These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more
1 | <?php |
||
2 | |||
3 | declare(strict_types=1); |
||
4 | |||
5 | /* |
||
6 | * The MIT License (MIT) |
||
7 | * |
||
8 | * Copyright (c) 2014-2019 Spomky-Labs |
||
9 | * |
||
10 | * This software may be modified and distributed under the terms |
||
11 | * of the MIT license. See the LICENSE file for details. |
||
12 | */ |
||
13 | |||
14 | namespace Jose\Bundle\JoseFramework\Services; |
||
15 | |||
16 | use Jose\Bundle\JoseFramework\Event\JWSVerificationFailureEvent; |
||
17 | use Jose\Bundle\JoseFramework\Event\JWSVerificationSuccessEvent; |
||
18 | use Jose\Component\Core\AlgorithmManager; |
||
19 | use Jose\Component\Core\JWK; |
||
20 | use Jose\Component\Core\JWKSet; |
||
21 | use Jose\Component\Signature\JWS; |
||
22 | use Jose\Component\Signature\JWSVerifier as BaseJWSVerifier; |
||
23 | use Psr\EventDispatcher\EventDispatcherInterface; |
||
24 | |||
25 | final class JWSVerifier extends BaseJWSVerifier |
||
26 | { |
||
27 | /** |
||
28 | * @var EventDispatcherInterface |
||
29 | */ |
||
30 | private $eventDispatcher; |
||
31 | |||
32 | public function __construct(AlgorithmManager $signatureAlgorithmManager, EventDispatcherInterface $eventDispatcher) |
||
33 | { |
||
34 | parent::__construct($signatureAlgorithmManager); |
||
35 | $this->eventDispatcher = $eventDispatcher; |
||
36 | } |
||
37 | |||
38 | public function verifyWithKeySet(JWS $jws, JWKSet $jwkset, int $signatureIndex, ?string $detachedPayload = null, JWK &$jwk = null): bool |
||
39 | { |
||
40 | $success = parent::verifyWithKeySet($jws, $jwkset, $signatureIndex, $detachedPayload, $jwk); |
||
41 | if ($success) { |
||
42 | $this->eventDispatcher->dispatch(new JWSVerificationSuccessEvent( |
||
43 | $jws, |
||
44 | $jwkset, |
||
45 | $signatureIndex, |
||
46 | $detachedPayload, |
||
47 | $jwk |
||
0 ignored issues
–
show
|
|||
48 | )); |
||
49 | } else { |
||
50 | $this->eventDispatcher->dispatch(new JWSVerificationFailureEvent( |
||
51 | $jws, |
||
52 | $jwkset, |
||
53 | $detachedPayload |
||
54 | )); |
||
55 | } |
||
56 | |||
57 | return $success; |
||
58 | } |
||
59 | } |
||
60 |
It seems like you allow that null is being passed for a parameter, however the function which is called does not seem to accept null.
We recommend to add an additional type check (or disallow null for the parameter):