Add code challenge verifiers

2024-12-22 13:09:44 +05:30 · 2018-09-17 12:48:32 +01:00 · 2018-09-17 12:48:32 +01:00 · 970df8f34b
commit 970df8f34b
parent 6a1645aebc
3 changed files with 105 additions and 0 deletions
--- a/src/CodeChallengeVerifiers/CodeChallengeVerifierInterface.php
+++ b/src/CodeChallengeVerifiers/CodeChallengeVerifierInterface.php
@ -0,0 +1,30 @@
 <?php
 /**
 * @author      Lukáš Unger <lookymsc@gmail.com>
 * @copyright   Copyright (c) Lukáš Unger
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */
 namespace League\OAuth2\Server\CodeChallengeVerifiers;
 interface CodeChallengeVerifierInterface
 {
    /**
     * Return code challenge method.
     *
     * @return string
     */
    public function getMethod();
    /**
     * Verify the code challenge.
     *
     * @param string $codeVerifier
     * @param string $codeChallenge
     *
     * @return bool
     */
    public function verifyCodeChallenge($codeVerifier, $codeChallenge);
 }
--- a/src/CodeChallengeVerifiers/PlainVerifier.php
+++ b/src/CodeChallengeVerifiers/PlainVerifier.php
@ -0,0 +1,36 @@
 <?php
 /**
 * @author      Lukáš Unger <lookymsc@gmail.com>
 * @copyright   Copyright (c) Lukáš Unger
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */
 namespace League\OAuth2\Server\CodeChallengeVerifiers;
 class PlainVerifier implements CodeChallengeVerifierInterface
 {
    /**
     * Return code challenge method.
     *
     * @return string
     */
    public function getMethod()
    {
        return 'plain';
    }
    /**
     * Verify the code challenge.
     *
     * @param string $codeVerifier
     * @param string $codeChallenge
     *
     * @return bool
     */
    public function verifyCodeChallenge($codeVerifier, $codeChallenge)
    {
        return hash_equals($codeVerifier, $codeChallenge);
    }
 }
--- a/src/CodeChallengeVerifiers/S256Verifier.php
+++ b/src/CodeChallengeVerifiers/S256Verifier.php
@ -0,0 +1,39 @@
 <?php
 /**
 * @author      Lukáš Unger <lookymsc@gmail.com>
 * @copyright   Copyright (c) Lukáš Unger
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */
 namespace League\OAuth2\Server\CodeChallengeVerifiers;
 class S256Verifier implements CodeChallengeVerifierInterface
 {
    /**
     * Return code challenge method.
     *
     * @return string
     */
    public function getMethod()
    {
        return 'S256';
    }
    /**
     * Verify the code challenge.
     *
     * @param string $codeVerifier
     * @param string $codeChallenge
     *
     * @return bool
     */
    public function verifyCodeChallenge($codeVerifier, $codeChallenge)
    {
        return hash_equals(
            strtr(rtrim(base64_encode(hash('sha256', $codeVerifier, true)), '='), '+/', '-_'),
            $codeChallenge
        );
    }
 }