首页 发现 帮助
注册 登录
wangdakun
/
contrast_ai
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
分支: master
分支列表 标签列表
contrast_ai
/
framework
/
library
/
cosv4.2
/
qcloudcos
/
auth.php

auth.php 3.5 KB
永久链接 文件历史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Signature create related functions for authenticating with cos system.
    4. 

  4.  */
    5. 

  5. 

  6. namespace qcloudcos;
    7. 

  7. 

  8. /**
    9. 

  9.  * Auth class for creating reusable or nonreusable signature.
    10. 

  10.  */
    11. 

  11. class Auth {
    12. 

  12.     // Secret id or secret key is not valid.
    13. 

  13.     const AUTH_SECRET_ID_KEY_ERROR = -1;
    14. 

  14. 

  15.     /**
    16. 

  16.      * Create reusable signature for listDirectory in $bucket or uploadFile into $bucket.
    17. 

  17.      * If $filepath is not null, this signature will be binded with this $filepath.
    18. 

  18.      * This signature will expire at $expiration timestamp.
    19. 

  19.      * Return the signature on success.
    20. 

  20.      * Return error code if parameter is not valid.
    21. 

  21.      */
    22. 

  22.     public static function createReusableSignature($expiration, $bucket, $filepath = null) {
    23. 

  23. 		global $_W;
    24. 

  24. 		$appId = !empty($_W['setting']['remote']['cos']['appid']) ?$_W['setting']['remote']['cos']['appid']: Conf::APP_ID;
    25. 

  25. 		$secretId = !empty($_W['setting']['remote']['cos']['secretid']) ? $_W['setting']['remote']['cos']['secretid'] : Conf::SECRET_ID;
    26. 

  26. 		$secretKey = !empty($_W['setting']['remote']['cos']['secretkey']) ? $_W['setting']['remote']['cos']['secretkey'] : Conf::SECRET_KEY;
    27. 

  27. 

  28.         if (empty($appId) || empty($secretId) || empty($secretKey)) {
    29. 

  29.             return self::AUTH_SECRET_ID_KEY_ERROR;
    30. 

  30.         }
    31. 

  31. 

  32.         if (empty($filepath)) {
    33. 

  33.             return self::createSignature($appId, $secretId, $secretKey, $expiration, $bucket, null);
    34. 

  34.         } else {
    35. 

  35.             if (preg_match('/^\//', $filepath) == 0) {
    36. 

  36.                 $filepath = '/' . $filepath;
    37. 

  37.             }
    38. 

  38. 

  39.             return self::createSignature($appId, $secretId, $secretKey, $expiration, $bucket, $filepath);
    40. 

  40.         }
    41. 

  41.     }
    42. 

  42. 

  43.     /**
    44. 

  44.      * Create nonreusable signature for delete $filepath in $bucket.
    45. 

  45.      * This signature will expire after single usage.
    46. 

  46.      * Return the signature on success.
    47. 

  47.      * Return error code if parameter is not valid.
    48. 

  48.      */
    49. 

  49.     public static function createNonreusableSignature($bucket, $filepath) {
    50. 

  50. 		global $_W;
    51. 

  51. 		$appId = !empty($_W['setting']['remote']['cos']['appid']) ? $_W['setting']['remote']['cos']['appid'] : Conf::APP_ID;
    52. 

  52. 		$secretId = !empty($_W['setting']['remote']['cos']['secretid']) ? $_W['setting']['remote']['cos']['secretid'] : Conf::SECRET_ID;
    53. 

  53. 		$secretKey = !empty($_W['setting']['remote']['cos']['secretkey']) ? $_W['setting']['remote']['cos']['secretkey'] : Conf::SECRET_KEY;
    54. 

  54. 

  55.         if (empty($appId) || empty($secretId) || empty($secretKey)) {
    56. 

  56.             return self::AUTH_SECRET_ID_KEY_ERROR;
    57. 

  57.         }
    58. 

  58. 

  59.         if (preg_match('/^\//', $filepath) == 0) {
    60. 

  60.             $filepath = '/' . $filepath;
    61. 

  61.         }
    62. 

  62.         $fileId = '/' . $appId . '/' . $bucket . $filepath;
    63. 

  63. 

  64.         return self::createSignature($appId, $secretId, $secretKey, 0, $bucket, $fileId);
    65. 

  65.     }
    66. 

  66. 

  67.     /**
    68. 

  68.      * A helper function for creating signature.
    69. 

  69.      * Return the signature on success.
    70. 

  70.      * Return error code if parameter is not valid.
    71. 

  71.      */
    72. 

  72.     private static function createSignature(
    73. 

  73.             $appId, $secretId, $secretKey, $expiration, $bucket, $fileId) {
    74. 

  74.         if (empty($secretId) || empty($secretKey)) {
    75. 

  75.             return self::AUTH_SECRET_ID_KEY_ERROR;
    76. 

  76.         }
    77. 

  77. 

  78.         $now = time();
    79. 

  79.         $random = rand();
    80. 

  80.         $plainText = "a=$appId&k=$secretId&e=$expiration&t=$now&r=$random&f=$fileId&b=$bucket";
    81. 

  81.         $bin = hash_hmac('SHA1', $plainText, $secretKey, true);
    82. 

  82.         $bin = $bin.$plainText;
    83. 

  83. 

  84.         $signature = base64_encode($bin);
    85. 

  85. 

  86.         return $signature;
    87. 

  87.     }
    88. 

  88. }
    89.