[#13648] - Reformatting of the components

phalcon/Acl/Adapter/Memory.zep

@@ -592,18 +592,19 @@ class Memory extends Adapter
      */
     public function isAllowed(var roleName, var componentName, string access, array parameters = null) -> bool
     {
-        var eventsManager, accessList, accessKey, haveAccess = null, rolesNames,
-            funcAccess = null, componentObject = null, roleObject = null,
-            funcList, reflectionFunction, reflectionParameters, parameterNumber,
-            parametersForFunction, numberOfRequiredParameters,
-            userParametersSizeShouldBe, reflectionClass, parameterToCheck,
-            reflectionParameter;
-        bool hasRole = false, hasComponent = false;
+        var accessKey, accessList, componentObject = null, haveAccess = null,
+            eventsManager, funcAccess = null, funcList, numberOfRequiredParameters,
+            reflectionFunction, reflectionParameters, parameterNumber,
+            parameterToCheck, parametersForFunction, reflectionClass,
+            reflectionParameter, rolesNames, roleObject = null,
+            userParametersSizeShouldBe;
+
+        bool hasComponent = false, hasRole = false;
 
         if typeof roleName == "object" {
             if roleName instanceof RoleAware {
-                let roleObject = roleName;
-                let roleName = roleObject->getRoleName();
+                let roleObject = roleName,
+                    roleName   = roleObject->getRoleName();
             } elseif roleName instanceof RoleInterface {
                 let roleName = roleName->getName();
             } else {
@@ -615,8 +616,8 @@ class Memory extends Adapter
 
         if typeof componentName == "object" {
             if componentName instanceof ComponentAware {
-                let componentObject = componentName;
-                let componentName = componentObject->getComponentName();
+                let componentObject = componentName,
+                    componentName   = componentObject->getComponentName();
             } elseif componentName instanceof ComponentInterface {
                 let componentName = componentName->getName();
             } else {
@@ -626,16 +627,17 @@ class Memory extends Adapter
             }
         }
 
-        let this->activeRole = roleName;
-        let this->activeComponent = componentName;
-        let this->activeAccess = access;
-        let this->activeKey = null;
-        let this->activeFunction = null;
-        let this->activeFunctionCustomArgumentsCount = 0;
+        let this->activeRole      = roleName,
+            this->activeComponent = componentName,
+            this->activeAccess    = access,
+            this->activeKey       = null,
+            this->activeKey       = null,
+            this->activeFunction  = null,
+            accessList            = this->access,
+            eventsManager         = <EventsManager> this->eventsManager,
+            funcList              = this->func;
 
-        let accessList = this->access;
-        let eventsManager = <EventsManager> this->eventsManager;
-        let funcList = this->func;
+        let this->activeFunctionCustomArgumentsCount = 0;
 
         if typeof eventsManager == "object" {
             if eventsManager->fire("acl:beforeCheckAccess", this) === false {
@@ -672,8 +674,8 @@ class Memory extends Adapter
             eventsManager->fire("acl:afterCheckAccess", this);
         }
 
-        let this->activeKey = accessKey;
-        let this->activeFunction = funcAccess;
+        let this->activeKey      = accessKey,
+            this->activeFunction = funcAccess;
 
         if haveAccess == null {
             /**
@@ -689,9 +691,9 @@ class Memory extends Adapter
          * If we have funcAccess then do all the checks for it
          */
         if is_callable(funcAccess) {
-            let reflectionFunction = new \ReflectionFunction(funcAccess);
-            let reflectionParameters = reflectionFunction->getParameters();
-            let parameterNumber = count(reflectionParameters);
+            let reflectionFunction   = new \ReflectionFunction(funcAccess),
+                reflectionParameters = reflectionFunction->getParameters(),
+                parameterNumber      = count(reflectionParameters);
 
             /**
              * No parameters, just return haveAccess and call function without
@@ -701,28 +703,28 @@ class Memory extends Adapter
                 return haveAccess == Acl::ALLOW && call_user_func(funcAccess);
             }
 
-            let parametersForFunction = [];
-            let numberOfRequiredParameters = reflectionFunction->getNumberOfRequiredParameters();
-            let userParametersSizeShouldBe = parameterNumber;
+            let parametersForFunction      = [],
+                numberOfRequiredParameters = reflectionFunction->getNumberOfRequiredParameters(),
+                userParametersSizeShouldBe = parameterNumber;
 
             for reflectionParameter in reflectionParameters {
-                let reflectionClass = reflectionParameter->getClass();
-                let parameterToCheck = reflectionParameter->getName();
+                let reflectionClass  = reflectionParameter->getClass(),
+                    parameterToCheck = reflectionParameter->getName();
 
                 if reflectionClass !== null {
                     // roleObject is this class
                     if roleObject !== null && reflectionClass->isInstance(roleObject) && !hasRole {
-                        let hasRole = true;
-                        let parametersForFunction[] = roleObject;
+                        let hasRole                 = true,
+                            parametersForFunction[] = roleObject;
                         let userParametersSizeShouldBe--;
 
                         continue;
                     }
 
                     // componentObject is this class
                     if componentObject !== null && reflectionClass->isInstance(componentObject) && !hasComponent {
-                        let hasComponent = true;
-                        let parametersForFunction[] = componentObject;
+                        let hasComponent            = true,
+                            parametersForFunction[] = componentObject;
                         let userParametersSizeShouldBe--;
 
                         continue;

phalcon/Firewall/Adapter.zep

@@ -0,0 +1,248 @@
+
+/**
+ * This file is part of the Phalcon Framework.
+ *
+ * (c) Phalcon Team <[email protected]>
+ *
+ * For the full copyright and license information, please view the LICENSE.txt
+ * file that was distributed with this source code.
+ */
+
+namespace Phalcon\Firewall;
+
+use Phalcon\Acl;
+use Phalcon\Acl\RoleAware;
+use Phalcon\Cache\Adapter\AdapterInterface as CacheAdapterInterface;
+use Phalcon\DiInterface;
+use Phalcon\Events\EventsAwareInterface;
+use Phalcon\Events\ManagerInterface;
+use Phalcon\Mvc\Dispatcher;
+
+/**
+ * Phalcon\Firewall\Adapter
+ *
+ * Adapter for Phalcon\Firewall adapters
+ */
+abstract class Adapter implements AdapterInterface, EventsAwareInterface
+{
+	/**
+	 * Storing active identity object implementing Phalcon/Acl/RoleAware
+	 */
+	protected activeIdentity { get };
+
+	/**
+	 * Storing active user role
+	 */
+	protected activeRole { get };
+
+	/**
+	 * Should role always be resolved using role callback or just once?
+	 * @var bool
+	 */
+	protected alwaysResolvingRole = false { set };
+
+	/**
+	 * Cache for caching access
+	 * @var <CacheAdapterInterface>
+	 */
+	protected cache;
+
+	/**
+	 * Default access
+	 * @var int
+	 */
+	protected defaultAccess = Acl::DENY { get, set };
+
+	/**
+	 * Events manager
+	 * @var mixed
+	 */
+	protected eventsManager;
+
+	/**
+	 * Internal cache for caching access during request time
+	 * @var mixed
+	 */
+	protected internalCache;
+
+	/**
+	 * Anonymous function for getting user identity - this function must
+	 * return string, array or object implementing Phalcon\Acl\RoleAware
+	 * @var mixed
+	 */
+	protected roleCallback;
+
+	/**
+	 * Returns the internal event manager
+	 */
+	public function getEventsManager() -> <ManagerInterface>
+	{
+		return this->eventsManager;
+	}
+
+	/**
+	 * Gets role callback to fetch role name
+	 */
+	public function getRoleCallback() -> <\Closure>
+	{
+		return this->roleCallback;
+	}
+
+	/**
+	 * Gets always resolving role option
+	 */
+	public function isAlwaysResolvingRole() -> bool
+	{
+		return this->alwaysResolvingRole;
+	}
+
+	/**
+	 * Sets the events manager
+	 */
+	public function setEventsManager(<ManagerInterface> eventsManager) -> <AdapterInterface>
+	{
+		let this->eventsManager = eventsManager;
+
+		return this;
+	}
+
+	/**
+	 * Sets role callback to fetch role name
+	 */
+	public function setRoleCallback(var callback) -> <AdapterInterface>
+	{
+		if !is_callable(callback){
+			throw new Exception("Role callback must be function.");
+		}
+		let this->roleCallback = callback;
+
+		return this;
+	}
+
+	protected function callRoleCallback(<DiInterface> container) -> void
+	{
+		var roleCallback, identity;
+
+		let roleCallback = this->roleCallback,
+		    identity     = {roleCallback}(container);
+
+		if empty identity {
+			throw new Exception("Function defined as roleCallback must return something.");
+		}
+
+		if typeof identity == "object" {
+			if !(identity instanceof RoleAware) {
+				throw new Exception("Role passed as object must implement 'Phalcon\\Acl\\RoleAware'");
+			}
+			let this->activeIdentity = identity,
+			    this->activeRole     = identity->getRoleName();
+		} else {
+			let this->activeRole = identity;
+		}
+	}
+
+	/**
+	 * Gets access from cache
+	 */
+	protected function getAccessFromCache(
+	    string! key,
+	    array originalValues = null,
+	    string roleCacheKey = null
+    ) -> bool | null
+	{
+		var access;
+
+		fetch access, this->internalCache[key];
+
+		return access;
+	}
+
+	/**
+	 * Handles a user exception
+	 */
+	protected function handleException(<\Exception> exception)
+	{
+		var eventsManager;
+		let eventsManager = <ManagerInterface> this->eventsManager;
+		if typeof eventsManager == "object" {
+			if eventsManager->fire("firewall:beforeException", this, exception) === false {
+				return false;
+			}
+		}
+	}
+
+	/**
+	 * Fires event or throwing exception
+	 */
+	protected function fireEventOrThrowException(
+	    var role,
+	    string actionName,
+	    string controllerName,
+	    bool access
+    )
+	{
+		var eventsManager, roleName;
+
+		let eventsManager = this->eventsManager;
+		if access {
+			if typeof eventsManager == "object" {
+				eventsManager->fire("firewall:afterCheck",this);
+			}
+		} else {
+			if typeof role == "array" {
+				let roleName = implode(", ",role);
+			} else {
+				let roleName = role;
+			}
+
+			return this->throwFirewallException(
+			    "Role name " . roleName . " doesn't have access to action " .
+			    actionName . " in controller " . controllerName,
+			    403
+            );
+		}
+	}
+
+	/**
+	* Saves access in cache and internal cache
+	*/
+	protected function saveAccessInCache(string! key, bool access) -> void
+	{
+		var cache;
+
+		let this->internalCache[key] = access;
+
+		let cache = this->cache;
+
+		if cache != null {
+			cache->save("_PHF_", this->internalCache);
+		}
+	}
+
+	public function setCache(<CacheAdapterInterface> cache) -> <AdapterInterface>
+	{
+		let this->cache = cache;
+
+		if this->internalCache === null {
+			let this->internalCache = cache->get("_PHF_");
+		}
+
+		return this;
+	}
+
+	/**
+	 * Throws an internal exception
+	 */
+	protected function throwFirewallException(string message, int exceptionCode = 0)
+	{
+		var exception;
+
+		let exception = new Exception(message, exceptionCode);
+
+		if this->handleException(exception) === false {
+			return false;
+		}
+
+		throw exception;
+	}
+}