PageRenderTime 43ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/app/code/community/Fontis/Recaptcha/Helper/Data.php

https://bitbucket.org/acidel/buykoala
PHP | 178 lines | 92 code | 19 blank | 67 comment | 28 complexity | 60776da03571a72de80a45d6f56b1fc6 MD5 | raw file
    

  1. <?php

    2. 

  2. /**

    3. 

  3.  * Fontis Recaptcha Extension

    4. 

  4.  *

    5. 

  5.  * NOTICE OF LICENSE

    6. 

  6.  *

    7. 

  7.  * This source file is subject to the Open Software License (OSL 3.0)

    8. 

  8.  * that is bundled with this package in the file LICENSE.txt.

    9. 

  9.  * It is also available through the world-wide-web at this URL:

    10. 

  10.  * http://opensource.org/licenses/osl-3.0.php

    11. 

  11.  * If you did not receive a copy of the license and are unable to

    12. 

  12.  * obtain it through the world-wide-web, please send an email

    13. 

  13.  * to license@magentocommerce.com so we can send you a copy immediately.

    14. 

  14.  * 

    15. 

  15.  * This code has been adopted from the reCAPTCHA module available at:

    16. 

  16.  * 	http://www.google.com/recaptcha

    17. 

  17.  * The original reCAPTCHA module was written by:

    18. 

  18.  * 	Mike Crawford

    19. 

  19.  * 	Ben Maurer

    20. 

  20.  *

    21. 

  21.  * @category   Fontis

    22. 

  22.  * @package    Fontis_Recaptcha

    23. 

  23.  * @author     Denis Margetic

    24. 

  24.  * @author     Chris Norton

    25. 

  25.  * @copyright  Copyright (c) 2011 Fontis Pty. Ltd. (http://www.fontis.com.au)

    26. 

  26.  * @license    http://opensource.org/licenses/osl-3.0.php  Open Software License (OSL 3.0)

    27. 

  27.  */

    28. 

  28. class Fontis_Recaptcha_Helper_Data extends Mage_Core_Helper_Abstract 

    29. 

  29. {

    30. 

  30.     const RECAPTCHA_API_SERVER_HOST = "www.google.com";

    31. 

  31.     const RECAPTCHA_API_SERVER_PATH = "/recaptcha/api";

    32. 

  32.     const RECAPTCHA_API_SECURE_SERVER = "https://www.google.com/recaptcha/api";

    33. 

  33. 

    34. 

  34.     /**

    35. 

  35.      * Encodes the given data into a query string format

    36. 

  36.      * @param $data - array of string elements to be encoded

    37. 

  37.      * @return string - encoded request

    38. 

  38.      */

    39. 

  39.     function _recaptcha_qsencode ($data) 

    40. 

  40.     {

    41. 

  41.         $req = "";

    42. 

  42.         foreach ( $data as $key => $value )

    43. 

  43.             $req .= $key . '=' . urlencode( stripslashes($value) ) . '&';

    44. 

  44. 

    45. 

  45.         // Cut the last '&'

    46. 

  46.         $req=substr($req,0,strlen($req)-1);

    47. 

  47.         return $req;

    48. 

  48.     }

    49. 

  49. 

    50. 

  50.     /**

    51. 

  51.      * Submits an HTTP POST to a reCAPTCHA server

    52. 

  52.      * @param string $host

    53. 

  53.      * @param string $path

    54. 

  54.      * @param array $data

    55. 

  55.      * @param int port

    56. 

  56.      * @return array response

    57. 

  57.      */

    58. 

  58.     function _recaptcha_http_post($host, $path, $data, $port = 80) 

    59. 

  59.     {

    60. 

  60.         $req = $this->_recaptcha_qsencode ($data);

    61. 

  61. 

    62. 

  62.         $http_request  = "POST $path HTTP/1.0\r\n";

    63. 

  63.         $http_request .= "Host: $host\r\n";

    64. 

  64.         $http_request .= "Content-Type: application/x-www-form-urlencoded;\r\n";

    65. 

  65.         $http_request .= "Content-Length: " . strlen($req) . "\r\n";

    66. 

  66.         $http_request .= "User-Agent: reCAPTCHA/PHP\r\n";

    67. 

  67.         $http_request .= "\r\n";

    68. 

  68.         $http_request .= $req;

    69. 

  69. 

    70. 

  70.         $response = '';

    71. 

  71.         if( false == ( $fs = @fsockopen($host, $port, $errno, $errstr, 10) ) ) {

    72. 

  72.             die ('Could not open socket');

    73. 

  73.         }

    74. 

  74. 

    75. 

  75.         fwrite($fs, $http_request);

    76. 

  76. 

    77. 

  77.         while ( !feof($fs) )

    78. 

  78.             $response .= fgets($fs, 1160); // One TCP-IP packet

    79. 

  79.         fclose($fs);

    80. 

  80.         $response = explode("\r\n\r\n", $response, 2);

    81. 

  81. 

    82. 

  82.         return $response;

    83. 

  83.     }

    84. 

  84. 

    85. 

  85.     /**

    86. 

  86.      * Gets the challenge HTML (javascript and non-javascript version).

    87. 

  87.      * This is called from the browser, and the resulting reCAPTCHA HTML widget

    88. 

  88.      * is embedded within the HTML form it was called from.

    89. 

  89.      * @param string $pubkey A public key for reCAPTCHA

    90. 

  90.      * @param string $error The error given by reCAPTCHA (optional, default is null)

    91. 

  91.      * @param boolean $use_ssl Should the request be made over ssl? (optional, default is false)

    92. 

  92. 

    93. 

  93.      * @return string - The HTML to be embedded in the user's form.

    94. 

  94.      */

    95. 

  95.     function recaptcha_get_html ($pubkey, $error = null, $use_ssl = false)

    96. 

  96.     {

    97. 

  97. 	    if ($pubkey == null || $pubkey == '') {

    98. 

  98. 		    die ("To use reCAPTCHA you must get an API key from <a href='http://recaptcha.net/api/getkey'>http://recaptcha.net/api/getkey</a>");

    99. 

  99. 	    }

    100. 

  100. 	

    101. 

  101. 	    if ($use_ssl) {

    102. 

  102.             $server = self::RECAPTCHA_API_SECURE_SERVER;

    103. 

  103.         } else {

    104. 

  104.             $server = 'http://' . self::RECAPTCHA_API_SERVER_HOST . self::RECAPTCHA_API_SERVER_PATH;

    105. 

  105.         }

    106. 

  106. 

    107. 

  107.         $errorpart = "";

    108. 

  108.         if ($error) {

    109. 

  109.            $errorpart = "&amp;error=" . $error;

    110. 

  110.         }

    111. 

  111.         return '<script type="text/javascript" src="'. $server . '/challenge?k=' . $pubkey . $errorpart . '"></script>

    112. 

  112. 

    113. 

  113. 	    <noscript>

    114. 

  114.   		    <iframe src="'. $server . '/noscript?k=' . $pubkey . $errorpart . '" height="300" width="500" frameborder="0"></iframe><br/>

    115. 

  115.   		    <textarea name="recaptcha_challenge_field" rows="3" cols="40"></textarea>

    116. 

  116.   		    <input type="hidden" name="recaptcha_response_field" value="manual_challenge"/>

    117. 

  117. 	    </noscript>';

    118. 

  118.     }

    119. 

  119. 

    120. 

  120.     /**

    121. 

  121.       * Calls an HTTP POST function to verify if the user's guess was correct

    122. 

  122.       * @param string $privkey

    123. 

  123.       * @param string $remoteip

    124. 

  124.       * @param string $challenge

    125. 

  125.       * @param string $response

    126. 

  126.       * @param array $extra_params an array of extra variables to post to the server

    127. 

  127.       * @return ReCaptchaResponse

    128. 

  128.       */

    129. 

  129.     function recaptcha_check_answer ($privkey, $remoteip, $challenge, $response, $extra_params = array())

    130. 

  130.     {

    131. 

  131. 	    if ($privkey == null || $privkey == '') {

    132. 

  132. 		    die ("To use reCAPTCHA you must get an API key from <a href='http://recaptcha.net/api/getkey'>http://recaptcha.net/api/getkey</a>");

    133. 

  133. 	    }

    134. 

  134. 

    135. 

  135. 	    if ($remoteip == null || $remoteip == '') {

    136. 

  136. 		    die ("For security reasons, you must pass the remote ip to reCAPTCHA");

    137. 

  137. 	    }

    138. 

  138. 	

    139. 

  139.         //discard spam submissions

    140. 

  140.         if ($challenge == null || strlen($challenge) == 0 || $response == null || strlen($response) == 0) {

    141. 

  141.             return false;

    142. 

  142.         }

    143. 

  143. 

    144. 

  144.         $response = $this->_recaptcha_http_post (self::RECAPTCHA_API_SERVER_HOST, self::RECAPTCHA_API_SERVER_PATH . "/verify", array (  'privatekey' => $privkey,

    145. 

  145.                                                                                                                             'remoteip' => $remoteip,

    146. 

  146.                                                                                                                             'challenge' => $challenge,

    147. 

  147.                                                                                                                             'response' => $response

    148. 

  148.                                                                                                                          ) + $extra_params

    149. 

  149.                                                 );

    150. 

  150. 

    151. 

  151.         $answers = explode ("\n", $response [1]);

    152. 

  152. 

    153. 

  153.         if (trim ($answers [0]) == 'true') {

    154. 

  154.             return true;

    155. 

  155.         }

    156. 

  156.         return false;

    157. 

  157.     }

    158. 

  158. 

    159. 

  159.     /**

    160. 

  160.      * gets a URL where the user can sign up for reCAPTCHA. If your application

    161. 

  161.      * has a configuration page where you enter a key, you should provide a link

    162. 

  162.      * using this function.

    163. 

  163.      * @param string $domain The domain where the page is hosted

    164. 

  164.      * @param string $appname The name of your application

    165. 

  165.      */

    166. 

  166.     function recaptcha_get_signup_url ($domain = null, $appname = null) 

    167. 

  167.     {

    168. 

  168. 	    return "http://recaptcha.net/api/getkey?" .  $this->_recaptcha_qsencode (array ('domain' => $domain, 'app' => $appname));

    169. 

  169.     }

    170. 

  170. 

    171. 

  171.     function _recaptcha_aes_pad($val) 

    172. 

  172.     {

    173. 

  173. 	    $block_size = 16;

    174. 

  174. 	    $numpad = $block_size - (strlen ($val) % $block_size);

    175. 

  175. 	    return str_pad($val, strlen ($val) + $numpad, chr($numpad));

    176. 

  176.     }

    177. 

  177. }

    178. 

  178. ?>

    179. 

  179.