flownative
diff --git a/‎Classes/Authorization.php‎
Lines changed: 9 additions & 72 deletions b/‎Classes/Authorization.php‎
Lines changed: 9 additions & 72 deletions
diff --git a/‎Classes/Command/OAuthCommandController.php‎
Lines changed: 6 additions & 10 deletions b/‎Classes/Command/OAuthCommandController.php‎
Lines changed: 6 additions & 10 deletions
diff --git a/‎Classes/Controller/OAuthController.php‎
Lines changed: 6 additions & 4 deletions b/‎Classes/Controller/OAuthController.php‎
Lines changed: 6 additions & 4 deletions
diff --git a/‎Classes/EncryptionService.php‎
Lines changed: 8 additions & 25 deletions b/‎Classes/EncryptionService.php‎
Lines changed: 8 additions & 25 deletions
@@ -14,9 +14,6 @@
  */
 
 use Doctrine\ORM\Mapping as ORM;
-use Exception;
-use InvalidArgumentException;
-use JsonException;
 use League\OAuth2\Client\Token\AccessToken;
 use League\OAuth2\Client\Token\AccessTokenInterface;
 use Neos\Flow\Annotations as Flow;
@@ -89,13 +86,6 @@ class Authorization
      */
     protected $encryptionService;
 
-    /**
-     * @param string $authorizationId
-     * @param string $serviceName
-     * @param string $clientId
-     * @param string $grantType
-     * @param string $scope
-     */
     public function __construct(string $authorizationId, string $serviceName, string $clientId, string $grantType, string $scope)
     {
         $this->authorizationId = $authorizationId;
@@ -105,9 +95,6 @@ public function __construct(string $authorizationId, string $serviceName, string
         $this->scope = $scope;
     }
 
-    /**
-     * @param EncryptionService $encryptionService
-     */
     public function injectEncryptionService(EncryptionService $encryptionService): void
     {
         $this->encryptionService = $encryptionService;
@@ -116,128 +103,84 @@ public function injectEncryptionService(EncryptionService $encryptionService): v
     /**
      * Calculate an authorization identifier (for this model) from the given parameters.
      *
-     * @param string $serviceType
-     * @param string $serviceName
-     * @param string $clientId
-     * @return string
      * @throws OAuthClientException
      */
     public static function generateAuthorizationIdForAuthorizationCodeGrant(string $serviceType, string $serviceName, string $clientId): string
     {
         try {
             return $serviceType . '-' . $serviceName . '-' . Uuid::uuid4()->toString();
             // @codeCoverageIgnoreStart
-        } catch (Exception $e) {
+        } catch (\Exception $e) {
             throw new OAuthClientException(sprintf('Failed generating authorization id for %s %s', $serviceName, $clientId), 1597311416, $e);
         }
         // @codeCoverageIgnoreEnd
     }
 
     /**
      * Calculate an authorization identifier (for this model) from the given parameters.
-     *
-     * @param string $serviceName
-     * @param string $clientId
-     * @param string $clientSecret
-     * @param string $scope
-     * @param array $additionalParameters
-     * @return string
      */
     public static function generateAuthorizationIdForClientCredentialsGrant(string $serviceName, string $clientId, string $clientSecret, string $scope, array $additionalParameters = []): string
     {
         try {
             $additionalParametersJson = json_encode($additionalParameters, JSON_THROW_ON_ERROR);
-        } catch (JsonException $e) {
+        } catch (\JsonException) {
             $additionalParametersJson = '';
         }
         return hash('sha512', $serviceName . $clientId . $clientSecret . $scope . $additionalParametersJson . self::GRANT_CLIENT_CREDENTIALS);
     }
 
-    /**
-     * @return string
-     */
     public function getAuthorizationId(): string
     {
         return $this->authorizationId;
     }
 
-    /**
-     * @return string
-     */
     public function getServiceName(): string
     {
         return $this->serviceName;
     }
 
-    /**
-     * @return string
-     */
     public function getClientId(): string
     {
         return $this->clientId;
     }
 
-    /**
-     * @return string
-     */
     public function getGrantType(): string
     {
         return $this->grantType;
     }
 
-    /**
-     * @return string
-     * @return void
-     */
     public function getScope(): string
     {
         return $this->scope;
     }
 
-    /**
-     * @param string $scope
-     */
     public function setScope(string $scope): void
     {
         $this->scope = $scope;
     }
 
-    /**
-     * @return string
-     */
     public function getSerializedAccessToken(): string
     {
         return $this->serializedAccessToken ?? '';
     }
 
-    /**
-     * @param string $serializedAccessToken
-     */
     public function setSerializedAccessToken(string $serializedAccessToken): void
     {
         $this->serializedAccessToken = $serializedAccessToken;
     }
 
-    /**
-     * @return string
-     */
     public function getEncryptedSerializedAccessToken(): string
     {
         return $this->encryptedSerializedAccessToken ?? '';
     }
 
-    /**
-     * @param string $encryptedSerializedAccessToken
-     */
     public function setEncryptedSerializedAccessToken(string $encryptedSerializedAccessToken): void
     {
         $this->encryptedSerializedAccessToken = $encryptedSerializedAccessToken;
     }
 
     /**
-     * @param AccessTokenInterface $accessToken
-     * @return void
-     * @throws InvalidArgumentException
+     * @throws \InvalidArgumentException
      */
     public function setAccessToken(AccessTokenInterface $accessToken): void
     {
@@ -248,19 +191,19 @@ public function setAccessToken(AccessTokenInterface $accessToken): void
 
         try {
             if ($this->encryptionService !== null && $this->encryptionService->isConfigured()) {
-                $this->encryptedSerializedAccessToken = $this->encryptionService->encryptAndEncode(json_encode($accessToken, JSON_THROW_ON_ERROR, 512));
+                $this->encryptedSerializedAccessToken = $this->encryptionService->encryptAndEncode(json_encode($accessToken, JSON_THROW_ON_ERROR));
             } else {
-                $this->serializedAccessToken = json_encode($accessToken, JSON_THROW_ON_ERROR, 512);
+                $this->serializedAccessToken = json_encode($accessToken, JSON_THROW_ON_ERROR);
             }
             // @codeCoverageIgnoreStart
-        } catch (JsonException | Exception $e) {
-            throw new InvalidArgumentException('Failed serializing the given access token', 1602515717, $e);
+        } catch (\JsonException | \Exception $e) {
+            throw new \InvalidArgumentException('Failed serializing the given access token', 1602515717, $e);
             // @codeCoverageIgnoreEnd
         }
     }
 
     /**
-     * @return AccessToken
+     * @throws \SodiumException
      */
     public function getAccessToken(): ?AccessToken
     {
@@ -279,22 +222,16 @@ public function getAccessToken(): ?AccessToken
                 $deserializedAccessToken = json_decode($this->serializedAccessToken, true, 512, JSON_THROW_ON_ERROR);
                 return new AccessToken($deserializedAccessToken);
             }
-        } catch (JsonException $e) {
+        } catch (\JsonException) {
         }
         return null;
     }
 
-    /**
-     * @return \DateTimeImmutable
-     */
     public function getExpires(): ?\DateTimeImmutable
     {
         return $this->expires;
     }
 
-    /**
-     * @param \DateTimeImmutable $expires
-     */
     public function setExpires(\DateTimeImmutable $expires): void
     {
         $this->expires = $expires;
 
@@ -1,21 +1,17 @@
 <?php
+declare(strict_types=1);
+
 namespace Flownative\OAuth2\Client\Command;
 
 use Doctrine\ORM\EntityManagerInterface as DoctrineEntityManagerInterface;
-use Doctrine\ORM\OptimisticLockException;
-use Doctrine\ORM\ORMException;
-use Exception;
 use Flownative\OAuth2\Client\Authorization;
 use Flownative\OAuth2\Client\EncryptionService;
 use Neos\Flow\Cli\CommandController;
 use Neos\Flow\Persistence\Doctrine\Query;
 
 final class OAuthCommandController extends CommandController
 {
-    /**
-     * @var DoctrineEntityManagerInterface
-     */
-    protected $entityManager;
+    protected DoctrineEntityManagerInterface $entityManager;
 
     /**
      * @param DoctrineEntityManagerInterface $entityManager
@@ -34,6 +30,7 @@ public function injectEntityManager(DoctrineEntityManagerInterface $entityManage
      * a hash over service name, client id, grant type and scope.
      *
      * @return void
+     * @throws \SodiumException
      */
     public function listAuthorizationsCommand(): void
     {
@@ -95,8 +92,7 @@ public function removeAuthorizationsCommand(string $id = '', bool $all = false):
         }
         try {
             $this->entityManager->flush();
-        } catch (OptimisticLockException $e) {
-        } catch (ORMException $e) {
+        } catch (\Exception $e) {
             $this->outputLine('<error>Failed:</error> ' . $e->getMessage());
             exit(1);
         }
@@ -111,7 +107,7 @@ public function removeAuthorizationsCommand(string $id = '', bool $all = false):
      *
      * @param string $construction
      * @return void
-     * @throws Exception
+     * @throws \Exception
      */
     public function generateEncryptionKeyCommand(string $construction = 'ChaCha20-Poly1305-IETF'): void
     {
 
@@ -1,8 +1,11 @@
 <?php
+declare(strict_types=1);
+
 namespace Flownative\OAuth2\Client\Controller;
 
 use Flownative\OAuth2\Client\OAuthClient;
 use Flownative\OAuth2\Client\OAuthClientException;
+use GuzzleHttp\Exception\GuzzleException;
 use GuzzleHttp\Psr7\Uri;
 use Neos\Flow\Annotations\CompileStatic;
 use Neos\Flow\Mvc\Controller\ActionController;
@@ -13,10 +16,7 @@
 
 final class OAuthController extends ActionController
 {
-    /**
-     * @var array
-     */
-    private $serviceTypes;
+    private array $serviceTypes;
 
     /**
      * @return void
@@ -38,6 +38,7 @@ public function initializeObject(): void
      * @throws OAuthClientException
      * @throws StopActionException
      * @throws UnsupportedRequestTypeException
+     * @throws \DateMalformedStringException
      */
     public function startAuthorizationAction(string $clientId, string $clientSecret, Uri $returnToUri, string $serviceType, string $serviceName, string $scope): void
     {
@@ -66,6 +67,7 @@ public function startAuthorizationAction(string $clientId, string $clientSecret,
      * @throws OAuthClientException
      * @throws StopActionException
      * @throws UnsupportedRequestTypeException
+     * @throws GuzzleException
      */
     public function finishAuthorizationAction(string $serviceType, string $serviceName, string $state, string $code, string $scope = ''): void
     {
 
@@ -1,8 +1,8 @@
 <?php
+declare(strict_types=1);
 
 namespace Flownative\OAuth2\Client;
 
-use Exception;
 use Neos\Flow\Annotations as Flow;
 
 /**
@@ -12,18 +12,11 @@ class EncryptionService {
 
     /**
      * @Flow\InjectConfiguration(path="encryption.base64EncodedKey")
-     * @var string
      */
-    protected $base64EncodedKey;
+    protected string $base64EncodedKey = '';
 
-    /**
-     * @var string
-     */
-    protected $key;
+    protected string $key;
 
-    /**
-     * @return void
-     */
     public function initializeObject(): void
     {
         $this->key = base64_decode($this->base64EncodedKey, true);
@@ -32,17 +25,11 @@ public function initializeObject(): void
         }
     }
 
-    /**
-     * @param string $key
-     */
     public function setKey(string $key): void
     {
         $this->key = $key;
     }
 
-    /**
-     * @return bool
-     */
     public function isConfigured(): bool
     {
         return !empty($this->key);
@@ -52,9 +39,7 @@ public function isConfigured(): bool
      * Encrypts the given data using the configured encryption method and returns a string
      * containing the construction name and the base64-encoded nonce and encrypted data.
      *
-     * @param string $data Data to encrypt
-     * @return string Encoded, encrypted data, suitable for storage (e.g. in the database)
-     * @throws Exception
+     * @throws \Exception
      */
     public function encryptAndEncode(string $data): string
     {
@@ -73,12 +58,12 @@ public function encryptAndEncode(string $data): string
      * Decrypts the given encoded and encrypted data using the configured encryption method
      * and returns the decrypted data.
      *
-     * @param string $encodedAndEncryptedData The data originally created by encryptAndEncode()
-     * @return string Decrypted data
+     * @throws \SodiumException
+     * @see encryptAndEncode()
      */
     public function decodeAndDecrypt(string $encodedAndEncryptedData): string
     {
-        list($construction, $encodedNonce, $encodedEncryptedSerializedAccessToken) = explode('$', $encodedAndEncryptedData);
+        [$construction, $encodedNonce, $encodedEncryptedSerializedAccessToken] = explode('$', $encodedAndEncryptedData);
         if ($construction !== 'ChaCha20-Poly1305-IETF') {
             throw new \RuntimeException(sprintf('Failed decrypting serialized access token: unsupported AEAD construction "%s"', $construction), 1604938723);
         }
@@ -93,12 +78,10 @@ public function decodeAndDecrypt(string $encodedAndEncryptedData): string
     }
 
     /**
-     * @return string
-     * @throws Exception
+     * @throws \Exception
      */
     public function generateEncryptionKey(): string
     {
         return sodium_crypto_aead_chacha20poly1305_ietf_keygen();
     }
-
 }
Original file line number	Diff line number	Diff line change
`@@ -14,9 +14,6 @@`
`14`	`14`	`*/`
`15`	`15`
`16`	`16`	`use Doctrine\ORM\Mapping as ORM;`
`17`		`-use Exception;`
`18`		`-use InvalidArgumentException;`
`19`		`-use JsonException;`
`20`	`17`	`use League\OAuth2\Client\Token\AccessToken;`
`21`	`18`	`use League\OAuth2\Client\Token\AccessTokenInterface;`
`22`	`19`	`use Neos\Flow\Annotations as Flow;`
`@@ -89,13 +86,6 @@ class Authorization`
`89`	`86`	`*/`
`90`	`87`	`protected $encryptionService;`
`91`	`88`
`92`		`- /**`
`93`		`- * @param string $authorizationId`
`94`		`- * @param string $serviceName`
`95`		`- * @param string $clientId`
`96`		`- * @param string $grantType`
`97`		`- * @param string $scope`
`98`		`- */`
`99`	`89`	`public function __construct(string $authorizationId, string $serviceName, string $clientId, string $grantType, string $scope)`
`100`	`90`	`{`
`101`	`91`	`$this->authorizationId = $authorizationId;`
`@@ -105,9 +95,6 @@ public function __construct(string $authorizationId, string $serviceName, string`
`105`	`95`	`$this->scope = $scope;`
`106`	`96`	`}`
`107`	`97`
`108`		`- /**`
`109`		`- * @param EncryptionService $encryptionService`
`110`		`- */`
`111`	`98`	`public function injectEncryptionService(EncryptionService $encryptionService): void`
`112`	`99`	`{`
`113`	`100`	`$this->encryptionService = $encryptionService;`
`@@ -116,128 +103,84 @@ public function injectEncryptionService(EncryptionService $encryptionService): v`
`116`	`103`	`/**`
`117`	`104`	`* Calculate an authorization identifier (for this model) from the given parameters.`
`118`	`105`	`*`
`119`		`- * @param string $serviceType`
`120`		`- * @param string $serviceName`
`121`		`- * @param string $clientId`
`122`		`- * @return string`
`123`	`106`	`* @throws OAuthClientException`
`124`	`107`	`*/`
`125`	`108`	`public static function generateAuthorizationIdForAuthorizationCodeGrant(string $serviceType, string $serviceName, string $clientId): string`
`126`	`109`	`{`
`127`	`110`	`try {`
`128`	`111`	`return $serviceType . '-' . $serviceName . '-' . Uuid::uuid4()->toString();`
`129`	`112`	`// @codeCoverageIgnoreStart`
`130`		`- } catch (Exception $e) {`
	`113`	`+ } catch (\Exception $e) {`
`131`	`114`	`throw new OAuthClientException(sprintf('Failed generating authorization id for %s %s', $serviceName, $clientId), 1597311416, $e);`
`132`	`115`	`}`
`133`	`116`	`// @codeCoverageIgnoreEnd`
`134`	`117`	`}`
`135`	`118`
`136`	`119`	`/**`
`137`	`120`	`* Calculate an authorization identifier (for this model) from the given parameters.`
`138`		`- *`
`139`		`- * @param string $serviceName`
`140`		`- * @param string $clientId`
`141`		`- * @param string $clientSecret`
`142`		`- * @param string $scope`
`143`		`- * @param array $additionalParameters`
`144`		`- * @return string`
`145`	`121`	`*/`
`146`	`122`	`public static function generateAuthorizationIdForClientCredentialsGrant(string $serviceName, string $clientId, string $clientSecret, string $scope, array $additionalParameters = []): string`
`147`	`123`	`{`
`148`	`124`	`try {`
`149`	`125`	`$additionalParametersJson = json_encode($additionalParameters, JSON_THROW_ON_ERROR);`
`150`		`- } catch (JsonException $e) {`
	`126`	`+ } catch (\JsonException) {`
`151`	`127`	`$additionalParametersJson = '';`
`152`	`128`	`}`
`153`	`129`	`return hash('sha512', $serviceName . $clientId . $clientSecret . $scope . $additionalParametersJson . self::GRANT_CLIENT_CREDENTIALS);`
`154`	`130`	`}`
`155`	`131`
`156`		`- /**`
`157`		`- * @return string`
`158`		`- */`
`159`	`132`	`public function getAuthorizationId(): string`
`160`	`133`	`{`
`161`	`134`	`return $this->authorizationId;`
`162`	`135`	`}`
`163`	`136`
`164`		`- /**`
`165`		`- * @return string`
`166`		`- */`
`167`	`137`	`public function getServiceName(): string`
`168`	`138`	`{`
`169`	`139`	`return $this->serviceName;`
`170`	`140`	`}`
`171`	`141`
`172`		`- /**`
`173`		`- * @return string`
`174`		`- */`
`175`	`142`	`public function getClientId(): string`
`176`	`143`	`{`
`177`	`144`	`return $this->clientId;`
`178`	`145`	`}`
`179`	`146`
`180`		`- /**`
`181`		`- * @return string`
`182`		`- */`
`183`	`147`	`public function getGrantType(): string`
`184`	`148`	`{`
`185`	`149`	`return $this->grantType;`
`186`	`150`	`}`
`187`	`151`
`188`		`- /**`
`189`		`- * @return string`
`190`		`- * @return void`
`191`		`- */`
`192`	`152`	`public function getScope(): string`
`193`	`153`	`{`
`194`	`154`	`return $this->scope;`
`195`	`155`	`}`
`196`	`156`
`197`		`- /**`
`198`		`- * @param string $scope`
`199`		`- */`
`200`	`157`	`public function setScope(string $scope): void`
`201`	`158`	`{`
`202`	`159`	`$this->scope = $scope;`
`203`	`160`	`}`
`204`	`161`
`205`		`- /**`
`206`		`- * @return string`
`207`		`- */`
`208`	`162`	`public function getSerializedAccessToken(): string`
`209`	`163`	`{`
`210`	`164`	`return $this->serializedAccessToken ?? '';`
`211`	`165`	`}`
`212`	`166`
`213`		`- /**`
`214`		`- * @param string $serializedAccessToken`
`215`		`- */`
`216`	`167`	`public function setSerializedAccessToken(string $serializedAccessToken): void`
`217`	`168`	`{`
`218`	`169`	`$this->serializedAccessToken = $serializedAccessToken;`
`219`	`170`	`}`
`220`	`171`
`221`		`- /**`
`222`		`- * @return string`
`223`		`- */`
`224`	`172`	`public function getEncryptedSerializedAccessToken(): string`
`225`	`173`	`{`
`226`	`174`	`return $this->encryptedSerializedAccessToken ?? '';`
`227`	`175`	`}`
`228`	`176`
`229`		`- /**`
`230`		`- * @param string $encryptedSerializedAccessToken`
`231`		`- */`
`232`	`177`	`public function setEncryptedSerializedAccessToken(string $encryptedSerializedAccessToken): void`
`233`	`178`	`{`
`234`	`179`	`$this->encryptedSerializedAccessToken = $encryptedSerializedAccessToken;`
`235`	`180`	`}`
`236`	`181`
`237`	`182`	`/**`
`238`		`- * @param AccessTokenInterface $accessToken`
`239`		`- * @return void`
`240`		`- * @throws InvalidArgumentException`
	`183`	`+ * @throws \InvalidArgumentException`
`241`	`184`	`*/`
`242`	`185`	`public function setAccessToken(AccessTokenInterface $accessToken): void`
`243`	`186`	`{`
`@@ -248,19 +191,19 @@ public function setAccessToken(AccessTokenInterface $accessToken): void`
`248`	`191`
`249`	`192`	`try {`
`250`	`193`	`if ($this->encryptionService !== null && $this->encryptionService->isConfigured()) {`
`251`		`- $this->encryptedSerializedAccessToken = $this->encryptionService->encryptAndEncode(json_encode($accessToken, JSON_THROW_ON_ERROR, 512));`
	`194`	`+ $this->encryptedSerializedAccessToken = $this->encryptionService->encryptAndEncode(json_encode($accessToken, JSON_THROW_ON_ERROR));`
`252`	`195`	`} else {`
`253`		`- $this->serializedAccessToken = json_encode($accessToken, JSON_THROW_ON_ERROR, 512);`
	`196`	`+ $this->serializedAccessToken = json_encode($accessToken, JSON_THROW_ON_ERROR);`
`254`	`197`	`}`
`255`	`198`	`// @codeCoverageIgnoreStart`
`256`		`- } catch (JsonException \| Exception $e) {`
`257`		`- throw new InvalidArgumentException('Failed serializing the given access token', 1602515717, $e);`
	`199`	`+ } catch (\JsonException \| \Exception $e) {`
	`200`	`+ throw new \InvalidArgumentException('Failed serializing the given access token', 1602515717, $e);`
`258`	`201`	`// @codeCoverageIgnoreEnd`
`259`	`202`	`}`
`260`	`203`	`}`
`261`	`204`
`262`	`205`	`/**`
`263`		`- * @return AccessToken`
	`206`	`+ * @throws \SodiumException`
`264`	`207`	`*/`
`265`	`208`	`public function getAccessToken(): ?AccessToken`
`266`	`209`	`{`
`@@ -279,22 +222,16 @@ public function getAccessToken(): ?AccessToken`
`279`	`222`	`$deserializedAccessToken = json_decode($this->serializedAccessToken, true, 512, JSON_THROW_ON_ERROR);`
`280`	`223`	`return new AccessToken($deserializedAccessToken);`
`281`	`224`	`}`
`282`		`- } catch (JsonException $e) {`
	`225`	`+ } catch (\JsonException) {`
`283`	`226`	`}`
`284`	`227`	`return null;`
`285`	`228`	`}`
`286`	`229`
`287`		`- /**`
`288`		`- * @return \DateTimeImmutable`
`289`		`- */`
`290`	`230`	`public function getExpires(): ?\DateTimeImmutable`
`291`	`231`	`{`
`292`	`232`	`return $this->expires;`
`293`	`233`	`}`
`294`	`234`
`295`		`- /**`
`296`		`- * @param \DateTimeImmutable $expires`
`297`		`- */`
`298`	`235`	`public function setExpires(\DateTimeImmutable $expires): void`
`299`	`236`	`{`
`300`	`237`	`$this->expires = $expires;`
Original file line number	Diff line number	Diff line change
`@@ -1,8 +1,8 @@`
`1`	`1`	`<?php`
	`2`	`+declare(strict_types=1);`
`2`	`3`
`3`	`4`	`namespace Flownative\OAuth2\Client;`
`4`	`5`
`5`		`-use Exception;`
`6`	`6`	`use Neos\Flow\Annotations as Flow;`
`7`	`7`
`8`	`8`	`/**`
`@@ -12,18 +12,11 @@ class EncryptionService {`
`12`	`12`
`13`	`13`	`/**`
`14`	`14`	`* @Flow\InjectConfiguration(path="encryption.base64EncodedKey")`
`15`		`- * @var string`
`16`	`15`	`*/`
`17`		`- protected $base64EncodedKey;`
	`16`	`+ protected string $base64EncodedKey = '';`
`18`	`17`
`19`		`- /**`
`20`		`- * @var string`
`21`		`- */`
`22`		`- protected $key;`
	`18`	`+ protected string $key;`
`23`	`19`
`24`		`- /**`
`25`		`- * @return void`
`26`		`- */`
`27`	`20`	`public function initializeObject(): void`
`28`	`21`	`{`
`29`	`22`	`$this->key = base64_decode($this->base64EncodedKey, true);`
`@@ -32,17 +25,11 @@ public function initializeObject(): void`
`32`	`25`	`}`
`33`	`26`	`}`
`34`	`27`
`35`		`- /**`
`36`		`- * @param string $key`
`37`		`- */`
`38`	`28`	`public function setKey(string $key): void`
`39`	`29`	`{`
`40`	`30`	`$this->key = $key;`
`41`	`31`	`}`
`42`	`32`
`43`		`- /**`
`44`		`- * @return bool`
`45`		`- */`
`46`	`33`	`public function isConfigured(): bool`
`47`	`34`	`{`
`48`	`35`	`return !empty($this->key);`
`@@ -52,9 +39,7 @@ public function isConfigured(): bool`
`52`	`39`	`* Encrypts the given data using the configured encryption method and returns a string`
`53`	`40`	`* containing the construction name and the base64-encoded nonce and encrypted data.`
`54`	`41`	`*`
`55`		`- * @param string $data Data to encrypt`
`56`		`- * @return string Encoded, encrypted data, suitable for storage (e.g. in the database)`
`57`		`- * @throws Exception`
	`42`	`+ * @throws \Exception`
`58`	`43`	`*/`
`59`	`44`	`public function encryptAndEncode(string $data): string`
`60`	`45`	`{`
`@@ -73,12 +58,12 @@ public function encryptAndEncode(string $data): string`
`73`	`58`	`* Decrypts the given encoded and encrypted data using the configured encryption method`
`74`	`59`	`* and returns the decrypted data.`
`75`	`60`	`*`
`76`		`- * @param string $encodedAndEncryptedData The data originally created by encryptAndEncode()`
`77`		`- * @return string Decrypted data`
	`61`	`+ * @throws \SodiumException`
	`62`	`+ * @see encryptAndEncode()`
`78`	`63`	`*/`
`79`	`64`	`public function decodeAndDecrypt(string $encodedAndEncryptedData): string`
`80`	`65`	`{`
`81`		`- list($construction, $encodedNonce, $encodedEncryptedSerializedAccessToken) = explode('$', $encodedAndEncryptedData);`
	`66`	`+ [$construction, $encodedNonce, $encodedEncryptedSerializedAccessToken] = explode('$', $encodedAndEncryptedData);`
`82`	`67`	`if ($construction !== 'ChaCha20-Poly1305-IETF') {`
`83`	`68`	`throw new \RuntimeException(sprintf('Failed decrypting serialized access token: unsupported AEAD construction "%s"', $construction), 1604938723);`
`84`	`69`	`}`
`@@ -93,12 +78,10 @@ public function decodeAndDecrypt(string $encodedAndEncryptedData): string`
`93`	`78`	`}`
`94`	`79`
`95`	`80`	`/**`
`96`		`- * @return string`
`97`		`- * @throws Exception`
	`81`	`+ * @throws \Exception`
`98`	`82`	`*/`
`99`	`83`	`public function generateEncryptionKey(): string`
`100`	`84`	`{`
`101`	`85`	`return sodium_crypto_aead_chacha20poly1305_ietf_keygen();`
`102`	`86`	`}`
`103`		`-`
`104`	`87`	`}`