refactor: renamed EntraID session class to make usage more clear

Author: thorsten

phpmyfaq/services/azure/callback.php

@@ -17,7 +17,7 @@
 
 use phpMyFAQ\Auth\AuthEntraId;
 use phpMyFAQ\Auth\EntraId\OAuth;
-use phpMyFAQ\Auth\EntraId\Session as EntraIdSession;
+use phpMyFAQ\Auth\EntraId\EntraIdSession as EntraIdSession;
 use phpMyFAQ\Configuration;
 use phpMyFAQ\Enums\AuthenticationSourceType;
 use phpMyFAQ\Filter;

phpmyfaq/services/azure/index.php

@@ -17,7 +17,7 @@
 
 use phpMyFAQ\Auth\AuthEntraId;
 use phpMyFAQ\Auth\EntraId\OAuth;
-use phpMyFAQ\Auth\EntraId\Session as EntraIdSession;
+use phpMyFAQ\Auth\EntraId\EntraIdSession as EntraIdSession;
 use phpMyFAQ\Configuration;
 
 //
@@ -34,8 +34,8 @@
 
 $faqConfig = Configuration::getConfigurationInstance();
 
-$enraIdSession = new EntraIdSession($faqConfig, $session);
-$oAuth = new OAuth($faqConfig, $enraIdSession);
+$entraIdSession = new EntraIdSession($faqConfig, $session);
+$oAuth = new OAuth($faqConfig, $entraIdSession);
 $auth = new AuthEntraId($faqConfig, $oAuth);
 
 try {

phpmyfaq/services/azure/logout.php

@@ -17,7 +17,7 @@
 
 use phpMyFAQ\Auth\AuthEntraId;
 use phpMyFAQ\Auth\EntraId\OAuth;
-use phpMyFAQ\Auth\EntraId\Session as EntraIdSession;
+use phpMyFAQ\Auth\EntraId\EntraIdSession as EntraIdSession;
 use phpMyFAQ\Configuration;
 
 //
@@ -34,8 +34,8 @@
 
 $faqConfig = Configuration::getConfigurationInstance();
 
-$enraIdSession = new EntraIdSession($faqConfig, $session);
-$oAuth = new OAuth($faqConfig, $enraIdSession);
+$entraIdSession = new EntraIdSession($faqConfig, $session);
+$oAuth = new OAuth($faqConfig, $entraIdSession);
 $auth = new AuthEntraId($faqConfig, $oAuth);
 
 $auth->logout();

phpmyfaq/src/phpMyFAQ/Auth/AuthEntraId.php

@@ -19,7 +19,7 @@
 
 use phpMyFAQ\Auth;
 use phpMyFAQ\Auth\EntraId\OAuth;
-use phpMyFAQ\Auth\EntraId\Session;
+use phpMyFAQ\Auth\EntraId\EntraIdSession;
 use phpMyFAQ\Configuration;
 use phpMyFAQ\Core\Exception;
 use phpMyFAQ\Enums\AuthenticationSourceType;
@@ -132,9 +132,14 @@ public function isValidLogin(string $login, ?array $optionalData = []): int
     public function authorize(): void
     {
         $this->createOAuthChallenge();
-        $this->oAuth->getSession()->setCurrentSessionKey();
-        $this->oAuth->getSession()->set(Session::ENTRA_ID_OAUTH_VERIFIER, $this->oAuthVerifier);
-        $this->oAuth->getSession()->setCookie(Session::ENTRA_ID_OAUTH_VERIFIER, $this->oAuthVerifier, 7200, false);
+        $this->oAuth->getEntraIdSession()->setCurrentSessionKey();
+        $this->oAuth->getEntraIdSession()->set(EntraIdSession::ENTRA_ID_OAUTH_VERIFIER, $this->oAuthVerifier);
+        $this->oAuth->getEntraIdSession()->setCookie(
+            EntraIdSession::ENTRA_ID_OAUTH_VERIFIER,
+            $this->oAuthVerifier,
+            7200,
+            false
+        );
 
         $oAuthURL = sprintf(
             'https://login.microsoftonline.com/%s/oauth2/v2.0/authorize' .

phpmyfaq/src/phpMyFAQ/Auth/EntraId/Session.php renamed to phpmyfaq/src/phpMyFAQ/Auth/EntraId/EntraIdSession.php

@@ -22,10 +22,10 @@
 use phpMyFAQ\Session\AbstractSession;
 use Symfony\Component\HttpFoundation\Cookie;
 use Symfony\Component\HttpFoundation\Request;
-use Symfony\Component\HttpFoundation\Session\Session as SymfonySession;
+use Symfony\Component\HttpFoundation\Session\Session;
 use Symfony\Component\Uid\Uuid;
 
-class Session extends AbstractSession
+class EntraIdSession extends AbstractSession
 {
     /** @var string EntraID session key */
     final public const string ENTRA_ID_SESSION_KEY = 'pmf-entra-id-session-key';
@@ -36,7 +36,7 @@ class Session extends AbstractSession
 
     private string $currentSessionKey;
 
-    public function __construct(private readonly Configuration $configuration, private readonly SymfonySession $session)
+    public function __construct(private readonly Configuration $configuration, private readonly Session $session)
     {
         parent::__construct($session);
 
@@ -64,7 +64,7 @@ public function getCurrentSessionKey(): ?string
      *
      * @throws Exception
      */
-    public function setCurrentSessionKey(): Session
+    public function setCurrentSessionKey(): EntraIdSession
     {
         if (!isset($this->currentSessionKey)) {
             $this->createCurrentSessionKey();
@@ -90,7 +90,7 @@ public function setCookie(string $name, int|string|null $sessionId, int $timeout
         Cookie::create($name)
             ->withValue($sessionId ?? '')
             ->withExpires($request->server->get('REQUEST_TIME') + $timeout)
-            ->withPath(dirname($request->server->get('SCRIPT_NAME')))
+            ->withPath(dirname((string) $request->server->get('SCRIPT_NAME')))
             ->withDomain(parse_url($this->configuration->getDefaultUrl(), PHP_URL_HOST))
             ->withSameSite($strict ? 'strict' : '')
             ->withSecure($request->isSecure())

phpmyfaq/src/phpMyFAQ/Auth/EntraId/OAuth.php

@@ -42,8 +42,10 @@ class OAuth
     /**
      * Constructor.
      */
-    public function __construct(private readonly Configuration $configuration, private readonly Session $session)
-    {
+    public function __construct(
+        private readonly Configuration $configuration,
+        private readonly EntraIdSession $entraIdSession
+    ) {
         $this->httpClient = HttpClient::create();
     }
 
@@ -65,10 +67,10 @@ public function getOAuthToken(string $code): stdClass
     {
         $url = 'https://login.microsoftonline.com/' . AAD_OAUTH_TENANTID . '/oauth2/v2.0/token';
 
-        if ($this->session->get(Session::ENTRA_ID_OAUTH_VERIFIER) !== '') {
-            $codeVerifier = $this->session->get(Session::ENTRA_ID_OAUTH_VERIFIER);
+        if ($this->entraIdSession->get(EntraIdSession::ENTRA_ID_OAUTH_VERIFIER) !== '') {
+            $codeVerifier = $this->entraIdSession->get(EntraIdSession::ENTRA_ID_OAUTH_VERIFIER);
         } else {
-            $codeVerifier = $this->session->getCookie(Session::ENTRA_ID_OAUTH_VERIFIER);
+            $codeVerifier = $this->entraIdSession->getCookie(EntraIdSession::ENTRA_ID_OAUTH_VERIFIER);
         }
 
         $response = $this->httpClient->request('POST', $url, [
@@ -117,13 +119,13 @@ public function setToken(stdClass $token): OAuth
     {
         $idToken = base64_decode(explode('.', (string) $token->id_token)[1]);
         $this->token = json_decode($idToken, null, 512, JSON_THROW_ON_ERROR);
-        $this->session->set(Session::ENTRA_ID_JWT, json_encode($this->token, JSON_THROW_ON_ERROR));
+        $this->entraIdSession->set(EntraIdSession::ENTRA_ID_JWT, json_encode($this->token, JSON_THROW_ON_ERROR));
         return $this;
     }
 
-    public function getSession(): Session
+    public function getEntraIdSession(): EntraIdSession
     {
-        return $this->session;
+        return $this->entraIdSession;
     }
 
     public function getRefreshToken(): ?string

phpmyfaq/src/phpMyFAQ/Language.php

@@ -195,19 +195,15 @@ private function getDetectionLanguage(bool $configDetection): ?string
      */
     private function selectLanguage(array $detectedLanguage): string
     {
-        if (isset($detectedLanguage['post'])) {
-            return $detectedLanguage['post'];
-        }
-
-        if (isset($detectedLanguage['get'])) {
-            return $detectedLanguage['get'];
-        }
+        $priorityOrder = ['post', 'get', 'artget', 'session', 'detection', 'config'];
 
-        if (isset($detectedLanguage['artget'])) {
-            return $detectedLanguage['artget'];
+        foreach ($priorityOrder as $source) {
+            if (!empty($detectedLanguage[$source])) {
+                return $detectedLanguage[$source];
+            }
         }
 
-        return $detectedLanguage['session'] ?? $detectedLanguage['detection'] ?? $detectedLanguage['config'] ?? 'en';
+        return 'en';
     }
 
     /**

tests/phpMyFAQ/Auth/EntraId/OAuthTest.php

@@ -18,7 +18,7 @@
 class OAuthTest extends TestCase
 {
     private HttpClientInterface $mockClient;
-    private Session $mockSession;
+    private EntraIdSession $mockSession;
     private OAuth $oAuth;
 
     /**
@@ -27,7 +27,7 @@ class OAuthTest extends TestCase
     protected function setUp(): void
     {
         $this->mockClient = $this->createMock(HttpClientInterface::class);
-        $this->mockSession = $this->createMock(Session::class);
+        $this->mockSession = $this->createMock(EntraIdSession::class);
         $mockConfiguration = $this->createMock(Configuration::class);
 
         $this->oAuth = new OAuth($mockConfiguration, $this->mockSession);
@@ -48,7 +48,7 @@ public function testGetOAuthTokenSuccess(): void
 
         $this->mockSession->expects($this->exactly(1))
             ->method('get')
-            ->with(Session::ENTRA_ID_OAUTH_VERIFIER)
+            ->with(EntraIdSession::ENTRA_ID_OAUTH_VERIFIER)
             ->willReturnOnConsecutiveCalls('', 'code_verifier');
 
         $this->mockClient->expects($this->once())
@@ -113,7 +113,7 @@ public function testSetToken(): void
 
         $this->mockSession->expects($this->once())
             ->method('set')
-            ->with(Session::ENTRA_ID_JWT, $this->stringContains('John Doe'));
+            ->with(EntraIdSession::ENTRA_ID_JWT, $this->stringContains('John Doe'));
 
         $this->oAuth->setToken($token);
 

tests/phpMyFAQ/Auth/EntraId/SessionTest.php

@@ -10,13 +10,13 @@ class SessionTest extends TestCase
 {
     private Configuration $configurationMock;
     private SymfonySession $sessionMock;
-    private Session $session;
+    private EntraIdSession $session;
 
     protected function setUp(): void
     {
         $this->configurationMock = $this->createMock(Configuration::class);
         $this->sessionMock = $this->createMock(SymfonySession::class);
-        $this->session = new Session($this->configurationMock, $this->sessionMock);
+        $this->session = new EntraIdSession($this->configurationMock, $this->sessionMock);
     }
 
     public function testCreateCurrentSessionKey(): void