date.chapril.org-framadate/app/classes/Framadate/Security/Token.php

92 lines
2.7 KiB
PHP
Raw Normal View History

2015-01-09 09:22:31 +01:00
<?php
namespace Framadate\Security;
class Token {
2016-04-29 18:46:22 +02:00
const DEFAULT_LENGTH = 64;
2015-01-09 09:22:31 +01:00
private $time;
private $value;
2015-04-02 11:58:35 +02:00
private $length;
private static $codeAlphabet = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ123456789';
2015-01-09 09:22:31 +01:00
2016-04-29 18:46:22 +02:00
function __construct($length = self::DEFAULT_LENGTH) {
2015-04-02 11:58:35 +02:00
$this->length = $length;
2015-01-10 16:35:21 +01:00
$this->time = time() + TOKEN_TIME;
$this->value = $this->generate();
2015-01-09 09:22:31 +01:00
}
private function generate() {
2015-04-02 11:58:35 +02:00
return self::getToken($this->length);
2015-01-10 16:35:21 +01:00
}
public function getTime() {
return $this->time;
}
public function getValue() {
return $this->value;
}
public function isGone() {
return $this->time < time();
}
public function check($value) {
return $value === $this->value;
2015-01-09 09:22:31 +01:00
}
2015-04-02 11:58:35 +02:00
/**
* Get a secure token if possible, or a less secure one if not.
*
* @param int $length The token length
* @param bool $crypto_strong If passed, tells if the token is "cryptographically strong" or not.
* @return string
*/
2016-04-29 18:46:22 +02:00
public static function getToken($length = self::DEFAULT_LENGTH, &$crypto_strong = false) {
2015-04-02 11:58:35 +02:00
if (function_exists('openssl_random_pseudo_bytes')) {
openssl_random_pseudo_bytes(1, $crypto_strong); // Fake use to see if the algorithm used was "cryptographically strong"
return self::getSecureToken($length);
}
return self::getUnsecureToken($length);
}
public static function getUnsecureToken($length) {
$string = '';
mt_srand();
for ($i = 0; $i < $length; $i++) {
$string .= self::$codeAlphabet[mt_rand() % strlen(self::$codeAlphabet)];
}
return $string;
}
/**
* @author http://stackoverflow.com/a/13733588
*/
public static function getSecureToken($length){
$token = "";
for($i=0;$i<$length;$i++){
$token .= self::$codeAlphabet[self::crypto_rand_secure(0,strlen(self::$codeAlphabet))];
}
return $token;
}
/**
* @author http://us1.php.net/manual/en/function.openssl-random-pseudo-bytes.php#104322
*/
private static function crypto_rand_secure($min, $max) {
$range = $max - $min;
if ($range < 0) return $min; // not so random...
$log = log($range, 2);
$bytes = (int) ($log / 8) + 1; // length in bytes
$bits = (int) $log + 1; // length in bits
$filter = (int) (1 << $bits) - 1; // set all lower bits to 1
do {
$rnd = hexdec(bin2hex(openssl_random_pseudo_bytes($bytes)));
$rnd = $rnd & $filter; // discard irrelevant bits
} while ($rnd >= $range);
return $min + $rnd;
}
2015-01-09 09:22:31 +01:00
}