[GT-184] Apply styles for the PR (#464)

Author: Sae126V

htdocs/web_portal/controllers/site/edit_api_auth.php

@@ -1,10 +1,11 @@
 <?php
+
 /*______________________________________________________
  *======================================================
  * File: edit_api_auth.php
  * Author: George Ryall
- * Description: Processes a edit API Authentication entity  request. If the user
- *              hasn't POSTed any data we draw the new site
+ * Description: Processes a edit API Authentication entity  request.
+ *               If the user hasn't POSTed any data we draw the new site
  *              form. If they post data we assume they've posted it from
  *              the form and validate then insert it into the DB.
  *
@@ -21,24 +22,38 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
 /*======================================================*/
-require_once __DIR__.'/../../../web_portal/components/Get_User_Principle.php';
-require_once __DIR__.'/../utils.php';
-require_once __DIR__.'/../../../../lib/Gocdb_Services/Factory.php';
+require_once __DIR__
+    . '/../../../web_portal/components/Get_User_Principle.php';
+require_once __DIR__ . '/../utils.php';
+require_once __DIR__ . '/../../../../lib/Gocdb_Services/Factory.php';
+
+use Exception;
 
 /**
  * Controller to edit authentication entity request
- * @global array $_POST only set if the browser has POSTed data
+ *
+ * @global array $_POST only set if the browser has posted data
+ *
  * @return null
  */
-function edit_entity() {
+function edit_entity()
+{
     $dn = Get_User_Principle();
     $user = \Factory::getUserService()->getUserByPrinciple($dn);
 
-    //Check the portal is not in read only mode, returns exception if it is and user is not an admin
+    /**
+     * Check the portal is not in read only mode,
+     * returns exception if it is and user is not an admin
+     */
     checkPortalIsNotReadOnlyOrUserIsAdmin($user);
 
-    if (!isset($_REQUEST['authentityid']) || !is_numeric($_REQUEST['authentityid']) ){
-        throw new Exception("A authentication entity id must be specified in the url");
+    if (
+        !isset($_REQUEST['authentityid'])
+        || !is_numeric($_REQUEST['authentityid'])
+    ) {
+        throw new Exception(
+            "A authentication entity id must be specified in the url"
+        );
     }
 
     $serv = \Factory::getSiteService();
@@ -47,48 +62,67 @@ function edit_entity() {
 
     // Validate the user has permission to edit properties
     if (!$serv->userCanEditSite($user, $site)) {
-        throw new \Exception("Permission denied: a site role is required to edit authentication entities at " . $site->getShortName());
+        throw new Exception(
+            "Permission denied: a site role is required to edit "
+            . "authentication entities at "
+            . $site->getShortName()
+        );
     }
 
-    if($_POST) {     // If we receive a POST request it's to edit an authentication entity
+    // If we receive a POST request it's to edit an authentication entity
+    if ($_POST) {
         submit($user, $authEnt, $site, $serv);
-    } else { // If there is no post data, draw the edit authentication entity form
+    } else {
+    // If there is no post data, draw the edit authentication entity form
         draw($user, $authEnt, $site);
     }
 }
 
-function draw(\User $user = null, \APIAuthentication $authEnt = null, \Site $site = null) {
-    if(is_null($user)){
-        throw new Exception("Unregistered users can't edit authentication credentials");
+function draw(
+    \User $user = null,
+    \APIAuthentication $authEnt = null,
+    \Site $site = null
+) {
+    if (is_null($user)) {
+        throw new Exception(
+            "Unregistered users can't edit authentication credentials"
+        );
     }
 
     $params = array();
     $params['site'] = $site;
     $params['authEnt'] = $authEnt;
     $params['authTypes'] = array();
-    $params['authTypes'][]='X.509';
-    $params['authTypes'][]='OIDC Subject';
+    $params['authTypes'][] = 'X.509';
+    $params['authTypes'][] = 'OIDC Subject';
     $params['user'] = $user;
 
     show_view("site/edit_api_auth.php", $params);
+
     die();
 }
 
-function submit(\User $user, \APIAuthentication $authEnt, \Site $site, org\gocdb\services\Site $serv) {
+function submit(
+    \User $user,
+    \APIAuthentication $authEnt,
+    \Site $site,
+    org\gocdb\services\Site $serv
+) {
     $newValues = getAPIAuthenticationFromWeb();
 
     try {
         $authEnt = $serv->editAPIAuthEntity($authEnt, $user, $newValues);
-    } catch(Exception $e) {
+    } catch (Exception $e) {
         show_view('error.php', $e->getMessage());
+
         die();
     }
 
     $params = array();
     $params['apiAuthenticationEntity'] = $authEnt;
     $params['site'] = $site;
-    show_view("site/edited_api_auth.php", $params);
-    die();
 
+    show_view("site/edited_api_auth.php", $params);
 
+    die();
 }

htdocs/web_portal/views/site/edit_api_auth.php

@@ -1,6 +1,5 @@
 <div class="rightPageContainer">
     <?php
-
     $user = $params['user'];
     $entUser = $params['authEnt']->getUser();
 
@@ -9,7 +8,6 @@
     echo('</h1>');
 
     if (!is_null($entUser)) {
-
         echo('<h4>This credential is linked to GOCDB user ');
         echo('<a href="');
         xecho(\GocContextPath::getPath());
@@ -27,46 +25,90 @@
             echo("' to '");
             xecho($user->getFullname());
             echo("'. Click the browser Back button to cancel the edit.</div>");
-            }
-
-        } else {
-            // This clause should be deleted or replaced with exception after all
-            // authentication entities are assigned a user.
-            echo('<div class="input_warning">');
-            echo("WARNING: editing will link user '");
-            xecho($user->getFullname());
-            echo("' to this credential. Click the browser Back button to cancel the edit.</div>");
+        }
+    } else {
+        /**
+         * This clause should be deleted or replaced with exception after
+         * all authentication entities are assigned a user.
+         */
+        echo('<div class="input_warning">');
+        echo("WARNING: editing will link user '");
+        xecho($user->getFullname());
+        echo(
+            "' to this credential. Click the browser Back button "
+            . "to cancel the edit.</div>"
+        );
     }
     ?>
-    <form class="inputForm" method="post" action="index.php?Page_Type=Edit_API_Authentication_Entity&parentid=<?php echo($params['site']->getId())?>&authentityid=<?php xecho($params['authEnt']->getId())?>" name="addAPIAuthenticationEntity">
+    <form
+        class="inputForm"
+        method="post"
+        action="<?php
+            echo "index.php?Page_Type=Edit_API_Authentication_Entity",
+                "&parentid=",
+                $params['site']->getId(),
+                "&authentityid=",
+                xecho($params['authEnt']->getId());
+        ?>"
+        name="addAPIAuthenticationEntity"
+    >
         <div style="margin-bottom: 0.5em;">
-            <span class="input_name">Identifier (e.g. Certificate DN or OIDC Subject)*</span>
-            <input type="text" value="<?php xecho($params['authEnt']->getIdentifier()) ?>" name="IDENTIFIER" class="input_input_text">
+            <span class="input_name">
+                Identifier (e.g. Certificate DN or OIDC Subject)*
+            </span>
+
+            <input
+                type="text"
+                value="<?php xecho($params['authEnt']->getIdentifier()); ?>"
+                name="IDENTIFIER"
+                class="input_input_text"
+            >
         </div>
+
         <div style="margin-bottom: 0.5em;">
             <span class="input_name">Credential type*</span>
+
             <select name="TYPE" class="input_input_text">
-                <?php foreach($params['authTypes'] as $authType) {?>
-                    <option value="<?php xecho($authType) ?>"<?php if ($params['authEnt']->getType() == $authType) {echo " selected=\"selected\"";} ?>>
+                <?php foreach ($params['authTypes'] as $authType) { ?>
+                    <option
+                        value="<?php xecho($authType); ?>"
+                        <?php
+                        if ($params['authEnt']->getType() == $authType) {
+                            echo " selected=\"selected\"";
+                        }
+                        ?>
+                    >
                         <?php xecho($authType) ?>
                     </option>
                 <?php } ?>
             </select>
         </div>
+    
         <div style="margin-bottom: 1em">
             <div class="input_warning">
-                WARNING: it is possible to delete information using the write functionality of the API. Leave Allow API write unchecked if
+                WARNING: it is possible to delete information using the write
+                functionality of the API. Leave Allow API write unchecked if
                 you do not need to write data.
             </div>
+
             <div class="input_checkbox">
-                <input type="checkbox" name="ALLOW_WRITE" id="ALLOW_WRITE" value="checked"
+                <input
+                    type="checkbox"
+                    name="ALLOW_WRITE"
+                    id="ALLOW_WRITE"
+                    value="checked"
                     <?php
-                        if ($params['authEnt']->getAllowAPIWrite()) { echo('checked="checked"');}
+                    if ($params['authEnt']->getAllowAPIWrite()) {
+                        echo('checked="checked"');
+                    }
                     ?>
                 />
-                <label class="input_label" for="ALLOW_WRITE">Allow API write</label>
+                <label class="input_label" for="ALLOW_WRITE">
+                    Allow API write
+                </label>
             </div>
         </div>
+
         <input type="submit" value="Edit credential" class="input_button">
     </form>
 </div>

htdocs/web_portal/views/site/edited_api_auth.php

@@ -1,7 +1,14 @@
 <div class="rightPageContainer">
     <h1 class="Success">Success</h1><br />
-    The API authenication credential has now been updated. Type:<?php xecho($params['apiAuthenticationEntity']->getType()) ?>, identifier: <?php xecho($params['apiAuthenticationEntity']->getIdentifier()) ?>.
+        The API authenication credential has now been updated.
+        Type: <?php xecho($params['apiAuthenticationEntity']->getType()); ?>,
+        identifier: <?php
+            xecho($params['apiAuthenticationEntity']->getIdentifier());
+        ?>.
     <br />
-    <a href="index.php?Page_Type=Site&amp;id=<?php echo $params['site']->getID(); ?>">
-        View site</a>
+    <a
+        href="<?php
+            echo "index.php?Page_Type=Site&amp;id=", $params['site']->getID();
+        ?>"
+    >View site</a>
 </div>

htdocs/web_portal/views/site/view_site.php

@@ -30,6 +30,7 @@
 
 use Doctrine\ORM\QueryBuilder;
 use org\gocdb\services\Validate;
+use Exception;
 
 class APIAuthenticationService extends AbstractEntityService
 {
@@ -39,20 +40,24 @@ public function __construct()
     }
 
     /**
-     * Returns the APIAuthentication entity associated with the given identifier.
+     * Returns the APIAuthentication entity
+     * associated with the given identifier.
      *
      * @param string $ident Identifier (e.g. X.509 DN as string)
-     * @return \APIAuthentication[] APIAuthentication associated with this identifier
+     *
+     * @return \APIAuthentication[] APIAuthentication associated
+     *                              with this identifier
      */
     public function getAPIAuthentication($ident)
     {
-
         if (!is_string($ident)) {
-            throw new \LogicException("Expected string APIAuthentication identifier.");
+            throw new \LogicException(
+                "Expected string APIAuthentication identifier."
+            );
         }
 
-        $dql = "SELECT a FROM APIAuthentication a " .
-                "WHERE (a.identifier = :ident)" ;
+        $dql = "SELECT a FROM APIAuthentication a "
+                . "WHERE (a.identifier = :ident)" ;
 
         /* @var $qry \Doctine\DBAL\query */
         $qry = $this->em->createQuery($dql);
@@ -63,35 +68,40 @@ public function getAPIAuthentication($ident)
         return $apiAuths;
     }
 
-        /**
-     * Update the fields of an APIAuthentication entity and commit the resulting entity
+    /**
+     * Update the fields of an APIAuthentication entity
+     * and commit the resulting entity
      *
      * @param \Site Parent site
      * @param \User Owning user
      * @param array Array containing new values
+     *
      * @throws \Exception on error with commit rolled back
      * @return \APIAuthentication
      */
     public function addAPIAuthentication(\Site $site, \User $user, $newValues)
     {
-
         $identifier = $newValues['IDENTIFIER'];
         $type = $newValues['TYPE'];
         $allowWrite = $newValues['ALLOW_WRITE'];
 
-        //Check that an identifier has been provided
+        // Check that an identifier has been provided
         if (empty($identifier)) {
-            throw new \Exception("A value must be provided for the identifier");
+            throw new Exception(
+                "A value must be provided for the identifier"
+            );
         }
 
-        //validate the values against the schema
+        // validate the values against the schema
         $this->validate($newValues, $identifier, $type);
-
-        //Check there isn't already a credential with that identifier for that Site
+        /**
+         * Check there isn't already a credential
+         * with that identifier for that Site
+         */
         $this->uniqueAPIAuthEnt($site, $identifier);
-
         //Add the properties
         $this->em->getConnection()->beginTransaction();
+
         try {
             $authEnt = new \APIAuthentication();
             $authEnt->setIdentifier($identifier);
@@ -108,29 +118,35 @@ public function addAPIAuthentication(\Site $site, \User $user, $newValues)
         } catch (\Exception $e) {
             $this->em->getConnection()->rollback();
             $this->em->close();
+
             throw $e;
         }
 
         return $authEnt;
     }
 
     /**
-     * Update the fields of an APIAuthentication entity and commit the resulting entity
+     * Update the fields of an APIAuthentication entity
+     * and commit the resulting entity
      *
      * @param \APIAuthentication Entity to delete
+     *
      * @throws \Exception on error with commit rolled back
      */
     public function deleteAPIAuthentication(\APIAuthentication $authEntity)
     {
-
         $this->em->getConnection()->beginTransaction();
 
         $parentSite = $authEntity->getParentSite();
         $user = $authEntity->getUser();
 
         try {
-            //Remove the authentication entity from the site then remove the entity
-            $parentSite->getAPIAuthenticationEntities()->removeElement($authEntity);
+            /**
+             * Remove the authentication entity from
+             * the site then remove the entity
+             */
+            $parentSite->getAPIAuthenticationEntities()
+                ->removeElement($authEntity);
             $user->getAPIAuthenticationEntities()->removeElement($authEntity);
 
             $this->em->remove($authEntity);
@@ -143,41 +159,53 @@ public function deleteAPIAuthentication(\APIAuthentication $authEntity)
         } catch (\Exception $e) {
             $this->em->getConnection()->rollback();
             $this->em->close();
+
             throw $e;
         }
     }
 
-        /**
-     * Update the fields of an APIAuthentication entity and commit the resulting entity
+    /**
+     * Update the fields of an APIAuthentication entity
+     * and commit the resulting entity
      *
      * @param \APIAuthentication Entity to update
      * @param \User Owning user
      * @param array Array containing new values
-     * @throws \Exception on error with commit rolled back
+     *
+     * @throws Exception on error with commit rolled back
      * @return \APIAuthentication
      */
-    public function editAPIAuthentication(\APIAuthentication $authEntity, \User $user, $newValues)
-    {
-
+    public function editAPIAuthentication(
+        \APIAuthentication $authEntity,
+        \User $user,
+        $newValues
+    ) {
         $identifier = $newValues['IDENTIFIER'];
         $type = $newValues['TYPE'];
         $allowWrite = $newValues['ALLOW_WRITE'];
 
-        //Check that an identifier ha been provided
+        // Check that an identifier ha been provided
         if (empty($identifier)) {
-            throw new \Exception("A value must be provided for the identifier");
+            throw new Exception(
+                "A value must be provided for the identifier"
+            );
         }
 
-        //validate the values against the schema
+        // validate the values against the schema
         $this->validate($newValues, $identifier, $type);
 
-        //Edit the property
+        // Edit the property
         $this->em->getConnection()->beginTransaction();
+
         try {
-            // This would probably be the place hook for any future policy acceptance tracking
+            /**
+             * This would probably be the place hook
+             * for any future policy acceptance tracking
+             */
             if ($user->getId() != $authEntity->getUser()) {
                 $authEntity->setLastRenewTime();
             }
+
             $authEntity->setIdentifier($identifier);
             $authEntity->setType($type);
             $authEntity->setAllowAPIWrite($allowWrite);
@@ -191,13 +219,16 @@ public function editAPIAuthentication(\APIAuthentication $authEntity, \User $use
         } catch (\Exception $e) {
             $this->em->getConnection()->rollback();
             $this->em->close();
+
             throw $e;
         }
     }
+
     /**
      * Set the last use time field to the current UTC time
      *
      * @param \APIAuthentication[] $authEntities entity to update
+     *
      * @throws \Exception if the update fails
      */
     public function updateLastUseTime(array $authEntities)
@@ -216,9 +247,11 @@ public function updateLastUseTime(array $authEntities)
         } catch (\Exception $e) {
             $this->em->getConnection()->rollback();
             $this->em->close();
+
             throw $e;
         }
     }
+
     /**
      * Fail if there is already an API credential with a given identifier
      * for a given Site.
@@ -228,55 +261,79 @@ public function updateLastUseTime(array $authEntities)
      *
      * @param \Site $site field values for an APIAuthentication object
      * @param string $identifier to check
-     * @throws \Exception if the data can't be validated.
+     *
+     * @throws Exception if the data can't be validated.
      */
     public function uniqueAPIAuthEnt(\Site $site, $identifier)
     {
-
         $authEntities = $this->getAPIAuthentication($identifier);
 
         foreach ($authEntities as $authEnt) {
             if ($authEnt->getParentSite()->getId() == $site->getId()) {
-                throw new \Exception(
-                    "An authentication credential with identifier " .
-                    "\"$identifier\" already exists for " . $site->getName()
+                throw new Exception(
+                    "An authentication credential with identifier "
+                    . "\"$identifier\" already exists for " . $site->getName()
                 );
             }
         }
     }
+
     /**
      * Validates the user inputted site data against the
      * checks in the gocdb_schema.xml and applies additional logic checks
      * that can't be described in the gocdb_schema.xml.
      *
      * @param array $data field values for an APIAuthentication object
      * @param mixed $type a valid
-     * @throws \Exception if the data can't be validated.
+     *
+     * @throws Exception if the data can't be validated.
      * @return null
      */
     private function validate($data, $identifier, $type)
     {
-
         $serv = new Validate();
+
         foreach ($data as $field => $value) {
             $valid = $serv->validate('APIAUTHENTICATION', $field, $value);
+
             if (!$valid) {
                 $error = "$field contains an invalid value: $value";
-                throw new \Exception($error);
+
+                throw new Exception($error);
             }
         }
-        //If the entity is of type X.509, do a more thorough check than the validate service (as we know the type)
-        //Note that we are allowing ':' as they can appear in robot DN's
-        if ($type == 'X.509' && !preg_match("/^(\/[A-Za-z]+=[a-zA-Z0-9\/\-\_\s\.,'@:\/]+)*$/", $identifier)) {
-            throw new \Exception("Invalid X.509 DN");
+
+        /**
+         * If the entity is of type X.509, do a more thorough
+         * check than the validate service (as we know the type)
+         *
+         * Note that we are allowing ':' as they can appear in robot DN's
+         */
+        if (
+            $type == 'X.509'
+            && !preg_match(
+                "/^(\/[A-Za-z]+=[a-zA-Z0-9\/\-\_\s\.,'@:\/]+)*$/",
+                $identifier
+            )
+        ) {
+            throw new Exception("Invalid X.509 DN");
         }
 
-        //If the entity is of type OIDC subject, do a more thorough check again
+        /**
+         * If the entity is of type OIDC subject,
+         * do a more thorough check again
+         */
         if (
-            $type == 'OIDC Subject' &&
-            !preg_match("/^([a-f0-9]{8}\-[a-f0-9]{4}\-[a-f0-9]{4}\-[a-f0-9]{4}\-[a-f0-9]{12})$/", $identifier)
+            $type == 'OIDC Subject'
+            && !preg_match(
+                (
+                    "/^([a-f0-9]{8}\-[a-f0-9]{4}\-[a-f0-9]{4}"
+                    . "\-[a-f0-9]{4}\-[a-f0-9]{12})$/"
+                ),
+                $identifier
+            )
         ) {
-            throw new \Exception("Invalid OIDC Subject");
+            throw new Exception("Invalid OIDC Subject");
         }
     }
 }

lib/Gocdb_Services/APIAuthenticationService.php

@@ -1,14 +1,16 @@
 <?php
 
 /**
- * Implement API credential management actions such as listing, sending warning emails and
- * deleting credentials.
+ * Implement API credential management actions such as listing,
+ * sending warning emails and deleting credentials.
  */
 
 namespace org\gocdb\scripts;
 
-require_once dirname(__FILE__) . "/../../lib/Gocdb_Services/APIAuthenticationService.php";
-require_once dirname(__FILE__) . "/../../lib/Gocdb_Services/Factory.php";
+require_once dirname(__FILE__)
+    . "/../../lib/Gocdb_Services/APIAuthenticationService.php";
+require_once dirname(__FILE__)
+    . "/../../lib/Gocdb_Services/Factory.php";
 
 use APIAuthentication;
 use DateInterval;
@@ -22,32 +24,38 @@ class ManageAPICredentialsActions
     private $entityManager;
     private $baseTime;
 
+    /**
+     * @param \Doctrine\Orm\EntityManager $entitymanager A valid Doctrine
+     *                                                   Entity Manager
+     * @param bool $dryRun If true no action is taken and
+     *                     a report is generated instead
+     * @param \DateTime $baseTime Time from which interval
+     *                            of no-use is measured
+     */
     public function __construct($dryRun, $entityManager, $baseTime)
     {
-        /**
-        * @param \Doctrine\Orm\EntityManager $entitymanager A valid Doctrine Entity Manager
-        * @param bool          $dryRun         If true no action is taken and a report is generated instead
-        * @param \DateTime     $baseTime       Time from which interval of no-use is measured
-        **/
         $this->dryRun = $dryRun;
         $this->entityManager = $entityManager;
         $this->baseTime = $baseTime;
     }
+
     /**
      * Find API credentials unused for a number of months.
      *
-     * Find API credentials which have not been used for a number of months prior to a given base time based
-     * on the credential property lastUseTime.
+     * Find API credentials which have not been used for a number of months
+     * prior to a given base time based on the credential property lastUseTime.
      *
-     * @param int           $threshold      The number of months of no-use prior to $baseTime to use for selection
+     * @param int $threshold The number of months of no-use
+     *                       prior to $baseTime to use for selection
      */
     public function getCreds($threshold, $propertyName)
     {
         $qbl = $this->entityManager->createQueryBuilder();
 
+         // `$qbl->expr()->isNotNull("cred.user")` => cope with legacy entities
         $qbl->select('cred')
             ->from('APIAuthentication', 'cred')
-            ->where($qbl->expr()->isNotNull("cred.user")) // cope with legacy entities
+            ->where($qbl->expr()->isNotNull("cred.user"))
             ->andWhere('cred.' . $propertyName . '< :threshold');
 
         $timeThresh = clone $this->baseTime;
@@ -62,18 +70,23 @@ public function getCreds($threshold, $propertyName)
 
         return $creds;
     }
+
     /**
      * Select API credentials for deletion.
      *
-     * Find API credentials which have not been used for a given number of months
-     * and delete them or, if dry-run option is true, generate a summary report
-     * of the credentils found.
+     * Find API credentials which have not been used for a given
+     * number of months and delete them or, if dry-run option is true,
+     * generate a summary report of the credentils found.
+     *
+     * @param array $creds Array of credentials to process.
+     * @param \Doctrine\Orm\EntityManager $entitymanager A valid Doctrine
+     *                                                   Entity Manager
+     * @param \DateTime $baseTime Time from which interval of
+     *                            no-use is measured
+     * @param int $deleteThreshold The number of months of no-use
+     *                             which will trigger deletion
      *
-     * @param array             $creds              Array of credentials to process.
-     * @param \Doctrine\Orm\EntityManager $entitymanager A valid Doctrine Entity Manager
-     * @param \DateTime         $baseTime           Time from which interval of no-use is measured
-     * @param int               $deleteThreshold    The number of months of no-use which will trigger deletion
-     * @return array                                Credentials which were not deleted.
+     * @return array Credentials which were not deleted.
      */
     public function deleteCreds($creds, $deleteThreshold)
     {
@@ -82,36 +95,60 @@ public function deleteCreds($creds, $deleteThreshold)
         $serv = new APIAuthenticationService();
         $serv->setEntityManager($this->entityManager);
 
-        /* @var $apiCred APIAuthentication */
         foreach ($creds as $apiCred) {
-            if ($this->isOverThreshold($apiCred, $this->baseTime, $deleteThreshold)) {
+            if (
+                $this->isOverThreshold(
+                    $apiCred,
+                    $this->baseTime,
+                    $deleteThreshold
+                )
+            ) {
                 $deletedCreds[] = $apiCred;
+
                 if (!$this->dryRun) {
                     $serv->deleteAPIAuthentication($apiCred);
                 }
             }
         }
+
         if ($this->dryRun) {
             $this->reportDryRun($deletedCreds, "deleting");
         }
 
-        return array_udiff($creds, $deletedCreds, array($this, 'compareCredIds'));
+        return array_udiff(
+            $creds,
+            $deletedCreds,
+            array(
+                $this,
+                'compareCredIds'
+            )
+        );
     }
+
     /**
-     * Send of warning emails where credentials have not been used for a given number of months
+     * Send of warning emails where credentials have not
+     * been used for a given number of months
+     *
+     * Find API credentials from the input array which have not been used for
+     * a given number of months and send emails to the owners and site address,
+     * taken from the credential object, warning of impending deletion if the
+     * period of no-use reaches a given threshold.
+     * If dry-run option is true, generate a summary report of the
+     * credentials found instead of sending emails.
      *
-     * Find API credentials from the input array which have not been used for a given number of months
-     * and send emails to the owners and site address, taken from the credential object,
-     * warning of impending deletion if the period of no-use reaches a given threshold.
-     * If dry-run option is true, generate a summary report of the credentials found
-     * instead of sending emails.
+     * @param array         $creds              Array of credentials
+     *                                          to process.
+     * @param int           $warningThreshold   The number of months of no-use
+     *                                          which triggers warning emails
+     * @param int           $deleteThreshold    The number of months of no-use
+     *                                          which will trigger deletion
+     * @param string        $fromEmail          Email address to use
+     *                                          as sender's (From:) address
+     * @param string        $replyToEmail       Email address for
+     *                                          replies (Reply-To:)
      *
-     * @param array         $creds              Array of credentials to process.
-     * @param int           $warningThreshold   The number of months of no-use which triggers warning emails
-     * @param int           $deleteThreshold    The number of months of no-use which will trigger deletion
-     * @param string        $fromEmail          Email address to use as sender's (From:) address
-     * @param string        $replyToEmail       Email address for replies (Reply-To:)
-     * @return array                            Array of credentials identifed for sending warning emails
+     * @return array                            Array of credentials identifed
+     *                                          for sending warning emails
      */
     public function warnUsers(
         $creds,
@@ -122,13 +159,21 @@ public function warnUsers(
     ) {
         $warnedCreds = [];
 
-        /* @var $api APIAuthentication */
         foreach ($creds as $apiCred) {
-            // The credentials list is pre-selected based on the given threshold in the query
-            // so this check is probably redundant.
-            if ($this->isOverThreshold($apiCred, $this->baseTime, $warningThreshold)) {
+            /**
+             * The credentials list is pre-selected based on the given
+             * threshold in the query so this check is probably redundant.
+             */
+            if (
+                $this->isOverThreshold(
+                    $apiCred,
+                    $this->baseTime,
+                    $warningThreshold
+                )
+            ) {
                 $lastUsed = $apiCred->getLastUseTime();
-                $lastUseMonths = $this->baseTime->diff($lastUsed)->format('%m');
+                $lastUseMonths = $this->baseTime->diff($lastUsed)
+                    ->format('%m');
 
                 if (!$this->dryRun) {
                     $this->sendWarningEmail(
@@ -148,28 +193,43 @@ public function warnUsers(
             $this->reportDryRun($warnedCreds, "sending warning emails");
         }
 
-        return array_udiff($creds, $warnedCreds, array($this, 'compareCredIds'));
+        return array_udiff(
+            $creds,
+            $warnedCreds,
+            array(
+                $this,
+                'compareCredIds'
+            )
+        );
     }
-/**
- * @return boolean true if the credential has not been used within $threshold months, else false
- */
-    private function isOverThreshold(APIAuthentication $cred, DateTime $baseTime, $threshold)
-    {
+
+    /**
+     * @return boolean true if the credential has not been
+     *                      used within $threshold months, else false
+     */
+    private function isOverThreshold(
+        APIAuthentication $cred,
+        DateTime $baseTime,
+        $threshold
+    ) {
         $lastUsed = $cred->getLastUseTime();
 
         $diffTime = $baseTime->diff($lastUsed);
         $lastUseMonths = ($diffTime->y * 12) + $diffTime->m;
 
         return $lastUseMonths >= $threshold;
     }
-/**
- * Helper function to check if two API credentials have the same id.
- *
- * @return integer zero if equal, -1 if id1 < id2, 1 if id1 > id2
- *
-*/
-    private function compareCredIds(APIAuthentication $cred1, APIAuthentication $cred2)
-    {
+
+    /**
+     * Helper function to check if two API credentials have the same id.
+     *
+     * @return integer zero if equal, -1 if id1 < id2, 1 if id1 > id2
+     *
+    */
+    private function compareCredIds(
+        APIAuthentication $cred1,
+        APIAuthentication $cred2
+    ) {
         $id1 = $cred1->getId();
         $id2 = $cred2->getId();
 
@@ -180,19 +240,26 @@ private function compareCredIds(APIAuthentication $cred1, APIAuthentication $cre
         return $id1 > $id2 ? 1 : -1;
     }
 
-/**
- * Format and send warning emails.
- *
- * Send emails to API credential owner and the registered site address warning of impending credential deletion
- * if the credential remains unused until a given threshold of months.
- *
- * @param string    $fromEmail          Email address to use as sender's (From:) address
- * @param string    $replyToEmail       Email address for replies (Reply-To:)
- * @param \APIAuthentication $api       Credential to warn about
- * @param int       $elapsedMonths      The number of months of non-use so far.
- * @param int       $deleteionThreshold The number of months of no-use which will trigger deletion if reached.
- * @return void
- */
+    /**
+     * Format and send warning emails.
+     *
+     * Send emails to API credential owner and the registered site address
+     * warning of impending credential deletion if the credential remains
+     * unused until a given threshold of months.
+     *
+     * @param string    $fromEmail          Email address to use as sender's
+     *                                      (From:) address
+     * @param string    $replyToEmail       Email address for replies
+     *                                      (Reply-To:)
+     * @param \APIAuthentication $api       Credential to warn about
+     * @param int       $elapsedMonths      The number of months of
+     *                                      non-use so far.
+     * @param int       $deleteionThreshold The number of months of no-use
+     *                                      which will trigger deletion
+     *                                      if reached.
+     *
+     * @return void
+     */
     private function sendWarningEmail(
         $fromEmail,
         $replyToEmail,
@@ -207,9 +274,11 @@ private function sendWarningEmail(
 
         $headersArray = array ("From: $fromEmail",
                            "Cc: $siteEmail");
+
         if (strlen($replyToEmail) > 0 && $fromEmail !== $replyToEmail) {
             $headersArray[] = "Reply-To: $replyToEmail";
         }
+
         $headers = join("\r\n", $headersArray);
 
         $subject = "GOCDB: Site API credential deletion notice";
@@ -230,21 +299,27 @@ private function sendWarningEmail(
         // Send the email (or not, according to local configuration)
         Factory::getEmailService()->send($userEmail, $subject, $body, $headers);
     }
-/**
- * Generate a summary report.
- *
- * Generate a report to stdout summarising information about each credential in an array when
- * a dry-run operation is in progress.
- *
- * @param array      $creds          Array of API credential objects to be summarised.
- * @param string     $text           Brief description of the operation which would have been
- *                                   performed without dry-run to be included in the report.
- * @return void
- */
+
+    /**
+     * Generate a summary report.
+     *
+     * Generate a report to stdout summarising information about each
+     * credential in an array when a dry-run operation is in progress.
+     *
+     * @param array      $creds          Array of API credential objects
+     *                                   to be summarised.
+     * @param string     $text           Brief description of the operation
+     *                                   which would have been
+     *                                   performed without dry-run to be
+     *                                   included in the report.
+     *
+     * @return void
+     */
     private function reportDryRun(array $creds, $text)
     {
         if (count($creds) == 0) {
             print("Dry run: No matching credentials found for $text.\n");
+
             return;
         }
 

lib/Gocdb_Services/Site.php

@@ -3,21 +3,25 @@
 /**
  * Maintenance utility for API credential management.
  *
- * Finds API credentials that have not been used for a given number of months and
- * deletes them, then finds credentials that have not been used for a different,
- * smaller number of months and sends warning email messages to the owners telling
- * them the credentials will be deleted if not used before the larger month
- * deadline is reached. A dry-run option is provided to report what would have been
- * done but without taking any actions.
+ * Finds API credentials that have not been used for a given
+ * number of months and deletes them, then finds credentials that have not
+ * been used for a different, smaller number of months and sends warning email
+ * messages to the owners telling them the credentials will be deleted if not
+ * used before the larger month deadline is reached.
+ * A dry-run option is provided to report what would have been done but without
+ * taking any actions.
  *
- * Sender and reply-to email addresses are taken from the local_info.xml config file.
+ * Sender and reply-to email addresses are taken from
+ * the local_info.xml config file.
  *
  * Usage: php ManageUnusedAPICredentials.php [ --help | -h ] [ --dry-run ] \\
  *                                   [[ --warning_threshold | -w ] LITTLE_MONTHS ] \\
  *                                   [[ --deletion_threshold | -d ] BIG_MONTHS ]
  *
- * Warning and deletion thresholds are optional. If missing the respective action is not taken.
- * If both are specified, the deletion threshold MUST be greater than the warning threshold.
+ * Warning and deletion thresholds are optional.
+ * If missing the respective action is not taken.
+ * If both are specified, the deletion threshold MUST be
+ * greater than the warning threshold.
  */
 
 namespace org\gocdb\scripts;
@@ -34,8 +38,6 @@
 
 // Fetch sender and replyTo email addresses from the local config file.
 // There is no capability to override based on URL as the webserver does with -
-// \Factory::getConfigService()->setLocalInfoOverride($_SERVER['SERVER_NAME']);
-
 $configService = \Factory::getConfigService();
 $fromEmail = (string) $configService->getEmailFrom();
 $replyToEmail = (string) $configService->getEmailTo();
@@ -49,7 +51,11 @@
 
     $baseTime = new DateTime("now", new DateTimeZone('UTC'));
 
-    $actions = new ManageAPICredentialsActions($options->isDryRun(), $entityManager, $baseTime);
+    $actions = new ManageAPICredentialsActions(
+        $options->isDryRun(),
+        $entityManager,
+        $baseTime
+    );
 
     $creds = $actions->getCreds($options->getThreshold(), 'lastUseTime');
 

resources/ManageAPICredentials/ManageAPICredentialsActions.php

@@ -21,8 +21,10 @@ public function __construct()
     {
         $this->getOptions();
     }
+
     /**
-     * @throws \InvInvalidArgumentException If errors found in argument processing
+     * @throws \InvalidArgumentException If errors found in
+     *                                      argument processing
      */
     public function getOptions()
     {
@@ -35,11 +37,16 @@ public function getOptions()
             'deletion_threshold:'
         ];
 
-        // Beware that getopt is not clever at spotting invalid/misspelled arguments
+        /**
+         * Beware that getopt is not clever at
+         * spotting invalid/misspelled arguments
+         */
         $given = getopt($shortOptions, $longOptions);
 
         if ($given === false) {
-            throw new InvalidArgumentException('failed to  parse command line arguments');
+            throw new InvalidArgumentException(
+                'failed to  parse command line arguments'
+            );
         }
 
         if ($this->getBoolOption($given, 'help', 'h')) {
@@ -60,37 +67,45 @@ public function getOptions()
                 );
             }
         }
+
         return;
     }
+
     private function getValOption($given, $long, $short)
     {
         if (isset($given[$long]) || isset($given[$short])) {
-            $tValGiven = isset($given[$short]) ? $given[$short] : $given[$long];
+            $tValGiven = isset($given[$short])
+                ? $given[$short]
+                : $given[$long];
+
             return $this->positiveInteger($tValGiven, $long);
         }
+
         return;
     }
+
     private function getBoolOption($given, $long, $short)
     {
         return isset($given[$long]) || isset($given[$short]);
     }
+
     private function positiveInteger($val, $txt)
     {
         if ((string)abs((int)$val) != $val) {
             throw new InvalidArgumentException(
                 "$txt must be integer and greater than zero . Received: $val"
             );
         }
+
         return (int)$val;
     }
+
     public static function usage($message = '')
     {
         if ($message != '') {
-            print
-            (
-                "Error: $message\n"
-            );
+            print("Error: $message\n");
         }
+
         print
         (
             "Usage: php ManageAPICredentials.php [--help | -h] [--dry-run] \\\ \n" .
@@ -105,32 +120,40 @@ public static function usage($message = '')
             "                                        for MONTHS months.\n"
         );
     }
+
     public function isShowHelp()
     {
         return $this->showHelp;
     }
+
     public function isDryRun()
     {
         return $this->dryRun;
     }
+
     public function isDeleteEnabled()
     {
         return !is_null($this->getDelete());
     }
+
     public function isWarnEnabled()
     {
         return !is_null($this->getWarn());
     }
+
     public function getWarn()
     {
         return $this->warn;
     }
+
     public function getDelete()
     {
         return $this->delete;
     }
+
     /**
-     * The delete threshold may not be given in which case the warning threshold should be used.
+     * The delete threshold may not be given in which case
+     * the warning threshold should be used.
      * Note that it is an error is delete is greater than warning.
      */
     public function getThreshold()

resources/ManageAPICredentials/ManageUnusedAPICredentials.php

@@ -21,7 +21,8 @@
 
 require_once __DIR__ . '/ManageAPICredentialsTestUtils.php';
 require_once __DIR__ . '/../unit/lib/Gocdb_Services/ServiceTestUtil.php';
-require_once __DIR__ . '/../../resources/ManageAPICredentials/ManageAPICredentialsActions.php';
+require_once __DIR__
+    . '/../../resources/ManageAPICredentials/ManageAPICredentialsActions.php';
 
 class ManageUnrenewedAPICredentialsTest extends PHPUnit_Extensions_Database_TestCase
 {
@@ -31,10 +32,13 @@ class ManageUnrenewedAPICredentialsTest extends PHPUnit_Extensions_Database_Test
     public function __construct()
     {
         parent::__construct();
-        // Use a local instance to avoid Mess Detector's whinging about avoiding
-        // static access.
+        /**
+         * Use a local instance to avoid Mess Detector's
+         * whinging about avoiding static access.
+         */
         $this->dbOpsFactory = new PHPUnit_Extensions_Database_Operation_Factory();
     }
+
     /**
      * Overridden.
      */
@@ -44,27 +48,40 @@ public static function setUpBeforeClass()
         echo "\n\n-------------------------------------------------\n";
         echo "Executing ManageUnrenewedAPICredentialsTest. . .\n";
     }
+
     /**
      * Overridden. Returns the test database connection.
+     *
      * @return PHPUnit_Extensions_Database_DB_IDatabaseConnection
      */
     protected function getConnection()
     {
         require_once __DIR__ . '/../doctrine/bootstrap_pdo.php';
+
         return getConnectionToTestDB();
     }
+
     /**
      * Overridden. Returns the test dataset.
-     * Defines how the initial state of the database should look before each test is executed.
+     * Defines how the initial state of the database
+     * should look before each test is executed.
+     *
      * @return PHPUnit_Extensions_Database_DataSet_IDataSet
      */
     protected function getDataSet()
     {
-        $dataset = $this->createFlatXMLDataSet(__DIR__ . '/../doctrine/truncateDataTables.xml');
+        $dataset = $this->createFlatXMLDataSet(
+            __DIR__ . '/../doctrine/truncateDataTables.xml'
+        );
+
         return $dataset;
-        // Use below to return an empty data set if we don't want to truncate and seed
-        //return new PHPUnit_Extensions_Database_DataSet_DefaultDataSet();
+        /**
+         * Use below to return an empty data set
+         * if we don't want to truncate and seed.
+         */
+        // return new PHPUnit_Extensions_Database_DataSet_DefaultDataSet();
     }
+
     /**
      * Overridden.
      */
@@ -75,11 +92,16 @@ protected function getSetUpOperation()
         //return PHPUnit_Extensions_Database_Operation_Factory::UPDATE();
         //return PHPUnit_Extensions_Database_Operation_Factory::NONE();
         //
-        // Issue a DELETE from <table> which is more portable than a
-        // TRUNCATE table <table> (some DBs require high privileges for truncate statements
-        // and also do not allow truncates across tables with FK contstraints e.g. Oracle)
+        /**
+         * Issue a DELETE from <table> which is more portable than a
+         * TRUNCATE table <table> (some DBs require high privileges
+         * for truncate statements and also do not allow truncates across
+         * tables with FK contstraints e.g. Oracle)
+         */
+
         return $this->dbOpsFactory->DELETE_ALL();
     }
+
     /**
      * Overridden.
      */
@@ -88,6 +110,7 @@ protected function getTearDownOperation()
         // NONE is default
         return $this->dbOpsFactory->NONE();
     }
+
     /**
      * Sets up the fixture, e.g create a new entityManager for each test run
      * This method is called before each test method is executed.
@@ -102,25 +125,32 @@ protected function setUp()
 
         date_default_timezone_set("UTC");
     }
+
     /**
      * Run after each test function to prevent pile-up of database connections.
      */
     protected function tearDown()
     {
         parent::tearDown();
+
         if (!is_null($this->entityManager)) {
             $this->entityManager->getConnection()->close();
         }
     }
+
     /**
      * @return EntityManager
      */
     private function createEntityManager()
     {
-        $entityManager = null; // Initialise in local scope to avoid unused variable warnings
+        // Initialise in local scope to avoid unused variable warnings
+        $entityManager = null;
+
         require __DIR__ . '/../doctrine/bootstrap_doctrine.php';
+
         return $entityManager;
     }
+
     public function testLastRenewTime()
     {
         print __METHOD__ . "\n";
@@ -132,7 +162,11 @@ public function testLastRenewTime()
 
         $entityManager = $this->createEntityManager();
 
-        $actions = new ManageAPICredentialsActions(false, $entityManager, $baseTime);
+        $actions = new ManageAPICredentialsActions(
+            false,
+            $entityManager,
+            $baseTime
+        );
 
         // Fetch credentials not renewed in the last 5 months - should be 6.
         $creds = $actions->getCreds(5, 'lastRenewTime');

resources/ManageAPICredentials/ManageUnusedAPICredentialsOptions.php

@@ -21,7 +21,8 @@
 
 require_once __DIR__ . '/ManageAPICredentialsTestUtils.php';
 require_once __DIR__ . '/../unit/lib/Gocdb_Services/ServiceTestUtil.php';
-require_once __DIR__ . '/../../resources/ManageAPICredentials/ManageAPICredentialsActions.php';
+require_once __DIR__
+    . '/../../resources/ManageAPICredentials/ManageAPICredentialsActions.php';
 
 class ManageUnusedAPICredentialsTest extends PHPUnit_Extensions_Database_TestCase
 {
@@ -31,10 +32,14 @@ class ManageUnusedAPICredentialsTest extends PHPUnit_Extensions_Database_TestCas
     public function __construct()
     {
         parent::__construct();
-        // Use a local instance to avoid Mess Detector's whinging about avoiding
-        // static access.
-        $this->dbOpsFactory = new PHPUnit_Extensions_Database_Operation_Factory();
+        /**
+         * Use a local instance to avoid Mess Detector's
+         * whinging about avoiding static access.
+         */
+        $this->dbOpsFactory =
+            new PHPUnit_Extensions_Database_Operation_Factory();
     }
+
     /**
      * Overridden.
      */
@@ -44,27 +49,39 @@ public static function setUpBeforeClass()
         echo "\n\n-------------------------------------------------\n";
         echo "Executing ManageUnusedAPICredentialsTest. . .\n";
     }
+
     /**
      * Overridden. Returns the test database connection.
      * @return PHPUnit_Extensions_Database_DB_IDatabaseConnection
      */
     protected function getConnection()
     {
         require_once __DIR__ . '/../doctrine/bootstrap_pdo.php';
+
         return getConnectionToTestDB();
     }
+
     /**
      * Overridden. Returns the test dataset.
-     * Defines how the initial state of the database should look before each test is executed.
+     * Defines how the initial state of the database should
+     * look before each test is executed.
+     *
      * @return PHPUnit_Extensions_Database_DataSet_IDataSet
      */
     protected function getDataSet()
     {
-        $dataset = $this->createFlatXMLDataSet(__DIR__ . '/../doctrine/truncateDataTables.xml');
+        $dataset = $this->createFlatXMLDataSet(
+            __DIR__ . '/../doctrine/truncateDataTables.xml'
+        );
+
         return $dataset;
-      // Use below to return an empty data set if we don't want to truncate and seed
+      /**
+       * Use below to return an empty data set
+       * if we don't want to truncate and seed
+       */
       //return new PHPUnit_Extensions_Database_DataSet_DefaultDataSet();
     }
+
     /**
      * Overridden.
      */
@@ -75,19 +92,24 @@ protected function getSetUpOperation()
       //return PHPUnit_Extensions_Database_Operation_Factory::UPDATE();
       //return PHPUnit_Extensions_Database_Operation_Factory::NONE();
       //
-      // Issue a DELETE from <table> which is more portable than a
-      // TRUNCATE table <table> (some DBs require high privileges for truncate statements
-      // and also do not allow truncates across tables with FK contstraints e.g. Oracle)
+        /**
+         * Issue a DELETE from <table> which is more portable than a
+         * TRUNCATE table <table> (some DBs require high privileges
+         * for truncate statements and also do not allow truncates
+         * across tables with FK contstraints e.g. Oracle)
+         */
         return $this->dbOpsFactory->DELETE_ALL();
     }
+
     /**
      * Overridden.
      */
     protected function getTearDownOperation()
     {
-      // NONE is default
+        // NONE is default
         return $this->dbOpsFactory->NONE();
     }
+
     /**
      * Sets up the fixture, e.g create a new entityManager for each test run
      * This method is called before each test method is executed.
@@ -96,31 +118,38 @@ protected function setUp()
     {
         parent::setUp();
         $this->entityManager = $this->createEntityManager();
-      // Pass the Entity Manager into the Factory to allow Gocdb_Services
-      // to use other Gocdb_Services.
+        // Pass the Entity Manager into the Factory to allow Gocdb_Services
+        // to use other Gocdb_Services.
         \Factory::setEntityManager($this->entityManager);
 
         date_default_timezone_set("UTC");
     }
+
     /**
      * Run after each test function to prevent pile-up of database connections.
      */
     protected function tearDown()
     {
         parent::tearDown();
+
         if (!is_null($this->entityManager)) {
             $this->entityManager->getConnection()->close();
         }
     }
+
     /**
      * @return EntityManager
      */
     private function createEntityManager()
     {
-        $entityManager = null; // Initialise in local scope to avoid unused variable warnings
+        // Initialise in local scope to avoid unused variable warnings
+        $entityManager = null;
+
         require __DIR__ . '/../doctrine/bootstrap_doctrine.php';
+
         return $entityManager;
     }
+
     public function testLastUseTime()
     {
         print __METHOD__ . "\n";
@@ -130,7 +159,11 @@ public function testLastUseTime()
 
         $entityManager = $this->createEntityManager();
 
-        $actions = new ManageAPICredentialsActions(false, $entityManager, $baseTime);
+        $actions = new ManageAPICredentialsActions(
+            false,
+            $entityManager,
+            $baseTime
+        );
 
         // Fetch credentials not used in the last 7 months - should be 2
         $creds = $actions->getCreds(7, 'lastUseTime');
@@ -158,7 +191,10 @@ public function testLastUseTime()
         $this->assertCount(
             1,
             $creds,
-            'Unexpected credential count following deletion based on last use time.'
+            (
+                "Unexpected credential count following "
+                . "deletion based on last use time."
+            )
         );
     }
 }