RolesDefinitionExtension - Code Metrics - Inspection of "Security role" - ynloultratech/graphql-bundle - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#7)

by Yonel Ceruto

created 2018-01-18 22:15 UTC

RolesDefinitionExtension A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	57
Duplicated Lines	0 %

Importance

Changes

Metric	Value
wmc	11
dl	0
loc	57
rs	10
c	0
b	0
f	0

4 Methods

Rating	Name	Size	Complexity
A	__construct()	3	1
A	buildConfig()	6	1
C	secureDefinitions()	22	8
A	configureEndpoint()	4	1

<?php

/*******************************************************************************
 *  This file is part of the GraphQL Bundle package.
 *
 *  (c) YnloUltratech <[email protected]>
 *
 *  For the full copyright and license information, please view the LICENSE
 *  file that was distributed with this source code.
 ******************************************************************************/

namespace Ynlo\GraphQLBundle\Definition\Extension;

use Symfony\Component\Config\Definition\Builder\ArrayNodeDefinition;
use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
use Ynlo\GraphQLBundle\Definition\ExecutableDefinitionInterface;
use Ynlo\GraphQLBundle\Definition\FieldsAwareDefinitionInterface;
use Ynlo\GraphQLBundle\Definition\Registry\Endpoint;

class RolesDefinitionExtension extends AbstractDefinitionExtension
{
    private $authorizationChecker;

    public function __construct(AuthorizationCheckerInterface $authorizationChecker)
    {
        $this->authorizationChecker = $authorizationChecker;
    }

    /**
     * {@inheritDoc}
     */
    public function buildConfig(ArrayNodeDefinition $root): void
    {
        $root
            ->info('List of roles for queries and mutations')
            ->prototype('scalar')
            ->end();
    }

    /**
     * {@inheritDoc}
     */
    public function configureEndpoint(Endpoint $endpoint): void
    {
        $endpoint->setQueries($this->secureDefinitions($endpoint->allQueries(), $endpoint));
        $endpoint->setMutations($this->secureDefinitions($endpoint->allMutations(), $endpoint));
    }

    /**
     * @param ExecutableDefinitionInterface[] $definitions
     * @param Endpoint                        $endpoint
     *
     * @return ExecutableDefinitionInterface[]
     */
    private function secureDefinitions(array $definitions, Endpoint $endpoint): array
    {
        $secureDefinitions = [];
        foreach ($definitions as $definition) {
            if (($roles = $definition->getRoles()) && !$this->authorizationChecker->isGranted($roles)) {
            if (($roles = $definition->/** @scrutinizer ignore-call */ getRoles()) && !$this->authorizationChecker->isGranted($roles)) {
                continue;
            }

            $secureDefinitions[] = $definition;

            /** @var FieldsAwareDefinitionInterface $type */
            $type = $endpoint->getType($definition->getType());
            if ($fields = $type->getFields()) {
                foreach ($fields as $fieldDefinition) {
                    if (($roles = $fieldDefinition->getRoles()) && !$this->authorizationChecker->isGranted($roles)) {
                        $type->removeField($fieldDefinition->getName());
                    }
                }
            }
        }

        return $secureDefinitions;
    }
}


ynloultratech / graphql-bundle

Pull Request — master (#7)

RolesDefinitionExtension A

Complexity

Size/Duplication

Importance

4 Methods

Duplication Side-by-Side

Filter issues like