-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathSignedRequest.php
More file actions
51 lines (38 loc) · 1.13 KB
/
Copy pathSignedRequest.php
File metadata and controls
51 lines (38 loc) · 1.13 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
<?php
class SignedRequest
{
public static function parse($secret, $request)
{
if (!strpos($request, '.')) {
throw new Exception('Invalid request.');
}
list($signature, $payload) = explode('.', $request, 2);
$sig = static::base64UrlDecode($signature);
$data = json_decode(static::base64UrlDecode($payload), true);
$expectedSig = static::createSignature($payload, $secret);
if ($sig !== $expectedSig) {
return null;
}
return $data;
}
public static function sign($secret, $body)
{
$data = static::base64UrlEncode(json_encode($body));
$signature = static::createSignature($data, $secret);
return sprintf('%s.%s', static::base64UrlEncode($signature), $data);
}
public static function isAuthentic($secret, $request)
{
return static::parse($secret, $request) !== null;
}
protected static function createSignature($data, $secret)
{
return hash_hmac('sha256', $data, $secret, false);
}
protected static function base64UrlDecode($input) {
return base64_decode(strtr($input, '-_', '+/'));
}
protected static function base64UrlEncode($input) {
return base64_encode(strtr($input, '+/', '-_'));
}
}