babolivier
/
moodle_macaroons
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Moodle authentication plugin for Macaroons
3 Commits
1 Branch
Tree: 429555b62d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '429555b62d'
${ noResults }
moodle_macaroons/Macaroons/Utils.php

Utils.php 2.3KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687 
  1. <?php

  2. 

  3. namespace Macaroons;

  4. 

  5. class Utils

  6. {

  7.   public static function hexlify($value)

  8.   {

  9.     return join('', array_map(function($byte){

  10.         return sprintf("%02X", $byte);

  11.       }, unpack('C*', $value)));

  12.   }

  13. 

  14.   public static function unhexlify($value)

  15.   {

  16.     return pack('H*', $value);

  17.   }

  18. 

  19.   public static function hmac($key, $data, $digest = 'sha256')

  20.   {

  21.     return hash_hmac($digest, $data, $key, true);

  22.   }

  23. 

  24.   public static function generateDerivedKey($key)

  25.   {

  26.     return self::hmac('macaroons-key-generator', $key);

  27.   }

  28. 

  29.   public static function truncateOrPad($str, $size = 32)

  30.   {

  31.     if (strlen($str) > $size)

  32.       return substr($str, 0, $size);

  33.     else if (strlen($str) < $size)

  34.       return str_pad($str, $size, "\0", STR_PAD_RIGHT);

  35.     return $str;

  36.   }

  37. 

  38.   public static function startsWith($str, $prefix)

  39.   {

  40.     if (!(is_string($str) && is_string($prefix)))

  41.       throw new \InvalidArgumentException('Both arguments must be strings');

  42.     return substr($str, 0, strlen($prefix)) === $prefix;

  43.   }

  44. 

  45.   public static function base64_strict_encode($data)

  46.   {

  47.     $data = str_replace("\r\n", '', base64_encode($data));

  48.     $data = str_replace("\r", '', $data);

  49.     return str_replace("\n", '', $data);

  50.   }

  51. 

  52.   public static function base64_url_safe_encode($data)

  53.   {

  54.     $data = str_replace('+', '-', self::base64_strict_encode($data));

  55.     return str_replace('/', '_', $data);

  56.   }

  57. 

  58.   public static function base64_url_safe_decode($data)

  59.   {

  60.     $data = str_replace('-', '+', $data);

  61.     $data = str_replace('_', '/', $data);

  62.     return base64_decode($data);

  63.   }

  64. 

  65.   public static function base64_url_encode($data)

  66.   {

  67.     return str_replace('=', '', self::base64_url_safe_encode($data));

  68.   }

  69. 

  70.   public static function base64_url_decode($data)

  71.   {

  72.     return self::base64_url_safe_decode(str_pad($data, (4 - (strlen($data) % 4)) % 4, '=', STR_PAD_RIGHT));

  73.   }

  74. 

  75.   public static function signFirstPartyCaveat($signature, $predicate)

  76.   {

  77.     return self::hmac($signature, $predicate);

  78.   }

  79. 

  80.   public static function signThirdPartyCaveat($signature, $verificationId, $caveatId)

  81.   {

  82.     $verification_id_hmac = self::hmac($signature, $verificationId);

  83.     $caveat_id_hmac       = self::hmac($signature, $caveatId);

  84.     $combined             = $verification_id_hmac . $caveat_id_hmac;

  85.     return self::hmac($signature, $combined);

  86.   }

  87. }