function token_test() { $Hash = '5D5FE1DD044A577C8B6580F49394CF4B4EF2D617C60C9AB6CDF2AC14BAB359C7'; $Qx = '16E3585053A4BE8546FB3475F1CBDD7FF1A2C9BC886BD8C1E9214C2C2A468122'; $Qy = '6BFBA33C9F50F8F952091306C5BE17E5447D82F8EFBC0784E10234E7D7CA71A0'; $R = '1B432A390D2871EEF2A4F4A5A607938DC4EBE6D2871A18133578F701851F37C2'; $S = '2BE1AFE68F9FE586F36C626FABF9DFC316491742EC793388EFADDE81FE34F3DC'; if (token_verify($Hash, $Qx, $Qy, $R, $S)) { echo "Sign valid\n"; } else { echo "Sign not valid\n"; } }
$_SESSION[$_POST['tlogin']] = ""; $r_ecp = substr($_POST['user_sign'], 0, 64); $s_ecp = substr($_POST['user_sign'], 64); $query = mysql_query("SELECT user_id, user_xkey, user_ykey FROM sample_users WHERE user_login='******'tlogin']) . "' LIMIT 1"); $my_count = mysql_num_rows($query); if ($my_count != '0') { $data = mysql_fetch_assoc($query); $x_pkey = $data['user_xkey']; $y_pkey = $data['user_ykey']; echo "<p style=\"margin: 0;\">Получено клиентом:</p><pre style=\"margin: 0; padding: 0; font-family: Consolas; font-style: italic; font-size: 10px; color: #888;\">"; echo $ses_r; echo "</pre>"; echo "<p style=\"margin: 0;\">Отправлено клиентом:</p><pre style=\"margin: 0; padding: 0; font-family: Consolas; font-style: italic; font-size: 10px; color: #888;\">"; print_r($_POST); echo "</pre>"; if (token_verify($rand_num, $x_pkey, $y_pkey, $r_ecp, $s_ecp)) { echo "<p style=\"margin-top: 10px; color: green;\"><strong>Успешная аутентификация!</strong><br />Пользователь <strong>" . $_POST['tlogin'] . "</strong> авторизован с помощью Рутокен Web.</p>"; } else { print "<p style=\"margin-top: 10px; color:red;'\">Доступ запрещен!</p>"; } } else { print "<p style=\"margin-top: 10px; color:red;\">Пользователь <strong>" . $_POST['tlogin'] . "</strong> не зарегистрирован!</p>"; } echo ""; } ?> <form method="POST" id="logform"> <input type="hidden" name="user_sign" id="user_sign" value="" /> <input type="hidden" name="tlogin" id="token_log" value="" /> <input type="hidden" name="rnd" id="rnd_client" value="" /> <table>