Issues in BaseEnum.php (master) - Issues in master - yii2mod/yii2-enum - Measure and Improve Code Quality continuously with Scrutinizer

Issues (5)

Security Analysis no request data

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

helpers/BaseEnum.php (2 issues)

Labels

Duplication 2

Severity

Informational 2

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

namespace yii2mod\enum\helpers;

use BadMethodCallException;
use ReflectionClass;
use UnexpectedValueException;
use Yii;
use yii\helpers\ArrayHelper;

/**
 * Class BaseEnum
 *
 * @package yii2mod\enum\helpers
 */
abstract class BaseEnum
{
    /**
     * @var string message category
     */
    public static $messageCategory = 'app';

    /**
     * The cached list of constants by name.
     *
     * @var array
     */
    protected static $byName = [];

    /**
     * The cached list of constants by value.
     *
     * @var array
     */
    protected static $byValue = [];

    /**
     * @var array list of properties
     */
    protected static $list = [];

    /**
     * The value managed by this type instance.
     *
     * @var mixed
     */
    protected $value;

    /**
     * Sets the value that will be managed by this type instance.
     *
     * @param mixed $value The value to be managed
     *
     * @throws UnexpectedValueException If the value is not valid
     */
    public function __construct($value)
    {
        if (!static::isValidValue($value)) {
            throw new UnexpectedValueException("Value '{$value}' is not part of the enum " . get_called_class());
        }

        $this->value = $value;
    }

    /**
     * Creates a new type instance using the name of a value.
     *
     * @param string $name The name of a value
     *
     * @throws UnexpectedValueException
     *
     * @return $this The new type instance
     */
    public static function createByName($name)

    {
        $constants = static::getConstantsByName();

        if (!array_key_exists($name, $constants)) {
            throw new UnexpectedValueException("Name '{$name}' is not exists in the enum constants list " . get_called_class());
        }

        return new static($constants[$name]);
    }

    /**
     * get constant key by value(label)
     *
     * @param $value
     *
     * @return mixed
     */
    public static function getValueByName($value)
    {
        return array_search($value, static::listData());
    }

    /**
     * Creates a new type instance using the value.
     *
     * @param mixed $value The value
     *
     * @throws UnexpectedValueException
     *
     * @return $this The new type instance
     */
    public static function createByValue($value)
    {
        if (!array_key_exists($value, static::getConstantsByValue())) {
            throw new UnexpectedValueException("Value '{$value}' is not exists in the enum constants list " . get_called_class());
        }

        return new static($value);
    }

    /**
     * Get list data
     *
     * @return mixed
     */
    public static function listData()
    {
        return ArrayHelper::getColumn(static::$list, function ($value) {
            return Yii::t(static::$messageCategory, $value);
        });
    }

    /**
     * Get label by value
     *
     * @var string value
     *
     * @return string label
     */
    public static function getLabel($value)
    {
        $list = static::$list;

        if (isset($list[$value])) {
            return Yii::t(static::$messageCategory, $list[$value]);
        }

        return null;
    }

    /**
     * Returns the list of constants (by name) for this type.
     *
     * @return array The list of constants by name
     */
    public static function getConstantsByName()
    {
        $class = get_called_class();

        if (!array_key_exists($class, static::$byName)) {
            $reflection = new ReflectionClass($class);
            static::$byName[$class] = $reflection->getConstants();
        }

        return static::$byName[$class];
    }

    /**
     * Returns the list of constants (by value) for this type.
     *
     * @return array The list of constants by value
     */
    public static function getConstantsByValue()
    {
        $class = get_called_class();

        if (!isset(static::$byValue[$class])) {
            static::$byValue[$class] = array_flip(static::getConstantsByName());
        }

        return static::$byValue[$class];
    }

    /**
     * Returns the name of the value.
     *
     * @return array|string The name, or names, of the value
     */
    public function getName()
    {
        $constants = static::getConstantsByValue();

        return $constants[$this->value];
    }

    /**
     * Unwraps the type and returns the raw value.
     *
     * @return mixed The raw value managed by the type instance
     */
    public function getValue()
    {
        return $this->value;
    }

    /**
     * Checks if a name is valid for this type.
     *
     * @param string $name The name of the value
     *
     * @return bool If the name is valid for this type, `true` is returned.
     * Otherwise, the name is not valid and `false` is returned
     */
    public static function isValidName($name)
    {
        return array_key_exists($name, static::getConstantsByName());
    }

    /**
     * Checks if a value is valid for this type.
     *
     * @param string $value The value
     *
     * @return bool If the value is valid for this type, `true` is returned.
     * Otherwise, the value is not valid and `false` is returned
     */
    public static function isValidValue($value)
    {
        return array_key_exists($value, static::getConstantsByValue());
    }

    /**
     * Returns a value when called statically like so: MyEnum::SOME_VALUE() given SOME_VALUE is a class constant
     *
     * @param string $name
     * @param array $arguments
     *
     * @return static
     *
     * @throws BadMethodCallException
     */
    public static function __callStatic($name, $arguments)

    {
        $constants = static::getConstantsByName();

        if (isset($constants[$name])) {
            return new static($constants[$name]);
        }

        throw new BadMethodCallException("No static method or enum constant '$name' in class " . get_called_class());
    }

    /**
     * @return string
     */
    public function __toString()
    {
        return (string) $this->value;
    }
}


1		<?php
2
3		namespace yii2mod\enum\helpers;
4
5		use BadMethodCallException;
6		use ReflectionClass;
7		use UnexpectedValueException;
8		use Yii;
9		use yii\helpers\ArrayHelper;
10
11		/**
12		* Class BaseEnum
13		*
14		* @package yii2mod\enum\helpers
15		*/
16		abstract class BaseEnum
17		{
18		/**
19		* @var string message category
20		*/
21		public static $messageCategory = 'app';
22
23		/**
24		* The cached list of constants by name.
25		*
26		* @var array
27		*/
28		protected static $byName = [];
29
30		/**
31		* The cached list of constants by value.
32		*
33		* @var array
34		*/
35		protected static $byValue = [];
36
37		/**
38		* @var array list of properties
39		*/
40		protected static $list = [];
41
42		/**
43		* The value managed by this type instance.
44		*
45		* @var mixed
46		*/
47		protected $value;
48
49		/**
50		* Sets the value that will be managed by this type instance.
51		*
52		* @param mixed $value The value to be managed
53		*
54		* @throws UnexpectedValueException If the value is not valid
55		*/
56		public function __construct($value)
57		{
58		if (!static::isValidValue($value)) {
59		throw new UnexpectedValueException("Value '{$value}' is not part of the enum " . get_called_class());
60		}
61
62		$this->value = $value;
63		}
64
65		/**
66		* Creates a new type instance using the name of a value.
67		*
68		* @param string $name The name of a value
69		*
70		* @throws UnexpectedValueException
71		*
72		* @return $this The new type instance
73		*/
74	View Code Duplication	public static function createByName($name)
		0 ignored issues – show Duplication introduced 2017-08-14 07:13 UTC by Report Bug Copy Issue Report Show Similar Issues like this This method seems to be duplicated in your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
75		{
76		$constants = static::getConstantsByName();
77
78		if (!array_key_exists($name, $constants)) {
79		throw new UnexpectedValueException("Name '{$name}' is not exists in the enum constants list " . get_called_class());
80		}
81
82		return new static($constants[$name]);
83		}
84
85		/**
86		* get constant key by value(label)
87		*
88		* @param $value
89		*
90		* @return mixed
91		*/
92		public static function getValueByName($value)
93		{
94		return array_search($value, static::listData());
95		}
96
97		/**
98		* Creates a new type instance using the value.
99		*
100		* @param mixed $value The value
101		*
102		* @throws UnexpectedValueException
103		*
104		* @return $this The new type instance
105		*/
106		public static function createByValue($value)
107		{
108		if (!array_key_exists($value, static::getConstantsByValue())) {
109		throw new UnexpectedValueException("Value '{$value}' is not exists in the enum constants list " . get_called_class());
110		}
111
112		return new static($value);
113		}
114
115		/**
116		* Get list data
117		*
118		* @return mixed
119		*/
120		public static function listData()
121		{
122		return ArrayHelper::getColumn(static::$list, function ($value) {
123		return Yii::t(static::$messageCategory, $value);
124		});
125		}
126
127		/**
128		* Get label by value
129		*
130		* @var string value
131		*
132		* @return string label
133		*/
134		public static function getLabel($value)
135		{
136		$list = static::$list;
137
138		if (isset($list[$value])) {
139		return Yii::t(static::$messageCategory, $list[$value]);
140		}
141
142		return null;
143		}
144
145		/**
146		* Returns the list of constants (by name) for this type.
147		*
148		* @return array The list of constants by name
149		*/
150		public static function getConstantsByName()
151		{
152		$class = get_called_class();
153
154		if (!array_key_exists($class, static::$byName)) {
155		$reflection = new ReflectionClass($class);
156		static::$byName[$class] = $reflection->getConstants();
157		}
158
159		return static::$byName[$class];
160		}
161
162		/**
163		* Returns the list of constants (by value) for this type.
164		*
165		* @return array The list of constants by value
166		*/
167		public static function getConstantsByValue()
168		{
169		$class = get_called_class();
170
171		if (!isset(static::$byValue[$class])) {
172		static::$byValue[$class] = array_flip(static::getConstantsByName());
173		}
174
175		return static::$byValue[$class];
176		}
177
178		/**
179		* Returns the name of the value.
180		*
181		* @return array\|string The name, or names, of the value
182		*/
183		public function getName()
184		{
185		$constants = static::getConstantsByValue();
186
187		return $constants[$this->value];
188		}
189
190		/**
191		* Unwraps the type and returns the raw value.
192		*
193		* @return mixed The raw value managed by the type instance
194		*/
195		public function getValue()
196		{
197		return $this->value;
198		}
199
200		/**
201		* Checks if a name is valid for this type.
202		*
203		* @param string $name The name of the value
204		*
205		* @return bool If the name is valid for this type, `true` is returned.
206		* Otherwise, the name is not valid and `false` is returned
207		*/
208		public static function isValidName($name)
209		{
210		return array_key_exists($name, static::getConstantsByName());
211		}
212
213		/**
214		* Checks if a value is valid for this type.
215		*
216		* @param string $value The value
217		*
218		* @return bool If the value is valid for this type, `true` is returned.
219		* Otherwise, the value is not valid and `false` is returned
220		*/
221		public static function isValidValue($value)
222		{
223		return array_key_exists($value, static::getConstantsByValue());
224		}
225
226		/**
227		* Returns a value when called statically like so: MyEnum::SOME_VALUE() given SOME_VALUE is a class constant
228		*
229		* @param string $name
230		* @param array $arguments
231		*
232		* @return static
233		*
234		* @throws BadMethodCallException
235		*/
236	View Code Duplication	public static function __callStatic($name, $arguments)
		0 ignored issues – show Duplication introduced 2017-08-14 07:13 UTC by Report Bug Copy Issue Report Show Similar Issues like this This method seems to be duplicated in your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
237		{
238		$constants = static::getConstantsByName();
239
240		if (isset($constants[$name])) {
241		return new static($constants[$name]);
242		}
243
244		throw new BadMethodCallException("No static method or enum constant '$name' in class " . get_called_class());
245		}
246
247		/**
248		* @return string
249		*/
250		public function __toString()
251		{
252		return (string) $this->value;
253		}
254		}
255

yii2mod / yii2-enum

Issues (5)

Security Analysis no request data

helpers/BaseEnum.php (2 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like