style(*): Pass through coding standards

Author: julienloizelet

scripts/refresh-cache.php

@@ -29,4 +29,4 @@
 
 // Refresh the blocklist cache
 $bouncer->refreshBlocklistCache();
-echo "Cache successfully refreshed.\n";
+echo "Cache successfully refreshed.\n";

src/AbstractBounce.php

@@ -168,9 +168,9 @@ protected function handleForwardedFor(string $ip, array $configs): string
     {
         $forwardedIp = null;
         if (empty($configs['forced_test_forwarded_ip'])) {
-            $XForwardedForHeader = $this->getHttpRequestHeader('X-Forwarded-For');
-            if (null !== $XForwardedForHeader) {
-                $ipList = array_map('trim', array_values(array_filter(explode(',', $XForwardedForHeader))));
+            $xForwardedForHeader = $this->getHttpRequestHeader('X-Forwarded-For');
+            if (null !== $xForwardedForHeader) {
+                $ipList = array_map('trim', array_values(array_filter(explode(',', $xForwardedForHeader))));
                 $forwardedIp = end($ipList);
             }
         } elseif ($configs['forced_test_forwarded_ip'] === Constants::X_FORWARDED_DISABLED) {

src/templates/_base.php

@@ -145,4 +145,4 @@ function crowdSecBaseTemplatePart3(array $config, $footer): void
 
     </html>
     <?php
-} ?>
+} ?>

src/templates/access-forbidden.php

@@ -7,4 +7,4 @@ function displayAccessForbiddenTemplate(array $config): void
     <h1><?php echo htmlentities($config['text']['ban_wall']['title'], \ENT_QUOTES); ?></h1>
     <p class="desc"><?php echo htmlentities($config['text']['ban_wall']['subtitle'], \ENT_QUOTES); ?></p>
     <?php crowdSecBaseTemplatePart3($config, $config['text']['ban_wall']['footer']);
-} ?>
+} ?>

src/templates/captcha.php

@@ -58,4 +58,4 @@ function displayCaptchaTemplate(bool $error, string $captchaImageSrc, string $ca
         <button type="submit" /><?php echo htmlentities($config['text']['captcha_wall']['send_button'], \ENT_QUOTES); ?></button>
     </form>
     <?php crowdSecBaseTemplatePart3($config, $config['text']['captcha_wall']['footer']);
-} ?>
+} ?>

tests/Integration/GeolocationTest.php

@@ -1,6 +1,7 @@
 <?php
 
 declare(strict_types=1);
+
 namespace CrowdSecBouncer\Tests\Integration;
 
 use CrowdSecBouncer\ApiCache;
@@ -39,7 +40,7 @@ private function handleMaxMindConfig(array $maxmindConfig): array
     {
         // Check if MaxMind database exist
         if (!file_exists($maxmindConfig['database_path'])) {
-            $this->fail('There must be a MaxMind Database here: '.$maxmindConfig['database_path']);
+            $this->fail('There must be a MaxMind Database here: ' . $maxmindConfig['database_path']);
         }
 
         return [
@@ -74,7 +75,7 @@ public function testCanVerifyIpAndCountryWithMaxmindInLiveMode(array $maxmindCon
             'api_url' => TestHelpers::getLapiUrl(),
             'geolocation' => $geolocationConfig,
             'use_curl' => $this->useCurl,
-            'api_user_agent' => 'Unit test/'.Constants::BASE_USER_AGENT,
+            'api_user_agent' => 'Unit test/' . Constants::BASE_USER_AGENT,
             'cache_system' => Constants::CACHE_SYSTEM_PHPFS,
             'fs_cache_path' => TestHelpers::PHP_FILES_CACHE_ADAPTER_DIR
         ];
@@ -148,7 +149,7 @@ public function testCanVerifyIpAndCountryWithMaxmindInStreamMode(array $maxmindC
             'stream_mode' => true,
             'geolocation' => $geolocationConfig,
             'use_curl' => $this->useCurl,
-            'api_user_agent' => 'Unit test/'.Constants::BASE_USER_AGENT,
+            'api_user_agent' => 'Unit test/' . Constants::BASE_USER_AGENT,
             'cache_system' => Constants::CACHE_SYSTEM_PHPFS,
             'fs_cache_path' => TestHelpers::PHP_FILES_CACHE_ADAPTER_DIR
         ];

tests/Integration/IpVerificationTest.php

@@ -57,12 +57,11 @@ public function testCanVerifyIpInLiveModeWithCacheSystem($cacheAdapterName, $ori
             'memcached_dsn' =>  getenv('MEMCACHED_DSN'),
             'fs_cache_path' => TestHelpers::PHP_FILES_CACHE_ADAPTER_DIR
         ];
-        if($this->useTls){
+        if ($this->useTls) {
             $bouncerConfigs['tls_cert_path'] = $this->useTls . '/bouncer.pem';
             $bouncerConfigs['tls_key_path'] = $this->useTls . '/bouncer-key.pem';
             $bouncerConfigs['tls_ca_cert_path'] = $this->useTls . '/ca-chain.pem';
             $bouncerConfigs['tls_verify_peer'] = true;
-
         }
 
         $bouncer = new Bouncer($bouncerConfigs, $this->logger);
@@ -135,7 +134,7 @@ public function testCanVerifyIpInLiveModeWithCacheSystem($cacheAdapterName, $ori
 
         // Reconfigure the bouncer to set maximum remediation level to "captcha"
         $bouncerConfigs['max_remediation_level'] = 'captcha';
-        $bouncer = new Bouncer( $bouncerConfigs, $this->logger);
+        $bouncer = new Bouncer($bouncerConfigs, $this->logger);
         $cappedRemediation = $bouncer->getRemediationForIp(TestHelpers::BAD_IP);
         $this->assertEquals('captcha', $cappedRemediation, 'The remediation for the banned IP should now be "captcha"');
         // Reset the max remediation level to its origin state
@@ -144,16 +143,30 @@ public function testCanVerifyIpInLiveModeWithCacheSystem($cacheAdapterName, $ori
 
         $this->logger->info('', ['message' => 'set "Large IPV4 range banned" state']);
         $this->watcherClient->deleteAllDecisions();
-        $this->watcherClient->addDecision(new \DateTime(), '24h', WatcherClient::HOURS24, TestHelpers::BAD_IP.'/'
-                                                                     .TestHelpers::LARGE_IPV4_RANGE, 'ban');
+        $this->watcherClient->addDecision(new \DateTime(), '24h', WatcherClient::HOURS24, TestHelpers::BAD_IP . '/'
+                                                                     . TestHelpers::LARGE_IPV4_RANGE, 'ban');
         $cappedRemediation = $bouncer->getRemediationForIp(TestHelpers::BAD_IP);
-        $this->assertEquals('ban', $cappedRemediation, 'The remediation for the banned IP with a too large range should now be "ban" as we are in live mode');
+        $this->assertEquals(
+            'ban',
+            $cappedRemediation,
+            'The remediation for the banned IP with a too large range should now be "ban" as we are in live mode'
+        );
 
         $this->logger->info('', ['message' => 'set "IPV6 range banned" state']);
         $this->watcherClient->deleteAllDecisions();
-        $this->watcherClient->addDecision(new \DateTime(), '24h', WatcherClient::HOURS24, TestHelpers::BAD_IPV6.'/'.TestHelpers::IPV6_RANGE, 'ban');
+        $this->watcherClient->addDecision(
+            new \DateTime(),
+            '24h',
+            WatcherClient::HOURS24,
+            TestHelpers::BAD_IPV6 . '/' . TestHelpers::IPV6_RANGE,
+            'ban'
+        );
         $cappedRemediation = $bouncer->getRemediationForIp(TestHelpers::BAD_IPV6);
-        $this->assertEquals('ban', $cappedRemediation, 'The remediation for the banned IPV6 with a too large range should now be "ban" as we are in live mode');
+        $this->assertEquals(
+            'ban',
+            $cappedRemediation,
+            'The remediation for the banned IPV6 with a too large range should now be "ban" as we are in live mode'
+        );
     }
 
     /**
@@ -177,7 +190,7 @@ public function testCanVerifyIpInStreamModeWithCacheSystem($cacheAdapterName, $o
             'memcached_dsn' =>  getenv('MEMCACHED_DSN'),
             'fs_cache_path' => TestHelpers::PHP_FILES_CACHE_ADAPTER_DIR
         ];
-        if($this->useTls){
+        if ($this->useTls) {
             $bouncerConfigs['tls_cert_path'] = $this->useTls . '/bouncer.pem';
             $bouncerConfigs['tls_key_path'] = $this->useTls . '/bouncer-key.pem';
             $bouncerConfigs['tls_ca_cert_path'] = $this->useTls . '/ca-chain.pem';
@@ -283,12 +296,11 @@ public function testCanVerifyIpInStreamModeWithCacheSystem($cacheAdapterName, $o
             'memcached_dsn' =>  getenv('MEMCACHED_DSN'),
             'fs_cache_path' => TestHelpers::PHP_FILES_CACHE_ADAPTER_DIR
         ];
-        if($this->useTls){
+        if ($this->useTls) {
             $bouncerConfigs['tls_cert_path'] = $this->useTls . '/bouncer.pem';
             $bouncerConfigs['tls_key_path'] = $this->useTls . '/bouncer-key.pem';
             $bouncerConfigs['tls_ca_cert_path'] = $this->useTls . '/ca-chain.pem';
             $bouncerConfigs['tls_verify_peer'] = true;
-
         }
 
         $bouncer = new Bouncer($bouncerConfigs, $this->logger);
@@ -301,14 +313,34 @@ public function testCanVerifyIpInStreamModeWithCacheSystem($cacheAdapterName, $o
 
         $this->logger->info('', ['message' => 'set "Large IPV4 range banned" + "IPV6 range banned" state']);
         $this->watcherClient->deleteAllDecisions();
-        $this->watcherClient->addDecision(new \DateTime(), '24h', WatcherClient::HOURS24, TestHelpers::BAD_IP.'/'.TestHelpers::LARGE_IPV4_RANGE, 'ban');
-        $this->watcherClient->addDecision(new \DateTime(), '24h', WatcherClient::HOURS24, TestHelpers::BAD_IPV6.'/'.TestHelpers::IPV6_RANGE, 'ban');
+        $this->watcherClient->addDecision(
+            new \DateTime(),
+            '24h',
+            WatcherClient::HOURS24,
+            TestHelpers::BAD_IP . '/' . TestHelpers::LARGE_IPV4_RANGE,
+            'ban'
+        );
+        $this->watcherClient->addDecision(
+            new \DateTime(),
+            '24h',
+            WatcherClient::HOURS24,
+            TestHelpers::BAD_IPV6 . '/' . TestHelpers::IPV6_RANGE,
+            'ban'
+        );
         // Pull updates
         $bouncer->refreshBlocklistCache();
 
         $cappedRemediation = $bouncer->getRemediationForIp(TestHelpers::BAD_IP);
-        $this->assertEquals('bypass', $cappedRemediation, 'The remediation for the banned IP with a too large range should now be "bypass" as we are in stream mode');
+        $this->assertEquals(
+            'bypass',
+            $cappedRemediation,
+            'The remediation for the banned IP with a too large range should now be "bypass" as we are in stream mode'
+        );
         $cappedRemediation = $bouncer->getRemediationForIp(TestHelpers::BAD_IPV6);
-        $this->assertEquals('bypass', $cappedRemediation, 'The remediation for the banned IPV6 with a too large range should now be "bypass" as we are in stream mode');
+        $this->assertEquals(
+            'bypass',
+            $cappedRemediation,
+            'The remediation for the banned IPV6 with a too large range should now be "bypass" as we are in stream mode'
+        );
     }
 }

tests/Integration/TestHelpers.php

@@ -30,7 +30,7 @@ class TestHelpers
     public const IP_FRANCE = '78.119.253.85';
     public const UNIT_TEST_AGENT_PREFIX = 'Unit test';
 
-    public const PHP_FILES_CACHE_ADAPTER_DIR = __DIR__.'/../var/phpFiles.cache';
+    public const PHP_FILES_CACHE_ADAPTER_DIR = __DIR__ . '/../var/phpFiles.cache';
 
     public const LOG_LEVEL = Logger::DEBUG; // set to Logger::DEBUG to get high verbosity
 
@@ -64,11 +64,11 @@ public static function maxmindConfigProvider(): array
         return [
             'country database' => [[
                 'database_type' => 'country',
-                'database_path' => __DIR__.'/../GeoLite2-Country.mmdb',
+                'database_path' => __DIR__ . '/../GeoLite2-Country.mmdb',
             ]],
             'city database' => [[
                 'database_type' => 'city',
-                'database_path' => __DIR__.'/../GeoLite2-City.mmdb',
+                'database_path' => __DIR__ . '/../GeoLite2-City.mmdb',
             ]],
         ];
     }

tests/Integration/WatcherClient.php

@@ -4,8 +4,6 @@
 
 namespace CrowdSecBouncer\Tests\Integration;
 
-
-use CrowdSecBouncer\BouncerException;
 use CrowdSecBouncer\Constants;
 use CrowdSecBouncer\RestClient\FileGetContents;
 use CrowdSecBouncer\RestClient\Curl;
@@ -46,17 +44,19 @@ public function __construct(array $configs, LoggerInterface $logger)
         $this->configs['api_url'] = $apiUrl;
         $this->configs['api_timeout'] = 2;
         $agentTlsPath = getenv('AGENT_TLS_PATH');
-        if(!$agentTlsPath){
+        if (!$agentTlsPath) {
             throw new \Exception('Using TLS auth for agent is required. Please set AGENT_TLS_PATH env.');
         }
         $this->configs['auth_type'] = Constants::AUTH_TLS;
-        $this->configs['tls_cert_path'] = $agentTlsPath. '/agent.pem';
-        $this->configs['tls_key_path'] = $agentTlsPath. '/agent-key.pem';
+        $this->configs['tls_cert_path'] = $agentTlsPath . '/agent.pem';
+        $this->configs['tls_key_path'] = $agentTlsPath . '/agent-key.pem';
         $this->configs['tls_verify_peer'] = false;
 
         $useCurl = !empty($this->configs['use_curl']);
         $this->watcherClient = $useCurl ? new Curl($this->configs, $this->logger) : new FileGetContents(
-            $this->configs, $this->logger);
+            $this->configs,
+            $this->logger
+        );
         $this->logger->info('', ['message' => 'Watcher client initialized', 'use_curl' => $useCurl]);
     }
 
@@ -67,7 +67,7 @@ public function setInitialState(): void
         $this->deleteAllDecisions();
         $now = new \DateTime();
         $this->addDecision($now, '12h', '+12 hours', TestHelpers::BAD_IP, 'captcha');
-        $this->addDecision($now, '24h', self::HOURS24, TestHelpers::BAD_IP.'/'.TestHelpers::IP_RANGE, 'ban');
+        $this->addDecision($now, '24h', self::HOURS24, TestHelpers::BAD_IP . '/' . TestHelpers::IP_RANGE, 'ban');
         $this->addDecision($now, '24h', '+24 hours', TestHelpers::JAPAN, 'captcha', Constants::SCOPE_COUNTRY);
     }
 
@@ -78,7 +78,8 @@ public function setSecondState(): void
         $this->deleteAllDecisions();
         $now = new \DateTime();
         $this->addDecision($now, '36h', '+36 hours', TestHelpers::NEWLY_BAD_IP, 'ban');
-        $this->addDecision($now, '48h', '+48 hours', TestHelpers::NEWLY_BAD_IP.'/'.TestHelpers::IP_RANGE, 'captcha');
+        $this->addDecision($now, '48h', '+48 hours', TestHelpers::NEWLY_BAD_IP . '/' .
+                                                     TestHelpers::IP_RANGE, 'captcha');
         $this->addDecision($now, '24h', self::HOURS24, TestHelpers::JAPAN, 'captcha', Constants::SCOPE_COUNTRY);
         $this->addDecision($now, '24h', self::HOURS24, TestHelpers::IP_JAPAN, 'ban');
         $this->addDecision($now, '24h', self::HOURS24, TestHelpers::IP_FRANCE, 'ban');
@@ -97,18 +98,31 @@ private function ensureLogin(): void
             /** @var array */
             $credentials = $this->watcherClient->request('/v1/watchers/login', null, $data, 'POST');
             $this->token = $credentials['token'];
-            $this->baseHeaders['Authorization'] = 'Bearer '.$this->token;
+            $this->baseHeaders['Authorization'] = 'Bearer ' . $this->token;
         }
     }
 
     /**
      * Request the Watcher API.
      */
-    private function request(string $endpoint, array $queryParams = null, array $bodyParams = null, string $method = 'GET', array $headers = null, int $timeout = null): ?array
-    {
+    private function request(
+        string $endpoint,
+        array $queryParams = null,
+        array $bodyParams = null,
+        string $method = 'GET',
+        array $headers = null,
+        int $timeout = null
+    ): ?array {
         $this->ensureLogin();
 
-        return $this->watcherClient->request($endpoint, $queryParams, $bodyParams, $method, $headers ?: $this->baseHeaders, $timeout);
+        return $this->watcherClient->request(
+            $endpoint,
+            $queryParams,
+            $bodyParams,
+            $method,
+            $headers ?: $this->baseHeaders,
+            $timeout
+        );
     }
 
     public function deleteAllDecisions(): void
@@ -123,23 +137,29 @@ protected function getFinalScope($scope, $value)
         return (Constants::SCOPE_IP === $scope && 2 === count(explode('/', $value))) ? Constants::SCOPE_RANGE : $scope;
     }
 
-    public function addDecision(\DateTime $now, string $durationString, string $dateTimeDurationString, string
-    $value, string $type, string $scope = Constants::SCOPE_IP)
-    {
+    public function addDecision(
+        \DateTime $now,
+        string $durationString,
+        string $dateTimeDurationString,
+        string $value,
+        string $type,
+        string $scope = Constants::SCOPE_IP
+    ) {
         $stopAt = (clone $now)->modify($dateTimeDurationString)->format('Y-m-d\TH:i:s.000\Z');
         $startAt = $now->format('Y-m-d\TH:i:s.000\Z');
 
         $body = [
             'capacity' => 0,
             'decisions' => [
-              [
-                'duration' => $durationString,
-                'origin' => 'cscli',
-                'scenario' => $type.' for scope/value ('.$scope.'/'.$value.') for '.$durationString.' for PHPUnit tests',
-                'scope' => $this->getFinalScope($scope, $value),
-                'type' => $type,
-                'value' => $value,
-              ],
+                [
+                    'duration' => $durationString,
+                    'origin' => 'cscli',
+                    'scenario' => $type . ' for scope/value (' . $scope . '/' . $value . ') for '
+                                  . $durationString . ' for PHPUnit tests',
+                    'scope' => $this->getFinalScope($scope, $value),
+                    'type' => $type,
+                    'value' => $value,
+                ],
             ],
             'events' => [
             ],
@@ -152,13 +172,14 @@ public function addDecision(\DateTime $now, string $durationString, string $date
             'scenario_version' => '',
             'simulated' => false,
             'source' => [
-              'scope' => $this->getFinalScope($scope, $value),
-              'value' => $value,
+                'scope' => $this->getFinalScope($scope, $value),
+                'value' => $value,
             ],
             'start_at' => $startAt,
             'stop_at' => $stopAt,
-          ];
+        ];
         $result = $this->request('/v1/alerts', null, [$body], 'POST');
-        $this->logger->info('', ['message' => 'Decision '.$result[0].' added: '.$body['decisions'][0]['scenario'].'']);
+        $this->logger->info('', ['message' => 'Decision ' . $result[0] . ' added: ' .
+                                              $body['decisions'][0]['scenario'] . '']);
     }
 }