vijinho /
f3-cms
Duplicate code is one of the most pungent code smells. A rule that is often used is to re-structure code once it is duplicated in three or more places.
Common duplication problems, and corresponding solutions are:
Complex classes like User often do a lot of different things. To break such a class down, we need to identify a cohesive component within that class. A common approach to find such a component is to look for fields/methods that share the same prefixes, or suffixes. You can also have a look at the cohesion graph to spot any un-connected, or weakly-connected components.
Once you have determined the fields that belong together, you can apply the Extract Class refactoring. If the component makes sense as a sub-class, Extract Subclass is also a candidate, and is often faster.
While breaking up the class, it is a good idea to analyze how other classes use User, and based on these observations, apply Extract Interface, too.
| 1 | <?php |
||
| 15 | class User extends Base |
||
| 16 | { |
||
| 17 | |||
| 18 | /** |
||
| 19 | * Add default scripts for displaying templates |
||
| 20 | * |
||
| 21 | * @return void |
||
| 22 | * @see app/config/default.ini |
||
| 23 | */ |
||
| 24 | protected function addScripts() |
||
| 29 | |||
| 30 | |||
| 31 | /** |
||
| 32 | * user homepage |
||
| 33 | * |
||
| 34 | * @param \Base $f3 |
||
| 35 | * @return void |
||
| 36 | */ |
||
| 37 | public function index(\Base $f3) |
||
| 44 | |||
| 45 | |||
| 46 | /** |
||
| 47 | * login form submitted |
||
| 48 | * |
||
| 49 | * @param \Base $f3 |
||
| 50 | * @return void |
||
| 51 | */ |
||
| 52 | public function loginPost(\Base $f3) |
||
| 53 | { |
||
| 54 | $this->redirectLoggedInUser(); |
||
| 55 | $this->csrf('@user'); |
||
| 56 | |||
| 57 | // url if login failed |
||
| 58 | $view = 'user/login.phtml'; |
||
| 59 | |||
| 60 | // filter input vars of request |
||
| 61 | $usersModel = Models\Users::instance(); |
||
| 62 | $usersMapper = $usersModel->getMapper(); |
||
| 63 | $usersMapper->copyfrom($f3->get('REQUEST')); |
||
| 64 | $data = $usersMapper->filter(); |
||
| 65 | $request = $f3->get('REQUEST'); |
||
| 66 | foreach ($data as $k => $v) { |
||
| 67 | if (array_key_exists($k, $request)) { |
||
| 68 | $f3->set('REQUEST.' . $k, $v); |
||
| 69 | } |
||
| 70 | } |
||
| 71 | |||
| 72 | // find user by email address |
||
| 73 | $usersMapper = $usersModel->getUserByEmail($f3->get('REQUEST.email')); |
||
| 74 | if (null == $usersMapper->id) { |
||
| 75 | $this->notify(_('No user found with that email!'), 'error'); |
||
| 76 | $f3->set('form', $f3->get('REQUEST')); |
||
| 77 | echo \View::instance()->render($view); |
||
| 78 | return; |
||
| 79 | } |
||
| 80 | |||
| 81 | // check the password is set |
||
| 82 | $password = $f3->get('REQUEST.password'); |
||
| 83 | if (empty($password)) { |
||
| 84 | $this->notify(_('You must enter a password!'), 'warning'); |
||
| 85 | $f3->set('form', $f3->get('REQUEST')); |
||
| 86 | echo \View::instance()->render($view); |
||
| 87 | return; |
||
| 88 | } |
||
| 89 | |||
| 90 | // verify password |
||
| 91 | if (!Helpers\Str::passwordVerify($usersMapper->password, $password)) { |
||
| 92 | $this->notify(_('Incorrect password!'), 'warning'); |
||
| 93 | $f3->set('form', $f3->get('REQUEST')); |
||
| 94 | echo \View::instance()->render($view); |
||
| 95 | return; |
||
| 96 | } |
||
| 97 | |||
| 98 | if (!$usersModel->login()) { |
||
| 99 | $this->notify(_('Unable to login!'), 'warning'); |
||
| 100 | } else { |
||
| 101 | $f3->set('SESSION.uuid', $usersMapper->uuid); |
||
| 102 | $f3->set('uuid', $usersMapper->uuid); |
||
| 103 | $this->notify(_('You are now logged in!'), 'success'); |
||
| 104 | $uri = $f3->get('REQUEST.redirect_uri'); |
||
| 105 | return $f3->reroute(empty($uri) || !is_string($uri) ? '@user' : urldecode($uri)); |
||
| 106 | } |
||
| 107 | } |
||
| 108 | |||
| 109 | |||
| 110 | /** |
||
| 111 | * my account |
||
| 112 | * |
||
| 113 | * @param \Base $f3 |
||
| 114 | * @return void |
||
| 115 | */ |
||
| 116 | public function account(\Base $f3) |
||
| 129 | |||
| 130 | |||
| 131 | /** |
||
| 132 | * my account posted |
||
| 133 | * |
||
| 134 | * @param \Base $f3 |
||
| 135 | * @return void |
||
| 136 | */ |
||
| 137 | public function accountPost(\Base $f3) |
||
| 138 | { |
||
| 139 | $this->redirectLoggedOutUser(); |
||
| 140 | $this->csrf(); |
||
| 141 | |||
| 142 | $view = 'user/account.phtml'; |
||
| 143 | $f3->set('breadcrumbs', [ |
||
| 144 | _('My Account') => 'user', |
||
| 145 | _('My Details') => 'account', |
||
| 146 | ]); |
||
| 147 | |||
| 148 | // get current user details |
||
| 149 | $usersModel = Models\Users::instance(); |
||
| 150 | $usersMapper = $usersModel->getUserByUUID($f3->get('uuid')); |
||
| 151 | if (null == $usersMapper->id) { |
||
| 152 | $this->notify(_('Your account no longer exists!'), 'error'); |
||
| 153 | $f3->set('form', $f3->get('REQUEST')); |
||
| 154 | echo \View::instance()->render('user/account.phtml'); |
||
| 155 | return; |
||
| 156 | } |
||
| 157 | |||
| 158 | // check password is correct |
||
| 159 | $str = Helpers\Str::instance(); |
||
| 160 | $old_password = $f3->get('REQUEST.old_password'); |
||
| 161 | View Code Duplication | if (empty($old_password) || !$str->passwordVerify($usersMapper->password, $old_password)) { |
|
| 162 | $this->notify(_('You entered your current password incorrectly!'), 'warning'); |
||
| 163 | $f3->set('form', $f3->get('REQUEST')); |
||
| 164 | echo \View::instance()->render($view); |
||
| 165 | return; |
||
| 166 | } |
||
| 167 | |||
| 168 | // only allow updating of these fields |
||
| 169 | $data = $f3->get('REQUEST'); |
||
| 170 | $fields = [ |
||
| 171 | 'email', |
||
| 172 | 'password', |
||
| 173 | 'firstname', |
||
| 174 | 'lastname', |
||
| 175 | 'password_question', |
||
| 176 | 'password_answer', |
||
| 177 | ]; |
||
| 178 | // check input data has values set for the above fields |
||
| 179 | foreach ($fields as $k => $field) { |
||
| 180 | if (!array_key_exists($field, $data)) { |
||
| 181 | $data[$field] = null; |
||
| 182 | } |
||
| 183 | } |
||
| 184 | // then remove any input data fields that aren't in the above fields |
||
| 185 | foreach ($data as $field => $v) { |
||
| 186 | if (!in_array($field, $fields)) { |
||
| 187 | unset($data[$field]); |
||
| 188 | } |
||
| 189 | } |
||
| 190 | |||
| 191 | // is this a password change? if so, check they match |
||
| 192 | $password = $f3->get('REQUEST.password'); |
||
| 193 | $confirm_password = $f3->get('REQUEST.confirm_password'); |
||
| 194 | View Code Duplication | if (!empty($password) || !empty($confirm_password)) { |
|
| 195 | if ($password !== $confirm_password) { |
||
| 196 | $this->notify(_('That password and confirm password must match!'), 'warning'); |
||
| 197 | $f3->set('form', $f3->get('REQUEST')); |
||
| 198 | echo \View::instance()->render($view); |
||
| 199 | return; |
||
| 200 | } elseif ($str->passwordVerify($usersMapper->password, $password)) { |
||
| 201 | $this->notify(_('The new password and old password are the same!'), 'warning'); |
||
| 202 | $f3->set('form', $f3->get('REQUEST')); |
||
| 203 | echo \View::instance()->render($view); |
||
| 204 | return; |
||
| 205 | } else { |
||
| 206 | // set new hashed password |
||
| 207 | $data['password'] = $str->password($password); |
||
| 208 | } |
||
| 209 | } else { |
||
| 210 | // same password |
||
| 211 | $data['password'] = $usersMapper->password; |
||
| 212 | } |
||
| 213 | |||
| 214 | // check if email address change that email isn't taken |
||
| 215 | $email = $f3->get('REQUEST.email'); |
||
| 216 | View Code Duplication | if ($usersMapper->email !== $email) { |
|
| 217 | $usersMapper->load(['email = ?', $email]); |
||
| 218 | if ($usersMapper->email == $email) { |
||
| 219 | $this->notify(sprintf(_('The email address %s is already in use!'), $email), 'warning'); |
||
| 220 | $f3->set('form', $f3->get('REQUEST')); |
||
| 221 | echo \View::instance()->render($view); |
||
| 222 | return; |
||
| 223 | } else { |
||
| 224 | // new email |
||
| 225 | $data['email'] = $email; |
||
| 226 | } |
||
| 227 | } else { |
||
| 228 | // no change |
||
| 229 | unset($data['email']); |
||
| 230 | } |
||
| 231 | |||
| 232 | // update required fields to check from ones which changed |
||
| 233 | // validate the entered data |
||
| 234 | $data['uuid'] = $f3->get('uuid'); |
||
| 235 | $usersMapper->copyfrom($data); |
||
| 236 | $usersMapper->validationRequired($fields); |
||
| 237 | $errors = $usersMapper->validate(false); |
||
| 238 | if (is_array($errors)) { |
||
| 239 | $this->notify(['warning' => $usersMapper->validationErrors($errors)]); |
||
| 240 | $f3->set('form', $f3->get('REQUEST')); |
||
| 241 | echo \View::instance()->render($view); |
||
| 242 | return; |
||
| 243 | } |
||
| 244 | |||
| 245 | // no change, do nothing |
||
| 246 | if (!$usersMapper->changed()) { |
||
| 247 | $this->notify(_('There was nothing to change!'), 'info'); |
||
| 248 | $f3->set('form', $f3->get('REQUEST')); |
||
| 249 | echo \View::instance()->render($view); |
||
| 250 | return; |
||
| 251 | } |
||
| 252 | |||
| 253 | // reset usermapper and copy in valid data |
||
| 254 | $usersMapper->load(['uuid = ?', $data['uuid']]); |
||
| 255 | $usersMapper->copyfrom($data); |
||
| 256 | if ($usersMapper->save()) { |
||
| 257 | $this->notify(_('Your account was updated!'), 'success'); |
||
| 258 | } else { |
||
| 259 | $this->notify(_('Unable to update your account!'), 'error'); |
||
| 260 | $f3->set('form', $f3->get('REQUEST')); |
||
| 261 | echo \View::instance()->render($view); |
||
| 262 | return; |
||
| 263 | } |
||
| 264 | |||
| 265 | // send verification email if email change - non-fatal |
||
| 266 | if ($usersMapper->changed()) { |
||
| 267 | // if email address changed, send confirmation enail |
||
| 268 | if (!$usersModel->saveKey([ |
||
| 269 | 'users_uuid' => $usersMapper->uuid, |
||
| 270 | 'key' => 'email_confirmed', |
||
| 271 | 'value' => 0 |
||
| 272 | ])) { |
||
| 273 | $this->notify(_('Setting confirmation email failed.'), 'warning'); |
||
| 274 | } |
||
| 275 | $this->sendConfirmationEmail(); |
||
| 276 | } |
||
| 277 | |||
| 278 | $f3->reroute('@user'); |
||
| 279 | } |
||
| 280 | |||
| 281 | |||
| 282 | /** |
||
| 283 | * registration page |
||
| 284 | * |
||
| 285 | * @param \Base $f3 |
||
| 286 | * @return void |
||
| 287 | */ |
||
| 288 | View Code Duplication | public function register(\Base $f3) |
|
| 296 | |||
| 297 | |||
| 298 | /** |
||
| 299 | * registration posted |
||
| 300 | * |
||
| 301 | * @param \Base $f3 |
||
| 302 | * @return void |
||
| 303 | */ |
||
| 304 | public function registerPost(\Base $f3) |
||
| 394 | |||
| 395 | |||
| 396 | /** |
||
| 397 | * Confirm email address link handler from email |
||
| 398 | * |
||
| 399 | * @param \Base $f3 |
||
| 400 | * @return void |
||
| 401 | */ |
||
| 402 | public function confirmEmail(\Base $f3) |
||
| 444 | |||
| 445 | |||
| 446 | /** |
||
| 447 | * Send an email confirmation to the given user |
||
| 448 | * |
||
| 449 | * @param null|string $email the email address of the user |
||
| 450 | * @param boolean true/false |
||
| 451 | */ |
||
| 452 | private function sendConfirmationEmail(string $email = null) |
||
| 492 | |||
| 493 | |||
| 494 | /** |
||
| 495 | * my profile |
||
| 496 | * |
||
| 497 | * @param \Base $f3 |
||
| 498 | * @return void |
||
| 499 | */ |
||
| 500 | View Code Duplication | public function profile(\Base $f3) |
|
| 517 | |||
| 518 | |||
| 519 | /** |
||
| 520 | * my profile posted |
||
| 521 | * |
||
| 522 | * @param \Base $f3 |
||
| 523 | * @return void |
||
| 524 | */ |
||
| 525 | public function profilePost(\Base $f3) |
||
| 598 | } |
||
| 599 |
There are different options of fixing this problem.
If you want to be on the safe side, you can add an additional type-check:
If you are sure that the expression is traversable, you might want to add a doc comment cast to improve IDE auto-completion and static analysis:
Mark the issue as a false-positive: Just hover the remove button, in the top-right corner of this issue for more options.