da/d2d/Yubico_8php_source.html

<?php

class Auth_Yubico

{

        var $_id;


        var $_key;


        var $_response;


        public function __construct($id, $key = '')

        {

                $this->_id =  $id;

                $this->_key = base64_decode($key);

        }


        function getLastResponse()

        {

                return $this->_response;

        }


        // TODO? Add functions to get parsed parts of server response?


        function verify($token)

        {

                $parameters = "id=" . $this->_id . "&otp=" . $token;

                // Generate signature

                if($this->_key <> "") {

                        $signature = base64_encode(hash_hmac('sha1', $parameters, $this->_key, true));

                        $parameters .= '&h=' . $signature;

                }

                /* Support https. */

                $url = "https://api.yubico.com/wsapi/verify?" . $parameters;


                $responseMsg = file_get_contents($url);


                if(!preg_match("/status=([a-zA-Z0-9_]+)/", $responseMsg, $out)) {

                        throw new Exception('Could not parse response');

                }


                $status = $out[1];


                /* Verify signature. */

                if($this->_key <> "") {

                        $rows = explode("\r\n", $responseMsg);

                        while (list($key, $val) = each($rows)) {

                                // = is also used in BASE64 encoding so we only replace the first = by # which is not used in BASE64

                                $val = preg_replace('/=/', '#', $val, 1);

                                $row = explode("#", $val);

                                $response[$row[0]] = (isset($row[1])) ? $row[1] : "";

                        }


                        $check = 'status=' . $response['status'] . '&t='. $response['t'];

                        $checksignature = base64_encode(hash_hmac('sha1', $check, $this->_key, true));


                        if($response['h'] != $checksignature) {

                                throw new Exception('Checked Signature failed');

                        }

                }


                if ($status != 'OK') {

                        throw new Exception('Status was not OK: ' . $status);

                }


                return true;

        }

}

$row
$row
Definition: 10autofilter-selection-1.php:74

$out
$out
Definition: UtfNormalGenerate.php:178

Auth_Yubico\$_id
$_id
Definition: Yubico.php:69

Auth_Yubico\__construct
__construct($id, $key='')
Constructor.
Definition: Yubico.php:91

Auth_Yubico\getLastResponse
getLastResponse()
Return the last data received from the server, if any.
Definition: Yubico.php:103

Auth_Yubico\$_key
$_key
Definition: Yubico.php:75

Auth_Yubico\$_response
$_response
Definition: Yubico.php:81

Auth_Yubico\verify
verify($token)
Verify Yubico OTP.
Definition: Yubico.php:117

php
An exception for terminatinating execution or to throw for unit testing.

$key
$key
Definition: croninfo.php:18

$id
if(!array_key_exists('StateId', $_REQUEST)) $id
Definition: expirywarning.php:14

Auth_Yubico

$url
$url
Definition: proxy_ylocal.php:28

$response
$response
Definition: proxy_ylocal.php:39

$rows
$rows
Definition: xhr_table.php:10