contributte
diff --git a/‎.docs/README.md‎
Lines changed: 9 additions & 4 deletions b/‎.docs/README.md‎
Lines changed: 9 additions & 4 deletions
diff --git a/‎.editorconfig‎
Lines changed: 7 additions & 13 deletions b/‎.editorconfig‎
Lines changed: 7 additions & 13 deletions
diff --git a/‎.gitignore‎
Lines changed: 2 additions & 0 deletions b/‎.gitignore‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎.travis.yml‎
Lines changed: 43 additions & 36 deletions b/‎.travis.yml‎
Lines changed: 43 additions & 36 deletions
diff --git a/‎README.md‎
Lines changed: 9 additions & 0 deletions b/‎README.md‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎composer.json‎
Lines changed: 40 additions & 10 deletions b/‎composer.json‎
Lines changed: 40 additions & 10 deletions
diff --git a/‎phpstan.neon‎
Lines changed: 12 additions & 0 deletions b/‎phpstan.neon‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎ruleset.xml‎
Lines changed: 18 additions & 0 deletions b/‎ruleset.xml‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎src/Auth/BasicAuthenticator.php‎
Lines changed: 26 additions & 29 deletions b/‎src/Auth/BasicAuthenticator.php‎
Lines changed: 26 additions & 29 deletions
@@ -65,16 +65,21 @@ extensions:
     auth: Contributte\Http\DI\BasicAuthExtension
 ```
 
-You have `enable` this extension by yourself. It's disabled by default. Users is array of username => password.
+You have `enable` this extension by yourself. It's disabled by default.
 
 ```yaml
 auth:
     enabled: true/false
     title: My security zone
     users:
-      username1: password1
-      username2: password2
-      username3: password3
+      username1:
+        password: password1
+        unsecured: true
+      username2:
+        password: $2y$10$p.U5q.BuQp02srggig.VDOqj5m7pE1rCwKavVQ3S2TrqWlkqu3qlC
+        unsecured: false # secured by default
+      username3:
+        password: $2y$10$bgievYVQMzsRn5Ysup.NKOVUk66aitAniAmts2EJAa91eqkAhohvC
 ```
 
 ## Useful classes
 
@@ -1,26 +1,20 @@
 # EditorConfig is awesome: http://EditorConfig.org
 
-# Top-most EditorConfig file
 root = true
 
-# Unix-style newlines with a newline ending every file
 [*]
+charset = utf-8
 end_of_line = lf
 insert_final_newline = true
-
-# JS / PHP
-[*.{js,php,phpt}]
-charset = utf-8
+trim_trailing_whitespace = true
 indent_style = tab
-indent_size = 4
+indent_size = tab
+tab_width = 4
 
-# NEON
-[*.neon]
-charset = utf-8
-indent_style = tab
+[*.md]
+indent_style = space
 indent_size = 4
 
-# Composer, NPM, Travis, BitbucketPipelines
-[{composer.json,package.json,.travis.yml,bitbucket-pipelines.yml}]
+[{composer.json,package.json,.travis.yml}]
 indent_style = space
 indent_size = 2
@@ -6,6 +6,8 @@
 /composer.lock
 
 # Tests
+/temp/
 /tests/*.log
 /tests/tmp
 /tests/coverage.html
+/coverage.xml
@@ -1,51 +1,58 @@
 language: php
 
 php:
-  - 5.6
-  - 7.0
   - 7.1
-  - hhvm
+  - 7.2
 
-matrix:
-  fast_finish: true
+before_install:
+  # turn off XDebug
+  - phpenv config-rm xdebug.ini || return 0
 
-  allow_failures:
-      - php: hhvm
-
-  include:
-    - php: 5.6
-      env: COMPOSER_FLAG=--prefer-lowest
-    - php: 5.6
-      env: COMPOSER_FLAG=--prefer-stable
-    - php: 7.0
-      env: COMPOSER_FLAG=--prefer-lowest
-    - php: 7.0
-      env: COMPOSER_FLAG=--prefer-stable
-    - php: 7.1
-      env: COMPOSER_FLAG=--prefer-lowest
-    - php: 7.1
-      env: COMPOSER_FLAG=--prefer-stable
-
-before_script:
+install:
   # Composer
-  - travis_retry composer install --no-interaction
-  # Coverage
-  - if [[ "$TRAVIS_PHP_VERSION" == "7.1" && "$COMPOSER_FLAG" == "" ]]; then COVERAGE=1; fi
+  - travis_retry composer install --no-progress --prefer-dist
 
 script:
-  # Quality Assurance
-  - travis_retry composer qa
-
-  # Nette\Tester
+  # Nette/Tester
   - composer run-script tester
 
-  # Nette\Tester + CodeCoverage
-  - if [ "$COVERAGE" != "" ]; then composer tester-coverage; fi
+jobs:
+  include:
+    - env: title="Lowest Dependencies 7.1"
+      php: 7.1
+      install:
+        - travis_retry composer update --no-progress --prefer-dist --prefer-lowest
+      script:
+        - composer run-script tester
+
+    - env: title="Lowest Dependencies 7.2"
+      php: 7.2
+      install:
+        - travis_retry composer update --no-progress --prefer-dist --prefer-lowest
+      script:
+        - composer run-script tester
+
+    - stage: Quality Assurance
+      php: 7.2
+      script:
+        - composer run-script qa
+
+    - stage: Test Coverage
+      php: 7.2
+      script:
+        - composer run-script coverage
+      after_script:
+        - wget https://github.com/php-coveralls/php-coveralls/releases/download/v2.0.0/php-coveralls.phar
+        - php php-coveralls.phar --verbose --config tests/.coveralls.yml
 
-after_script:
-  # Coverage (Coveralls)
-  - if [ "$COVERAGE" != "" ]; then wget https://github.com/satooshi/php-coveralls/releases/download/v1.0.1/coveralls.phar; fi
-  - if [ "$COVERAGE" != "" ]; then php coveralls.phar --verbose --config tests/.coveralls.yml; fi
+    - stage: Phpstan
+      php: 7.2
+      script:
+        - composer run-script phpstan-install
+        - composer run-script phpstan
+
+  allow_failures:
+    - stage: Test Coverage
 
 after_failure:
   # Print *.actual content
 
@@ -26,6 +26,8 @@ composer require contributte/http
 
 | State       | Version | Branch   | PHP      |
 |-------------|---------|----------|----------|
+| dev         | `^0.3`  | `master` | `>= 7.1` |
+| stable      | `^0.2`  | `master` | `>= 7.1` |
 | stable      | `^0.1`  | `master` | `>= 5.6` |
 
 ## Overview
@@ -48,6 +50,13 @@ composer require contributte/http
         </br>
         <a href="https://github.com/f3l1x">Milan Felix Šulc</a>
       </td>
+      <td align="center">
+        <a href="https://github.com/mabar">
+            <img width="150" height="150" src="https://avatars0.githubusercontent.com/u/20974277?s=400&v=4">
+        </a>
+        </br>
+        <a href="https://github.com/mabar">Marek Bartoš</a>
+      </td>
     </tr>
   <tbody>
 </table>
 
@@ -1,9 +1,18 @@
 {
   "name": "contributte/http",
   "description": "Extra contrib to nette/http",
-  "keywords": ["nette", "http", "request", "response", "curl", "auth"],
+  "keywords": [
+    "nette",
+    "http",
+    "request",
+    "response",
+    "curl",
+    "auth"
+  ],
   "type": "library",
-  "license": "MIT",
+  "license": [
+    "MIT"
+  ],
   "homepage": "https://github.com/contributte/http",
   "authors": [
     {
@@ -12,13 +21,18 @@
     }
   ],
   "require": {
-    "php": ">= 5.6",
-    "nette/http": "^2.4.5"
+    "php": ">= 7.1",
+    "nette/http": "~2.4.9"
   },
   "require-dev": {
-    "ninjify/qa": "^0.4.0",
-    "ninjify/nunjuck": "^0.1.4",
-    "nette/di": "^2.4.8"
+    "ninjify/qa": "^0.8.0",
+    "ninjify/nunjuck": "^0.2.0",
+    "nette/di": "~2.4.13",
+    "tracy/tracy": "~2.5.1"
+  },
+  "conflict": {
+    "nette/di": "<2.4.13",
+    "nette/utils": "<2.5.2"
   },
   "suggest": {
     "nette/di": "to use CompilerExtensions"
@@ -28,16 +42,32 @@
       "Contributte\\Http\\": "src"
     }
   },
+  "minimum-stability": "dev",
+  "prefer-stable": true,
   "scripts": {
     "qa": [
       "linter src tests",
       "codesniffer src tests"
     ],
     "tester": [
-      "tester -s -p php --colors 1 -c tests/php-unix.ini tests/cases"
+      "tester -s -p php --colors 1 -C tests/cases"
+    ],
+    "coverage": [
+      "tester -s -p php --colors 1 -C -d extension=xdebug.so --coverage ./coverage.xml --coverage-src ./src tests/cases"
     ],
-    "tester-coverage": [
-      "tester -s -p php --colors 1 -c tests/php-unix.ini -d extension=xdebug.so --coverage ./coverage.xml --coverage-src ./src tests/cases"
+    "phpstan-install": [
+      "mkdir -p temp/phpstan",
+      "composer require -d temp/phpstan phpstan/phpstan:0.10.1",
+      "composer require -d temp/phpstan phpstan/phpstan-nette:0.10",
+      "composer require -d temp/phpstan phpstan/phpstan-strict-rules:0.10"
+    ],
+    "phpstan": [
+      "temp/phpstan/vendor/bin/phpstan analyse -l max -c phpstan.neon src"
     ]
+  },
+  "extra": {
+    "branch-alias": {
+      "dev-master": "0.3.x-dev"
+    }
   }
 }
@@ -0,0 +1,12 @@
+includes:
+	- temp/phpstan/vendor/phpstan/phpstan-strict-rules/rules.neon
+	- temp/phpstan/vendor/phpstan/phpstan-nette/extension.neon
+	- temp/phpstan/vendor/phpstan/phpstan-nette/rules.neon
+
+parameters:
+	ignoreErrors:
+		- '#Parameter \#1 \$ch of function curl_setopt_array expects resource, resource\|false given.#'
+		- '#Parameter \#1 \$ch of function curl_exec expects resource, resource\|false given.#'
+		- '#Parameter \#1 \$ch of function curl_getinfo expects resource, resource\|false given.#'
+		- '#Parameter \#1 \$ch of function curl_close expects resource, resource\|false given.#'
+		- '#Parameter \#1 \$body of method Contributte\\Http\\Curl\\ResponseFactory::setBody\(\) expects string, bool\|string given.#'
@@ -0,0 +1,18 @@
+<?xml version="1.0"?>
+<ruleset name="Contributte">
+	<!-- Contributte Coding Standard -->
+	<rule ref="./vendor/ninjify/coding-standard/contributte.xml"/>
+
+    <!-- Specific rules -->
+    <rule ref="SlevomatCodingStandard.Files.TypeNameMatchesFileName">
+        <properties>
+            <property name="rootNamespaces" type="array" value="
+				src=>Contributte\Http
+			"/>
+        </properties>
+    </rule>
+
+    <!--Exclude folders -->
+    <exclude-pattern>/tests/tmp</exclude-pattern>
+</ruleset>
+
@@ -1,67 +1,64 @@
-<?php
+<?php declare(strict_types = 1);
 
 namespace Contributte\Http\Auth;
 
 use Nette\Http\IRequest;
 use Nette\Http\IResponse;
+use Tracy\Debugger;
 
 class BasicAuthenticator
 {
 
 	/** @var string */
 	private $title;
 
-	/** @var array */
+	/** @var mixed[] */
 	private $users = [];
 
-	/**
-	 * @param string $title
-	 */
-	public function __construct($title)
+	public function __construct(string $title)
 	{
 		$this->title = $title;
 	}
 
-	/**
-	 * @param string $user
-	 * @param string $password
-	 * @return static
-	 */
-	public function addUser($user, $password)
+	public function addUser(string $user, string $password, bool $unsecured): self
 	{
-		$this->users[$user] = $password;
-
+		$this->users[$user] = [
+			'password' => $password,
+			'unsecured' => $unsecured,
+		];
 		return $this;
 	}
 
-	/**
-	 * @param IRequest $request
-	 * @param IResponse $response
-	 * @return void
-	 */
-	public function authenticate(IRequest $request, IResponse $response)
+	public function authenticate(IRequest $request, IResponse $response): void
 	{
 		$user = $request->getUrl()->getUser();
 		$password = $request->getUrl()->getPassword();
 
 		if (!$this->auth($user, $password)) {
+			if (class_exists(Debugger::class)) {
+				Debugger::$productionMode = true;
+			}
+
 			$response->setHeader('WWW-Authenticate', sprintf('Basic realm="%s"', $this->title));
 			$response->setCode(IResponse::S401_UNAUTHORIZED);
+
 			echo '<h1>Authentication failed.</h1>';
-			die();
+			die;
 		}
 	}
 
-	/**
-	 * @param string $user
-	 * @param string $password
-	 * @return bool
-	 */
-	protected function auth($user, $password)
+	protected function auth(string $user, string $password): bool
 	{
-		if (!isset($this->users[$user])) return FALSE;
+		if (!isset($this->users[$user])) return false;
+
+		if (
+			($this->users[$user]['unsecured'] === true && !hash_equals($password, $this->users[$user]['password'])) ||
+			($this->users[$user]['unsecured'] === false && !password_verify($password, $this->users[$user]['password']))
+		) {
+			return false;
+		}
 
-		return $this->users[$user] === $password;
+		return true;
 	}
 
 }