Home Explore Help
Register Sign In
aj
/
chamilo-lms2
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e7c246f349
Branches Tags
chamilo-lms2
/
vendor
/
symfony
/
security
/
Symfony
/
Component
/
Security
/
Http
/
EntryPoint
/
DigestAuthenticationEntryPoint.php

DigestAuthenticationEntryPoint.php 2.3 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Symfony package.
    5. 

  5.  *
    6. 

  6.  * (c) Fabien Potencier <fabien@symfony.com>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Symfony\Component\Security\Http\EntryPoint;
    13. 

  13. 

  14. use Symfony\Component\Security\Core\Exception\AuthenticationException;
    15. 

  15. use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
    16. 

  16. use Symfony\Component\Security\Core\Exception\NonceExpiredException;
    17. 

  17. use Symfony\Component\HttpFoundation\Response;
    18. 

  18. use Symfony\Component\HttpFoundation\Request;
    19. 

  19. use Psr\Log\LoggerInterface;
    20. 

  20. 

  21. /**
    22. 

  22.  * DigestAuthenticationEntryPoint starts an HTTP Digest authentication.
    23. 

  23.  *
    24. 

  24.  * @author Fabien Potencier <fabien@symfony.com>
    25. 

  25.  */
    26. 

  26. class DigestAuthenticationEntryPoint implements AuthenticationEntryPointInterface
    27. 

  27. {
    28. 

  28.     private $key;
    29. 

  29.     private $realmName;
    30. 

  30.     private $nonceValiditySeconds;
    31. 

  31.     private $logger;
    32. 

  32. 

  33.     public function __construct($realmName, $key, $nonceValiditySeconds = 300, LoggerInterface $logger = null)
    34. 

  34.     {
    35. 

  35.         $this->realmName = $realmName;
    36. 

  36.         $this->key = $key;
    37. 

  37.         $this->nonceValiditySeconds = $nonceValiditySeconds;
    38. 

  38.         $this->logger = $logger;
    39. 

  39.     }
    40. 

  40. 

  41.     public function start(Request $request, AuthenticationException $authException = null)
    42. 

  42.     {
    43. 

  43.         $expiryTime = microtime(true) + $this->nonceValiditySeconds * 1000;
    44. 

  44.         $signatureValue = md5($expiryTime.':'.$this->key);
    45. 

  45.         $nonceValue = $expiryTime.':'.$signatureValue;
    46. 

  46.         $nonceValueBase64 = base64_encode($nonceValue);
    47. 

  47. 

  48.         $authenticateHeader = sprintf('Digest realm="%s", qop="auth", nonce="%s"', $this->realmName, $nonceValueBase64);
    49. 

  49. 

  50.         if ($authException instanceof NonceExpiredException) {
    51. 

  51.             $authenticateHeader = $authenticateHeader.', stale="true"';
    52. 

  52.         }
    53. 

  53. 

  54.         if (null !== $this->logger) {
    55. 

  55.             $this->logger->debug(sprintf('WWW-Authenticate header sent to user agent: "%s"', $authenticateHeader));
    56. 

  56.         }
    57. 

  57. 

  58.         $response = new Response();
    59. 

  59.         $response->headers->set('WWW-Authenticate', $authenticateHeader);
    60. 

  60.         $response->setStatusCode(401);
    61. 

  61. 

  62.         return $response;
    63. 

  63.     }
    64. 

  64. 

  65.     public function getKey()
    66. 

  66.     {
    67. 

  67.         return $this->key;
    68. 

  68.     }
    69. 

  69. 

  70.     public function getRealmName()
    71. 

  71.     {
    72. 

  72.         return $this->realmName;
    73. 

  73.     }
    74. 

  74. }
    75.