mirror of
https://github.com/pixelfed/pixelfed.git
synced 2024-11-15 02:54:30 +00:00
120 lines
2.7 KiB
PHP
120 lines
2.7 KiB
PHP
|
<?php
|
||
|
|
||
|
namespace App\Util\HttpSignatures;
|
||
|
|
||
|
class Context
|
||
|
{
|
||
|
/** @var array */
|
||
|
private $headers;
|
||
|
|
||
|
/** @var KeyStoreInterface */
|
||
|
private $keyStore;
|
||
|
|
||
|
/** @var array */
|
||
|
private $keys;
|
||
|
|
||
|
/** @var string */
|
||
|
private $signingKeyId;
|
||
|
|
||
|
/** @var AlgorithmInterface */
|
||
|
private $algorithm;
|
||
|
|
||
|
/**
|
||
|
* @param array $args
|
||
|
*
|
||
|
* @throws Exception
|
||
|
*/
|
||
|
public function __construct($args)
|
||
|
{
|
||
|
if (isset($args['keys']) && isset($args['keyStore'])) {
|
||
|
throw new Exception(__CLASS__.' accepts keys or keyStore but not both');
|
||
|
} elseif (isset($args['keys'])) {
|
||
|
// array of keyId => keySecret
|
||
|
$this->keys = $args['keys'];
|
||
|
} elseif (isset($args['keyStore'])) {
|
||
|
$this->setKeyStore($args['keyStore']);
|
||
|
}
|
||
|
|
||
|
// algorithm for signing; not necessary for verifying.
|
||
|
if (isset($args['algorithm'])) {
|
||
|
$this->algorithm = Algorithm::create($args['algorithm']);
|
||
|
}
|
||
|
// headers list for signing; not necessary for verifying.
|
||
|
if (isset($args['headers'])) {
|
||
|
$this->headers = $args['headers'];
|
||
|
}
|
||
|
|
||
|
// signingKeyId specifies the key used for signing messages.
|
||
|
if (isset($args['signingKeyId'])) {
|
||
|
$this->signingKeyId = $args['signingKeyId'];
|
||
|
} elseif (isset($args['keys']) && 1 === count($args['keys'])) {
|
||
|
list($this->signingKeyId) = array_keys($args['keys']); // first key
|
||
|
}
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* @return Signer
|
||
|
*
|
||
|
* @throws Exception
|
||
|
*/
|
||
|
public function signer()
|
||
|
{
|
||
|
return new Signer(
|
||
|
$this->signingKey(),
|
||
|
$this->algorithm,
|
||
|
$this->headerList()
|
||
|
);
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* @return Verifier
|
||
|
*/
|
||
|
public function verifier()
|
||
|
{
|
||
|
return new Verifier($this->keyStore());
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* @return Key
|
||
|
*
|
||
|
* @throws Exception
|
||
|
* @throws KeyStoreException
|
||
|
*/
|
||
|
private function signingKey()
|
||
|
{
|
||
|
if (isset($this->signingKeyId)) {
|
||
|
return $this->keyStore()->fetch($this->signingKeyId);
|
||
|
} else {
|
||
|
throw new Exception('no implicit or specified signing key');
|
||
|
}
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* @return HeaderList
|
||
|
*/
|
||
|
private function headerList()
|
||
|
{
|
||
|
return new HeaderList($this->headers);
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* @return KeyStore
|
||
|
*/
|
||
|
private function keyStore()
|
||
|
{
|
||
|
if (empty($this->keyStore)) {
|
||
|
$this->keyStore = new KeyStore($this->keys);
|
||
|
}
|
||
|
|
||
|
return $this->keyStore;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* @param KeyStoreInterface $keyStore
|
||
|
*/
|
||
|
private function setKeyStore(KeyStoreInterface $keyStore)
|
||
|
{
|
||
|
$this->keyStore = $keyStore;
|
||
|
}
|
||
|
}
|