PageRenderTime 61ms CodeModel.GetById 27ms RepoModel.GetById 0ms app.codeStats 0ms

/Util/TokenGenerator.php

https://bitbucket.org/Ibit/fosuserbundle
PHP | 62 lines | 40 code | 12 blank | 10 comment | 8 complexity | 7e2137076238a40412ca48ffb28fc296 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the FOSUserBundle package.
    5. 

  5.  *
    6. 

  6.  * (c) FriendsOfSymfony <http://friendsofsymfony.github.com/>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace FOS\UserBundle\Util;
    13. 

  13. 

  14. use Symfony\Component\HttpKernel\Log\LoggerInterface;
    15. 

  15. 

  16. class TokenGenerator implements TokenGeneratorInterface
    17. 

  17. {
    18. 

  18.     private $logger;
    19. 

  19.     private $useOpenSsl;
    20. 

  20. 

  21.     public function __construct(LoggerInterface $logger = null)
    22. 

  22.     {
    23. 

  23.         $this->logger = $logger;
    24. 

  24. 

  25.         // determine whether to use OpenSSL
    26. 

  26.         if (defined('PHP_WINDOWS_VERSION_BUILD') && version_compare(PHP_VERSION, '5.3.4', '<')) {
    27. 

  27.             $this->useOpenSsl = false;
    28. 

  28.         } elseif (!function_exists('openssl_random_pseudo_bytes')) {
    29. 

  29.             if (null !== $this->logger) {
    30. 

  30.                 $this->logger->notice('It is recommended that you enable the "openssl" extension for random number generation.');
    31. 

  31.             }
    32. 

  32.             $this->useOpenSsl = false;
    33. 

  33.         } else {
    34. 

  34.             $this->useOpenSsl = true;
    35. 

  35.         }
    36. 

  36.     }
    37. 

  37. 

  38.     public function generateToken()
    39. 

  39.     {
    40. 

  40.         return base_convert(bin2hex($this->getRandomNumber()), 16, 36);
    41. 

  41.     }
    42. 

  42. 

  43.     private function getRandomNumber()
    44. 

  44.     {
    45. 

  45.         $nbBytes = 32;
    46. 

  46. 

  47.         // try OpenSSL
    48. 

  48.         if ($this->useOpenSsl) {
    49. 

  49.             $bytes = openssl_random_pseudo_bytes($nbBytes, $strong);
    50. 

  50. 

  51.             if (false !== $bytes && true === $strong) {
    52. 

  52.                 return $bytes;
    53. 

  53.             }
    54. 

  54. 

  55.             if (null !== $this->logger) {
    56. 

  56.                 $this->logger->info('OpenSSL did not produce a secure random number.');
    57. 

  57.             }
    58. 

  58.         }
    59. 

  59. 

  60.         return hash('sha256', uniqid(mt_rand(), true), true);
    61. 

  61.     }
    62. 

  62. }
    63. 

  63.