diff options
| author | Mario <mario@mariovavti.com> | 2025-06-23 09:03:05 +0000 |
|---|---|---|
| committer | Mario <mario@mariovavti.com> | 2025-06-23 09:03:05 +0000 |
| commit | 579cf86335a3119cdf5df7269aef038c8e5b36c7 (patch) | |
| tree | bc0278d52e5fe09aa1fa72185b9cc3cb5189cc5f | |
| parent | fcf42eeae0373fda3c27be824e9405ab747724a9 (diff) | |
| download | volse-hubzilla-579cf86335a3119cdf5df7269aef038c8e5b36c7.tar.gz volse-hubzilla-579cf86335a3119cdf5df7269aef038c8e5b36c7.tar.bz2 volse-hubzilla-579cf86335a3119cdf5df7269aef038c8e5b36c7.zip | |
rfc9421 verify: parse more fields if applicable
| -rw-r--r-- | Zotlabs/Web/HTTPSig.php | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/Zotlabs/Web/HTTPSig.php b/Zotlabs/Web/HTTPSig.php index 391fa0950..ce56ae46b 100644 --- a/Zotlabs/Web/HTTPSig.php +++ b/Zotlabs/Web/HTTPSig.php @@ -118,15 +118,23 @@ class HTTPSig { return $result; } + $found = preg_match('/alg="(.*?)"/', $headers['signature-input'], $matches); + $alg = ($found) ? $matches[1] : null; + $keyInfo = self::get_key($key, $keytype, $keyId); $publicKey = $keyInfo['public_key']; $messageSigner = new HttpMessageSigner(); $messageSigner->setPublicKey($publicKey); - $messageSigner->setAlgorithm('rsa-sha256'); + $messageSigner->setAlgorithm($alg); $messageSigner->setKeyId($keyId); + $messageSigner->setNonce(preg_match('/nonce="(.*?)"/', $headers['signature-input'], $matches) ? $matches[1] : ''); + $messageSigner->setTag(preg_match('/tag="(.*?)"/', $headers['signature-input'], $matches) ? $matches[1] : ''); + $messageSigner->setCreated(preg_match('/created=([0-9]+)/', $headers['signature-input'], $matches) ? $matches[1] : ''); + $messageSigner->setExpires(preg_match('/expires=([0-9]+)/', $headers['signature-input'], $matches) ? $matches[1] : ''); + $verified = $messageSigner->verifyRequest(App::$request); logger('verified (RFC9421): ' . (($verified) ? 'true' : 'false'), LOGGER_DEBUG); |