hdabo_sf: vendor/symfony/src/Symfony/Component/Security/Http/EntryPoint/DigestAuthenticationEntryPoint.php@d672f7dd74dc (annotated)

0 7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	1	<?php
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	2
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	3	/*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	4	* This file is part of the Symfony package.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	5	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	6	* (c) Fabien Potencier <fabien@symfony.com>
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	7	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	8	* For the full copyright and license information, please view the LICENSE
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	9	* file that was distributed with this source code.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	10	*/
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	11
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	12	namespace Symfony\Component\Security\Http\EntryPoint;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	13
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	14	use Symfony\Component\Security\Core\Exception\AuthenticationException;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	15	use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	16	use Symfony\Component\Security\Core\Exception\NonceExpiredException;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	17	use Symfony\Component\HttpFoundation\Response;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	18	use Symfony\Component\HttpFoundation\Request;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	19	use Symfony\Component\HttpKernel\Log\LoggerInterface;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	20
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	21	/**
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	22	* DigestAuthenticationEntryPoint starts an HTTP Digest authentication.
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	23	*
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	24	* @author Fabien Potencier <fabien@symfony.com>
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	25	*/
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	26	class DigestAuthenticationEntryPoint implements AuthenticationEntryPointInterface
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	27	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	28	private $key;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	29	private $realmName;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	30	private $nonceValiditySeconds;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	31	private $logger;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	32
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	33	public function __construct($realmName, $key, $nonceValiditySeconds = 300, LoggerInterface $logger = null)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	34	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	35	$this->realmName = $realmName;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	36	$this->key = $key;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	37	$this->nonceValiditySeconds = $nonceValiditySeconds;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	38	$this->logger = $logger;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	39	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	40
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	41	public function start(Request $request, AuthenticationException $authException = null)
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	42	{
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	43	$expiryTime = microtime(true) + $this->nonceValiditySeconds * 1000;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	44	$signatureValue = md5($expiryTime.':'.$this->key);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	45	$nonceValue = $expiryTime.':'.$signatureValue;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	46	$nonceValueBase64 = base64_encode($nonceValue);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	47
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	48	$authenticateHeader = sprintf('Digest realm="%s", qop="auth", nonce="%s"', $this->realmName, $nonceValueBase64);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	49
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	50	if ($authException instanceof NonceExpiredException) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	51	$authenticateHeader = $authenticateHeader.', stale="true"';
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	52	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	53
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	54	if (null !== $this->logger) {
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	55	$this->logger->debug(sprintf('WWW-Authenticate header sent to user agent: "%s"', $authenticateHeader));
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	56	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	57
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	58	$response = new Response();
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	59	$response->headers->set('WWW-Authenticate', $authenticateHeader);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	60	$response->setStatusCode(401, $authException ? $authException->getMessage() : null);
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	61
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	62	return $response;
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	63	}
7f95f8617b0b first commit ymh <ymh.work@gmail.com> parents: diff changeset	64	}

author	cavaliet
	Mon, 07 Jul 2014 17:23:47 +0200
changeset 122	d672f7dd74dc
parent 0	7f95f8617b0b
permissions	-rwxr-xr-x