signer_8php_source.html

<?php


namespace Bitrix\Main\Security\Sign;


use Bitrix\Main\ArgumentTypeException;

use Bitrix\Main\Config;


class Signer

{

    protected $algorithm = null;

    protected $separator = '.';

    protected $key = null;


    public function __construct(SigningAlgorithm $algorithm = null)

    {

        if ($algorithm !== null)

        {

            $this->algorithm = $algorithm;

        }

        else

        {

            $this->algorithm = new HmacAlgorithm();

        }

    }


    public function setKey($value)

    {

        if (!is_string($value))

        {

            throw new ArgumentTypeException('value', 'string');

        }


        $this->key = $value;

        return $this;

    }


    public function getSeparator()

    {

        return $this->separator;

    }


    public function setSeparator($value)

    {

        if (!is_string($value))

        {

            throw new ArgumentTypeException('value', 'string');

        }


        $this->separator = $value;

        return $this;

    }


    public function getSignature($value, $salt = null)

    {

        if (!is_string($value))

        {

            throw new ArgumentTypeException('value', 'string');

        }


        $key = $this->getKey($salt);

        $signature = $this->algorithm->getSignature($value, $key);

        $signature = $this->encodeSignature($signature);

        return $signature;

    }


    public function sign($value, $salt = null)

    {

        if (!is_string($value))

        {

            throw new ArgumentTypeException('value', 'string');

        }


        $signature = $this->getSignature($value, $salt);

        return $this->pack([$value, $signature]);

    }


    public function unsign($signedValue, $salt = null)

    {

        if (!is_string($signedValue))

        {

            throw new ArgumentTypeException('signedValue', 'string');

        }


        [$value, $signature] = $this->unpack($signedValue);

        if (!$this->verifySignature($value, $signature, $salt))

        {

            throw new BadSignatureException('Signature does not match');

        }


        return $value;

    }


    public function validate($value, $signature, $salt = null)

    {

        if (is_string($value) && is_string($signature))

        {

            return $this->verifySignature($value, $signature, $salt);

        }

        return false;

    }


    protected function verifySignature($value, $sig, $salt = null)

    {

        $key = $this->getKey($salt);

        $signature = $this->decodeSignature($sig);

        return $this->algorithm->verify($value, $key, $signature);

    }


    protected function getKey($salt = null)

    {

        if ($salt !== null && !preg_match('#^[a-zA-Z0-9_.-]{3,50}$#D', $salt))

        {

            throw new BadSignatureException('Malformed salt, only [a-zA-Z0-9_.-]{3,50} characters are acceptable');

        }


        if ($this->key !== null)

        {

            $key = $this->key;

        }

        else

        {

            $key = $this->getDefaultKey();

        }


        return $salt . $key;

    }


    protected function getDefaultKey()

    {

        static $defaultKey = null;

        if ($defaultKey === null)

        {

            $defaultKey = Config\Option::get('main', 'signer_default_key', false);

            if (!$defaultKey)

            {

                $defaultKey = hash('sha512', \Bitrix\Main\Security\Random::getString(64));

                Config\Option::set('main', 'signer_default_key', $defaultKey);

            }


            $options = Config\Configuration::getValue("crypto");

            if (isset($options["crypto_key"]))

            {

                $defaultKey .= $options["crypto_key"];

            }

        }


        return $defaultKey;

    }


    public function pack(array $values)

    {

        return join($this->separator, $values);

    }


    public function unpack($value, $limit = 2)

    {

        // Some kind of optimization

        if ($limit === 0)

        {

            if (!str_contains($value, $this->separator))

            {

                throw new BadSignatureException('Separator not found in value');

            }


            return explode($this->separator, $value);

        }


        $result = [];

        while (--$limit > 0)

        {

            $pos = bxstrrpos($value, $this->separator);

            if ($pos === false)

            {

                throw new BadSignatureException('Separator not found in value');

            }


            $result[] = mb_substr($value, $pos + 1);

            $value = mb_substr($value, 0, $pos);

        }

        $result[] = $value;


        return array_reverse($result);

    }


    protected function encodeSignature($value)

    {

        return bin2hex($value);

    }


    protected function decodeSignature($value)

    {

        if (preg_match('#[^[:xdigit:]]#', $value))

        {

            throw new BadSignatureException('Signature must be hexadecimal string');

        }


        // ToDo: use hex2bin instead pack for PHP > 5.4.0

        return pack('H*', $value);

    }


}


Bitrix\Main\ArgumentTypeException
Определения ArgumentTypeException.php:9

Bitrix\Main\Config\Configuration\getValue
static getValue($name)
Определения configuration.php:24

Bitrix\Main\Config\Option\get
static get($moduleId, $name, $default="", $siteId=false)
Определения option.php:30

Bitrix\Main\Config\Option\set
static set($moduleId, $name, $value="", $siteId="")
Определения option.php:261

Bitrix\Main\Security\Random\getString
static getString($length, $caseSensitive=false)
Определения random.php:76

Bitrix\Main\Security\Sign\BadSignatureException
Определения badsignatureexception.php:13

Bitrix\Main\Security\Sign\HmacAlgorithm
Определения hmacalgorithm.php:14

Bitrix\Main\Security\Sign\Signer
Определения signer.php:14

Bitrix\Main\Security\Sign\Signer\encodeSignature
encodeSignature($value)
Определения signer.php:336

Bitrix\Main\Security\Sign\Signer\$algorithm
$algorithm
Определения signer.php:16

Bitrix\Main\Security\Sign\Signer\setSeparator
setSeparator($value)
Определения signer.php:73

Bitrix\Main\Security\Sign\Signer\validate
validate($value, $signature, $salt=null)
Определения signer.php:190

Bitrix\Main\Security\Sign\Signer\unpack
unpack($value, $limit=2)
Определения signer.php:300

Bitrix\Main\Security\Sign\Signer\getSignature
getSignature($value, $salt=null)
Определения signer.php:92

Bitrix\Main\Security\Sign\Signer\sign
sign($value, $salt=null)
Определения signer.php:122

Bitrix\Main\Security\Sign\Signer\unsign
unsign($signedValue, $salt=null)
Определения signer.php:166

Bitrix\Main\Security\Sign\Signer\getSeparator
getSeparator()
Определения signer.php:61

Bitrix\Main\Security\Sign\Signer\setKey
setKey($value)
Определения signer.php:45

Bitrix\Main\Security\Sign\Signer\$key
$key
Определения signer.php:19

Bitrix\Main\Security\Sign\Signer\pack
pack(array $values)
Определения signer.php:276

Bitrix\Main\Security\Sign\Signer\decodeSignature
decodeSignature($value)
Определения signer.php:348

Bitrix\Main\Security\Sign\Signer\getKey
getKey($salt=null)
Определения signer.php:223

Bitrix\Main\Security\Sign\Signer\$separator
$separator
Определения signer.php:17

Bitrix\Main\Security\Sign\Signer\verifySignature
verifySignature($value, $sig, $salt=null)
Определения signer.php:207

Bitrix\Main\Security\Sign\Signer\getDefaultKey
getDefaultKey()
Определения signer.php:247

Bitrix\Main\Security\Sign\Signer\__construct
__construct(SigningAlgorithm $algorithm=null)
Определения signer.php:26

Bitrix\Main\Security\Sign\SigningAlgorithm
Определения signingalgorithm.php:12

$options
$options
Определения commerceml2.php:49

array
</td ></tr ></table ></td ></tr >< tr >< td class="bx-popup-label bx-width30"><?=GetMessage("PAGE_NEW_TAGS")?> array( $site)
Определения file_new.php:804

$result
$result
Определения get_property_values.php:14

bxstrrpos
bxstrrpos($haystack, $needle)
Определения tools.php:3292

Bitrix\Main\Security
Определения asymmetriccipher.php:8

Bitrix\Main

Bitrix