Update codensniffer, phpunit, psr/log and fix issues.

Author: johanib

ci/qa/phpstan-baseline.neon

@@ -636,12 +636,6 @@ parameters:
 			count: 1
 			path: ../../src/SAML2/BridgeContainer.php
 
-		-
-			message: '#^Parameter \#1 \$message of method Psr\\Log\\LoggerInterface\:\:debug\(\) expects string, string\|false given\.$#'
-			identifier: argument.type
-			count: 1
-			path: ../../src/SAML2/BridgeContainer.php
-
 		-
 			message: '#^Property Surfnet\\SamlBundle\\SAML2\\Extensions\\Chunk\:\:\$value \(DOMElement\) does not accept DOMElement\|null\.$#'
 			identifier: assign.propertyType

ci/qa/rector.php

@@ -11,5 +11,5 @@
     ->withAttributesSets(all: true)
     ->withComposerBased(phpunit: true, symfony: true)
     ->withTypeCoverageLevel(10)
-    ->withDeadCodeLevel(0)
-    ->withCodeQualityLevel(0);
+    ->withDeadCodeLevel(10)
+    ->withCodeQualityLevel(10);

composer.json

@@ -9,6 +9,7 @@
         "php": "^8.1",
         "ext-dom": "*",
         "ext-openssl": "*",
+        "psr/log": "^3.0",
         "robrichards/xmlseclibs": "^3.1.1",
         "simplesamlphp/saml2": "^4.6",
         "symfony/dependency-injection": "^6.3",
@@ -25,11 +26,10 @@
         "phpmd/phpmd": "^2.6",
         "phpstan/extension-installer": "^1.4",
         "phpstan/phpstan": "^2.1",
-        "phpunit/phpunit": "^10.0.0",
-        "psr/log": "~1.0",
+        "phpunit/phpunit": "^11.0.0",
         "rector/rector": "^2.2",
-        "sebastian/exporter": "^5.0.0",
-        "squizlabs/php_codesniffer": "^3.7.1",
+        "sebastian/exporter": "^6.3",
+        "squizlabs/php_codesniffer": "^4.0",
         "symfony/phpunit-bridge": "^6.3"
     },
     "scripts": {

src/DependencyInjection/SurfnetSamlExtension.php

@@ -167,7 +167,7 @@ private function parseRemoteConfiguration(array $remoteConfiguration, ContainerB
      */
     private function parseRemoteIdentityProviderConfigurations(array $identityProviders, ContainerBuilder $container): void
     {
-        $definitions = array_map(fn($config) => $this->parseRemoteIdentityProviderConfiguration($config), $identityProviders);
+        $definitions = array_map(fn($config): Definition => $this->parseRemoteIdentityProviderConfiguration($config), $identityProviders);
 
         $definition = new Definition(StaticIdentityProviderRepository::class, [
             $definitions
@@ -200,7 +200,7 @@ private function parseRemoteIdentityProviderConfiguration(array $identityProvide
      */
     private function parseRemoteServiceProviderConfigurations(array $serviceProviders, ContainerBuilder $container): void
     {
-        $definitions = array_map(fn($config) => $this->parseRemoteServiceProviderConfiguration($config), $serviceProviders);
+        $definitions = array_map(fn($config): Definition => $this->parseRemoteServiceProviderConfiguration($config), $serviceProviders);
 
         $definition = new Definition(StaticServiceProviderRepository::class, [
             $definitions

src/Monolog/SamlAuthenticationLogger.php

@@ -20,7 +20,6 @@
 namespace Surfnet\SamlBundle\Monolog;
 
 use Psr\Log\LoggerInterface;
-use Surfnet\SamlBundle\Exception\RuntimeException;
 
 /**
  * Decorates a PSR logger and adds information pertaining to a SAML request procedure to each message's context.
@@ -46,47 +45,47 @@ public function forAuthentication(string $requestId): self
         return $logger;
     }
 
-    public function emergency($message, array $context = []): void
+    public function emergency(string|\Stringable $message, array $context = []): void
     {
         $this->logger->emergency($message, $this->modifyContext($context));
     }
 
-    public function alert($message, array $context = []): void
+    public function alert(string|\Stringable $message, array $context = []): void
     {
         $this->logger->alert($message, $this->modifyContext($context));
     }
 
-    public function critical($message, array $context = []): void
+    public function critical(string|\Stringable $message, array $context = []): void
     {
         $this->logger->critical($message, $this->modifyContext($context));
     }
 
-    public function error($message, array $context = []): void
+    public function error(string|\Stringable $message, array $context = []): void
     {
         $this->logger->error($message, $this->modifyContext($context));
     }
 
-    public function warning($message, array $context = []): void
+    public function warning(string|\Stringable $message, array $context = []): void
     {
         $this->logger->warning($message, $this->modifyContext($context));
     }
 
-    public function notice($message, array $context = []): void
+    public function notice(string|\Stringable $message, array $context = []): void
     {
         $this->logger->notice($message, $this->modifyContext($context));
     }
 
-    public function info($message, array $context = []): void
+    public function info(string|\Stringable $message, array $context = []): void
     {
         $this->logger->info($message, $this->modifyContext($context));
     }
 
-    public function debug($message, array $context = []): void
+    public function debug(string|\Stringable $message, array $context = []): void
     {
         $this->logger->debug($message, $this->modifyContext($context));
     }
 
-    public function log($level, $message, array $context = []): void
+    public function log($level, string|\Stringable $message, array $context = []): void
     {
         $this->logger->log($level, $message, $this->modifyContext($context));
     }

src/SAML2/BridgeContainer.php

@@ -21,6 +21,7 @@
 use BadMethodCallException;
 use DOMElement;
 use Psr\Log\LoggerInterface;
+use RuntimeException;
 use SAML2\Compat\AbstractContainer;
 
 /**
@@ -55,6 +56,10 @@ public function debugMessage($message, $type): void
             $message = $message->ownerDocument->saveXML($message);
         }
 
+        if (!is_string($message)) {
+            throw new RuntimeException("Debug message error: could not convert message to string.");
+        }
+
         $this->logger->debug($message, ['type' => $type]);
     }
 

src/Tests/Unit/Http/PostBindingAuthnRequestTest.php

@@ -68,7 +68,7 @@ public function setUp(): void
         ContainerSingleton::setContainer(new MockContainer());
     }
 
-    public function test_receive_signed_authn_request_happy_flow()
+    public function test_receive_signed_authn_request_happy_flow(): void
     {
         $requestUri = 'https://stepup.example.com/sso?with-some-addition=true';
         $post = [
@@ -100,7 +100,7 @@ public function test_receive_signed_authn_request_happy_flow()
         self::assertEquals('https://stepup.example.com/sso', $authnRequest->getDestination());
     }
 
-    public function test_receive_signed_authn_request_must_have_sp_repo()
+    public function test_receive_signed_authn_request_must_have_sp_repo(): void
     {
         $requestUri = 'https://stepup.example.com/sso?with-some-addition=true';
         $post = [
@@ -118,7 +118,7 @@ public function test_receive_signed_authn_request_must_have_sp_repo()
         $postBinding->receiveSignedAuthnRequestFrom($request);
     }
 
-    public function test_receive_signed_authn_request_http_request_must_be_post()
+    public function test_receive_signed_authn_request_http_request_must_be_post(): void
     {
         $requestUri = 'https://stepup.example.com/sso?with-some-addition=true';
         $post = [
@@ -132,7 +132,7 @@ public function test_receive_signed_authn_request_http_request_must_be_post()
         $this->postBinding->receiveSignedAuthnRequestFrom($request);
     }
 
-    public function test_receive_signed_authn_request_must_have_destination()
+    public function test_receive_signed_authn_request_must_have_destination(): void
     {
         $requestUri = 'https://stepup.example.com/sso?with-some-addition=true';
         $post = [
@@ -147,7 +147,7 @@ public function test_receive_signed_authn_request_must_have_destination()
         $this->postBinding->receiveSignedAuthnRequestFrom($request);
     }
 
-    public function test_receive_signed_authn_request_request_uri_must_start_with_destination()
+    public function test_receive_signed_authn_request_request_uri_must_start_with_destination(): void
     {
         $requestUri = 'https://stepup.example.com/sso';
         $post = [
@@ -163,7 +163,7 @@ public function test_receive_signed_authn_request_request_uri_must_start_with_de
         $this->postBinding->receiveSignedAuthnRequestFrom($request);
     }
 
-    public function test_receive_signed_authn_request_unknown_sp()
+    public function test_receive_signed_authn_request_unknown_sp(): void
     {
         $requestUri = 'https://stepup.example.com/sso';
         $post = [
@@ -184,7 +184,7 @@ public function test_receive_signed_authn_request_unknown_sp()
         $this->postBinding->receiveSignedAuthnRequestFrom($request);
     }
 
-    public function test_receive_signed_authn_request_signature_validation_failed()
+    public function test_receive_signed_authn_request_signature_validation_failed(): void
     {
         $requestUri = 'https://stepup.example.com/sso';
         $post = [

src/Tests/Unit/Http/PostBindingSamlResponseTest.php

@@ -79,7 +79,7 @@ private function buildRequest(): Request
         return new Request([], $post, [], [], [], ['REQUEST_URI' => $requestUri]);
     }
 
-    public function test_process_response_happy_flow()
+    public function test_process_response_happy_flow(): void
     {
         $request = $this->buildRequest();
         $request->setMethod(Request::METHOD_POST);
@@ -97,7 +97,7 @@ public function test_process_response_happy_flow()
         self::assertInstanceOf(Assertion::class, $samlResponse);
     }
 
-    public function test_process_response_must_have_saml_response()
+    public function test_process_response_must_have_saml_response(): void
     {
         $requestUri = 'https://stepup.example.com/';
         $post = [
@@ -114,7 +114,7 @@ public function test_process_response_must_have_saml_response()
         $this->postBinding->processResponse($request, $idp, $sp);
     }
 
-    public function test_process_response_precondition_not_met()
+    public function test_process_response_precondition_not_met(): void
     {
         $request = $this->buildRequest();
 
@@ -131,7 +131,7 @@ public function test_process_response_precondition_not_met()
         self::expectException(NoAuthnContextSamlResponseException::class);
         $this->postBinding->processResponse($request, $idp, $sp);
     }
-    public function test_process_response_authn_failed()
+    public function test_process_response_authn_failed(): void
     {
         $request = $this->buildRequest();
 
@@ -148,7 +148,7 @@ public function test_process_response_authn_failed()
         self::expectException(AuthnFailedSamlResponseException::class);
         $this->postBinding->processResponse($request, $idp, $sp);
     }
-    public function test_process_response_other_precondition_not_met()
+    public function test_process_response_other_precondition_not_met(): void
     {
         $request = $this->buildRequest();
 

src/Tests/Unit/SAML2/AuthnRequestTest.php

@@ -55,7 +55,7 @@ class AuthnRequestTest extends TestCase
 </samlp:AuthnRequest>
 AUTHNREQUEST_NO_SUBJECT;
 
-    private string $authRequestIsPassiveFalseAndNoForceAuthnFalse = <<<AUTHNREQUEST_IS_PASSIVE_F_AND_FORCE_AUTH_F
+    private static string $authRequestIsPassiveFalseAndNoForceAuthnFalse = <<<AUTHNREQUEST_IS_PASSIVE_F_AND_FORCE_AUTH_F
 <samlp:AuthnRequest
     xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
     xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
@@ -68,7 +68,7 @@ class AuthnRequestTest extends TestCase
 </samlp:AuthnRequest>
 AUTHNREQUEST_IS_PASSIVE_F_AND_FORCE_AUTH_F;
 
-    private string $authRequestIsPassiveAndForceAuthnFalse = <<<AUTHNREQUEST_IS_PASSIVE_AND_FORCE_AUTHN_F
+    private static string $authRequestIsPassiveAndForceAuthnFalse = <<<AUTHNREQUEST_IS_PASSIVE_AND_FORCE_AUTHN_F
 <samlp:AuthnRequest
     xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
     xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
@@ -82,7 +82,7 @@ class AuthnRequestTest extends TestCase
 </samlp:AuthnRequest>
 AUTHNREQUEST_IS_PASSIVE_AND_FORCE_AUTHN_F;
 
-    private string $authRequestIsPassiveFalseAndForceAuthn = <<<AUTHNREQUEST_IS_PASSIVE_F_AND_FORCE_AUTHN
+    private static string $authRequestIsPassiveFalseAndForceAuthn = <<<AUTHNREQUEST_IS_PASSIVE_F_AND_FORCE_AUTHN
 <samlp:AuthnRequest
     xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
     xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
@@ -154,12 +154,12 @@ public function is_passive_and_force_authn_can_be_retrieved_from_the_authnreques
         $this->assertEquals($forceAuthn, $authnRequest->isForceAuthn());
     }
 
-    public function provideIsPassiveAndForceAuthnCombinations(): array
+    public static function provideIsPassiveAndForceAuthnCombinations(): array
     {
         return [
-            'isPassive false and ForceAuthn false' => [$this->authRequestIsPassiveFalseAndNoForceAuthnFalse, false, false],
-            'isPassive and ForceAuthn false' => [$this->authRequestIsPassiveAndForceAuthnFalse, true, false],
-            'isPassive false and ForceAuthn' => [$this->authRequestIsPassiveFalseAndForceAuthn, false, true]
+            'isPassive false and ForceAuthn false' => [self::$authRequestIsPassiveFalseAndNoForceAuthnFalse, false, false],
+            'isPassive and ForceAuthn false' => [self::$authRequestIsPassiveAndForceAuthnFalse, true, false],
+            'isPassive false and ForceAuthn' => [self::$authRequestIsPassiveFalseAndForceAuthn, false, true]
         ];
     }