code style and feedback

backbone87 · backbone87 · commit e9573af5591e · 2016-09-21T03:59:00.000+02:00
diff --git a/src/Symfony/Component/Security/Core/Exception/UnexpectedValueException.php b/src/Symfony/Component/Security/Core/Exception/UnexpectedValueException.php
@@ -0,0 +1,21 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Core\Exception;
+
+/**
+ * Base UnexpectedValueException for the Security component.
+ *
+ * @author Oliver Hoff <oliver@hofff.com>
+ */
+class UnexpectedValueException extends \UnexpectedValueException implements ExceptionInterface
+{
+}
diff --git a/src/Symfony/Component/Security/Csrf/TokenStorage/CookieTokenStorage.php b/src/Symfony/Component/Security/Csrf/TokenStorage/CookieTokenStorage.php
@@ -13,6 +13,7 @@
 
 use Symfony\Component\HttpFoundation\Cookie;
 use Symfony\Component\HttpFoundation\ParameterBag;
+use Symfony\Component\Security\Core\Exception\InvalidArgumentException;
 use Symfony\Component\Security\Csrf\Exception\TokenNotFoundException;
 
 /**
@@ -27,7 +28,7 @@ class CookieTokenStorage implements TokenStorageInterface
     /**
      * @var array
      */
-    private $transientTokens;
+    private $transientTokens = array();
 
     /**
      * @var ParameterBag
@@ -45,7 +46,6 @@ class CookieTokenStorage implements TokenStorageInterface
      */
     public function __construct(ParameterBag $cookies, $secure)
     {
-        $this->transientTokens = [];
         $this->cookies = $cookies;
         $this->secure = (bool) $secure;
     }
@@ -58,8 +58,8 @@ public function getToken($tokenId)
     {
         $token = $this->resolveToken($tokenId);
 
-        if (!strlen($token)) {
-            throw new TokenNotFoundException;
+        if ('' === $token) {
+            throw new TokenNotFoundException();
         }
 
         return $token;
@@ -71,7 +71,7 @@ public function getToken($tokenId)
      */
     public function hasToken($tokenId)
     {
-        return strlen($this->resolveToken($tokenId)) > 0;
+        return '' !== $this->resolveToken($tokenId);
     }
 
     /**
@@ -80,8 +80,10 @@ public function hasToken($tokenId)
      */
     public function setToken($tokenId, $token)
     {
-        if (!strlen($token)) {
-            throw new \InvalidArgumentException('Empty tokens are not allowed');
+        $token = (string) $token;
+
+        if ('' === $token) {
+            throw new InvalidArgumentException('Empty tokens are not allowed');
         }
 
         $this->updateToken($tokenId, $token);
@@ -97,7 +99,7 @@ public function removeToken($tokenId)
 
         $this->updateToken($tokenId, '');
 
-        return strlen($token) ? $token : null;
+        return '' === $token ? null : $token;
     }
 
     /**
@@ -113,7 +115,6 @@ public function createCookies()
             // the problem is the that the value of deleted cookies get set to
             // the string "deleted" and not the empty string
 
-            // TODO http only?
             $name = $this->generateCookieName($tokenId);
             $cookies[] = new Cookie($name, $token, 0, null, null, $this->secure, true);
         }
@@ -143,7 +144,6 @@ protected function resolveToken($tokenId)
      */
     protected function updateToken($tokenId, $token)
     {
-        $token = (string) $token;
         $name = $this->generateCookieName($tokenId);
 
         if ($token === $this->cookies->get($name, '')) {
diff --git a/src/Symfony/Component/Security/Csrf/TokenStorage/RequestStackTokenStorage.php b/src/Symfony/Component/Security/Csrf/TokenStorage/RequestStackTokenStorage.php
@@ -12,6 +12,8 @@
 namespace Symfony\Component\Security\Csrf\TokenStorage;
 
 use Symfony\Component\HttpFoundation\RequestStack;
+use Symfony\Component\Security\Core\Exception\RuntimeException;
+use Symfony\Component\Security\Core\Exception\UnexpectedValueException;
 
 /**
  * Forwards token storage calls to a token storage stored in the master
@@ -67,18 +69,25 @@ public function getProxiedTokenStorage()
         $request = $this->requestStack->getMasterRequest();
 
         if (!$request) {
-            throw new \RuntimeException('Not in a request context');
+            throw new RuntimeException('Not in a request context');
         }
 
         $storage = $request->attributes->get($this->tokenStorageKey);
 
-        // TODO what if storage is set and not an instance of TokenStorageInterface?
-        // error out? overwrite?
-        if (!$storage instanceof TokenStorageInterface) {
-            $storage = $this->factory->createTokenStorage($request);
-            $request->attributes->set($this->tokenStorageKey, $storage);
+        if ($storage instanceof TokenStorageInterface) {
+            return $storage;
         }
 
+        if ($storage !== null) {
+            throw new UnexpectedValueException(sprintf(
+                'Expected null or an instance of "Symfony\\Component\\Security\\Csrf\\TokenStorage\\TokenStorageInterface", got "%s"',
+                is_object($storage) ? get_class($storage) : gettype($storage)
+            ));
+        }
+
+        $storage = $this->factory->createTokenStorage($request);
+        $request->attributes->set($this->tokenStorageKey, $storage);
+
         return $storage;
     }
 
diff --git a/src/Symfony/Component/Security/Csrf/TokenStorage/SessionTokenStorageFactory.php b/src/Symfony/Component/Security/Csrf/TokenStorage/SessionTokenStorageFactory.php
@@ -12,6 +12,7 @@
 namespace Symfony\Component\Security\Csrf\TokenStorage;
 
 use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\Security\Core\Exception\RuntimeException;
 
 /**
  * Creates CSRF token storages based on the requests session.
@@ -30,7 +31,7 @@ class SessionTokenStorageFactory implements TokenStorageFactoryInterface
      */
     public function __construct($namespace = null)
     {
-        $this->namespace = $namespace === null ? SessionTokenStorage::SESSION_NAMESPACE : $namespace;
+        $this->namespace = $namespace === null ? SessionTokenStorage::SESSION_NAMESPACE : (string) $namespace;
     }
 
     /**
@@ -40,7 +41,7 @@ public function __construct($namespace = null)
     public function createTokenStorage(Request $request) {
         $session = $request->getSession();
         if (!$session) {
-            throw new \RuntimeException('Request has no session');
+            throw new RuntimeException('Request has no session');
         }
 
         return new SessionTokenStorage($session, $this->namespace);
