Zemit\Mvc\Model\Hash

Complexity

Total Complexity

4

Size/Duplication

Total Lines	49
Duplicated Lines	0 %

Importance

Changes	1
Bugs	0	Features	0

2 Methods

Rating	Name	Duplication	Size	Complexity
A	hash()	0	14	1
A	checkHash()	0	23	3

<?php

/**
 * This file is part of the Zemit Framework.
 *
 * (c) Zemit Team <contact@zemit.com>
 *
 * For the full copyright and license information, please view the LICENSE.txt
 * file that was distributed with this source code.
 */

namespace Zemit\Mvc\Model;

use Phalcon\Di\DiInterface;
use Phalcon\Security;
use Zemit\Config\ConfigInterface;

trait Hash
{
    abstract public function getDI(): DiInterface;
    
    /**
     * Hash string
     */
    public function hash(string $string, ?string $salt = null, ?string $workFactor = null): string
    {
        $config = $this->getDI()->get('config');
        assert($config instanceof ConfigInterface);
        
        $security = $this->getDI()->get('security');
        assert($security instanceof Security);
        
        // Get salt & workFactor
        $salt ??= $config->path('security.salt') ?? '';
        $workFactor ??= $config->path('security.workFactor') ?? 10;
        
        // return salted hash
        return $security->hash($salt . $string, $workFactor);

It seems like $workFactor can also be of type string; however, parameter $workFactor of Phalcon\Security::hash() does only seem to accept integer, maybe add an additional type check?

    }
    
    /**
     * Check hash
     */
    public function checkHash(?string $hash = null, ?string $string = null, int $maxPassLength = 0): bool
    {
        // hash empty, not valid
        if (empty($hash)) {
            return false;
        }
        
        // string empty not valid
        if (empty($string)) {
            return false;
        }
        
        $config = $this->getDI()->get('config');
        assert($config instanceof ConfigInterface);
        
        $security = $this->getDI()->get('security');
        assert($security instanceof Security);
        
        // Get salt
        $salt = $config->path('security.salt') ?? '';
        
        // check hash
        return $security->checkHash($salt . $string, $hash, $maxPassLength);
    }
}