Improved comments and error message

robertlemke · robertlemke · commit 303e7f960d35 · 2021-09-17T08:24:33.000+02:00
diff --git a/Classes/OAuthClient.php b/Classes/OAuthClient.php
@@ -255,7 +255,7 @@ public function requestAccessToken(string $serviceName, string $clientId, string
      * @return string
      * @throws OAuthClientException
      */
-    public function generateAuthorizationIdForAuthorizationCodeGrant(string $clientId)
+    public function generateAuthorizationIdForAuthorizationCodeGrant(string $clientId): string
     {
         return Authorization::generateAuthorizationIdForAuthorizationCodeGrant($this->getServiceType(), $this->getServiceName(), $clientId);
     }
@@ -278,6 +278,14 @@ public function startAuthorization(string $clientId, string $clientSecret, UriIn
 
     /**
      * Start OAuth authorization with the Authorization Code flow
+     * based on a specified authorization identifier.
+     *
+     * Note that, if you use this method, it is your responsibility to provide a
+     * meaningful authorization id. You might weaken the security of your
+     * application if you use an id which is deterministic or can be guessed by
+     * an attacker.
+     *
+     * If in doubt, always use startAuthorization() instead.
      *
      * @param string $clientId The client id, as provided by the OAuth server
      * @param string $clientSecret The client secret, provided by the OAuth server
@@ -511,8 +519,8 @@ public function renderFinishAuthorizationUri(): string
     }
 
     /**
-     * Helper method to set metadate on an Authorization instance, makes sure the
-     * change is persisted.
+     * Helper method to set metadata on an Authorization instance. Changes are
+     * persisted immediately.
      *
      * @param string $authorizationId
      * @param string $metadata
@@ -522,7 +530,7 @@ public function setAuthorizationMetadata(string $authorizationId, string $metada
     {
         $authorization = $this->getAuthorization($authorizationId);
         if ($authorization === null) {
-            throw new \RuntimeException('Authorization not found', 1631821719);
+            throw new \RuntimeException(sprintf('Failed setting authorization metadata: authorization %s was not found', $authorizationId), 1631821719);
         }
         $authorization->setMetadata($metadata);
 

Original file line number	Diff line number	Diff line change
`@@ -255,7 +255,7 @@ public function requestAccessToken(string $serviceName, string $clientId, string`
`255`	`255`	`* @return string`
`256`	`256`	`* @throws OAuthClientException`
`257`	`257`	`*/`
`258`		`- public function generateAuthorizationIdForAuthorizationCodeGrant(string $clientId)`
	`258`	`+ public function generateAuthorizationIdForAuthorizationCodeGrant(string $clientId): string`
`259`	`259`	`{`
`260`	`260`	`return Authorization::generateAuthorizationIdForAuthorizationCodeGrant($this->getServiceType(), $this->getServiceName(), $clientId);`
`261`	`261`	`}`
`@@ -278,6 +278,14 @@ public function startAuthorization(string $clientId, string $clientSecret, UriIn`
`278`	`278`
`279`	`279`	`/**`
`280`	`280`	`* Start OAuth authorization with the Authorization Code flow`
	`281`	`+ * based on a specified authorization identifier.`
	`282`	`+ *`
	`283`	`+ * Note that, if you use this method, it is your responsibility to provide a`
	`284`	`+ * meaningful authorization id. You might weaken the security of your`
	`285`	`+ * application if you use an id which is deterministic or can be guessed by`
	`286`	`+ * an attacker.`
	`287`	`+ *`
	`288`	`+ * If in doubt, always use startAuthorization() instead.`
`281`	`289`	`*`
`282`	`290`	`* @param string $clientId The client id, as provided by the OAuth server`
`283`	`291`	`* @param string $clientSecret The client secret, provided by the OAuth server`
`@@ -511,8 +519,8 @@ public function renderFinishAuthorizationUri(): string`
`511`	`519`	`}`
`512`	`520`
`513`	`521`	`/**`
`514`		`- * Helper method to set metadate on an Authorization instance, makes sure the`
`515`		`- * change is persisted.`
	`522`	`+ * Helper method to set metadata on an Authorization instance. Changes are`
	`523`	`+ * persisted immediately.`
`516`	`524`	`*`
`517`	`525`	`* @param string $authorizationId`
`518`	`526`	`* @param string $metadata`
`@@ -522,7 +530,7 @@ public function setAuthorizationMetadata(string $authorizationId, string $metada`
`522`	`530`	`{`
`523`	`531`	`$authorization = $this->getAuthorization($authorizationId);`
`524`	`532`	`if ($authorization === null) {`
`525`		`- throw new \RuntimeException('Authorization not found', 1631821719);`
	`533`	`+ throw new \RuntimeException(sprintf('Failed setting authorization metadata: authorization %s was not found', $authorizationId), 1631821719);`
`526`	`534`	`}`
`527`	`535`	`$authorization->setMetadata($metadata);`
`528`	`536`