Subversion Repositories oidplus

Rev

Rev 1107 | Go to most recent revision | Details | Compare with Previous | Last modification | View Log | RSS feed

Rev Author Line No. Line
1090 daniel-mar 1
<?php
2
 
3
/*
4
 * OIDplus 2.0
5
 * Copyright 2023 Daniel Marschall, ViaThinkSoft
6
 *
7
 * Licensed under the Apache License, Version 2.0 (the "License");
8
 * you may not use this file except in compliance with the License.
9
 * You may obtain a copy of the License at
10
 *
11
 *     http://www.apache.org/licenses/LICENSE-2.0
12
 *
13
 * Unless required by applicable law or agreed to in writing, software
14
 * distributed under the License is distributed on an "AS IS" BASIS,
15
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16
 * See the License for the specific language governing permissions and
17
 * limitations under the License.
18
 */
19
 
20
namespace ViaThinkSoft\OIDplus;
21
 
22
// phpcs:disable PSR1.Files.SideEffects
23
\defined('INSIDE_OIDPLUS') or die;
24
// phpcs:enable PSR1.Files.SideEffects
25
 
26
class OIDplusAuthPluginVtsMcf extends OIDplusAuthPlugin {
27
 
1116 daniel-mar 28
        /**
29
         * @param OIDplusRAAuthInfo $authInfo
30
         * @param string $check_password
31
         * @return bool
32
         */
33
        public function verify(OIDplusRAAuthInfo $authInfo, string $check_password): bool {
1090 daniel-mar 34
                $authKey = $authInfo->getAuthKey();
35
 
1102 daniel-mar 36
                if (vts_crypt_version($authKey) != '0') {
1097 daniel-mar 37
                        return vts_password_verify($check_password, $authKey);
1090 daniel-mar 38
                } else {
39
                        return false;
40
                }
41
        }
42
 
1116 daniel-mar 43
        /**
44
         * @param string $password
45
         * @return OIDplusRAAuthInfo
46
         * @throws OIDplusException
47
         */
48
        public function generate(string $password): OIDplusRAAuthInfo {
1107 daniel-mar 49
                $calc_authkey = vts_password_hash($password, PASSWORD_VTS_MCF1, array(
50
                        'algo' => 'sha3-512', // we can safely use it, because we have a pure-PHP implementation shipped with OIDplus
51
                        'mode' => 'hmac'
52
                ));
1090 daniel-mar 53
                return new OIDplusRAAuthInfo($calc_authkey);
54
        }
55
 
1116 daniel-mar 56
        /**
57
         * @param string $reason
58
         * @return bool
59
         */
60
        public function availableForHash(string &$reason): bool {
1107 daniel-mar 61
                return function_exists('vts_password_hash');
1090 daniel-mar 62
        }
63
 
1116 daniel-mar 64
        /**
65
         * @param string $reason
66
         * @return bool
67
         */
68
        public function availableForVerify(string &$reason): bool {
1099 daniel-mar 69
                return function_exists('vts_password_verify');
70
        }
71
 
1090 daniel-mar 72
}