fix: Code checks

Author: BaranekD

lib/Adapter.php

@@ -88,7 +88,7 @@ abstract public function getMemberGroups($user, $vo);
      * @param User $user perun user
      * @param Vo   $vo   vo we are working with
      *
-     * @return Group[] groups from vo where user is valid.
+     * @return Group[] groups from vo where user is valid
      */
     abstract public function getGroupsWhereMemberIsActive($user, $vo);
 
@@ -182,7 +182,7 @@ abstract public function getUsersGroupsOnSp($spEntityId, $userId);
 
     /**
      * @param Facility $facility entity id of the sp
-     * @param int    $userId
+     * @param int      $userId
      *
      * @return Group[] from vo which are assigned to all facilities with spEntityId for this userId
      */

lib/AdapterLdap.php

@@ -464,6 +464,7 @@ public function setUserExtSourceAttributes($userExtSourceId, $attributes)
     public function getUsersGroupsOnSp($spEntityId, $userId)
     {
         $facility = $this->getFacilityByEntityId($spEntityId);
+
         return self::getUsersGroupsOnFacility($facility, $userId);
     }
 
@@ -510,6 +511,7 @@ public function getUsersGroupsOnFacility($facility, $userId)
                 )
             );
         }
+
         return $this->removeDuplicateEntities($resultGroups);
     }
 

lib/AdapterRpc.php

@@ -383,6 +383,7 @@ public function getFacilityAttribute($facility, $attrName)
     public function getUsersGroupsOnSp($spEntityId, $userId)
     {
         $facility = $this->getFacilityByEntityId($spEntityId);
+
         return self::getUsersGroupsOnFacility($facility, $userId);
     }
 
@@ -739,7 +740,6 @@ private function getAttributes($perunAttrs, $attrNamesMap)
 
             $attribute['name'] = $attrNamesMap[$perunAttrName];
             $attributes[$attrNamesMap[$perunAttrName]] = $attribute;
-
         }
 
         return $attributes;

lib/Auth/Process/ForceAup.php

@@ -266,7 +266,9 @@ private function fillAupsToBeApproved($requestedAups, $aups, $userApprovedAups)
         $aupsToBeApproved = [];
         foreach ($requestedAups as $requestedAup) {
             if (!array_key_exists($requestedAup, $aups)) {
-                Logger::debug('perun:ForceAup - Requested AUP \'' . $requestedAup . '\' is not in the list of VO AUPS, probably VO does not have AUP');
+                Logger::debug(
+                    'perun:ForceAup - Requested AUP \'' . $requestedAup . '\' is not in the list of VO AUPS, probably VO does not have AUP'
+                );
                 continue;
             }
             $aupsInJson = $aups[$requestedAup];

lib/Auth/Process/PerunEnsureMember.php

@@ -1,5 +1,7 @@
 <?php
 
+declare(strict_types=1);
+
 namespace SimpleSAML\Module\perun\Auth\Process;
 
 use SimpleSAML\Auth\ProcessingFilter;
@@ -15,17 +17,17 @@
 
 class PerunEnsureMember extends ProcessingFilter
 {
-    const LOG_PREFIX = 'perun:PerunEnsureMember: ';
+    public const LOG_PREFIX = 'perun:PerunEnsureMember: ';
 
-    const REGISTER_URL = 'registerUrl';
-    const VO_SHORT_NAME = 'voShortName';
-    const GROUP_NAME = 'groupName';
-    const INTERFACE_PROPNAME = 'interface';
-    const CALLBACK_PARAMETER_NAME = 'callbackParameterName';
-    const RPC = 'rpc';
+    public const REGISTER_URL = 'registerUrl';
+    public const VO_SHORT_NAME = 'voShortName';
+    public const GROUP_NAME = 'groupName';
+    public const INTERFACE_PROPNAME = 'interface';
+    public const CALLBACK_PARAMETER_NAME = 'callbackParameterName';
+    public const RPC = 'rpc';
 
-    const CALLBACK = 'perun/perun_ensure_member_callback.php';
-    const REDIRECT = 'perun/perun_ensure_member.php';
+    public const CALLBACK = 'perun/perun_ensure_member_callback.php';
+    public const REDIRECT = 'perun/perun_ensure_member.php';
 
     public const STAGE = 'perun:PerunEnsureMember';
     public const PARAM_STATE_ID = PerunConstants::STATE_ID;
@@ -46,7 +48,7 @@ public function __construct($config, $reserved)
         parent::__construct($config, $reserved);
         $this->config = $config;
         $this->filterConfig = Configuration::loadFromArray($config);
-        
+
         $this->registerUrl = $this->filterConfig->getString(self::REGISTER_URL, '');
         if (empty($this->registerUrl)) {
             throw new Exception(self::LOG_PREFIX . 'Missing configuration option \'' . self::REGISTER_URL . '\'');
@@ -59,7 +61,9 @@ public function __construct($config, $reserved)
 
         $this->callbackParameterName = $this->filterConfig->getString(self::CALLBACK_PARAMETER_NAME, '');
         if (empty($this->callbackParameterName)) {
-            throw new Exception(self::LOG_PREFIX . 'Missing configuration option \'' . self::CALLBACK_PARAMETER_NAME . '\'');
+            throw new Exception(
+                self::LOG_PREFIX . 'Missing configuration option \'' . self::CALLBACK_PARAMETER_NAME . '\''
+            );
         }
 
         $this->groupName = $this->filterConfig->getString(self::GROUP_NAME, '');
@@ -96,6 +100,7 @@ private function handleUser($user, $vo, $request): void
 
         if (Member::VALID === $memberStatus && $isUserInGroup) {
             Logger::debug(self::LOG_PREFIX . 'User is allowed to continue');
+
             return;
         }
 
@@ -106,22 +111,32 @@ private function handleUser($user, $vo, $request): void
         if (Member::VALID === $memberStatus && $isUserInGroup) {
             Logger::debug(self::LOG_PREFIX . 'User is allowed to continue');
         } elseif (Member::VALID === $memberStatus && !$isUserInGroup && $groupHasRegistrationForm) {
-            Logger::debug(self::LOG_PREFIX . 'User is not valid in group ' . $this->groupName . ' - sending to registration');
+            Logger::debug(
+                self::LOG_PREFIX . 'User is not valid in group ' . $this->groupName . ' - sending to registration'
+            );
             $this->register($request, $this->groupName);
         } elseif (null === $memberStatus && $voHasRegistrationForm && $isUserInGroup) {
-            Logger::debug(self::LOG_PREFIX . 'User is not member of vo ' . $this->voShortName . ' - sending to registration');
+            Logger::debug(
+                self::LOG_PREFIX . 'User is not member of vo ' . $this->voShortName . ' - sending to registration'
+            );
             $this->register($request);
         } elseif (null === $memberStatus && $voHasRegistrationForm && !$isUserInGroup && $groupHasRegistrationForm) {
-            Logger::debug(self::LOG_PREFIX . 'User is not member of vo ' . $this->voShortName . ' - sending to registration');
+            Logger::debug(
+                self::LOG_PREFIX . 'User is not member of vo ' . $this->voShortName . ' - sending to registration'
+            );
             $this->register($request, $this->groupName);
         } elseif (Member::EXPIRED === $memberStatus && $voHasRegistrationForm && $isUserInGroup) {
             Logger::debug(self::LOG_PREFIX . 'User is expired - sending to registration');
             $this->register($request);
         } elseif (Member::EXPIRED === $memberStatus && $voHasRegistrationForm && !$isUserInGroup && $groupHasRegistrationForm) {
-            Logger::debug(self::LOG_PREFIX . 'User is expired and is not in group ' . $this->groupName . ' - sending to registration');
+            Logger::debug(
+                self::LOG_PREFIX . 'User is expired and is not in group ' . $this->groupName . ' - sending to registration'
+            );
             $this->register($request, $this->groupName);
         } else {
-            Logger::debug(self::LOG_PREFIX . 'User is not valid in vo/group and cannot be sent to the registration - sending to unauthorized');
+            Logger::debug(
+                self::LOG_PREFIX . 'User is not valid in vo/group and cannot be sent to the registration - sending to unauthorized'
+            );
             PerunIdentity::unauthorized($request);
         }
     }

lib/Auth/Process/PerunUserGroups.php

@@ -47,15 +47,12 @@ public function process(&$request)
         }
 
         $spEntityId = $request[PerunConstants::SP_METADATA][PerunConstants::SP_METADATA_ENTITYID] ?? null;
-        $groups = [];
         if (empty($spEntityId)) {
             Logger::debug(self::DEBUG_PREFIX . 'No SP EntityID available, user groups will be empty');
-            throw new Exception(
-                self::DEBUG_PREFIX . 'Cannot find SP EntityID'
-            );
-        } else {
-            $groups = $this->adapter->getUsersGroupsOnSp($spEntityId, $user->getId());
+            throw new Exception(self::DEBUG_PREFIX . 'Cannot find SP EntityID');
         }
+
+        $groups = $this->adapter->getUsersGroupsOnSp($spEntityId, $user->getId());
         $request[PerunConstants::PERUN][PerunConstants::USER_GROUPS] = $groups;
     }
 }

lib/Auth/Process/SpAuthorization.php

@@ -140,7 +140,9 @@ public function process(&$request)
         $spEntityId = $request[PerunConstants::SP_METADATA][PerunConstants::SP_METADATA_ENTITYID];
 
         if (empty($request[PerunConstants::PERUN][PerunConstants::USER])) {
-            Logger::debug(self::DEBUG_PREFIX . 'Request does not contain Perun user. Did you configure ' . PerunUser::STAGE . ' filter before this filter in the processing chain?');
+            Logger::debug(
+                self::DEBUG_PREFIX . 'Request does not contain Perun user. Did you configure ' . PerunUser::STAGE . ' filter before this filter in the processing chain?'
+            );
             $this->unauthorized($request);
         }
         $user = $request[PerunConstants::PERUN][PerunConstants::USER];
@@ -149,6 +151,7 @@ public function process(&$request)
             Logger::debug(
                 self::DEBUG_PREFIX . 'No facility found for SP \'' . $spEntityId . '\', skip processing filter'
             );
+
             return;
         }
         $facilityAttributes = $this->getSPAttributes($facility);
@@ -157,12 +160,14 @@ public function process(&$request)
                 self::DEBUG_PREFIX . 'Could not fetch SP attributes, user will be redirected to unauthorized for security reasons'
             );
             $this->unauthorized($request);
+
             return;
         }
 
         $checkGroupMembership = $facilityAttributes[self::CHECK_GROUP_MEMBERSHIP];
         if (!$checkGroupMembership) {
             Logger::info(self::DEBUG_PREFIX . 'Group membership check not requested by the service.');
+
             return;
         }
 
@@ -191,8 +196,11 @@ public function handleUnsatisfiedMembership(
         array $facilityAttributes
     ) {
         if (!$this->handleUnsatisfiedMembership) {
-            Logger::debug(self::DEBUG_PREFIX . 'Handling unsatisfied membership is disabled, redirecting to unauthorized');
+            Logger::debug(
+                self::DEBUG_PREFIX . 'Handling unsatisfied membership is disabled, redirecting to unauthorized'
+            );
             $this->unauthorized($request);
+
             return;
         }
         $allowRegistration = $facilityAttributes[self::ALLOW_REGISTRATION] ?? false;
@@ -217,6 +225,7 @@ public function handleUnsatisfiedMembership(
                 if (!empty($registrationData)) {
                     $skipNotification = in_array($spEntityId, $this->skipNotificationSps, true);
                     $this->register($request, $registrationData, $skipNotification);
+
                     return;
                 }
                 Logger::debug(
@@ -358,8 +367,12 @@ protected function registerChooseVoAndGroup(array &$request, array $registration
         ]);
     }
 
-    private function getRegistrationData($user, Facility $facility, string $spEntityId, array $facilityAttributes): array
-    {
+    private function getRegistrationData(
+        $user,
+        Facility $facility,
+        string $spEntityId,
+        array $facilityAttributes
+    ): array {
         if (null === $this->rpcAdapter) {
             throw new Exception(self::DEBUG_PREFIX . 'No RPC adapter available, cannot fetch registration data');
         }

lib/Disco.php

@@ -279,16 +279,11 @@ public function handleRequest()
         }
         if (!empty($state['aarc_idp_hint'])) {
             $hintedIdp = $state['aarc_idp_hint'];
-            if (! array_key_exists($hintedIdp, $idpList)) {
-                throw new Exception("Invalid request - IDP is not allowed to be used for this SP");
+            if (!array_key_exists($hintedIdp, $idpList)) {
+                throw new Exception('Invalid request - IDP is not allowed to be used for this SP');
             }
             Logger::info('Redirecting to hinted IdP using AARC_IDP_HINT. Redirecting to: ' . $hintedIdp);
-            $url = self::buildContinueUrl(
-                $this->spEntityId,
-                $this->returnURL,
-                $this->returnIdParam,
-                $hintedIdp
-            );
+            $url = self::buildContinueUrl($this->spEntityId, $this->returnURL, $this->returnIdParam, $hintedIdp);
             HTTP::redirectTrustedURL($url);
         }
 

www/updateUes.php

@@ -204,8 +204,13 @@ function getAttributesFromPerun($adapter, $attrMap, $userExtSource): array
     return $attributesFromPerun;
 }
 
-function getAttributesToUpdate($attributesFromPerun, $attrMap, $serializedAttributes, $appendOnlyAttrs,  $attributesFromIdP): array
-{
+function getAttributesToUpdate(
+    $attributesFromPerun,
+    $attrMap,
+    $serializedAttributes,
+    $appendOnlyAttrs,
+    $attributesFromIdP
+): array {
     $attributesToUpdate = [];
 
     foreach ($attributesFromPerun as $attribute) {
@@ -217,13 +222,12 @@ function getAttributesToUpdate($attributesFromPerun, $attrMap, $serializedAttrib
         // appendOnly && has value && (complex || serialized)
         if (in_array($attrName, $appendOnlyAttrs, true) &&
             !empty($attribute[VALUE]) &&
-            (isComplexType($attribute[TYPE]) ||  in_array($attrName, $serializedAttributes, true))
+            (isComplexType($attribute[TYPE]) || in_array($attrName, $serializedAttributes, true))
         ) {
             $attr = in_array($attrName, $serializedAttributes, true) ?
                 array_merge($attr, explode(';', $attribute[VALUE])) : array_merge($attr, $attribute[VALUE]);
         }
 
-
         if (isSimpleType($attribute[TYPE])) {
             $newValue = convertToString($attr);
         } elseif (isComplexType($attribute[TYPE])) {