
20		use League\OAuth2\Server\Entities\ScopeEntityInterface;
21		use League\OAuth2\Server\Exception\OAuthServerException;
22		use League\OAuth2\Server\Exception\UniqueTokenIdentifierConstraintViolationException;
23		use League\OAuth2\Server\Repositories\DeviceCodeRepositoryInterface;
24		use League\OAuth2\Server\Repositories\RefreshTokenRepositoryInterface;
25		use League\OAuth2\Server\RequestEvent;
26		use League\OAuth2\Server\RequestTypes\DeviceAuthorizationRequest;
27		use League\OAuth2\Server\ResponseTypes\DeviceCodeResponse;
28		use League\OAuth2\Server\ResponseTypes\ResponseTypeInterface;
29		use LogicException;
30		use Psr\Http\Message\ServerRequestInterface;
31		use TypeError;
32
33		/**
34		* Device Code grant class.
35		*/
36		class DeviceCodeGrant extends AbstractGrant
37		{
38		/**
39		* @var DeviceCodeRepositoryInterface
40		*/
41		protected $deviceCodeRepository;
42
43		/**
44		* @var DateInterval
45		*/
46		private $deviceCodeTTL;
47
48		/**
49		* @var int
50		*/
51		private $retryInterval;
52
53		/**
54		* @var string
55		*/
56		private $verificationUri;
57
58		/**
59		* @param DeviceCodeRepositoryInterface $deviceCodeRepository
60		* @param RefreshTokenRepositoryInterface $refreshTokenRepository
61		* @param DateInterval $deviceCodeTTL
62		* @param int $retryInterval
63		*/
64	9	public function __construct(
65		DeviceCodeRepositoryInterface $deviceCodeRepository,
66		RefreshTokenRepositoryInterface $refreshTokenRepository,
67		DateInterval $deviceCodeTTL,
68		$retryInterval = 5
69		) {
70	9	$this->setDeviceCodeRepository($deviceCodeRepository);
71	9	$this->setRefreshTokenRepository($refreshTokenRepository);
72
73	9	$this->refreshTokenTTL = new DateInterval('P1M');
74
75	9	$this->deviceCodeTTL = $deviceCodeTTL;
76	9	$this->retryInterval = $retryInterval;
77	9	}
78
79		/**
80		* {@inheritdoc}
81		*/
82	1	public function canRespondToDeviceAuthorizationRequest(ServerRequestInterface $request)
83		{
84	1	return true;
85		}
86
87		/**
88		* {@inheritdoc}
89		*/
90	3	public function validateDeviceAuthorizationRequest(ServerRequestInterface $request)
91		{
92	3	$clientId = $this->getRequestParameter(
93	3	'client_id',
94	3	$request,
95	3	$this->getServerParameter('PHP_AUTH_USER', $request)
96		);
97
98	3	if ($clientId === null) {
99	1	throw OAuthServerException::invalidRequest('client_id');
100		}
101
102	2	$client = $this->getClientEntityOrFail($clientId, $request);
103
104	1	$scopes = $this->validateScopes($this->getRequestParameter('scope', $request, $this->defaultScope));
105
106	1	$deviceAuthorizationRequest = new DeviceAuthorizationRequest();
107	1	$deviceAuthorizationRequest->setGrantTypeId($this->getIdentifier());
108	1	$deviceAuthorizationRequest->setClient($client);
109	1	$deviceAuthorizationRequest->setScopes($scopes);
110
111	1	return $deviceAuthorizationRequest;
112		}
113
114		/**
115		* {@inheritdoc}
116		*/
117	1	public function completeDeviceAuthorizationRequest(DeviceAuthorizationRequest $deviceRequest)
118		{
119	1	$deviceCode = $this->issueDeviceCode(
120	1	$this->deviceCodeTTL,
121	1	$deviceRequest->getClient(),
122	1	$this->verificationUri,
123	1	$deviceRequest->getScopes()
124		);
125
126		$payload = [
127	1	'client_id' => $deviceCode->getClient()->getIdentifier(),
128	1	'device_code_id' => $deviceCode->getIdentifier(),
129	1	'scopes' => $deviceCode->getScopes(),
130	1	'user_code' => $deviceCode->getUserCode(),
131	1	'expire_time' => $deviceCode->getExpiryDateTime()->getTimestamp(),
132	1	'verification_uri' => $deviceCode->getVerificationUri(),
133		];
134
135	1	$jsonPayload = \json_encode($payload);
136
137	1	if ($jsonPayload === false) {
138		throw new LogicException('An error was encountered when JSON encoding the authorization request response');
139		}
140
141	1	$response = new DeviceCodeResponse();
142	1	$response->setDeviceCode($deviceCode);
143	1	$response->setPayload($this->encrypt($jsonPayload));
144
145	1	return $response;
146		}
147
148		/**
149		* {@inheritdoc}
150		*/
151	3	public function respondToAccessTokenRequest(
152		ServerRequestInterface $request,
153		ResponseTypeInterface $responseType,
154		DateInterval $accessTokenTTL
155		) {
156		// Validate request
157	3	$client = $this->validateClient($request);
158	2	$scopes = $this->validateScopes($this->getRequestParameter('scope', $request, $this->defaultScope));
159	2	$deviceCode = $this->validateDeviceCode($request, $client);
160
161		// TODO: if the request is too fast, respond with slow down
162
163
164		// if device code has no user associated, respond with pending
165	1	if (\is_null($deviceCode->getUserIdentifier())) {
166		throw OAuthServerException::authorizationPending();
167		}
168
169		// Finalize the requested scopes
170	1	$finalizedScopes = $this->scopeRepository->finalizeScopes($scopes, $this->getIdentifier(), $client, (string) $deviceCode->getUserIdentifier());
171
172		// Issue and persist new access token
173	1	$accessToken = $this->issueAccessToken($accessTokenTTL, $client, (string) $deviceCode->getUserIdentifier(), $finalizedScopes);
174	1	$this->getEmitter()->emit(new RequestEvent(RequestEvent::ACCESS_TOKEN_ISSUED, $request));
175	1	$responseType->setAccessToken($accessToken);
176
177		// Issue and persist new refresh token if given
178	1	$refreshToken = $this->issueRefreshToken($accessToken);
179
180	1	if ($refreshToken !== null) {
181	1	$this->getEmitter()->emit(new RequestEvent(RequestEvent::REFRESH_TOKEN_ISSUED, $request));
182	1	$responseType->setRefreshToken($refreshToken);
183		}
184
185	1	$this->deviceCodeRepository->revokeDeviceCode($deviceCode->getIdentifier());
186
187	1	return $responseType;
188		}
189
190		/**
191		* @param ServerRequestInterface $request
192		* @param ClientEntityInterface $client
193		*
194		* @throws OAuthServerException
195		*
196		* @return DeviceCodeEntityInterface
197		*/
198	2	protected function validateDeviceCode(ServerRequestInterface $request, ClientEntityInterface $client)
199		{
200	2	$encryptedDeviceCode = $this->getRequestParameter('device_code', $request);
201
202	2	if (\is_null($encryptedDeviceCode)) {
203	1	throw OAuthServerException::invalidRequest('device_code');
204		}
205
206	1	$deviceCodePayload = $this->decodeDeviceCode($encryptedDeviceCode);
207
208	1	if (!\property_exists($deviceCodePayload, 'device_code_id')) {
209		throw OAuthServerException::invalidRequest('device_code', 'Device code malformed');
210		}
211
212	1	if (\time() > $deviceCodePayload->expire_time) {
213		throw OAuthServerException::expiredToken('device_code');
214		}
215
216	1	if ($this->deviceCodeRepository->isDeviceCodeRevoked($deviceCodePayload->device_code_id) === true) {
217		throw OAuthServerException::invalidRequest('device_code', 'Device code has been revoked');
218		}
219
220	1	if ($deviceCodePayload->client_id !== $client->getIdentifier()) {
221		throw OAuthServerException::invalidRequest('device_code', 'Device code was not issued to this client');
222		}
223
224	1	$deviceCode = $this->deviceCodeRepository->getDeviceCodeEntityByDeviceCode(
225	1	$deviceCodePayload->device_code_id,
226	1	$this->getIdentifier(),
227	1	$client
228		);
229
230	1	if ($deviceCode instanceof DeviceCodeEntityInterface === false) {
231		$this->getEmitter()->emit(new RequestEvent(RequestEvent::USER_AUTHENTICATION_FAILED, $request));
232
233		throw OAuthServerException::invalidGrant();
234		}
235
236	1	return $deviceCode;
237		}
238
239		/**
240		* @param string $encryptedDeviceCode
241		*
242		* @throws OAuthServerException
243		*
244		* @return \stdClass
245		*/
246	1	protected function decodeDeviceCode($encryptedDeviceCode)
247		{
248		try {
249	1	return \json_decode($this->decrypt($encryptedDeviceCode));
250		} catch (LogicException $e) {
251		throw OAuthServerException::invalidRequest('device_code', 'Cannot decrypt the device code', $e);
252		}
253		}
254
255		/**
256		* Set the verification uri
257		*
258		* @param string $verificationUri
259		*/
260		public function setVerificationUri($verificationUri)
261		{
262		$this->verificationUri = $verificationUri;
263		}
264
265		/**
266		* {@inheritdoc}
267		*/
268	4	public function getIdentifier()
269		{
270	4	return 'urn:ietf:params:oauth:grant-type:device_code';
271		}
272
273		/**
274		* @param DeviceCodeRepositoryInterface $deviceCodeRepository
275		*/
276	9	public function setDeviceCodeRepository(DeviceCodeRepositoryInterface $deviceCodeRepository)
277		{
278	9	$this->deviceCodeRepository = $deviceCodeRepository;
279	9	}
280
281		/**
282		* Issue a device code.
283		*
284		* @param DateInterval $deviceCodeTTL
285		* @param ClientEntityInterface $client
286		* @param string $verificationUri
287		* @param ScopeEntityInterface[] $scopes
288		*
289		* @return DeviceCodeEntityInterface
290		*
291		* @throws OAuthServerException
292		* @throws UniqueTokenIdentifierConstraintViolationException
293		*/
294	1	protected function issueDeviceCode(
295		DateInterval $deviceCodeTTL,
296		ClientEntityInterface $client,
297		$verificationUri,
298		array $scopes = []
299		) {
300	1	$maxGenerationAttempts = self::MAX_RANDOM_TOKEN_GENERATION_ATTEMPTS;
301
302	1	$deviceCode = $this->deviceCodeRepository->getNewDeviceCode();
303	1	$deviceCode->setExpiryDateTime((new DateTimeImmutable())->add($deviceCodeTTL));
304	1	$deviceCode->setClient($client);
305	1	$deviceCode->setVerificationUri($verificationUri);
306
307	1	foreach ($scopes as $scope) {
308		$deviceCode->addScope($scope);
309		}
310
311	1	while ($maxGenerationAttempts-- > 0) {
312	1	$deviceCode->setIdentifier($this->generateUniqueIdentifier());
313	1	$deviceCode->setUserCode($this->generateUniqueUserCode());
314		try {
315	1	$this->deviceCodeRepository->persistNewDeviceCode($deviceCode);
316
317	1	return $deviceCode;
318		} catch (UniqueTokenIdentifierConstraintViolationException $e) {
319		if ($maxGenerationAttempts === 0) {
320		throw $e;
321		}
322		}
323		}
324		}
325
326		/**
327		* Generate a new unique user code.
328		*
329		* @param int $length
330		*
331		* @return string
332		*
333		* @throws OAuthServerException
334		*/
335	1	protected function generateUniqueUserCode($length = 8)
336		{
337		try {
338	1	$userCode = '';
339	1	$userCodeCharacters = 'BCDFGHJKLMNPQRSTVWXZ';
340
341	1	while (\strlen($userCode) < $length) {
342	1	$userCode .= $userCodeCharacters[\random_int(0, 19)];
343		}
344
345	1	return $userCode;
346		// @codeCoverageIgnoreStart
347		} catch (TypeError $e) {
348		throw OAuthServerException::serverError('An unexpected error has occurred', $e);
349		} catch (Error $e) {
350		throw OAuthServerException::serverError('An unexpected error has occurred', $e);
351		} catch (Exception $e) {
352		// If you get this message, the CSPRNG failed hard.
353		throw OAuthServerException::serverError('Could not generate a random string', $e);
354		}
355		// @codeCoverageIgnoreEnd
356		}
357		}
358

thephpleague / oauth2-server

Pull Request — master (#1074)

DeviceCodeGrant A

Complexity

Size/Duplication

Test Coverage

Importance

12 Methods

Duplication Side-by-Side

Filter issues like