Switch to php-cs-fixer, apply Symfony style

Author: stephank

.github/workflows/check.yml

@@ -40,19 +40,21 @@ jobs:
       - name: Composer install
         run: composer install
 
-      - name: PHP CodeSniffer
-        run: vendor/bin/phpcs --standard=PSR2 --report=checkstyle src/ | cs2pr
+      - name: PHP Coding Standards Fixer
+        # Set to the latest version supported by php-cs-fixer.
+        if: matrix.php-versions == '8.1'
+        run: composer run php-cs-fixer -- --dry-run --format=checkstyle | cs2pr
 
       - name: PHPStan
-        run: vendor/bin/phpstan analyse -l max -c phpstan.neon --error-format=checkstyle src/ | cs2pr
+        run: composer run phpstan -- --error-format=checkstyle | cs2pr
 
       - name: Configure PHPUnit matchers
         uses: mheap/phpunit-matcher-action@v1
 
       - name: PHPUnit
         # TODO: Waiting for a compatible Prophecy release.
         if: matrix.php-versions != '8.2'
-        run: vendor/bin/phpunit --teamcity
+        run: composer run phpunit -- --teamcity
 
       - name: Set up Go
         uses: actions/setup-go@v3

.gitignore

@@ -1,3 +1,4 @@
 vendor
 composer.lock
+.php-cs-fixer.cache
 .phpunit*

.php-cs-fixer.php

@@ -0,0 +1,14 @@
+<?php
+
+$config = new PhpCsFixer\Config();
+
+return $config
+    ->setRules([
+        '@Symfony' => true,
+        '@PHP74Migration' => true,
+    ])
+    ->setFinder(
+        PhpCsFixer\Finder::create()
+            ->in(__DIR__ . '/src')
+            ->in(__DIR__ . '/tests')
+    );

composer.json

@@ -9,6 +9,11 @@
       "email": "stephan@kochen.nl"
     }
   ],
+  "scripts": {
+    "php-cs-fixer": "php-cs-fixer fix",
+    "phpstan": "phpstan analyse -l max -c phpstan.neon src/",
+    "phpunit": "phpunit"
+  },
   "autoload": {
     "psr-4": {
       "Portier\\Client\\": "src/"
@@ -23,7 +28,7 @@
   "require-dev": {
     "phpunit/phpunit": "^9.5",
     "phpstan/phpstan": "^1.2.0",
-    "squizlabs/php_codesniffer": "^3.6",
-    "phpspec/prophecy-phpunit": "^2.0"
+    "phpspec/prophecy-phpunit": "^2.0",
+    "friendsofphp/php-cs-fixer": "^3.14"
   }
 }

src/AbstractStore.php

@@ -11,36 +11,41 @@ abstract class AbstractStore implements StoreInterface
 {
     /**
      * The Guzzle instance to use.
+     *
      * @var \GuzzleHttp\Client
      */
     public $guzzle;
 
     /**
      * Lifespan of a nonce.
+     *
      * @var float
      */
     public $nonceTtl = 15 * 60;
 
     /**
-     * Minimum time to cache a HTTP response
+     * Minimum time to cache a HTTP response.
+     *
      * @var float
      */
     public $cacheMinTtl = 60 * 60;
 
     /**
-     * Constructor
+     * Constructor.
      */
     public function __construct()
     {
         $this->guzzle = new \GuzzleHttp\Client([
-            'timeout' => 10
+            'timeout' => 10,
         ]);
     }
 
     /**
      * Generate a nonce value.
-     * @param  string $email  Optional email context
-     * @return string         The generated nonce.
+     *
+     * @param string $email Optional email context
+     *
+     * @return string the generated nonce
      */
     public function generateNonce(string $email): string
     {
@@ -49,8 +54,10 @@ public function generateNonce(string $email): string
 
     /**
      * Fetch a URL using HTTP GET.
-     * @param  string    $url  The URL to fetch.
-     * @return \stdClass       An object with `ttl` and `data` properties.
+     *
+     * @param string $url the URL to fetch
+     *
+     * @return \stdClass an object with `ttl` and `data` properties
      */
     public function fetch(string $url): \stdClass
     {

src/Client.php

@@ -3,8 +3,8 @@
 namespace Portier\Client;
 
 use Lcobucci\JWT\Configuration as JwtConfig;
-use Lcobucci\JWT\Validation\Constraint as JwtConstraint;
 use Lcobucci\JWT\Signer as JwtSigner;
+use Lcobucci\JWT\Validation\Constraint as JwtConstraint;
 
 /**
  * Client for a Portier broker.
@@ -13,6 +13,7 @@ class Client
 {
     /**
      * Default Portier broker origin.
+     *
      * @var string
      */
     public const DEFAULT_BROKER = 'https://broker.portier.io';
@@ -25,20 +26,23 @@ class Client
 
     /**
      * The origin of the Portier broker.
+     *
      * @var string
      */
     public $broker = self::DEFAULT_BROKER;
 
     /**
      * The number of seconds of clock drift to allow.
+     *
      * @var int
      */
     public $leeway = 3 * 60;
 
     /**
-     * Constructor
-     * @param StoreInterface  $store        Store implementation to use.
-     * @param string          $redirectUri  URL that Portier will redirect to.
+     * Constructor.
+     *
+     * @param StoreInterface $store       store implementation to use
+     * @param string         $redirectUri URL that Portier will redirect to
      */
     public function __construct(StoreInterface $store, string $redirectUri)
     {
@@ -62,7 +66,7 @@ public static function normalize(string $email): string
         assert(defined('MB_CASE_FOLD') && function_exists('idn_to_ascii'));
 
         $localEnd = strrpos($email, '@');
-        if ($localEnd === false) {
+        if (false === $localEnd) {
             return '';
         }
 
@@ -79,8 +83,8 @@ public static function normalize(string $email): string
             IDNA_USE_STD3_RULES | IDNA_CHECK_BIDI,
             INTL_IDNA_VARIANT_UTS46
         );
-        if (empty($host) || $host[0] === '[' ||
-               filter_var($host, FILTER_VALIDATE_IP) !== false) {
+        if (empty($host) || '[' === $host[0] ||
+               false !== filter_var($host, FILTER_VALIDATE_IP)) {
             return '';
         }
 
@@ -89,8 +93,10 @@ public static function normalize(string $email): string
 
     /**
      * Start authentication of an email address.
-     * @param  string $email  Email address to authenticate.
-     * @return string         URL to redirect the browser to.
+     *
+     * @param string $email email address to authenticate
+     *
+     * @return string URL to redirect the browser to
      */
     public function authenticate(string $email): string
     {
@@ -109,13 +115,16 @@ public function authenticate(string $email): string
             'client_id' => $this->clientId,
             'redirect_uri' => $this->redirectUri,
         ]);
-        return $authEndpoint . '?' . $query;
+
+        return $authEndpoint.'?'.$query;
     }
 
     /**
      * Verify a token received on our `redirect_uri`.
-     * @param  string $token  The received `id_token` parameter value.
-     * @return string         The verified email address.
+     *
+     * @param string $token the received `id_token` parameter value
+     *
+     * @return string the verified email address
      */
     public function verify(string $token): string
     {
@@ -145,20 +154,20 @@ public function verify(string $token): string
         $publicKey = null;
         foreach ($keysDoc->keys as $key) {
             if ($key instanceof \stdClass &&
-                    isset($key->alg) && $key->alg === 'RS256' &&
+                    isset($key->alg) && 'RS256' === $key->alg &&
                     isset($key->kid) && $key->kid === $kid &&
                     isset($key->n) && isset($key->e)) {
                 $publicKey = self::parseJwk($key);
                 break;
             }
         }
-        if ($publicKey === null) {
+        if (null === $publicKey) {
             throw new \Exception('Cannot find the public key used to sign the token');
         }
 
         // Validate the token claims.
         $clock = \Lcobucci\Clock\SystemClock::fromUTC();
-        $leeway = new \DateInterval('PT' . $this->leeway . 'S');
+        $leeway = new \DateInterval('PT'.$this->leeway.'S');
         $constraints = [
             new JwtConstraint\SignedWith(new JwtSigner\Rsa\Sha256(), $publicKey),
             new JwtConstraint\IssuedBy($this->broker),
@@ -201,7 +210,8 @@ public function verify(string $token): string
      */
     private function fetchDiscovery(): \stdClass
     {
-        $discoveryUrl = $this->broker . '/.well-known/openid-configuration';
+        $discoveryUrl = $this->broker.'/.well-known/openid-configuration';
+
         return $this->store->fetchCached('discovery', $discoveryUrl);
     }
 
@@ -221,19 +231,19 @@ private static function parseJwk(\stdClass $jwk): JwtSigner\Key
         $encoded = base64_encode($pkey->getBinary());
 
         return JwtSigner\Key\InMemory::plainText(
-            "-----BEGIN PUBLIC KEY-----\n" .
-            chunk_split($encoded, 64, "\n") .
+            "-----BEGIN PUBLIC KEY-----\n".
+            chunk_split($encoded, 64, "\n").
             "-----END PUBLIC KEY-----\n"
         );
     }
 
     /**
-     * Get the origin for a URL
+     * Get the origin for a URL.
      */
     private static function getOrigin(string $url): string
     {
         $components = parse_url($url);
-        if ($components === false) {
+        if (false === $components) {
             throw new \Exception('Could not parse the redirect URI');
         }
 
@@ -247,12 +257,12 @@ private static function getOrigin(string $url): string
         }
         $host = $components['host'];
 
-        $res = $scheme . '://' . $host;
+        $res = $scheme.'://'.$host;
         if (isset($components['port'])) {
             $port = $components['port'];
-            if (($scheme === 'http' && $port !== 80) ||
-                    ($scheme === 'https' && $port !== 443)) {
-                $res .= ':' . $port;
+            if (('http' === $scheme && 80 !== $port) ||
+                    ('https' === $scheme && 443 !== $port)) {
+                $res .= ':'.$port;
             }
         }
 
@@ -262,8 +272,8 @@ private static function getOrigin(string $url): string
     private static function decodeBase64Url(string $input): string
     {
         $output = base64_decode(strtr($input, '-_', '+/'), true);
-        if ($output === false) {
-            throw new \Exception("Invalid base64");
+        if (false === $output) {
+            throw new \Exception('Invalid base64');
         }
 
         return $output;

src/MemoryStore.php

@@ -16,7 +16,7 @@ class MemoryStore extends AbstractStore
     private $nonces;
 
     /**
-     * Constructor
+     * Constructor.
      */
     public function __construct()
     {
@@ -32,7 +32,7 @@ public function __construct()
     public function fetchCached(string $cacheId, string $url): \stdClass
     {
         $item = $this->cache[$cacheId] ?? null;
-        if ($item !== null && time() < $item->expires) {
+        if (null !== $item && time() < $item->expires) {
             return $item->data;
         }
 
@@ -67,7 +67,7 @@ public function createNonce(string $email): string
     public function consumeNonce(string $nonce, string $email): void
     {
         $item = $this->nonces[$nonce] ?? null;
-        if ($item !== null) {
+        if (null !== $item) {
             unset($this->nonces[$nonce]);
 
             if ($item->email === $email && time() < $item->expires) {

src/RedisStore.php

@@ -10,8 +10,9 @@ class RedisStore extends AbstractStore
     public \Redis $redis;
 
     /**
-     * Constructor
-     * @param \Redis $redis  The Redis instance to use.
+     * Constructor.
+     *
+     * @param \Redis $redis the Redis instance to use
      */
     public function __construct(\Redis $redis)
     {
@@ -25,7 +26,7 @@ public function __construct(\Redis $redis)
      */
     public function fetchCached(string $cacheId, string $url): \stdClass
     {
-        $key = 'cache:' . $cacheId;
+        $key = 'cache:'.$cacheId;
 
         $data = $this->redis->get($key);
         if ($data) {
@@ -38,7 +39,7 @@ public function fetchCached(string $cacheId, string $url): \stdClass
         $res = $this->fetch($url);
 
         $encoded = json_encode($res->data);
-        if ($encoded === false) {
+        if (false === $encoded) {
             throw new \Exception('JSON encoding failed');
         }
 
@@ -54,7 +55,7 @@ public function createNonce(string $email): string
     {
         $nonce = $this->generateNonce($email);
 
-        $key = 'nonce:' . $nonce;
+        $key = 'nonce:'.$nonce;
         $this->redis->setex($key, (int) $this->nonceTtl, $email);
 
         return $nonce;
@@ -65,7 +66,7 @@ public function createNonce(string $email): string
      */
     public function consumeNonce(string $nonce, string $email): void
     {
-        $key = 'nonce:' . $nonce;
+        $key = 'nonce:'.$nonce;
         $res = $this->redis->multi()
             ->get($key)
             ->del($key)