Home Explore Help
Sign In
bachir
/
popsu-d7
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 8f4ce63da5
Branches Tags
popsu-d7
/
sites
/
all
/
modules
/
oauth
/
includes
/
OAuthSignatureMethod_HMAC.inc

OAuthSignatureMethod_HMAC.inc 2.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * A generic signature method implementation that leverages hash_hmac() for
    5. 

  5.  * increased flexibility.
    6. 

  6.  */
    7. 

  7. class OAuthSignatureMethod_HMAC extends OAuthSignatureMethod {
    8. 

  8.   private $algo = NULL;
    9. 

  9. 

  10.   /**
    11. 

  11.    * Create a HMAC oauth signature method object using the (or one of the)
    12. 

  12.    * specified algorithm implementations.
    13. 

  13.    *
    14. 

  14.    * @param mixed $algo
    15. 

  15.    *  Pass the name of a algorithm supported by hash_hmac() or an array of
    16. 

  16.    *  names when you have several candidate algorithms that may be used. The
    17. 

  17.    *  first algorithm int the array that is supported on the system will be used.
    18. 

  18.    * @throws Exception
    19. 

  19.    *  A exception is thrown when none of the provided algorithms are supported
    20. 

  20.    *  by the system.
    21. 

  21.    */
    22. 

  22.   public function __construct($algo) {
    23. 

  23.     $algos = hash_algos();
    24. 

  24.     // Create a single-element array from strings to simplify the logic of
    25. 

  25.     // support checking and failure handling.
    26. 

  26.     if (is_string($algo)) {
    27. 

  27.       $algo = array($algo);
    28. 

  28.     }
    29. 

  29. 

  30.     // Find a supported algorithm among the candidates
    31. 

  31.     foreach ($algo as $a) {
    32. 

  32.       if (in_array(strtolower($a), $algos)) {
    33. 

  33.         $this->algo = strtolower($a);
    34. 

  34.         continue;
    35. 

  35.       }
    36. 

  36.     }
    37. 

  37.     // Throw a exception if no matching algorithm can be found
    38. 

  38.     if (empty($this->algo)) {
    39. 

  39.       throw new OAuthException(t('None of the suggested hash algorithms (@cand) were '
    40. 

  40.         . 'supported by the server. Try one of the following: !algos.', array(
    41. 

  41.           '@cand' => join($algo, ', '),
    42. 

  42.           '!algos' => join($algos, ', '),
    43. 

  43.       )));
    44. 

  44.     }
    45. 

  45.   }
    46. 

  46. 

  47.   public function get_name() {
    48. 

  48.     return "HMAC-" . strtoupper($this->algo);
    49. 

  49.   }
    50. 

  50. 

  51.   public function build_signature($request, $consumer, $token) {
    52. 

  52.     $base_string = $request->get_signature_base_string();
    53. 

  53.     $request->base_string = $base_string;
    54. 

  54. 

  55.     $key_parts = array(
    56. 

  56.       $consumer->secret,
    57. 

  57.       ($token) ? $token->secret : ""
    58. 

  58.     );
    59. 

  59. 

  60.     $key_parts = OAuthUtil::urlencode_rfc3986($key_parts);
    61. 

  61.     $key = implode('&', $key_parts);
    62. 

  62. 

  63.     return base64_encode(hash_hmac($this->algo, $base_string, $key, TRUE));
    64. 

  64.   }
    65. 

  65. }
    66.