1
0
mirror of https://github.com/Yubico/yubikey-val.git synced 2025-02-01 01:52:18 +01:00

In protocol versions less than 2.0, nonce needs to added by server. This must be done after signature is computed.

This commit is contained in:
Olov Danielson 2010-01-19 12:45:31 +00:00
parent 6cdfa203bd
commit 9bc6b90e45

View File

@ -27,6 +27,8 @@ if (preg_match("/\/wsapi\/([0-9]+)\.([0-9]+)\//", $_SERVER['REQUEST_URI'], $out)
$protocol_version=1.0;
}
$myLog->log(LOG_INFO, "found protocol version " . $protocol_version);
/* Extract values from HTTP request
*/
$h = getHttpVal('h', '');
@ -52,15 +54,6 @@ if ($protocol_version>=2.0) {
}
}
if ($protocol_version<2.0) {
/* We need to create a nonce manually here */
$nonce = md5(uniqid(rand()));
$myLog->log(LOG_INFO, 'protocol version below 2.0. Created nonce ' . $nonce);
}
else
{
$myLog->log(LOG_INFO, "found protocol version " . $protocol_version);
}
/* Sanity check HTTP parameters
@ -142,6 +135,14 @@ if ($h != '') {
}
}
/* We need to add necessary parameters not available at earlier protocols after signature is computed.
*/
if ($protocol_version<2.0) {
/* We need to create a nonce manually here */
$nonce = md5(uniqid(rand()));
$myLog->log(LOG_INFO, 'protocol version below 2.0. Created nonce ' . $nonce);
}
//// Sanity check OTP
//
if ($otp == '') {