Signer::decode() - Code Metrics - Inspection of "[since: v3.0.5] 28-Jan-2018 - Tidy" - plinker-rpc/core - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( eba5b3...80de53 )

by Lawrence

created 2018-01-28 06:26 UTC

Signer::decode() A

↳ Parent: Signer

Complexity

Conditions	2
Paths	2

Size

Total Lines	12
Code Lines	9

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	0
CRAP Score	6

Importance

Changes

Metric	Value
cc	2
eloc	9
nc	2
nop	1
dl	0
loc	12
ccs	0
cts	9
cp	0
crap	6
rs	9.4285
c	0
b	0
f	0

<?php
/*
 +------------------------------------------------------------------------+
 | Plinker-RPC PHP                                                        |
 +------------------------------------------------------------------------+
 | Copyright (c)2017-2018 (https://github.com/plinker-rpc/core)           |
 +------------------------------------------------------------------------+
 | This source file is subject to MIT License                             |
 | that is bundled with this package in the file LICENSE.                 |
 |                                                                        |
 | If you did not receive a copy of the license and are unable to         |
 | obtain it through the world-wide-web, please send an email             |
 | to [email protected] so we can send you a copy immediately.        |
 +------------------------------------------------------------------------+
 | Authors: Lawrence Cherone <[email protected]>                     |
 +------------------------------------------------------------------------+
 */

namespace Plinker\Core\Lib;

/**
 * Plinker\Core\Lib\Signer
 */
final class Signer
{
    /**
     * @var
     */
    private $config;

    /**
     * Class construct
     *
     * @param  array  $config  - config array which holds object configuration
     * @return void
     */
    public function __construct($config = [])
    {
        //
        $this->config = array_merge([
            "secret" => null
        ], $config);

        // hash secret
        if (isset($this->config["secret"])) {
            $this->config["secret"] = hash("sha256", gmdate("h").$this->config["secret"]);
        }
    }

    /**
     *
     */
    private function encrypt($plaintext, $password)
    {
        $method     = "AES-256-CBC";
        $key        = (string) hash("sha256", $password, true);
        $iv         = (string) openssl_random_pseudo_bytes(16);
        $ciphertext = (string) openssl_encrypt($plaintext, $method, $key, OPENSSL_RAW_DATA, $iv);

        $hash = (string) hash_hmac("sha256", $ciphertext, $key, true);

        return base64_encode($iv . $hash . $ciphertext);
    }

    /**
     *
     */
    private function decrypt($ciphertext, $password)
    {
        $ciphertext    = base64_decode($ciphertext);

        $method     = "AES-256-CBC";
        $iv         = substr($ciphertext, 0, 16);
        $hash       = substr($ciphertext, 16, 32);
        $ciphertext = substr($ciphertext, 48);
        $key        = (string) hash("sha256", $password, true);

        if (hash_hmac("sha256", $ciphertext, $key, true) !== $hash) {
            return null;
        }

        return openssl_decrypt($ciphertext, $method, $key, OPENSSL_RAW_DATA, $iv);
    }

    /**
     * Sign and encrypt into payload array.
     * 
     * @return array
     */
    public function encode($data)
    {
        $data = serialize($data);

        return [
            "data"  => $this->encrypt($data, $this->config["secret"]),
            "token" => hash_hmac(
                "sha256",
                $data,
                $this->config["secret"]
            )
        ];
    }

    /**
     * Decrypt, verify and unserialize payload.
     * 
     * @return mixed
     */
    public function decode($data)
    {
        $data["data"] = $this->decrypt($data["data"], $this->config["secret"]);

        if (hash_hmac(
            "sha256",
            $data["data"],
            $this->config["secret"]
        ) == $data["token"]) {
            return unserialize($data["data"]);
        } else {
            return null;
        }
    }
}


1		<?php
2		/*
3		+------------------------------------------------------------------------+
4		\| Plinker-RPC PHP \|
5		+------------------------------------------------------------------------+
6		\| Copyright (c)2017-2018 (https://github.com/plinker-rpc/core) \|
7		+------------------------------------------------------------------------+
8		\| This source file is subject to MIT License \|
9		\| that is bundled with this package in the file LICENSE. \|
10		\| \|
11		\| If you did not receive a copy of the license and are unable to \|
12		\| obtain it through the world-wide-web, please send an email \|
13		\| to [email protected] so we can send you a copy immediately. \|
14		+------------------------------------------------------------------------+
15		\| Authors: Lawrence Cherone <[email protected]> \|
16		+------------------------------------------------------------------------+
17		*/
18
19		namespace Plinker\Core\Lib;
20
21		/**
22		* Plinker\Core\Lib\Signer
23		*/
24		final class Signer
25		{
26		/**
27		* @var
28		*/
29		private $config;
30
31		/**
32		* Class construct
33		*
34		* @param array $config - config array which holds object configuration
35		* @return void
36		*/
37	1	public function __construct($config = [])
38		{
39		//
40	1	$this->config = array_merge([
41	1	"secret" => null
42	1	], $config);
43
44		// hash secret
45	1	if (isset($this->config["secret"])) {
46	1	$this->config["secret"] = hash("sha256", gmdate("h").$this->config["secret"]);
47		}
48	1	}
49
50		/**
51		*
52		*/
53	1	private function encrypt($plaintext, $password)
54		{
55	1	$method = "AES-256-CBC";
56	1	$key = (string) hash("sha256", $password, true);
57	1	$iv = (string) openssl_random_pseudo_bytes(16);
58	1	$ciphertext = (string) openssl_encrypt($plaintext, $method, $key, OPENSSL_RAW_DATA, $iv);
59
60	1	$hash = (string) hash_hmac("sha256", $ciphertext, $key, true);
61
62	1	return base64_encode($iv . $hash . $ciphertext);
63		}
64
65		/**
66		*
67		*/
68		private function decrypt($ciphertext, $password)
69		{
70		$ciphertext = base64_decode($ciphertext);
71
72		$method = "AES-256-CBC";
73		$iv = substr($ciphertext, 0, 16);
74		$hash = substr($ciphertext, 16, 32);
75		$ciphertext = substr($ciphertext, 48);
76		$key = (string) hash("sha256", $password, true);
77
78		if (hash_hmac("sha256", $ciphertext, $key, true) !== $hash) {
79		return null;
80		}
81
82		return openssl_decrypt($ciphertext, $method, $key, OPENSSL_RAW_DATA, $iv);
83		}
84
85		/**
86		* Sign and encrypt into payload array.
87		*
88		* @return array
89		*/
90	1	public function encode($data)
91		{
92	1	$data = serialize($data);
93
94		return [
95	1	"data" => $this->encrypt($data, $this->config["secret"]),
96	1	"token" => hash_hmac(
97	1	"sha256",
98	1	$data,
99	1	$this->config["secret"]
100		)
101		];
102		}
103
104		/**
105		* Decrypt, verify and unserialize payload.
106		*
107		* @return mixed
108		*/
109		public function decode($data)
110		{
111		$data["data"] = $this->decrypt($data["data"], $this->config["secret"]);
112
113		if (hash_hmac(
114		"sha256",
115		$data["data"],
116		$this->config["secret"]
117		) == $data["token"]) {
118		return unserialize($data["data"]);
119		} else {
120		return null;
121		}
122		}
123		}
124

plinker-rpc / core

Push — master ( eba5b3...80de53 )

Signer::decode() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like