Code Coverage |
||||||||||
Lines |
Functions and Methods |
Classes and Traits |
||||||||
Total | |
92.59% |
25 / 27 |
|
80.00% |
8 / 10 |
CRAP | |
0.00% |
0 / 1 |
HOTPSecret | |
92.59% |
25 / 27 |
|
80.00% |
8 / 10 |
13.07 | |
0.00% |
0 / 1 |
__construct | |
100.00% |
2 / 2 |
|
100.00% |
1 / 1 |
1 | |||
createRandom | |
100.00% |
1 / 1 |
|
100.00% |
1 / 1 |
1 | |||
getSecret | |
0.00% |
0 / 1 |
|
0.00% |
0 / 1 |
2 | |||
getCounter | |
0.00% |
0 / 1 |
|
0.00% |
0 / 1 |
2 | |||
getUrl | |
100.00% |
3 / 3 |
|
100.00% |
1 / 1 |
1 | |||
getQrCodeUri | |
100.00% |
6 / 6 |
|
100.00% |
1 / 1 |
1 | |||
validateState | |
100.00% |
7 / 7 |
|
100.00% |
1 / 1 |
4 | |||
createOTP | |
100.00% |
1 / 1 |
|
100.00% |
1 / 1 |
1 | |||
nextPassword | |
100.00% |
3 / 3 |
|
100.00% |
1 / 1 |
1 | |||
verify | |
100.00% |
2 / 2 |
|
100.00% |
1 / 1 |
1 |
1 | <?php |
2 | namespace Apie\OtpValueObjects; |
3 | |
4 | use Apie\Core\Attributes\Description; |
5 | use Apie\Core\Attributes\FakeMethod; |
6 | use Apie\Core\Attributes\ProvideIndex; |
7 | use Apie\Core\Lists\StringHashmap; |
8 | use Apie\Core\ValueObjects\CompositeValueObject; |
9 | use Apie\Core\ValueObjects\Interfaces\ValueObjectInterface; |
10 | use Apie\OtpValueObjects\Concerns\NoIndexing; |
11 | use Apie\Serializer\Exceptions\ValidationException; |
12 | use chillerlan\QRCode\QRCode; |
13 | use OTPHP\HOTP; |
14 | |
15 | #[FakeMethod('createRandom')] |
16 | #[ProvideIndex('noIndexing')] |
17 | #[Description('stores the HOTP secret encrypted. ')] |
18 | class HOTPSecret implements ValueObjectInterface |
19 | { |
20 | use CompositeValueObject; |
21 | use NoIndexing; |
22 | |
23 | private string $secret; |
24 | |
25 | private int $counter; |
26 | |
27 | public function __construct(HOTP $hotp) |
28 | { |
29 | $this->secret = $hotp->getSecret(); |
30 | $this->counter = $hotp->getCounter(); |
31 | } |
32 | |
33 | public static function createRandom(): self |
34 | { |
35 | return new self(HOTP::create()); |
36 | } |
37 | |
38 | public function getSecret(): string |
39 | { |
40 | return $this->secret; |
41 | } |
42 | |
43 | public function getCounter(): string |
44 | { |
45 | return $this->counter; |
46 | } |
47 | |
48 | public function getUrl(string $label): string |
49 | { |
50 | $tmp = HOTP::create($this->secret, $this->counter); |
51 | $tmp->setLabel($label); |
52 | return (new QRCode)->render($tmp->getProvisioningUri()); |
53 | } |
54 | |
55 | public function getQrCodeUri(string $label): string |
56 | { |
57 | $tmp = HOTP::create($this->secret, $this->counter); |
58 | $tmp->setLabel($label); |
59 | return $tmp->getQrCodeUri( |
60 | 'https://api.qrserver.com/v1/create-qr-code/?data=[DATA]&size=300x300&ecc=M', |
61 | '[DATA]' |
62 | ); |
63 | } |
64 | |
65 | private function validateState(): void |
66 | { |
67 | $errors = []; |
68 | if ($this->counter < 0) { |
69 | $errors['counter'] = 'Counter should higher than or equal to 0'; |
70 | } |
71 | if (!preg_match('/^[A-Z0-9]{103}$/', $this->secret)) { |
72 | $errors['secret'] = 'Secret is not in valid format'; |
73 | } |
74 | |
75 | if (!empty($errors)) { |
76 | throw new ValidationException(new StringHashmap($errors)); |
77 | } |
78 | } |
79 | |
80 | public function createOTP(): OTP |
81 | { |
82 | return new OTP(HOTP::create($this->secret, $this->counter)->at($this->counter)); |
83 | } |
84 | |
85 | public function nextPassword(): self |
86 | { |
87 | $res = clone $this; |
88 | $res->counter++; |
89 | return $res; |
90 | } |
91 | |
92 | public function verify(OTP $otp): bool |
93 | { |
94 | $hotp = HOTP::create($this->secret, $this->counter); |
95 | return $hotp->verify($otp->toNative()); |
96 | } |
97 | } |