Use nullsafe operator

Guido Gröön · mrts · commit 5cf4dfd92bb7 · 2022-11-25T17:51:04.000+02:00
diff --git a/src/validator/AuthTokenValidatorBuilder.php b/src/validator/AuthTokenValidatorBuilder.php
@@ -55,9 +55,7 @@ public function __construct(LoggerInterface $logger = null)
     public function withSiteOrigin(Uri $origin): AuthTokenValidatorBuilder
     {
         $this->configuration->setSiteOrigin($origin);
-        if ($this->logger) {
-            $this->logger->debug("Origin set to " . $this->configuration->getSiteOrigin()->jsonSerialize());
-        }
+        $this->logger?->debug("Origin set to " . $this->configuration->getSiteOrigin()->jsonSerialize());
         return $this;
     }
 
@@ -77,9 +75,7 @@ public function withSiteOrigin(Uri $origin): AuthTokenValidatorBuilder
     public function withTrustedCertificateAuthorities(X509 ...$certificates): AuthTokenValidatorBuilder
     {
         array_push($this->configuration->getTrustedCACertificates(), ...$certificates);
-        if ($this->logger) {
-            $this->logger->debug("Trusted intermediate certificate authorities set to " . json_encode(X509Collection::getSubjectDNs(null, ...$this->configuration->getTrustedCACertificates())));
-        }
+        $this->logger?->debug("Trusted intermediate certificate authorities set to " . json_encode(X509Collection::getSubjectDNs(null, ...$this->configuration->getTrustedCACertificates())));
         return $this;
     }
 
@@ -96,9 +92,7 @@ public function withTrustedCertificateAuthorities(X509 ...$certificates): AuthTo
     public function withDisallowedCertificatePolicies(string ...$policies): AuthTokenValidatorBuilder
     {
         array_push($this->configuration->getDisallowedSubjectCertificatePolicies(), ...$policies);
-        if ($this->logger) {
-            $this->logger->debug("Disallowed subject certificate policies set to " . json_encode($this->configuration->getDisallowedSubjectCertificatePolicies()));
-        }
+        $this->logger?->debug("Disallowed subject certificate policies set to " . json_encode($this->configuration->getDisallowedSubjectCertificatePolicies()));
         return $this;
     }
 
@@ -114,9 +108,7 @@ public function withDisallowedCertificatePolicies(string ...$policies): AuthToke
     public function withoutUserCertificateRevocationCheckWithOcsp(): AuthTokenValidatorBuilder
     {
         $this->configuration->setUserCertificateRevocationCheckWithOcspDisabled();
-        if ($this->logger) {
-            $this->logger->warning("User certificate revocation check with OCSP is disabled, you should turn off the revocation check only in exceptional circumstances");
-        }
+        $this->logger?->warning("User certificate revocation check with OCSP is disabled, you should turn off the revocation check only in exceptional circumstances");
         return $this;
     }
 
@@ -131,9 +123,7 @@ public function withoutUserCertificateRevocationCheckWithOcsp(): AuthTokenValida
     public function withOcspRequestTimeout(int $ocspRequestTimeout): AuthTokenValidatorBuilder
     {
         $this->configuration->setOcspRequestTimeout($ocspRequestTimeout);
-        if ($this->logger) {
-            $this->logger->debug("OCSP request timeout set to " . $ocspRequestTimeout);
-        }
+        $this->logger?->debug("OCSP request timeout set to " . $ocspRequestTimeout);
         return $this;
     }
 
@@ -151,19 +141,15 @@ public function withNonceDisabledOcspUrls(URI ...$uris): AuthTokenValidatorBuild
         foreach ($uris as $uri) {
             $this->configuration->getNonceDisabledOcspUrls()->pushItem($uri);
         }
-        if ($this->logger) {
-            $this->logger->debug("OCSP URLs for which the nonce protocol extension is disabled set to " . implode(", ", $this->configuration->getNonceDisabledOcspUrls()->getUrlsArray()));
-        }
+        $this->logger?->debug("OCSP URLs for which the nonce protocol extension is disabled set to " . implode(", ", $this->configuration->getNonceDisabledOcspUrls()->getUrlsArray()));
 
         return $this;
     }
 
     public function withDesignatedOcspServiceConfiguration(DesignatedOcspServiceConfiguration $serviceConfiguration): AuthTokenValidatorBuilder
     {
         $this->configuration->setDesignatedOcspServiceConfiguration($serviceConfiguration);
-        if ($this->logger) {
-            $this->logger->debug("Using designated OCSP service configuration");
-        }
+        $this->logger?->debug("Using designated OCSP service configuration");
         return $this;
     }
 
diff --git a/src/validator/AuthTokenValidatorImpl.php b/src/validator/AuthTokenValidatorImpl.php
@@ -104,33 +104,25 @@ private function validateTokenLength(string $authToken): void
 
     public function parse(string $authToken): WebEidAuthToken
     {
-        if ($this->logger) {
-            $this->logger->info("Starting token parsing");
-        }
+        $this->logger?->info("Starting token parsing");
 
         try {
             $this->validateTokenLength($authToken);
             return new WebEidAuthToken($authToken);
         } catch (Throwable $e) {
-            if ($this->logger) {
-                $this->logger->warning("Token parsing was interrupted: " . $e->getMessage());
-            }
+            $this->logger?->warning("Token parsing was interrupted: " . $e->getMessage());
             throw $e;
         }
     }
 
     public function validate(WebEidAuthToken $authToken, string $currentChallengeNonce): X509
     {
-        if ($this->logger) {
-            $this->logger->info("Starting token validation");
-        }
+        $this->logger?->info("Starting token validation");
 
         try {
             return $this->validateToken($authToken, $currentChallengeNonce);
         } catch (Throwable $e) {
-            if ($this->logger) {
-                $this->logger->warning("Token validation was interrupted: " . $e->getMessage());
-            }
+            $this->logger?->warning("Token validation was interrupted: " . $e->getMessage());
             throw $e;
         }
     }
diff --git a/src/validator/certvalidators/SubjectCertificateExpiryValidator.php b/src/validator/certvalidators/SubjectCertificateExpiryValidator.php
@@ -46,12 +46,8 @@ public function validate(X509 $subjectCertificate): void
     {
         $now = DefaultClock::getInstance()->now();
         CertificateValidator::trustedCACertificatesAreValidOnDate($this->trustedCertificates, $now);
-        if ($this->logger) {
-            $this->logger->debug("CA certificates are valid.");
-        }
+        $this->logger?->debug("CA certificates are valid.");
         CertificateValidator::certificateIsValidOnDate($subjectCertificate, $now, "User");
-        if ($this->logger) {
-            $this->logger->debug("User certificate is valid.");
-        }
+        $this->logger?->debug("User certificate is valid.");
     }
 }
diff --git a/src/validator/certvalidators/SubjectCertificateNotRevokedValidator.php b/src/validator/certvalidators/SubjectCertificateNotRevokedValidator.php
@@ -60,16 +60,14 @@ public function validate(X509 $subjectCertificate): void
 
             $ocspService = $this->ocspServiceProvider->getService($subjectCertificate);
 
-            if ($this->logger && !$ocspService->doesSupportNonce()) {
-                $this->logger->debug("Disabling OCSP nonce extension");
+            if (!$ocspService->doesSupportNonce()) {
+                $this->logger?->debug("Disabling OCSP nonce extension");
             }
 
             $certificateId = (new Ocsp())->generateCertificateId($subjectCertificate, $this->trustValidator->getSubjectCertificateIssuerCertificate());
             $request = (new OcspRequestBuilder())->withCertificateId($certificateId)->enableOcspNonce($ocspService->doesSupportNonce())->build();
 
-            if ($this->logger) {
-                $this->logger->debug("Sending OCSP request");
-            }
+            $this->logger?->debug("Sending OCSP request");
 
             $response = $this->ocspClient->request($ocspService->getAccessLocation(), $request->getEncodeDer());
 
@@ -145,9 +143,7 @@ private function verifyOcspResponse(OcspResponse $response, OcspService $ocspSer
         // Now we can accept the signed response as valid and validate the certificate status.
         OcspResponseValidator::validateSubjectCertificateStatus($response);
 
-        if ($this->logger) {
-            $this->logger->debug("OCSP check result is GOOD");
-        }
+        $this->logger?->debug("OCSP check result is GOOD");
     }
 
     private static function checkNonce(OcspRequest $request, OcspBasicResponse $basicResponse): void
diff --git a/src/validator/certvalidators/SubjectCertificatePolicyValidator.php b/src/validator/certvalidators/SubjectCertificatePolicyValidator.php
@@ -41,9 +41,7 @@ public function __construct(array $disallowedSubjectCertificatePolicyIds, Logger
 
     public function validate(X509 $subjectCertificate): void
     {
-        if ($this->logger) {
-            $this->logger->debug("Validating");
-        }
+        $this->logger?->debug("Validating");
 
         // No need to validate
         if (count($this->disallowedSubjectCertificatePolicyIds) == 0) {
@@ -63,8 +61,6 @@ public function validate(X509 $subjectCertificate): void
             }
         }
 
-        if ($this->logger) {
-            $this->logger->debug("User certificate does not contain disallowed policies.");
-        }
+        $this->logger?->debug("User certificate does not contain disallowed policies.");
     }
 }
diff --git a/src/validator/certvalidators/SubjectCertificatePurposeValidator.php b/src/validator/certvalidators/SubjectCertificatePurposeValidator.php
@@ -60,8 +60,6 @@ public function validate(X509 $subjectCertificate): void
             throw new UserCertificateWrongPurposeException();
         }
 
-        if ($this->logger) {
-            $this->logger->debug("User certificate can be used for client authentication.");
-        }
+        $this->logger?->debug("User certificate can be used for client authentication.");
     }
 }
diff --git a/src/validator/certvalidators/SubjectCertificateTrustedValidator.php b/src/validator/certvalidators/SubjectCertificateTrustedValidator.php
@@ -48,9 +48,7 @@ public function validate(X509 $subjectCertificate): void
             $this->trustedCACertificates
         );
 
-        if ($this->logger) {
-            $this->logger->debug("Subject certificate is signed by a trusted CA");
-        }
+        $this->logger?->debug("Subject certificate is signed by a trusted CA");
     }
 
     public function getSubjectCertificateIssuerCertificate(): X509
diff --git a/src/validator/ocsp/OcspClientImpl.php b/src/validator/ocsp/OcspClientImpl.php
@@ -73,9 +73,7 @@ public function request(Uri $uri, string $encodedOcspRequest): OcspResponse
         $response = new OcspResponse($result);
 
         $responseJson = json_encode($response->getResponse(), JSON_INVALID_UTF8_IGNORE);
-        if ($this->logger) {
-            $this->logger->debug("OCSP response: " . $responseJson);
-        }
+        $this->logger?->debug("OCSP response: " . $responseJson);
 
         if ($info["content_type"] !== self::OCSP_RESPONSE_TYPE) {
             throw new UserCertificateOCSPCheckFailedException("OCSP response content type is not " . self::OCSP_RESPONSE_TYPE);

Original file line number	Diff line number	Diff line change
`@@ -55,9 +55,7 @@ public function __construct(LoggerInterface $logger = null)`
`55`	`55`	`public function withSiteOrigin(Uri $origin): AuthTokenValidatorBuilder`
`56`	`56`	`{`
`57`	`57`	`$this->configuration->setSiteOrigin($origin);`
`58`		`- if ($this->logger) {`
`59`		`- $this->logger->debug("Origin set to " . $this->configuration->getSiteOrigin()->jsonSerialize());`
`60`		`- }`
	`58`	`+ $this->logger?->debug("Origin set to " . $this->configuration->getSiteOrigin()->jsonSerialize());`
`61`	`59`	`return $this;`
`62`	`60`	`}`
`63`	`61`
`@@ -77,9 +75,7 @@ public function withSiteOrigin(Uri $origin): AuthTokenValidatorBuilder`
`77`	`75`	`public function withTrustedCertificateAuthorities(X509 ...$certificates): AuthTokenValidatorBuilder`
`78`	`76`	`{`
`79`	`77`	`array_push($this->configuration->getTrustedCACertificates(), ...$certificates);`
`80`		`- if ($this->logger) {`
`81`		`- $this->logger->debug("Trusted intermediate certificate authorities set to " . json_encode(X509Collection::getSubjectDNs(null, ...$this->configuration->getTrustedCACertificates())));`
`82`		`- }`
	`78`	`+ $this->logger?->debug("Trusted intermediate certificate authorities set to " . json_encode(X509Collection::getSubjectDNs(null, ...$this->configuration->getTrustedCACertificates())));`
`83`	`79`	`return $this;`
`84`	`80`	`}`
`85`	`81`
`@@ -96,9 +92,7 @@ public function withTrustedCertificateAuthorities(X509 ...$certificates): AuthTo`
`96`	`92`	`public function withDisallowedCertificatePolicies(string ...$policies): AuthTokenValidatorBuilder`
`97`	`93`	`{`
`98`	`94`	`array_push($this->configuration->getDisallowedSubjectCertificatePolicies(), ...$policies);`
`99`		`- if ($this->logger) {`
`100`		`- $this->logger->debug("Disallowed subject certificate policies set to " . json_encode($this->configuration->getDisallowedSubjectCertificatePolicies()));`
`101`		`- }`
	`95`	`+ $this->logger?->debug("Disallowed subject certificate policies set to " . json_encode($this->configuration->getDisallowedSubjectCertificatePolicies()));`
`102`	`96`	`return $this;`
`103`	`97`	`}`
`104`	`98`
`@@ -114,9 +108,7 @@ public function withDisallowedCertificatePolicies(string ...$policies): AuthToke`
`114`	`108`	`public function withoutUserCertificateRevocationCheckWithOcsp(): AuthTokenValidatorBuilder`
`115`	`109`	`{`
`116`	`110`	`$this->configuration->setUserCertificateRevocationCheckWithOcspDisabled();`
`117`		`- if ($this->logger) {`
`118`		`- $this->logger->warning("User certificate revocation check with OCSP is disabled, you should turn off the revocation check only in exceptional circumstances");`
`119`		`- }`
	`111`	`+ $this->logger?->warning("User certificate revocation check with OCSP is disabled, you should turn off the revocation check only in exceptional circumstances");`
`120`	`112`	`return $this;`
`121`	`113`	`}`
`122`	`114`
`@@ -131,9 +123,7 @@ public function withoutUserCertificateRevocationCheckWithOcsp(): AuthTokenValida`
`131`	`123`	`public function withOcspRequestTimeout(int $ocspRequestTimeout): AuthTokenValidatorBuilder`
`132`	`124`	`{`
`133`	`125`	`$this->configuration->setOcspRequestTimeout($ocspRequestTimeout);`
`134`		`- if ($this->logger) {`
`135`		`- $this->logger->debug("OCSP request timeout set to " . $ocspRequestTimeout);`
`136`		`- }`
	`126`	`+ $this->logger?->debug("OCSP request timeout set to " . $ocspRequestTimeout);`
`137`	`127`	`return $this;`
`138`	`128`	`}`
`139`	`129`
`@@ -151,19 +141,15 @@ public function withNonceDisabledOcspUrls(URI ...$uris): AuthTokenValidatorBuild`
`151`	`141`	`foreach ($uris as $uri) {`
`152`	`142`	`$this->configuration->getNonceDisabledOcspUrls()->pushItem($uri);`
`153`	`143`	`}`
`154`		`- if ($this->logger) {`
`155`		`- $this->logger->debug("OCSP URLs for which the nonce protocol extension is disabled set to " . implode(", ", $this->configuration->getNonceDisabledOcspUrls()->getUrlsArray()));`
`156`		`- }`
	`144`	`+ $this->logger?->debug("OCSP URLs for which the nonce protocol extension is disabled set to " . implode(", ", $this->configuration->getNonceDisabledOcspUrls()->getUrlsArray()));`
`157`	`145`
`158`	`146`	`return $this;`
`159`	`147`	`}`
`160`	`148`
`161`	`149`	`public function withDesignatedOcspServiceConfiguration(DesignatedOcspServiceConfiguration $serviceConfiguration): AuthTokenValidatorBuilder`
`162`	`150`	`{`
`163`	`151`	`$this->configuration->setDesignatedOcspServiceConfiguration($serviceConfiguration);`
`164`		`- if ($this->logger) {`
`165`		`- $this->logger->debug("Using designated OCSP service configuration");`
`166`		`- }`
	`152`	`+ $this->logger?->debug("Using designated OCSP service configuration");`
`167`	`153`	`return $this;`
`168`	`154`	`}`
`169`	`155`
Original file line number	Diff line number	Diff line change
`@@ -104,33 +104,25 @@ private function validateTokenLength(string $authToken): void`
`104`	`104`
`105`	`105`	`public function parse(string $authToken): WebEidAuthToken`
`106`	`106`	`{`
`107`		`- if ($this->logger) {`
`108`		`- $this->logger->info("Starting token parsing");`
`109`		`- }`
	`107`	`+ $this->logger?->info("Starting token parsing");`
`110`	`108`
`111`	`109`	`try {`
`112`	`110`	`$this->validateTokenLength($authToken);`
`113`	`111`	`return new WebEidAuthToken($authToken);`
`114`	`112`	`} catch (Throwable $e) {`
`115`		`- if ($this->logger) {`
`116`		`- $this->logger->warning("Token parsing was interrupted: " . $e->getMessage());`
`117`		`- }`
	`113`	`+ $this->logger?->warning("Token parsing was interrupted: " . $e->getMessage());`
`118`	`114`	`throw $e;`
`119`	`115`	`}`
`120`	`116`	`}`
`121`	`117`
`122`	`118`	`public function validate(WebEidAuthToken $authToken, string $currentChallengeNonce): X509`
`123`	`119`	`{`
`124`		`- if ($this->logger) {`
`125`		`- $this->logger->info("Starting token validation");`
`126`		`- }`
	`120`	`+ $this->logger?->info("Starting token validation");`
`127`	`121`
`128`	`122`	`try {`
`129`	`123`	`return $this->validateToken($authToken, $currentChallengeNonce);`
`130`	`124`	`} catch (Throwable $e) {`
`131`		`- if ($this->logger) {`
`132`		`- $this->logger->warning("Token validation was interrupted: " . $e->getMessage());`
`133`		`- }`
	`125`	`+ $this->logger?->warning("Token validation was interrupted: " . $e->getMessage());`
`134`	`126`	`throw $e;`
`135`	`127`	`}`
`136`	`128`	`}`
Original file line number	Diff line number	Diff line change
`@@ -46,12 +46,8 @@ public function validate(X509 $subjectCertificate): void`
`46`	`46`	`{`
`47`	`47`	`$now = DefaultClock::getInstance()->now();`
`48`	`48`	`CertificateValidator::trustedCACertificatesAreValidOnDate($this->trustedCertificates, $now);`
`49`		`- if ($this->logger) {`
`50`		`- $this->logger->debug("CA certificates are valid.");`
`51`		`- }`
	`49`	`+ $this->logger?->debug("CA certificates are valid.");`
`52`	`50`	`CertificateValidator::certificateIsValidOnDate($subjectCertificate, $now, "User");`
`53`		`- if ($this->logger) {`
`54`		`- $this->logger->debug("User certificate is valid.");`
`55`		`- }`
	`51`	`+ $this->logger?->debug("User certificate is valid.");`
`56`	`52`	`}`
`57`	`53`	`}`
Original file line number	Diff line number	Diff line change
`@@ -41,9 +41,7 @@ public function __construct(array $disallowedSubjectCertificatePolicyIds, Logger`
`41`	`41`
`42`	`42`	`public function validate(X509 $subjectCertificate): void`
`43`	`43`	`{`
`44`		`- if ($this->logger) {`
`45`		`- $this->logger->debug("Validating");`
`46`		`- }`
	`44`	`+ $this->logger?->debug("Validating");`
`47`	`45`
`48`	`46`	`// No need to validate`
`49`	`47`	`if (count($this->disallowedSubjectCertificatePolicyIds) == 0) {`
`@@ -63,8 +61,6 @@ public function validate(X509 $subjectCertificate): void`
`63`	`61`	`}`
`64`	`62`	`}`
`65`	`63`
`66`		`- if ($this->logger) {`
`67`		`- $this->logger->debug("User certificate does not contain disallowed policies.");`
`68`		`- }`
	`64`	`+ $this->logger?->debug("User certificate does not contain disallowed policies.");`
`69`	`65`	`}`
`70`	`66`	`}`
Original file line number	Diff line number	Diff line change
`@@ -60,8 +60,6 @@ public function validate(X509 $subjectCertificate): void`
`60`	`60`	`throw new UserCertificateWrongPurposeException();`
`61`	`61`	`}`
`62`	`62`
`63`		`- if ($this->logger) {`
`64`		`- $this->logger->debug("User certificate can be used for client authentication.");`
`65`		`- }`
	`63`	`+ $this->logger?->debug("User certificate can be used for client authentication.");`
`66`	`64`	`}`
`67`	`65`	`}`
Original file line number	Diff line number	Diff line change
`@@ -48,9 +48,7 @@ public function validate(X509 $subjectCertificate): void`
`48`	`48`	`$this->trustedCACertificates`
`49`	`49`	`);`
`50`	`50`
`51`		`- if ($this->logger) {`
`52`		`- $this->logger->debug("Subject certificate is signed by a trusted CA");`
`53`		`- }`
	`51`	`+ $this->logger?->debug("Subject certificate is signed by a trusted CA");`
`54`	`52`	`}`
`55`	`53`
`56`	`54`	`public function getSubjectCertificateIssuerCertificate(): X509`