up

Author: BitsHost

src/Auth/Authenticator.php

@@ -24,7 +24,7 @@ class Authenticator
 	/**
 	 * Authentication configuration
 	 *
-	 * @var array
+	 * @var array<string,mixed>
 	 */
 	public array $config;
 
@@ -38,7 +38,7 @@ class Authenticator
 	/**
 	 * Currently authenticated user data
 	 *
-	 * @var array|null
+	 * @var array{ id?: int|string, username?: string, email?: string, role?: string }|null
 	 */
 	private ?array $currentUser = null;
 
@@ -144,6 +144,11 @@ public function requireAuth(): void
 	/**
 	 * Create a JWT token with custom payload
 	 */
+	/**
+	 * Create a JWT token with custom payload
+	 *
+	 * @param array<string,mixed> $payload
+	 */
 	public function createJwt(array $payload, int $expireSeconds = 3600): string
 	{
 		$now = time();
@@ -173,18 +178,21 @@ public function validateJwt(string $jwt): bool
 
 	/**
 	 * Get HTTP request headers
+	 *
+	 * @return array<string,string>
 	 */
 	private function getHeaders(): array
 	{
 		if (function_exists('getallheaders')) {
-			return getallheaders();
+			$all = getallheaders();
+			return is_array($all) ? $all : [];
 		}
 		// Fallback
 		$headers = [];
 		foreach ($_SERVER as $name => $value) {
 			if (str_starts_with($name, 'HTTP_')) {
 				$header = str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($name, 5)))));
-				$headers[$header] = $value;
+				$headers[$header] = (string)$value;
 			}
 		}
 		return $headers;

src/Cache/CacheManager.php

@@ -36,14 +36,14 @@ class CacheManager
     /**
      * Cache configuration
      * 
-     * @var array
+     * @var array<string,mixed>
      */
     private array $config;
 
     /**
      * Cache statistics for current request
      * 
-     * @var array
+     * @var array{hits:int,misses:int,writes:int,invalidations:int}
      */
     private array $stats = [
         'hits' => 0,
@@ -58,7 +58,7 @@ class CacheManager
      * Creates appropriate cache driver based on configuration.
      * Falls back to file cache if configured driver is unavailable.
      * 
-     * @param array $config Cache configuration from config/cache.php
+    * @param array<string,mixed> $config Cache configuration from config/cache.php
      * 
      * @example
      * $cache = new CacheManager([
@@ -180,6 +180,9 @@ public function shouldCache(string $table): bool
      * ]);
      * // Returns: "api:table:users:params:a3f5c8d9e2..."
      */
+    /**
+     * @param array<string,mixed> $params
+     */
     public function generateKey(string $table, array $params): string
     {
         // Sort params for consistent keys
@@ -189,7 +192,7 @@ public function generateKey(string $table, array $params): string
         $baseKey = sprintf(
             'api:table:%s:params:%s',
             $table,
-            md5(json_encode($params))
+            md5((string) json_encode($params))
         );
 
         // Add user variation if configured
@@ -396,6 +399,9 @@ public function has(string $key): bool
      * //   ...
      * // ]
      */
+    /**
+     * @return array<string,mixed>
+     */
     public function getStats(): array
     {
         $driverStats = $this->driver->getStats();
@@ -434,7 +440,7 @@ private function getHitRatio(): float
     private function getApiKeyFromRequest(): ?string
     {
         // Check header
-        $headers = function_exists('getallheaders') ? getallheaders() : [];
+        $headers = function_exists('getallheaders') ? (getallheaders() ?: []) : [];
         $apiKey = $headers['X-API-Key'] ?? $headers['X-Api-Key'] ?? null;
 
         // Check query parameter

src/Config/ApiConfig.php

@@ -31,19 +31,33 @@
  */
 class ApiConfig
 {
+    /** @var bool */
     private bool $authEnabled;
+    /** @var string */
     private string $authMethod;
+    /** @var list<string> */
     private array $apiKeys;
+    /** @var string */
     private string $apiKeyRole;
+    /** @var array<string,string> */
     private array $basicUsers;
+    /** @var bool */
     private bool $useDatabaseAuth;
+    /** @var string */
     private string $jwtSecret;
+    /** @var int */
     private int $jwtExpiration;
+    /** @var string */
     private string $jwtAlgorithm;
+    /** @var array<string,array{tables:list<string>,actions:list<string>}> */
     private array $roles;
+    /** @var array<string,string> */
     private array $userRoles;
+    /** @var array{enabled:bool,requests_per_minute:int,requests_per_hour:int,requests_per_day:int} */
     private array $rateLimitConfig;
+    /** @var array{enabled:bool,log_requests:bool,log_responses:bool,log_errors:bool} */
     private array $loggingConfig;
+    /** @var array{enabled:bool} */
     private array $monitoringConfig;
 
     /**
@@ -169,6 +183,9 @@ public function getAuthMethod(): string
     /**
      * Get valid API keys
      */
+    /**
+     * @return list<string>
+     */
     public function getApiKeys(): array
     {
         return $this->apiKeys;
@@ -185,6 +202,9 @@ public function getApiKeyRole(): string
     /**
      * Get basic auth users
      */
+    /**
+     * @return array<string,string>
+     */
     public function getBasicUsers(): array
     {
         return $this->basicUsers;
@@ -225,6 +245,9 @@ public function getJwtAlgorithm(): string
     /**
      * Get all roles configuration
      */
+    /**
+     * @return array<string,array{tables:list<string>,actions:list<string>}>
+     */
     public function getRoles(): array
     {
         return $this->roles;
@@ -233,6 +256,9 @@ public function getRoles(): array
     /**
      * Get user role mappings
      */
+    /**
+     * @return array<string,string>
+     */
     public function getUserRoles(): array
     {
         return $this->userRoles;
@@ -249,6 +275,9 @@ public function getUserRole(string $username): ?string
     /**
      * Get rate limit configuration
      */
+    /**
+     * @return array{enabled:bool,requests_per_minute:int,requests_per_hour:int,requests_per_day:int}
+     */
     public function getRateLimitConfig(): array
     {
         return $this->rateLimitConfig;
@@ -257,6 +286,9 @@ public function getRateLimitConfig(): array
     /**
      * Get logging configuration
      */
+    /**
+     * @return array{enabled:bool,log_requests:bool,log_responses:bool,log_errors:bool}
+     */
     public function getLoggingConfig(): array
     {
         return $this->loggingConfig;
@@ -265,6 +297,9 @@ public function getLoggingConfig(): array
     /**
      * Get monitoring configuration
      */
+    /**
+     * @return array{enabled:bool}
+     */
     public function getMonitoringConfig(): array
     {
         return $this->monitoringConfig;
@@ -281,6 +316,9 @@ public function isMonitoringEnabled(): bool
     /**
      * Convert to array (for backward compatibility)
      */
+    /**
+     * @return array<string,mixed>
+     */
     public function toArray(): array
     {
         return [

src/Database/Dialect/DialectInterface.php

@@ -14,10 +14,18 @@ interface DialectInterface
     /** Quote an identifier (table/column) safely for the dialect. */
     public function quoteIdent(string $ident): string;
 
-    /** Return list of tables in the current database/schema. */
+    /**
+     * Return list of tables in the current database/schema.
+     *
+     * @return array<int,string>
+     */
     public function listTables(PDO $pdo): array;
 
-    /** Return list of columns (associative arrays) for a given table. */
+    /**
+     * Return list of columns (associative arrays) for a given table.
+     *
+     * @return array<int,array<string,mixed>>
+     */
     public function listColumns(PDO $pdo, string $table): array;
 
     /** Return the primary key column name for a given table, or null if not found. */

src/Http/ErrorResponder.php

@@ -23,7 +23,8 @@ public function __construct(
      * Handle an exception: log, record metrics, and send JSON error response.
      * Returns the payload and status for callers that also need to log response.
      *
-     * @return array{0: array, 1: int}
+     * @param array<string,mixed> $context
+     * @return array{0: array{error: string}, 1: int}
      */
     public function fromException(Throwable $e, array $context = [], int $status = 500): array
     {

src/Http/Middleware/RateLimitMiddleware.php

@@ -27,6 +27,9 @@ public function __construct(
      * Perform rate limit check and respond if exceeded.
      * Returns false if request should terminate (429 already sent),
      * otherwise true and ensures headers are emitted.
+    *
+    * @param string $identifier
+    * @return bool
      */
     public function checkAndRespond(string $identifier): bool
     {
@@ -53,7 +56,7 @@ public function checkAndRespond(string $identifier): bool
 
         // Add rate limit headers for allowed requests
         foreach ($this->rateLimiter->getHeaders($identifier) as $name => $value) {
-            header($name . ': ' . $value);
+            header((string)$name . ': ' . (string)$value);
         }
         return true;
     }