PHP openid\model OpenIdNonce Exemples

Langage de programmation: PHP

Espace de nommage/Pack: openid\model

Class/Type: OpenIdNonce

Exemples au hotexamples.com: 2

PHP openid\model OpenIdNonce - 2 exemples trouvés. Ce sont les exemples réels les mieux notés de openid\model\OpenIdNonce extraits de projets open source. Vous pouvez noter les exemples pour nous aider à en améliorer la qualité.

Méthodes fréquemment utilisées

Afficher Cacher

getRawFormat(1)

isValid(1)

Méthodes fréquemment utilisées

getRawFormat (1)

isValid (1)

Associées

isFileNameSafe

App\Tarea

copyfiles

mgm_map_for_in

configYum

IndividusA

wprss_link_display

splice_url

CaseReport

USVN_Crypt

Related in langs

Model.ParaffinCurls (C#)

OutputPanel (C#)

my_error (C++)

PetscValidHeaderSpecific (C++)

GetTxFromWeb (Go)

LoadStringEntities (Go)

OFPacketOut (Java)

xtal_compare (Python)

ObjectPair (Python)

Exemple #1

0

Afficher le fichier

Fichier : OpenIdCheckAuthenticationRequestHandler.php Projet : smarcet/openstackid

protected function internalHandle(OpenIdMessage $message) { $this->current_request = null; try { $this->current_request = new OpenIdCheckAuthenticationRequest($message, $this->openid_configuration_service->getOPEndpointURL()); if (!$this->current_request->isValid()) { throw new InvalidOpenIdMessageException(OpenIdErrorMessages::InvalidOpenIdCheckAuthenticationRequestMessage); } /** * For verifying signatures an OP MUST only use private associations and MUST NOT * use associations that have shared keys. If the verification request contains a handle * for a shared association, it means the Relying Party no longer knows the shared secret, * or an entity other than the RP (e.g. an attacker) has established this association with * the OP. * To prevent replay attacks, the OP MUST NOT issue more than one verification response for each * authentication response it had previously issued. An authentication response and its matching * verification request may be identified by their "openid.response_nonce" values. */ $claimed_assoc = $this->current_request->getAssocHandle(); $claimed_realm = $this->current_request->getRealm(); $stored_assoc = $this->association_service->getAssociation($claimed_assoc, $claimed_realm); if (is_null($stored_assoc) || $stored_assoc->getType() != IAssociation::TypePrivate) { throw new InvalidAssociationTypeException(OpenIdErrorMessages::InvalidAssociationTypeMessage); } $claimed_nonce = new OpenIdNonce($this->current_request->getNonce()); if (!$claimed_nonce->isValid(intval($this->configuration_service->getConfigValue('Nonce.Lifetime')))) { throw new InvalidNonce(); } $this->nonce_service->lockNonce($claimed_nonce); $claimed_sig = $this->current_request->getSig(); $claimed_invalidate_handle = $this->current_request->getInvalidateHandle(); if (!is_null($claimed_invalidate_handle) && !empty($claimed_invalidate_handle)) { $invalidate_stored_assoc = $this->association_service->getAssociation($claimed_invalidate_handle); if (!is_null($invalidate_stored_assoc)) { $claimed_invalidate_handle = null; } } $this->nonce_service->markNonceAsInvalid($claimed_nonce, $claimed_sig, $claimed_realm); $res = OpenIdSignatureBuilder::verify($this->current_request, $stored_assoc->getMacFunction(), $stored_assoc->getSecret(), $claimed_sig); //delete association $this->association_service->deleteAssociation($claimed_assoc); $is_valid = $res ? 'true' : 'false'; return new OpenIdCheckAuthenticationResponse($is_valid, $claimed_invalidate_handle); } catch (InvalidAssociationTypeException $inv_assoc_ex) { $this->checkpoint_service->trackException($inv_assoc_ex); $this->log_service->warning($inv_assoc_ex); $response = new OpenIdDirectGenericErrorResponse($inv_assoc_ex->getMessage()); if (!is_null($this->current_request)) { $this->log_service->error_msg("current request: " . $this->current_request->toString()); } return $response; } catch (ReplayAttackException $replay_ex) { $this->checkpoint_service->trackException($replay_ex); $this->log_service->warning($replay_ex); $response = new OpenIdDirectGenericErrorResponse($replay_ex->getMessage()); if (!is_null($this->current_request)) { $this->log_service->error_msg("current request: " . $this->current_request->toString()); } return $response; } catch (InvalidNonce $inv_nonce_ex) { $this->checkpoint_service->trackException($inv_nonce_ex); $this->log_service->error($inv_nonce_ex); $response = new OpenIdDirectGenericErrorResponse($inv_nonce_ex->getMessage()); if (!is_null($this->current_request)) { $this->log_service->error_msg("current request: " . $this->current_request->toString()); } return $response; } catch (InvalidOpenIdMessageException $inv_msg_ex) { $this->checkpoint_service->trackException($inv_msg_ex); $this->log_service->error($inv_msg_ex); $response = new OpenIdDirectGenericErrorResponse($inv_msg_ex->getMessage()); if (!is_null($this->current_request)) { $this->log_service->error_msg("current request: " . $this->current_request->toString()); } return $response; } catch (Exception $ex) { $this->checkpoint_service->trackException($ex); $this->log_service->error($ex); if (!is_null($this->current_request)) { $this->log_service->error_msg("current request: " . $this->current_request->toString()); } return new OpenIdDirectGenericErrorResponse("Server Error"); } }

Exemple #2

0

Afficher le fichier

Fichier : NonceService.php Projet : smarcet/openstackid

/** * @param OpenIdNonce $nonce * @param string $signature * @param string $realm */ public function associateNonce(OpenIdNonce $nonce, $signature, $realm) { try { $raw_nonce = $nonce->getRawFormat(); $lifetime = $this->configuration_service->getConfigValue("Nonce.Lifetime"); $this->cache_service->setSingleValue($raw_nonce . $signature, $realm, $lifetime); } catch (Exception $ex) { Log::error($ex); } }