Merge pull request #3 from diwms/1.1.x

Psalm Integration

Author: Ocramius

.gitignore

@@ -1,5 +1,6 @@
 /clover.xml
 /composer.lock
+/.phpunit.result.cache
 /coveralls-upload.json
 /docs/html/
 /laminas-mkdoc-theme.tgz

.travis.yml

@@ -48,6 +48,7 @@ install:
 script:
   - if [[ $TEST_COVERAGE == 'true' ]]; then composer test-coverage ; else composer test ; fi
   - if [[ $CS_CHECK == 'true' ]]; then composer cs-check ; fi
+  - if [[ $TEST_COVERAGE == 'true' ]]; then composer static-analysis ; fi
 
 after_script:
   - if [[ $TEST_COVERAGE == 'true' ]]; then vendor/bin/php-coveralls -v ; fi

composer.json

@@ -36,6 +36,7 @@
         "laminas/laminas-coding-standard": "~1.0.0",
         "phpspec/prophecy": "^1.12",
         "phpspec/prophecy-phpunit": "^2.0",
+        "psalm/plugin-phpunit": "^0.12.2",
         "phpunit/phpunit": "^9.3"
     },
     "autoload": {
@@ -55,8 +56,9 @@
         ],
         "cs-check": "phpcs",
         "cs-fix": "phpcbf",
-        "test": "phpunit --colors=always",
-        "test-coverage": "phpunit --colors=always --coverage-clover clover.xml"
+        "test": "phpunit --colors=always --dont-report-useless-tests",
+        "test-coverage": "phpunit --colors=always --coverage-clover clover.xml",
+        "static-analysis": "psalm --shepherd --stats"
     },
     "replace": {
         "zendframework/zend-expressive-authentication-basic": "^1.0.0"

psalm.xml.dist

@@ -0,0 +1,18 @@
+<?xml version="1.0"?>
+<psalm
+    totallyTyped="true"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xmlns="https://getpsalm.org/schema/config"
+    xsi:schemaLocation="https://getpsalm.org/schema/config vendor/vimeo/psalm/config.xsd"
+>
+    <projectFiles>
+        <directory name="src"/>
+        <directory name="test"/>
+        <ignoreFiles>
+            <directory name="vendor"/>
+        </ignoreFiles>
+    </projectFiles>
+    <plugins>
+        <pluginClass class="Psalm\PhpUnitPlugin\Plugin"/>
+    </plugins>
+</psalm>

src/BasicAccess.php

@@ -32,7 +32,7 @@ class BasicAccess implements AuthenticationInterface
     protected $realm;
 
     /**
-     * @var callable
+     * @var callable():ResponseInterface
      */
     protected $responseFactory;
 
@@ -46,6 +46,7 @@ public function __construct(
 
         // Ensures type safety of the composed factory
         $this->responseFactory = function () use ($responseFactory) : ResponseInterface {
+            /** @var ResponseInterface */
             return $responseFactory();
         };
     }
@@ -72,10 +73,6 @@ public function authenticate(ServerRequestInterface $request) : ?UserInterface
 
         $credentialParts = explode(':', $decodedCredentials, 2);
 
-        if (false === $credentialParts) {
-            return null;
-        }
-
         if (2 !== count($credentialParts)) {
             return null;
         }

src/BasicAccessFactory.php

@@ -17,10 +17,11 @@ class BasicAccessFactory
 {
     public function __invoke(ContainerInterface $container) : BasicAccess
     {
+        /** @var UserRepositoryInterface|\Mezzio\Authentication\UserRepositoryInterface|null $userRegister */
         $userRegister = $container->has(UserRepositoryInterface::class)
             ? $container->get(UserRepositoryInterface::class)
-            : ($container->has(\Zend\Expressive\Authentication\UserRepositoryInterface::class)
-                ? $container->get(\Zend\Expressive\Authentication\UserRepositoryInterface::class)
+            : ($container->has(\Mezzio\Authentication\UserRepositoryInterface::class)
+                ? $container->get(\Mezzio\Authentication\UserRepositoryInterface::class)
                 : null);
 
         if (null === $userRegister) {
@@ -29,6 +30,7 @@ public function __invoke(ContainerInterface $container) : BasicAccess
             );
         }
 
+        /** @var string|null $realm */
         $realm = $container->get('config')['authentication']['realm'] ?? null;
 
         if (null === $realm) {
@@ -37,10 +39,19 @@ public function __invoke(ContainerInterface $container) : BasicAccess
             );
         }
 
+        /** @var callable|null $responseFactory */
+        $responseFactory = $container->get(ResponseInterface::class) ?? null;
+
+        if (null === $responseFactory || ! is_callable($responseFactory)) {
+            throw new Exception\InvalidConfigException(
+                'ResponseInterface value is not present in authentication config or not callable'
+            );
+        }
+
         return new BasicAccess(
             $userRegister,
             $realm,
-            $container->get(ResponseInterface::class)
+            $responseFactory
         );
     }
 }

test/BasicAccessFactoryTest.php

@@ -24,19 +24,19 @@ class BasicAccessFactoryTest extends TestCase
 {
     use ProphecyTrait;
 
-    /** @var ContainerInterface|ObjectProphecy */
+    /** @var ObjectProphecy<ContainerInterface> */
     private $container;
 
     /** @var BasicAccessFactory */
     private $factory;
 
-    /** @var UserRepositoryInterface|ObjectProphecy */
+    /** @var ObjectProphecy<UserRepositoryInterface> */
     private $userRegister;
 
-    /** @var ResponseInterface|ObjectProphecy */
+    /** @var ObjectProphecy<ResponseInterface> */
     private $responsePrototype;
 
-    /** @var callback */
+    /** @var callable */
     private $responseFactory;
 
     protected function setUp(): void
@@ -45,18 +45,18 @@ protected function setUp(): void
         $this->factory = new BasicAccessFactory();
         $this->userRegister = $this->prophesize(UserRepositoryInterface::class);
         $this->responsePrototype = $this->prophesize(ResponseInterface::class);
-        $this->responseFactory = function () {
+        $this->responseFactory = function (): ResponseInterface {
             return $this->responsePrototype->reveal();
         };
     }
 
-    public function testInvokeWithEmptyContainer()
+    public function testInvokeWithEmptyContainer(): void
     {
         $this->expectException(InvalidConfigException::class);
         ($this->factory)($this->container->reveal());
     }
 
-    public function testInvokeWithContainerEmptyConfig()
+    public function testInvokeWithContainerEmptyConfig(): void
     {
         $this->container
             ->has(UserRepositoryInterface::class)
@@ -78,7 +78,7 @@ public function testInvokeWithContainerEmptyConfig()
         ($this->factory)($this->container->reveal());
     }
 
-    public function testInvokeWithContainerAndConfig()
+    public function testInvokeWithContainerAndConfig(): void
     {
         $this->container
             ->has(UserRepositoryInterface::class)
@@ -99,14 +99,14 @@ public function testInvokeWithContainerAndConfig()
             ]);
 
         $basicAccess = ($this->factory)($this->container->reveal());
-        $this->assertInstanceOf(BasicAccess::class, $basicAccess);
         $this->assertResponseFactoryReturns($this->responsePrototype->reveal(), $basicAccess);
     }
 
-    public static function assertResponseFactoryReturns(ResponseInterface $expected, BasicAccess $service) : void
+    public static function assertResponseFactoryReturns(ResponseInterface $expected, BasicAccess $service): void
     {
         $r = new ReflectionProperty($service, 'responseFactory');
         $r->setAccessible(true);
+        /** @var callable $responseFactory */
         $responseFactory = $r->getValue($service);
         Assert::assertSame($expected, $responseFactory());
     }

test/BasicAccessTest.php

@@ -23,16 +23,16 @@ class BasicAccessTest extends TestCase
 {
     use ProphecyTrait;
 
-    /** @var ServerRequestInterface|ObjectProphecy */
+    /** @var ObjectProphecy<ServerRequestInterface> */
     private $request;
 
-    /** @var UserRepositoryInterface|ObjectProphecy */
+    /** @var ObjectProphecy<UserRepositoryInterface> */
     private $userRepository;
 
-    /** @var UserInterface|ObjectProphecy */
+    /** @var ObjectProphecy<UserInterface> */
     private $authenticatedUser;
 
-    /** @var ResponseInterface|ObjectProphecy */
+    /** @var ObjectProphecy<ResponseInterface> */
     private $responsePrototype;
 
     /** @var callable */
@@ -44,12 +44,12 @@ protected function setUp(): void
         $this->userRepository = $this->prophesize(UserRepositoryInterface::class);
         $this->authenticatedUser = $this->prophesize(UserInterface::class);
         $this->responsePrototype = $this->prophesize(ResponseInterface::class);
-        $this->responseFactory = function () {
+        $this->responseFactory = function (): ResponseInterface {
             return $this->responsePrototype->reveal();
         };
     }
 
-    public function testConstructor()
+    public function testConstructor(): void
     {
         $basicAccess = new BasicAccess(
             $this->userRepository->reveal(),
@@ -59,12 +59,10 @@ public function testConstructor()
         $this->assertInstanceOf(AuthenticationInterface::class, $basicAccess);
     }
 
-
     /**
-     * @param array $authHeader
      * @dataProvider provideInvalidAuthenticationHeader
      */
-    public function testIsAuthenticatedWithInvalidData(array $authHeader)
+    public function testIsAuthenticatedWithInvalidData(array $authHeader): void
     {
         $this->request
             ->getHeader('Authorization')
@@ -77,16 +75,14 @@ public function testIsAuthenticatedWithInvalidData(array $authHeader)
             'test',
             $this->responseFactory
         );
+
         $this->assertNull($basicAccess->authenticate($this->request->reveal()));
     }
 
     /**
-     * @param string $username
-     * @param string $password
-     * @param array $authHeader
      * @dataProvider provideValidAuthentication
      */
-    public function testIsAuthenticatedWithValidCredential(string $username, string $password, array $authHeader)
+    public function testIsAuthenticatedWithValidCredential(string $username, string $password, array $authHeader): void
     {
         $this->request
             ->getHeader('Authorization')
@@ -112,7 +108,7 @@ public function testIsAuthenticatedWithValidCredential(string $username, string
         $this->assertInstanceOf(UserInterface::class, $user);
     }
 
-    public function testIsAuthenticatedWithNoCredential()
+    public function testIsAuthenticatedWithNoCredential(): void
     {
         $this->request
             ->getHeader('Authorization')
@@ -131,7 +127,7 @@ public function testIsAuthenticatedWithNoCredential()
         $this->assertNull($basicAccess->authenticate($this->request->reveal()));
     }
 
-    public function testGetUnauthenticatedResponse()
+    public function testGetUnauthenticatedResponse(): void
     {
         $this->responsePrototype
             ->getHeader('WWW-Authenticate')
@@ -154,6 +150,19 @@ public function testGetUnauthenticatedResponse()
         $this->assertEquals(['Basic realm="test"'], $response->getHeader('WWW-Authenticate'));
     }
 
+    /**
+     * @psalm-return array{
+     * empty-header: array{0: array<empty, empty>},
+     * missing-basic-prefix: array{0: array{0: string}},
+     * only-username-without-colon: array{0: array{0: string}},
+     * base64-encoded-pile-of-poo-emoji: array{0: array{0: string}},
+     * pile-of-poo-emoji: array{0: array{0: string}},
+     * only-pile-of-poo-emoji: array{0: array{0: string}},
+     * basic-prefix-without-content: array{0: array{0: string}},
+     * only-basic: array{0: array{0: string}},
+     * multiple-auth-headers: array{0: array{0: array{0: string}, 1: array{0: string}}}
+     * }
+     */
     public function provideInvalidAuthenticationHeader(): array
     {
         return [
@@ -174,6 +183,19 @@ public function provideInvalidAuthenticationHeader(): array
         ];
     }
 
+    /**
+     * @psalm-return array{
+     * aladdin: array{0: string, 1: string, 2: array{0: string}},
+     * aladdin-with-nonzero-array-index: array{0: string, 1: string, 2: array{-200: string}},
+     * passwords-with-colon: array{0: string, 1: string, 2: array{0: string}},
+     * username-without-password: array{0: string, 1: string, 2: array{0: string}},
+     * password-without-username: array{0: string, 1: string, 2: array{0: string}},
+     * passwords-with-multiple-colons: array{0: string, 1: string, 2: array{0: string}},
+     * no-username-or-password: array{0: string, 1: string, 2: array{0: string}},
+     * no-username-password-only-colons: array{0: string, 1: string, 2: array{0: string}},
+     * unicode-username-and-password: array{0: string, 1: string, 2: array{0: string}}
+     * }
+     */
     public function provideValidAuthentication(): array
     {
         return [

test/ConfigProviderTest.php

@@ -10,28 +10,26 @@
 
 use Mezzio\Authentication\Basic\ConfigProvider;
 use PHPUnit\Framework\TestCase;
-use Prophecy\PhpUnit\ProphecyTrait;
 
 class ConfigProviderTest extends TestCase
 {
-    use ProphecyTrait;
+    /** @var ConfigProvider */
+    private $provider;
 
     public function setUp(): void
     {
         $this->provider = new ConfigProvider();
     }
 
-    public function testInvocationReturnsArray()
+    public function testInvocationReturnsArray(): array
     {
-        $config = ($this->provider)();
-        $this->assertIsArray($config);
-        return $config;
+        return ($this->provider)();
     }
 
     /**
      * @depends testInvocationReturnsArray
      */
-    public function testReturnedArrayContainsDependencies(array $config)
+    public function testReturnedArrayContainsDependencies(array $config): void
     {
         $this->assertArrayHasKey('dependencies', $config);
         $this->assertIsArray($config['dependencies']);
@@ -40,7 +38,7 @@ public function testReturnedArrayContainsDependencies(array $config)
     /**
      * @depends testInvocationReturnsArray
      */
-    public function testReturnedArrayContainsAuthenticationConfig(array $config)
+    public function testReturnedArrayContainsAuthenticationConfig(array $config): void
     {
         $this->assertArrayHasKey('authentication', $config);
         $this->assertIsArray($config['authentication']);