Fix more src lint issues.

src/Config/ConfigInterface.php

@@ -28,6 +28,6 @@ public function getHost(): string;
     public function getRedirectURI(): ?string;
     public function getHelloDomain(): string;
     public function getHelloWallet(): ?string;
-    public function getSecret(): ?string;
+    public function getSecret(): string;
     public function getLogDebug(): ?bool;
 }

src/Config/HelloConfig.php

@@ -15,7 +15,7 @@ class HelloConfig implements ConfigInterface
     private string $helloDomain;
     private ?string $helloWallet = null;
     private string $host;
-    private ?string $secret = null;
+    private string $secret;
     private ?bool $logDebug = null;
     /** @var array<string, int|string>|null */
     private ?array $error = null;
@@ -42,7 +42,7 @@ class HelloConfig implements ConfigInterface
      * @param string|null $clientId
      * @param string|null $redirectURI
      * @param string $host
-     * @param string|null $secret
+     * @param string $secret
      * @param callable|null $loginSync
      * @param callable|null $logoutSync
      * @param array<string, string> $cookies
@@ -65,7 +65,7 @@ public function __construct(
         ?string $clientId = null,
         ?string $redirectURI = null,
         string $host = '',
-        ?string $secret = null,
+        string $secret = '',
         ?callable $loginSync = null,
         ?callable $logoutSync = null,
         array $cookies = [
@@ -219,7 +219,7 @@ public function getHelloWallet(): ?string
         return $this->helloWallet;
     }
 
-    public function getSecret(): ?string
+    public function getSecret(): string
     {
         return $this->secret;
     }

src/Config/HelloConfigBuilder.php

@@ -12,7 +12,7 @@ class HelloConfigBuilder
     private ?string $clientId = null;
     private ?string $redirectURI = null;
     private string $host = '';
-    private ?string $secret = null;
+    private string $secret = '';
     /**  @var array<string, string> */
     private array $cookies = [
         'authName' => 'hellocoop_auth',
@@ -88,7 +88,7 @@ public function setHost(string $host): self
         return $this;
     }
 
-    public function setSecret(?string $secret): self
+    public function setSecret(string $secret): self
     {
         $this->secret = $secret;
         return $this;

src/Exception/CallbackException.php

@@ -7,11 +7,11 @@
 
 class CallbackException extends Exception
 {
-    /** @var array<string, int|string> */
+    /** @var array<string, string> */
     private array $errorDetails;
 
     /**
-     * @param array<string, int|string> $errorDetails
+     * @param array<string, string> $errorDetails
      * @param string $message
      * @param int $code
      * @param Throwable|null $previous
@@ -27,7 +27,7 @@ public function __construct(
     }
 
     /**
-     * @return array<string, int|string>
+     * @return array<string, string>
      */
     public function getErrorDetails(): array
     {

src/Handler/Auth.php

@@ -35,12 +35,12 @@
         );
     }
 
-    public function handleAuth(): ?AuthType
+    public function handleAuth(): AuthType
     {
         return $this->getAuthLib()->getAuthfromCookies();
     }
 
-    public function updateAuth(AuthUpdates $authUpdates): ?AuthType
+    public function updateAuth(AuthUpdates $authUpdates): AuthType
     {
         $auth = $this->getAuthLib()->getAuthfromCookies();
         if ($auth->isLoggedIn === false) {

src/Handler/Callback.php

@@ -71,7 +71,7 @@ private function getTokenParser(): TokenParser
         return $this->tokenParser ??= new TokenParser();
     }
 
-    public function handleCallback(): ?string
+    public function handleCallback(): string
     {
         try {
             $params = $this->helloRequest->fetchMultiple([
@@ -82,10 +82,13 @@ public function handleCallback(): ?string
                 'app_name'
             ]);
 
+            /** @var string $code */
             $code = $params['code'] ?? null;
             $error = $params['error'] ?? null;
             $sameSite = $params['same_site'] ?? null;
+            /** @var string $code */
             $wildcardDomain = $params['wildcard_domain'] ?? null;
+            /** @var string $code */
             $appName = $params['app_name'] ?? null;
 
             if ($this->config->getSameSiteStrict() && !$sameSite) {
@@ -103,8 +106,10 @@ public function handleCallback(): ?string
             }
 
             $codeVerifier = $oidcState['code_verifier'] ?? null;
-            $targetUri    = $oidcState['target_uri'] ?? null;
-            $redirectUri  = $oidcState['redirect_uri'] ?? null;
+            /** @var string $targetUri */
+            $targetUri    = $oidcState['target_uri'] ?? '';
+            /** @var string $redirectUri */
+            $redirectUri  = $oidcState['redirect_uri'] ?? '';
             $nonce        = $oidcState['nonce'] ?? null;
 
             if ($error) {
@@ -119,14 +124,6 @@ public function handleCallback(): ?string
                 ], 'Missing code parameter in callback request.');
             }
 
-            if (is_array($code)) {
-                return $this->sendErrorPage([
-                    'error' => 'invalid_request',
-                    'error_description' => 'Received more than one code',
-                    'target_uri' => $targetUri,
-                ], 'Received multiple codes in callback request.');
-            }
-
             if (!$codeVerifier) {
                 return $this->sendErrorPage([
                     'error' => 'invalid_request',
@@ -145,6 +142,7 @@ public function handleCallback(): ?string
                 'client_id' => $this->config->getClientId()
             ]);
 
+            /** @var array<string, string> $payload */
             $payload = $this->getTokenParser()->parseToken($token)['payload'];
 
             if ($payload['aud'] != $this->config->getClientId()) {
@@ -229,11 +227,10 @@ public function handleCallback(): ?string
 
             if ($wildcardDomain) {
                 // the redirect_uri is not registered at Hellō - prompt to add
-                $appName = is_array($appName) ? $appName[0] : $appName;
                 $appName = $appName ?: 'Your App'; // Default to 'Your App' if $appName is empty
 
                 $queryParams = [
-                    'uri' => is_array($wildcardDomain) ? $wildcardDomain[0] : $wildcardDomain,
+                    'uri' => $wildcardDomain,
                     'appName' => $appName,
                     'redirectURI' => $redirectUri,
                     'targetURI' => $targetUri,
@@ -265,7 +262,7 @@ public function handleCallback(): ?string
      * Uses the target URI from error details or a fallback error route. Updates the query
      * string with error information. Throws an exception if no error URI is available.
      *
-     * @param array<string, int|string|null> $error Error details including 'target_uri', 'error', and 'error_description'.
+     * @param array<string, string> $error Error details including 'target_uri', 'error', and 'error_description'.
      * @param string $errorMessage A message describing the error.
      * @param Throwable|null $previous Previous exception for chaining (optional).
      *

src/Handler/Login.php

@@ -64,7 +64,7 @@ private function getAuthHelper(): AuthHelper
     /**
      * @throws CryptoFailedException|InvalidSecretException
      */
-    public function generateLoginUrl(): ?string
+    public function generateLoginUrl(): string
     {
         $params = $this->helloRequest->fetchMultiple([
             'provider_hint',
@@ -127,6 +127,6 @@ public function generateLoginUrl(): ?string
             'target_uri' => $params['target_uri'],
         ]));
 
-        return is_string($authResponse['url']) ? $authResponse['url'] : null;
+        return $authResponse['url'];
     }
 }

src/HelloClient.php

@@ -95,24 +95,28 @@
      */
     public function getAuth(): array
     {
-        return $this->getAuthHandler()->handleAuth() ? $this->getAuthHandler()->handleAuth()->toArray() : [];
+        return$this->getAuthHandler()->handleAuth()->toArray();
     }
 
     /**
-     * @throws InvalidSecretException
-     * @throws CryptoFailedException
+     * @return mixed|null
+     * @throws CryptoFailedException | InvalidSecretException
      */
     private function handleLogin()
     {
         return $this->helloResponse->redirect($this->getLoginHandler()->generateLoginUrl());
     }
 
+    /**
+     * @return mixed|null
+     */
     private function handleLogout()
     {
         return $this->helloResponse->redirect($this->getLogoutHandler()->generateLogoutUrl());
     }
 
     /**
+     * @return mixed|null
      * @throws Exception
      */
     private function handleInvite()
@@ -128,6 +132,9 @@
         return $this->helloResponse->json($this->getAuthHandler()->handleAuth()->toArray());
     }
 
+    /**
+     * @return mixed|string|null
+     */
     private function handleCallback()
     {
         try {
@@ -144,6 +151,10 @@
         }
     }
 
+    /**
+     * @return mixed|string|void|null
+     * @throws CryptoFailedException | InvalidSecretException
+     */
     public function route()
     {
         if (in_array($this->helloRequest->getMethod(), ["POST", "GET"]) === false) {

src/HelloRequest/HelloRequest.php

@@ -13,7 +13,7 @@ class HelloRequest implements HelloRequestInterface
      * @param string|null $default Default value if the key is not found.
      * @return string|null The value of the parameter or default.
      */
-    public function fetch(string $key, string $default = null): ?string
+    public function fetch(string $key, ?string $default = null): ?string
     {
         // First check GET, then POST if not found.
         return $_GET[$key] ?? $_POST[$key] ?? $default;
@@ -41,7 +41,7 @@ public function fetchMultiple(array $keys): array
      * @param string|null $default Default value if the key is not found.
      * @return string|null The value of the header or default.
      */
-    public function fetchHeader(string $key, string $default = null): ?string
+    public function fetchHeader(string $key, ?string $default = null): ?string
     {
         $headers = $this->getAllHeaders();
         $normalizedKey = strtolower($key);

src/HelloRequest/HelloRequestInterface.php

@@ -11,7 +11,7 @@ interface HelloRequestInterface
      * @param string|null $default Default value if the key is not found.
      * @return string|null The value of the parameter or default.
      */
-    public function fetch(string $key, string $default = null): ?string;
+    public function fetch(string $key, ?string $default = null): ?string;
 
     /**
      * Fetch multiple parameters by keys from either GET or POST data.
@@ -28,7 +28,7 @@ public function fetchMultiple(array $keys): array;
      * @param string|null $default Default value if the key is not found.
      * @return string|null The value of the header or default.
      */
-    public function fetchHeader(string $key, string $default = null): ?string;
+    public function fetchHeader(string $key, ?string $default = null): ?string;
 
     /**
      * Fetch a cookie value by name.

src/Lib/AuthHelper.php

@@ -17,7 +17,7 @@ public function __construct(PKCE $pkce)
 
     /**
      * @param array<string, mixed> $config
-     * @return array<string, mixed>
+     * @return array<string, string>
      */
     public function createAuthRequest(array $config): array
     {
@@ -43,6 +43,7 @@ public function createAuthRequest(array $config): array
             $scopes = implode(' ', array_unique(array_merge($scopes, ['openid'])));
         }
 
+        /** @var string $nonce */
         $nonce = $config['nonce'] ?? $this->generateUuid();
         // Prepare parameters
         $params = [

src/Lib/Crypto.php

@@ -47,7 +47,7 @@ public function encrypt(array $data): string
     }
 
     /**
-     * @return array<string, mixed>|null
+     * @return array<string, string>|null
      * @throws DecryptionFailedException
      */
     public function decrypt(string $encryptedStr): ?array
@@ -65,7 +65,7 @@ public function decrypt(string $encryptedStr): ?array
                 throw new DecryptionFailedException();
             }
 
-            /** @var array<string, mixed>|null $jsonData */
+            /** @var array<string, string>|null $jsonData */
             $jsonData = json_decode($decryptedData, true);
             return $jsonData;
         } catch (Exception $e) {

src/Lib/TokenFetcher.php

@@ -42,14 +42,20 @@
 
         try {
             $ch = $this->curl->init($tokenEndpoint);
+            if (!$ch) {
+                throw new \Exception('Curl error: initializing ' . $tokenEndpoint);
+            }
+
             $this->curl->setOpt($ch, CURLOPT_POST, true);
             $this->curl->setOpt($ch, CURLOPT_HTTPHEADER, ['Content-Type: application/x-www-form-urlencoded']);
             $this->curl->setOpt($ch, CURLOPT_POSTFIELDS, $body);
             $this->curl->setOpt($ch, CURLOPT_RETURNTRANSFER, true);
 
+            /** @var string $response */
             $response = $this->curl->exec($ch);
-            $httpCode = $this->curl->getInfo($ch, CURLINFO_HTTP_CODE);
 
+            /** @var int $httpCode */
+            $httpCode = $this->curl->getInfo($ch, CURLINFO_HTTP_CODE);
             if ($this->curl->error($ch)) {
                 throw new \Exception('Curl error: ' . $this->curl->error($ch));
             }

src/Type/OIDC.php

@@ -20,7 +20,7 @@ public function __construct(string $codeVerifier, string $nonce, string $redirec
     }
 
     /**
-     * @param array<string, mixed> $data
+     * @param array<string, string> $data
      * @return self
      */
     public static function fromArray(array $data): self

tests/Lib/TokenFetcherTest.php

@@ -33,6 +33,7 @@ public function testFetchTokenSuccess(): void
     public function testFetchTokenErrorResponse(): void
     {
         $curlMock = $this->createMock(CurlWrapper::class);
+        $curlMock->method('init')->willReturn(json_encode(['error' => 'mock_error']));
         $curlMock->method('exec')->willReturn(json_encode(['error' => 'mock_error']));
         $curlMock->method('getInfo')->willReturn(400);