PageRenderTime 38ms CodeModel.GetById 14ms RepoModel.GetById 0ms app.codeStats 0ms

/tools/swift/Swift/Authenticator/CRAMMD5.php

https://bitbucket.org/enurkov/prestashop
PHP | 73 lines | 35 code | 7 blank | 31 comment | 2 complexity | fe5ff3f695359b2bda22ebd792f370d1 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Swift Mailer CRAM-MD5 Authenticator Mechanism
    5. 

  5.  * Please read the LICENSE file
    6. 

  6.  * @author Chris Corbyn <chris@w3style.co.uk>
    7. 

  7.  * @package Swift_Authenticator
    8. 

  8.  * @license GNU Lesser General Public License
    9. 

  9.  */
    10. 

  10. 

  11. require_once dirname(__FILE__) . "/../ClassLoader.php";
    12. 

  12. Swift_ClassLoader::load("Swift_Authenticator");
    13. 

  13. 

  14. /**
    15. 

  15.  * Swift CRAM-MD5 Authenticator
    16. 

  16.  * This form of authentication is a secure challenge-response method
    17. 

  17.  * @package Swift_Authenticator
    18. 

  18.  * @author Chris Corbyn <chris@w3style.co.uk>
    19. 

  19.  */
    20. 

  20. class Swift_Authenticator_CRAMMD5 implements Swift_Authenticator
    21. 

  21. {
    22. 

  22.   /**
    23. 

  23.    * Try to authenticate using the username and password
    24. 

  24.    * Returns false on failure
    25. 

  25.    * @param string The username
    26. 

  26.    * @param string The password
    27. 

  27.    * @param Swift The instance of Swift this authenticator is used in
    28. 

  28.    * @return boolean
    29. 

  29.    */
    30. 

  30.   public function isAuthenticated($user, $pass, Swift $swift)
    31. 

  31.   {
    32. 

  32.     try {
    33. 

  33.       $encoded_challenge = substr($swift->command("AUTH CRAM-MD5", 334)->getString(), 4);
    34. 

  34.       $challenge = base64_decode($encoded_challenge);
    35. 

  35.       $response = base64_encode($user . " " . self::generateCRAMMD5Hash($pass, $challenge));
    36. 

  36.       $swift->command($response, 235);
    37. 

  37.     } catch (Swift_ConnectionException $e) {
    38. 

  38.       $swift->reset();
    39. 

  39.       return false;
    40. 

  40.     }
    41. 

  41.     return true;
    42. 

  42.   }
    43. 

  43.   /**
    44. 

  44.    * Return the name of the AUTH extension this is for
    45. 

  45.    * @return string
    46. 

  46.    */
    47. 

  47.   public function getAuthExtensionName()
    48. 

  48.   {
    49. 

  49.     return "CRAM-MD5";
    50. 

  50.   }
    51. 

  51.   /**
    52. 

  52.    * Generate a CRAM-MD5 hash from a challenge
    53. 

  53.    * @param string The string to get a hash from
    54. 

  54.    * @param string The challenge to use to make the hash
    55. 

  55.    * @return string
    56. 

  56.    */
    57. 

  57.   public static function generateCRAMMD5Hash($password, $challenge)
    58. 

  58.   {
    59. 

  59.     if (strlen($password) > 64)
    60. 

  60.       $password = pack('H32', md5($password));
    61. 

  61. 

  62.     if (strlen($password) < 64)
    63. 

  63.       $password = str_pad($password, 64, chr(0));
    64. 

  64. 

  65.     $k_ipad = substr($password, 0, 64) ^ str_repeat(chr(0x36), 64);
    66. 

  66.     $k_opad = substr($password, 0, 64) ^ str_repeat(chr(0x5C), 64);
    67. 

  67. 

  68.     $inner  = pack('H32', md5($k_ipad.$challenge));
    69. 

  69.     $digest = md5($k_opad.$inner);
    70. 

  70. 

  71.     return $digest;
    72. 

  72.   }
    73. 

  73. }
    74. 

  74.