Главная Обзор Помощь
Вход
laoma
/
admin_api
1
0
Ответвить 1
Файлы Задачи 0 Запросы на слияние 0 Вики
Ветка: master
Ветки Метки
admin_api
/
app
/
Services
/
GoogleAuthenticatorService.php

GoogleAuthenticatorService.php 2.7 KB
Постоянная ссылка История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293 
  1. <?php
    2. 

  2. 

  3. namespace App\Services;
    4. 

  4. 

  5. class GoogleAuthenticatorService
    6. 

  6. {
    7. 

  7.     const BASE32_ALPHABET = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ234567';
    8. 

  8. 

  9.     public function generateSecret($length = 32)
    10. 

  10.     {
    11. 

  11.         $alphabet = self::BASE32_ALPHABET;
    12. 

  12.         $max = strlen($alphabet) - 1;
    13. 

  13.         $secret = '';
    14. 

  14.         for ($i = 0; $i < $length; $i++) {
    15. 

  15.             $secret .= $alphabet[random_int(0, $max)];
    16. 

  16.         }
    17. 

  17.         return $secret;
    18. 

  18.     }
    19. 

  19. 

  20.     public function verifyCode($secret, $code, $window = 1, $period = 30, $digits = 6)
    21. 

  21.     {
    22. 

  22.         $code = trim((string) $code);
    23. 

  23.         if ($code === '' || !preg_match('/^\d{6}$/', $code)) {
    24. 

  24.             return false;
    25. 

  25.         }
    26. 

  26. 

  27.         $timeSlice = (int) floor(time() / $period);
    28. 

  28.         for ($i = -$window; $i <= $window; $i++) {
    29. 

  29.             $calc = $this->getCode($secret, $timeSlice + $i, $digits);
    30. 

  30.             if (hash_equals($calc, $code)) {
    31. 

  31.                 return true;
    32. 

  32.             }
    33. 

  33.         }
    34. 

  34.         return false;
    35. 

  35.     }
    36. 

  36. 

  37.     public function getOtpAuthUrl($issuer, $account, $secret)
    38. 

  38.     {
    39. 

  39.         $label = rawurlencode($issuer . ':' . $account);
    40. 

  40.         $issuerParam = rawurlencode($issuer);
    41. 

  41.         return "otpauth://totp/{$label}?secret={$secret}&issuer={$issuerParam}&algorithm=SHA1&digits=6&period=30";
    42. 

  42.     }
    43. 

  43. 

  44.     public function getQrCodeUrl($otpAuthUrl, $size = 200)
    45. 

  45.     {
    46. 

  46.         $encoded = rawurlencode($otpAuthUrl);
    47. 

  47.         return "https://api.qrserver.com/v1/create-qr-code/?size={$size}x{$size}&data={$encoded}";
    48. 

  48.     }
    49. 

  49. 

  50.     protected function getCode($secret, $timeSlice, $digits)
    51. 

  51.     {
    52. 

  52.         $secretKey = $this->base32Decode($secret);
    53. 

  53.         if ($secretKey === '') {
    54. 

  54.             return '';
    55. 

  55.         }
    56. 

  56. 

  57.         $time = pack('N*', 0) . pack('N*', $timeSlice);
    58. 

  58.         $hash = hash_hmac('sha1', $time, $secretKey, true);
    59. 

  59.         $offset = ord(substr($hash, -1)) & 0x0F;
    60. 

  60.         $truncatedHash = substr($hash, $offset, 4);
    61. 

  61.         $value = unpack('N', $truncatedHash)[1] & 0x7FFFFFFF;
    62. 

  62.         $modulo = pow(10, $digits);
    63. 

  63.         return str_pad((string) ($value % $modulo), $digits, '0', STR_PAD_LEFT);
    64. 

  64.     }
    65. 

  65. 

  66.     protected function base32Decode($secret)
    67. 

  67.     {
    68. 

  68.         $secret = strtoupper($secret);
    69. 

  69.         $secret = preg_replace('/[^A-Z2-7]/', '', $secret);
    70. 

  70.         if ($secret === '') {
    71. 

  71.             return '';
    72. 

  72.         }
    73. 

  73. 

  74.         $alphabet = array_flip(str_split(self::BASE32_ALPHABET));
    75. 

  75.         $binary = '';
    76. 

  76.         $buffer = 0;
    77. 

  77.         $bitsLeft = 0;
    78. 

  78. 

  79.         foreach (str_split($secret) as $char) {
    80. 

  80.             if (!isset($alphabet[$char])) {
    81. 

  81.                 continue;
    82. 

  82.             }
    83. 

  83.             $buffer = ($buffer << 5) | $alphabet[$char];
    84. 

  84.             $bitsLeft += 5;
    85. 

  85.             while ($bitsLeft >= 8) {
    86. 

  86.                 $bitsLeft -= 8;
    87. 

  87.                 $binary .= chr(($buffer >> $bitsLeft) & 0xFF);
    88. 

  88.             }
    89. 

  89.         }
    90. 

  90. 

  91.         return $binary;
    92. 

  92.     }
    93. 

  93. }
    94.