verifySignedQueryString() public static method

Verify a signature and timestamp on a query string.
public static verifySignedQueryString ( string $data, integer $now = null ) : boolean
$data string The signed query string.
$now integer The current time (can override for testing).
return boolean Whether or not the string was valid.
Horde Class Documentation
コード例 #1
0
ファイル: go.php プロジェクト: jubinpatel/horde 
<?php

/**
 * A script to redirect to a given URL, used to hide any referrer data being
 * passed to the remote server and potentially exposing any session IDs.
 *
 * Copyright 2003-2014 Horde LLC (http://www.horde.org/)
 *
 * See the enclosed file COPYING for license information (LGPL-2). If you
 * did not receive this file, see http://www.horde.org/licenses/lgpl.
 *
 * @author    Marko Djukic <*****@*****.**>
 * @category  Horde
 * @copyright 2003-2014 Horde LLC
 * @license   http://www.horde.org/licenses/lgpl LGPL-2
 * @package   Horde
 */
require_once __DIR__ . '/../lib/Application.php';
Horde_Registry::appInit('horde', array('authentication' => 'none', 'session_control' => 'none'));
if (strlen($url = trim($_GET['url'])) && !preg_match('/;\\s*url\\s*=/i', $url) && Horde::verifySignedQueryString($_SERVER['QUERY_STRING'])) {
    // URL verified -> so redirect
    header('Refresh: 0; URL=' . $url);
}