Home Explore Help
Register Sign In
blallo
/
tt-rss
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 310c18e6bb
Branches Tags
tt-rss
/
vendor
/
OTPHP
/
TOTP.php

TOTP.php 3.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. <?php
    2. 

  2. /*
    3. 

  3.  * Copyright (c) 2011 Le Lag 
    4. 

  4.  * Permission is hereby granted, free of charge, to any person obtaining a copy
    5. 

  5.  * of this software and associated documentation files (the "Software"), to deal
    6. 

  6.  * in the Software without restriction, including without limitation the rights
    7. 

  7.  * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
    8. 

  8.  * copies of the Software, and to permit persons to whom the Software is
    9. 

  9.  * furnished to do so, subject to the following conditions:
    10. 

  10.  *
    11. 

  11.  * The above copyright notice and this permission notice shall be included in
    12. 

  12.  * all copies or substantial portions of the Software.
    13. 

  13. 

  14.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    15. 

  15.  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    16. 

  16.  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    17. 

  17.  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    18. 

  18.  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
    19. 

  19.  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
    20. 

  20.  * THE SOFTWARE.
    21. 

  21.  */
    22. 

  22. 

  23. namespace OTPHP {
    24. 

  24.   /**
    25. 

  25.    * TOTP - One time password generator 
    26. 

  26.    * 
    27. 

  27.    * The TOTP class allow for the generation 
    28. 

  28.    * and verification of one-time password using 
    29. 

  29.    * the TOTP specified algorithm.
    30. 

  30.    *
    31. 

  31.    * This class is meant to be compatible with 
    32. 

  32.    * Google Authenticator
    33. 

  33.    *
    34. 

  34.    * This class was originally ported from the rotp
    35. 

  35.    * ruby library available at https://github.com/mdp/rotp
    36. 

  36.    */
    37. 

  37.   class TOTP extends OTP {
    38. 

  38.     /**
    39. 

  39.      * The interval in seconds for a one-time password timeframe
    40. 

  40.      * Defaults to 30
    41. 

  41.      * @var integer
    42. 

  42.      */
    43. 

  43.     public $interval;
    44. 

  44. 

  45.     public function __construct($s, $opt = Array()) {
    46. 

  46.       $this->interval = isset($opt['interval']) ? $opt['interval'] : 30;
    47. 

  47.       parent::__construct($s, $opt);
    48. 

  48.     }
    49. 

  49. 

  50.     /**
    51. 

  51.      *  Get the password for a specific timestamp value 
    52. 

  52.      *
    53. 

  53.      *  @param integer $timestamp the timestamp which is timecoded and 
    54. 

  54.      *  used to seed the hmac hash function.
    55. 

  55.      *  @return integer the One Time Password
    56. 

  56.      */
    57. 

  57.     public function at($timestamp) {
    58. 

  58.       return $this->generateOTP($this->timecode($timestamp));
    59. 

  59.     }
    60. 

  60. 

  61.     /**
    62. 

  62.      *  Get the password for the current timestamp value 
    63. 

  63.      *
    64. 

  64.      *  @return integer the current One Time Password
    65. 

  65.      */
    66. 

  66.     public function now() {
    67. 

  67.       return $this->generateOTP($this->timecode(time()));
    68. 

  68.     }
    69. 

  69. 

  70.     /**
    71. 

  71.      * Verify if a password is valid for a specific counter value
    72. 

  72.      *
    73. 

  73.      * @param integer $otp the one-time password 
    74. 

  74.      * @param integer $timestamp the timestamp for the a given time, defaults to current time.
    75. 

  75.      * @return  bool true if the counter is valid, false otherwise
    76. 

  76.      */
    77. 

  77.     public function verify($otp, $timestamp = null) {
    78. 

  78.       if($timestamp === null)
    79. 

  79.         $timestamp = time();
    80. 

  80.       return ($otp == $this->at($timestamp));
    81. 

  81.     }
    82. 

  82. 

  83.     /**
    84. 

  84.      * Returns the uri for a specific secret for totp method.
    85. 

  85.      * Can be encoded as a image for simple configuration in 
    86. 

  86.      * Google Authenticator.
    87. 

  87.      *
    88. 

  88.      * @param string $name the name of the account / profile
    89. 

  89.      * @return string the uri for the hmac secret
    90. 

  90.      */
    91. 

  91.     public function provisioning_uri($name) {
    92. 

  92.       return "otpauth://totp/".urlencode($name)."?secret={$this->secret}";
    93. 

  93.     }
    94. 

  94. 

  95.     /**
    96. 

  96.      * Transform a timestamp in a counter based on specified internal
    97. 

  97.      *
    98. 

  98.      * @param integer $timestamp
    99. 

  99.      * @return integer the timecode
    100. 

  100.      */
    101. 

  101.     protected function timecode($timestamp) {
    102. 

  102.       return (int)( (((int)$timestamp * 1000) / ($this->interval * 1000)));
    103. 

  103.     }
    104. 

  104.   }
    105. 

  105. 

  106. }
    107.