Google Git
Sign in
apache / zetacomponents / 8a3abccc1555619451f50fdf30be5347a3a300f4 / . / Authentication / src / filters / openid / openid_file_store.php
blob: 717cd3476f934eca358ad879f90d866d15bb1e0c [file] [log] [blame]
<?php
/**
* File containing the ezcAuthenticationOpenidFileStore class.
*
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*
* @license http://www.apache.org/licenses/LICENSE-2.0 Apache License, Version 2.0
* @filesource
* @package Authentication
* @version //autogen//
*/
/**
* Class providing file storage for OpenID authentication.
*
* Example of use:
* <code>
* // create an OpenID options object
* $options = new ezcAuthenticationOpenidOptions();
* $options->mode = ezcAuthenticationOpenidFilter::MODE_SMART;
*
* // define a file store
* $options->store = new ezcAuthenticationOpenidFileStore( '/tmp/store' );
*
* // create an OpenID filter based on the options object
* $filter = new ezcAuthenticationOpenidFilter( $options );
* </code>
*
* @property string $path
* The path where the files will be kept. It must exist and it must
* be writable.
*
* @package Authentication
* @version //autogen//
*/
class ezcAuthenticationOpenidFileStore extends ezcAuthenticationOpenidStore
{
/**
* Holds the properties of this class.
*
* @var array(string=>mixed)
*/
private $properties = array();
/**
* Creates a new object of this class.
*
* @throws ezcBaseFileNotFoundException
* if $path does not exist
* @throws ezcBaseFilePermissionException
* if $path cannot be opened for reading and writing
* @param string $path The path where to save the nonces
* @param ezcAuthenticationOpenidFileStoreOptions $options Options for this class
*/
public function __construct( $path, ezcAuthenticationOpenidFileStoreOptions $options = null )
{
$this->path = $path;
$this->options = ( $options === null ) ? new ezcAuthenticationOpenidFileStoreOptions() : $options;
}
/**
* Sets the property $name to $value.
*
* @throws ezcBasePropertyNotFoundException
* if the property $name does not exist
* @throws ezcBaseValueException
* if $value is not correct for the property $name
* @throws ezcBaseFileNotFoundException
* if the $value file does not exist
* @throws ezcBaseFilePermissionException
* if the $value file cannot be opened for reading and writing
* @param string $name The name of the property to set
* @param mixed $value The new value of the property
* @ignore
*/
public function __set( $name, $value )
{
switch ( $name )
{
case 'path':
if ( !is_string( $value ) )
{
throw new ezcBaseValueException( $name, $value, 'string' );
}
if ( !is_dir( $value ) )
{
throw new ezcBaseFileNotFoundException( $value );
}
if ( !is_readable( $value ) )
{
throw new ezcBaseFilePermissionException( $value, ezcBaseFileException::READ );
}
if ( !is_writable( $value ) )
{
throw new ezcBaseFilePermissionException( $value, ezcBaseFileException::WRITE );
}
$this->properties[$name] = $value;
break;
default:
throw new ezcBasePropertyNotFoundException( $name );
}
}
/**
* Returns the value of the property $name.
*
* @throws ezcBasePropertyNotFoundException
* if the property $name does not exist
* @param string $name The name of the property for which to return the value
* @return mixed
* @ignore
*/
public function __get( $name )
{
switch ( $name )
{
case 'path':
return $this->properties[$name];
default:
throw new ezcBasePropertyNotFoundException( $name );
}
}
/**
* Returns true if the property $name is set, otherwise false.
*
* @param string $name The name of the property to test if it is set
* @return bool
* @ignore
*/
public function __isset( $name )
{
switch ( $name )
{
case 'path':
return isset( $this->properties[$name] );
default:
return false;
}
}
/**
* Stores the nonce in the store.
*
* Returns true if the nonce was stored successfully, and false otherwise.
*
* @throws ezcBaseFilePermissionException
* if the nonce cannot be written in the store
* @param string $nonce The nonce value to store
* @return bool
*/
public function storeNonce( $nonce )
{
$file = $this->path . DIRECTORY_SEPARATOR . $nonce;
// suppress warnings caused by fopen() if $file could not be opened
$fh = @fopen( $file, 'w' );
if ( $fh === false )
{
throw new ezcBaseFilePermissionException( $file, ezcBaseFileException::WRITE );
}
fclose( $fh );
return true;
}
/**
* Checks if the nonce exists and afterwards deletes it.
*
* Returns the timestamp of the nonce if it exists, and false otherwise.
*
* @param string $nonce The nonce value to check and delete
* @return bool|int
*/
public function useNonce( $nonce )
{
$file = $this->path . DIRECTORY_SEPARATOR . $nonce;
if ( !file_exists( $file ) )
{
return false;
}
$lastModified = filemtime( $file );
unlink( $file );
return $lastModified;
}
/**
* Stores an association in the store linked to the OpenID provider URL.
*
* Returns true if the association was stored successfully, and false
* otherwise.
*
* @throws ezcBaseFilePermissionException
* if the nonce cannot be written in the store
* @param string $url The URL of the OpenID provider
* @param ezcAuthenticationOpenidAssociation $association The association value to store
* @return bool
*/
public function storeAssociation( $url, $association )
{
$file = $this->path . DIRECTORY_SEPARATOR . $this->convertToFilename( $url );
// suppress warnings caused by fopen() if $file could not be opened
$fh = @fopen( $file, 'w' );
if ( $fh === false )
{
throw new ezcBaseFilePermissionException( $file, ezcBaseFileException::WRITE );
}
$data = serialize( $association );
fwrite( $fh, $data );
fclose( $fh );
return true;
}
/**
* Returns the unserialized association linked to the OpenID provider URL.
*
* Returns false if the association could not be retrieved or if it expired.
*
* @param string $url The URL of the OpenID provider
* @return ezcAuthenticationOpenidAssociation
*/
public function getAssociation( $url )
{
$file = $this->path . DIRECTORY_SEPARATOR . $this->convertToFilename( $url );
if ( !file_exists( $file ) )
{
return false;
}
$data = unserialize( file_get_contents( $file ) );
return $data;
}
/**
* Removes the association linked to the OpenID provider URL.
*
* Returns true if the association could be removed, and false otherwise.
*
* @param string $url The URL of the OpenID provider
* @return bool
*/
public function removeAssociation( $url )
{
$file = $this->path . DIRECTORY_SEPARATOR . $this->convertToFilename( $url );
if ( !file_exists( $file ) )
{
return false;
}
unlink( $file );
return true;
}
/**
* Creates a valid filename from the provided string.
*
* @param string $value A string which needs to be used as a valid filename
* @return string
*/
protected function convertToFilename( $value )
{
$result = base64_encode( $value );
$result = str_replace( '/', '_', $result );
$result = str_replace( '+', '-', $result );
return $result;
}
}
?>