paste.chapril.org-privatebin/lib/Persistence/TrafficLimiter.php

<?php
/**
 * PrivateBin
 *
 * a zero-knowledge paste bin
 *
 * @link      https://github.com/PrivateBin/PrivateBin
 * @copyright 2012 Sébastien SAUVAGE (sebsauvage.net)
 * @license   https://www.opensource.org/licenses/zlib-license.php The zlib/libpng License
 * @version   1.3.2
 */

namespace PrivateBin\Persistence;

use PrivateBin\Configuration;

/**
 * TrafficLimiter
 *
 * Handles traffic limiting, so no user does more than one call per 10 seconds.
 */
class TrafficLimiter extends AbstractPersistence
{
    /**
     * time limit in seconds, defaults to 10s
     *
     * @access private
     * @static
     * @var    int
     */
    private static $_limit = 10;

    /**
     * key to fetch IP address
     *
     * @access private
     * @static
     * @var    string
     */
    private static $_ipKey = 'REMOTE_ADDR';

    /**
     * set the time limit in seconds
     *
     * @access public
     * @static
     * @param  int $limit
     */
    public static function setLimit($limit)
    {
        self::$_limit = $limit;
    }

    /**
     * set configuration options of the traffic limiter
     *
     * @access public
     * @static
     * @param Configuration $conf
     */
    public static function setConfiguration(Configuration $conf)
    {
        self::setLimit($conf->getKey('limit', 'traffic'));
        self::setPath($conf->getKey('dir', 'traffic'));
        if (($option = $conf->getKey('header', 'traffic')) !== null) {
            $httpHeader = 'HTTP_' . $option;
            if (array_key_exists($httpHeader, $_SERVER) && !empty($_SERVER[$httpHeader])) {
                self::$_ipKey = $httpHeader;
            }
        }
    }

    /**
     * get a HMAC of the current visitors IP address
     *
     * @access public
     * @static
     * @param  string $algo
     * @return string
     */
    public static function getHash($algo = 'sha512')
    {
        return hash_hmac($algo, $_SERVER[self::$_ipKey], ServerSalt::get());
    }

    /**
     * traffic limiter
     *
     * Make sure the IP address makes at most 1 request every 10 seconds.
     *
     * @access public
     * @static
     * @throws \Exception
     * @return bool
     */
    public static function canPass()
    {
        // disable limits if set to less then 1
        if (self::$_limit < 1) {
            return true;
        }

        $file = 'traffic_limiter.php';
        if (self::_exists($file)) {
            require self::getPath($file);
            $tl = $GLOBALS['traffic_limiter'];
        } else {
            $tl = array();
        }

        // purge file of expired hashes to keep it small
        $now = time();
        foreach ($tl as $key => $time) {
            if ($time + self::$_limit < $now) {
                unset($tl[$key]);
            }
        }

        // this hash is used as an array key, hence a shorter algo is used
        $hash = self::getHash('sha256');
        if (array_key_exists($hash, $tl) && ($tl[$hash] + self::$_limit >= $now)) {
            $result = false;
        } else {
            $tl[$hash] = time();
            $result    = true;
        }
        self::_store(
            $file,
            '<?php' . PHP_EOL .
            '$GLOBALS[\'traffic_limiter\'] = ' . var_export($tl, true) . ';'
        );
        return $result;
    }
}
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`<?php`
			`/**`
renaming the fork to PrivateBin 2016-07-11 11:58:15 +02:00			`* PrivateBin`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`*`
			`* a zero-knowledge paste bin`
			`*`
renaming the fork to PrivateBin 2016-07-11 11:58:15 +02:00			`* @link https://github.com/PrivateBin/PrivateBin`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`* @copyright 2012 Sébastien SAUVAGE (sebsauvage.net)`
Replace HTTP links with HTTPS Using this regexp: https://regex101.com/r/rZ2dE2/1 2016-07-19 13:56:52 +02:00			`* @license https://www.opensource.org/licenses/zlib-license.php The zlib/libpng License`
incrementing version 2020-01-08 19:31:06 +01:00			`* @version 1.3.2`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`*/`
Fix style-ci errors 2016-12-12 18:43:23 +01:00
Fix typos 2016-12-12 18:49:08 +01:00			`namespace PrivateBin\Persistence;`
Renamed classes for full PSR-2 compliance, some cleanup 2016-08-09 11:54:42 +02:00
			`use PrivateBin\Configuration;`
Introduce PSR-4 autoloading 2016-07-21 17:09:48 +02:00
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`/**`
Renamed classes for full PSR-2 compliance, some cleanup 2016-08-09 11:54:42 +02:00			`* TrafficLimiter`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`*`
			`* Handles traffic limiting, so no user does more than one call per 10 seconds.`
			`*/`
Renamed classes for full PSR-2 compliance, some cleanup 2016-08-09 11:54:42 +02:00			`class TrafficLimiter extends AbstractPersistence`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`{`
			`/**`
cleaned up phpdoc comments, added README on how to install and use it 2015-08-16 15:55:31 +02:00			`* time limit in seconds, defaults to 10s`
			`*`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`* @access private`
			`* @static`
			`* @var int`
			`*/`
			`private static $_limit = 10;`

preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`/**`
			`* key to fetch IP address`
			`*`
			`* @access private`
			`* @static`
			`* @var string`
			`*/`
			`private static $_ipKey = 'REMOTE_ADDR';`

Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`/**`
			`* set the time limit in seconds`
			`*`
			`* @access public`
			`* @static`
			`* @param int $limit`
			`*/`
			`public static function setLimit($limit)`
			`{`
			`self::$_limit = $limit;`
			`}`

preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`/**`
			`* set configuration options of the traffic limiter`
			`*`
			`* @access public`
			`* @static`
Renamed classes for full PSR-2 compliance, some cleanup 2016-08-09 11:54:42 +02:00			`* @param Configuration $conf`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`*/`
Renamed classes for full PSR-2 compliance, some cleanup 2016-08-09 11:54:42 +02:00			`public static function setConfiguration(Configuration $conf)`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`{`
			`self::setLimit($conf->getKey('limit', 'traffic'));`
			`self::setPath($conf->getKey('dir', 'traffic'));`
Convert to PSR-2 coding style (using phpcs-fixer) 2016-07-26 08:19:35 +02:00			`if (($option = $conf->getKey('header', 'traffic')) !== null) {`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`$httpHeader = 'HTTP_' . $option;`
Convert to PSR-2 coding style (using phpcs-fixer) 2016-07-26 08:19:35 +02:00			`if (array_key_exists($httpHeader, $_SERVER) && !empty($_SERVER[$httpHeader])) {`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`self::$_ipKey = $httpHeader;`
			`}`
			`}`
			`}`

			`/**`
implemented Identicon library as new default for comment icons, made Vizhash an optional alternative, refactored Vizhash and removed string lenghtening 2016-08-10 17:41:46 +02:00			`* get a HMAC of the current visitors IP address`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`*`
			`* @access public`
			`* @static`
implemented Identicon library as new default for comment icons, made Vizhash an optional alternative, refactored Vizhash and removed string lenghtening 2016-08-10 17:41:46 +02:00			`* @param string $algo`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`* @return string`
			`*/`
implemented Identicon library as new default for comment icons, made Vizhash an optional alternative, refactored Vizhash and removed string lenghtening 2016-08-10 17:41:46 +02:00			`public static function getHash($algo = 'sha512')`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`{`
implemented Identicon library as new default for comment icons, made Vizhash an optional alternative, refactored Vizhash and removed string lenghtening 2016-08-10 17:41:46 +02:00			`return hash_hmac($algo, $_SERVER[self::$_ipKey], ServerSalt::get());`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`}`

Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`/**`
			`* traffic limiter`
			`*`
			`* Make sure the IP address makes at most 1 request every 10 seconds.`
			`*`
			`* @access public`
			`* @static`
correcting namespaces 2018-11-19 13:07:25 +01:00			`* @throws \Exception`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`* @return bool`
			`*/`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`public static function canPass()`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`{`
preparing unit test for model refactoring, refactoring traffic limiter 2015-09-26 17:57:46 +02:00			`// disable limits if set to less then 1`
Convert to PSR-2 coding style (using phpcs-fixer) 2016-07-26 08:19:35 +02:00			`if (self::$_limit < 1) {`
			`return true;`
			`}`
Added more configuration options, based on patch by Uli Köhler 2013-10-30 23:54:42 +01:00
ZeroBin 0.17 * added deletion link. * small refactoring. * improved regex checks. * larger server alt on installation. 2013-11-01 01:15:14 +01:00			`$file = 'traffic_limiter.php';`
cleanup of TrafficLimiter #342 2018-07-29 15:43:28 +02:00			`if (self::_exists($file)) {`
			`require self::getPath($file);`
			`$tl = $GLOBALS['traffic_limiter'];`
			`} else {`
			`$tl = array();`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`}`

implemented Identicon library as new default for comment icons, made Vizhash an optional alternative, refactored Vizhash and removed string lenghtening 2016-08-10 17:41:46 +02:00			`// purge file of expired hashes to keep it small`
cleanup of TrafficLimiter #342 2018-07-29 15:43:28 +02:00			`$now = time();`
Convert to PSR-2 coding style (using phpcs-fixer) 2016-07-26 08:19:35 +02:00			`foreach ($tl as $key => $time) {`
			`if ($time + self::$_limit < $now) {`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`unset($tl[$key]);`
			`}`
			`}`

cleanup of TrafficLimiter #342 2018-07-29 15:43:28 +02:00			`// this hash is used as an array key, hence a shorter algo is used`
implemented Identicon library as new default for comment icons, made Vizhash an optional alternative, refactored Vizhash and removed string lenghtening 2016-08-10 17:41:46 +02:00			`$hash = self::getHash('sha256');`
			`if (array_key_exists($hash, $tl) && ($tl[$hash] + self::$_limit >= $now)) {`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`$result = false;`
			`} else {`
implemented Identicon library as new default for comment icons, made Vizhash an optional alternative, refactored Vizhash and removed string lenghtening 2016-08-10 17:41:46 +02:00			`$tl[$hash] = time();`
added configuration for PHP Coding Standards Fixer, including its fixes, resolving #47 2016-08-15 16:45:47 +02:00			`$result = true;`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`}`
ZeroBin 0.17 * added deletion link. * small refactoring. * improved regex checks. * larger server alt on installation. 2013-11-01 01:15:14 +01:00			`self::_store(`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`$file,`
			`'<?php' . PHP_EOL .`
cleanup of TrafficLimiter #342 2018-07-29 15:43:28 +02:00			`'$GLOBALS[\'traffic_limiter\'] = ' . var_export($tl, true) . ';'`
Refactoring of code base - modularized code, introduced configuration, started working on a PDO based DB connector 2012-04-29 19:15:06 +02:00			`);`
			`return $result;`
			`}`
			`}`