Startsida Utforska Hjälp
Logga in
limour
/
Sakurairo
spegling av https://gitee.com/mirai-mamori/Sakurairo.git
1
0
Fork 0
Filer Ärenden 0 Wiki
Träd: e6251db4b9
Grenar Taggar
Sakurairo
/
update-checker
/
Puc
/
v4p11
/
OAuthSignature.php

OAuthSignature.php 2.9 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100 
  1. <?php
    2. 

  2. 

  3. if ( !class_exists('Puc_v4p11_OAuthSignature', false) ):
    4. 

  4. 

  5. 	/**
    6. 

  6. 	 * A basic signature generator for zero-legged OAuth 1.0.
    7. 

  7. 	 */
    8. 

  8. 	class Puc_v4p11_OAuthSignature {
    9. 

  9. 		private $consumerKey = '';
    10. 

  10. 		private $consumerSecret = '';
    11. 

  11. 

  12. 		public function __construct($consumerKey, $consumerSecret) {
    13. 

  13. 			$this->consumerKey = $consumerKey;
    14. 

  14. 			$this->consumerSecret = $consumerSecret;
    15. 

  15. 		}
    16. 

  16. 

  17. 		/**
    18. 

  18. 		 * Sign a URL using OAuth 1.0.
    19. 

  19. 		 *
    20. 

  20. 		 * @param string $url The URL to be signed. It may contain query parameters.
    21. 

  21. 		 * @param string $method HTTP method such as "GET", "POST" and so on.
    22. 

  22. 		 * @return string The signed URL.
    23. 

  23. 		 */
    24. 

  24. 		public function sign($url, $method = 'GET') {
    25. 

  25. 			$parameters = array();
    26. 

  26. 

  27. 			//Parse query parameters.
    28. 

  28. 			$query = parse_url($url, PHP_URL_QUERY);
    29. 

  29. 			if ( !empty($query) ) {
    30. 

  30. 				parse_str($query, $parsedParams);
    31. 

  31. 				if ( is_array($parameters) ) {
    32. 

  32. 					$parameters = $parsedParams;
    33. 

  33. 				}
    34. 

  34. 				//Remove the query string from the URL. We'll replace it later.
    35. 

  35. 				$url = substr($url, 0, strpos($url, '?'));
    36. 

  36. 			}
    37. 

  37. 

  38. 			$parameters = array_merge(
    39. 

  39. 				$parameters,
    40. 

  40. 				array(
    41. 

  41. 					'oauth_consumer_key' => $this->consumerKey,
    42. 

  42. 					'oauth_nonce' => $this->nonce(),
    43. 

  43. 					'oauth_signature_method' => 'HMAC-SHA1',
    44. 

  44. 					'oauth_timestamp' => time(),
    45. 

  45. 					'oauth_version' => '1.0',
    46. 

  46. 				)
    47. 

  47. 			);
    48. 

  48. 			unset($parameters['oauth_signature']);
    49. 

  49. 

  50. 			//Parameters must be sorted alphabetically before signing.
    51. 

  51. 			ksort($parameters);
    52. 

  52. 

  53. 			//The most complicated part of the request - generating the signature.
    54. 

  54. 			//The string to sign contains the HTTP method, the URL path, and all of
    55. 

  55. 			//our query parameters. Everything is URL encoded. Then we concatenate
    56. 

  56. 			//them with ampersands into a single string to hash.
    57. 

  57. 			$encodedVerb = urlencode($method);
    58. 

  58. 			$encodedUrl = urlencode($url);
    59. 

  59. 			$encodedParams = urlencode(http_build_query($parameters, '', '&'));
    60. 

  60. 

  61. 			$stringToSign = $encodedVerb . '&' . $encodedUrl . '&' . $encodedParams;
    62. 

  62. 

  63. 			//Since we only have one OAuth token (the consumer secret) we only have
    64. 

  64. 			//to use it as our HMAC key. However, we still have to append an & to it
    65. 

  65. 			//as if we were using it with additional tokens.
    66. 

  66. 			$secret = urlencode($this->consumerSecret) . '&';
    67. 

  67. 

  68. 			//The signature is a hash of the consumer key and the base string. Note
    69. 

  69. 			//that we have to get the raw output from hash_hmac and base64 encode
    70. 

  70. 			//the binary data result.
    71. 

  71. 			$parameters['oauth_signature'] = base64_encode(hash_hmac('sha1', $stringToSign, $secret, true));
    72. 

  72. 

  73. 			return ($url . '?' . http_build_query($parameters));
    74. 

  74. 		}
    75. 

  75. 

  76. 		/**
    77. 

  77. 		 * Generate a random nonce.
    78. 

  78. 		 *
    79. 

  79. 		 * @return string
    80. 

  80. 		 */
    81. 

  81. 		private function nonce() {
    82. 

  82. 			$mt = microtime();
    83. 

  83. 

  84. 			$rand = null;
    85. 

  85. 			if ( is_callable('random_bytes') ) {
    86. 

  86. 				try {
    87. 

  87. 					$rand = random_bytes(16);
    88. 

  88. 				} catch (Exception $ex) {
    89. 

  89. 					//Fall back to mt_rand (below).
    90. 

  90. 				}
    91. 

  91. 			}
    92. 

  92. 			if ( $rand === null ) {
    93. 

  93. 				$rand = mt_rand();
    94. 

  94. 			}
    95. 

  95. 

  96. 			return md5($mt . '_' . $rand);
    97. 

  97. 		}
    98. 

  98. 	}
    99. 

  99. 

  100. endif;
    101.