Details

Reviewers

machniak

Group Reviewers

Restricted Project

Commits

rKf127175fc56e: VPNController
rK8f494e782cb2: VPNController
rKd7cae8cfcf2e: VPNController

Summary

Issues a jwt token signed by app.vpn.signing_key

Diff Detail

Repository

rK kolab

Branch

dev/mollekopf

Lint

Lint Errors

Severity	Location	Code	Message
Error	src/app/Http/Controllers/API/V4/VPNController.php:27	phpstan	Method App\Http\Controllers\API\V4\VPNController::token() should return Illuminate\Http\Response but returns Illuminate\Http\JsonResponse.
Error	src/tests/Feature/Controller/VPNTest.php:100	phpstan	Call to an undefined method Lcobucci\JWT\Token::claims().
Error	src/tests/Feature/Controller/VPNTest.php:101	phpstan	Call to an undefined method Lcobucci\JWT\Token::claims().
Error	src/tests/Feature/Controller/VPNTest.php:104	phpstan	Call to an undefined method Lcobucci\JWT\Token::claims().

Unit

No Test Coverage

Build Status

Buildable 43109
Build 17288: arc lint + arc unit

Event Timeline

mollekopf requested review of this revision.May 30 2023, 8:58 AM

mollekopf created this revision.

Harbormaster completed remote builds in B42959: Diff 12449.May 30 2023, 8:58 AM

mollekopf planned changes to this revision.May 30 2023, 8:59 AM

mollekopf added a reviewer: Restricted Project.

machniak subscribed.May 30 2023, 6:47 PM

machniak added inline comments.

src/composer.json
38	Bump to ^5.0 is available
src/tests/Feature/Controller/VPNTest.php
55	See suspicious linting errors.

mollekopf added inline comments.May 31 2023, 9:05 AM

src/tests/Feature/Controller/VPNTest.php
55	I have this usage from https://lcobucci-jwt.readthedocs.io/en/latest/quick-start/ ((under "Parsing tokens"), not sure what's up with the linting, but I'll have to test the signature verification indeed.

Asymmetric crypto, properly validate the signature.

Harbormaster completed remote builds in B43109: Diff 12473.Jun 2 2023, 2:50 PM

machniak requested changes to this revision.Jun 2 2023, 3:39 PM

machniak added inline comments.

src/app/Http/Controllers/API/V4/VPNController.php
26	This check is redundant. The route requires authentication. I'd remove this. It will fix the linting issue.
30	I'd like to see the option described in config/app.php. Also, should we throw an exception when it's not set?
40	Do we really not want to return JSON to be consistent with the whole API?
src/tests/Feature/Controller/VPNTest.php
100	These linting errors are probably JWT issues, but we should silence them. Maybe telling phpstan what exactly $token is (Lcobucci\JWT\UnencryptedToken?) would fix it.

This revision now requires changes to proceed.Jun 2 2023, 3:39 PM

Addressed comments

Harbormaster completed remote builds in B43127: Diff 12488.Jun 2 2023, 5:36 PM

lint

Harbormaster completed remote builds in B43133: Diff 12491.Jun 2 2023, 5:38 PM

machniak accepted this revision.Jun 2 2023, 7:06 PM

This revision is now accepted and ready to land.Jun 2 2023, 7:06 PM

Closed by commit rKf127175fc56e: VPNController (authored by mollekopf). · Explain WhyJun 5 2023, 1:31 PM

This revision was automatically updated to reflect the committed changes.

VPNController
ClosedPublic
Actions

Details

Diff Detail

Event Timeline

Revision Contents
Changeset List

Diff 12473

docker/webapp/Dockerfile

src/app/Http/Controllers/API/V4/VPNController.php

src/composer.json

src/routes/api.php

src/tests/Feature/Controller/VPNTest.php

VPNControllerClosedPublicActions

Details

Diff Detail

Event Timeline

Revision ContentsChangeset List

Diff 12473

docker/webapp/Dockerfile

src/app/Http/Controllers/API/V4/VPNController.php

src/composer.json

src/routes/api.php

src/tests/Feature/Controller/VPNTest.php

VPNController
ClosedPublic
Actions

Revision Contents
Changeset List