$max) ? substr($s, 0, $max-3).'...' : $s; } function debug($msg, $exit = false) { global $trace; if ($trace) { if (is_array($msg)) { //print_r($msg); } else { echo '
Debug> ' . $msg;
}
echo "\n";
}
if ($exit) {
die('Exit
');
}
}
// Return eg. 2008-11-21T06:11:55Z0711
//
function getUTCTimeStamp() {
date_default_timezone_set('UTC');
$tiny = substr(microtime(false), 2, 3);
return date('Y-m-d\TH:i:s\Z0', time()) . $tiny;
}
// Sign a http query string in the array of key-value pairs
// return b64 encoded hmac hash
function sign($a, $apiKey, $debug=false) {
ksort($a);
$qs = '';
$n = count($a);
$i = 0;
foreach (array_keys($a) as $key) {
$qs .= trim($key).'='.trim($a[$key]);
if (++$i < $n) {
$qs .= '&';
}
}
// Generate the signature
// debug('API key: '.base64_encode($apiKey)); // API key of the client
debug('SIGN: '.$qs);
// the TRUE at the end states we want the raw value, not hexadecimal form
$hmac = hash_hmac('sha1', utf8_encode($qs), $apiKey, true);
$hmac = base64_encode($hmac);
if ($debug) {
debug('h='.$hmac);
}
return $hmac;
} // sign an array of query string
define('DEVICE_ID_LEN', 12);
function modhexToB64($modhex_str) {
$s = ModHex::Decode($modhex_str);
return base64_encode($s);
}
function b64ToModhex($b64_str) {
$s = base64_decode($b64_str);
return ModHex::Encode($s);
}
function b64ToHex($b64_str) {
$s = '';
$tid = base64_decode($b64_str);
$a = str_split($tid);
for ($i=0; $i < count($a); $i++) {
$s .= dechex(ord($a[$i]));
}
return $s;
}
// $devId: The first 12 chars from the OTP
function getAuthData($devId) {
$tokenId = modhexToB64($devId);
$stmt = 'SELECT id, client_id, secret, active, counter, '.
' sessionUse, low, high, accessed '.
' FROM yubikeys WHERE active AND tokenId='.mysql_quote($tokenId);
$r = query($stmt);
if (mysql_num_rows($r) > 0) {
$row = mysql_fetch_assoc($r);
mysql_free_result($r);
return $row;
}
return null;
} // End getAuthData
// $clientId: The decimal client identity
function getClientData($clientId) {
$stmt = 'SELECT secret, chk_sig, chk_owner, chk_time'.
' FROM clients WHERE active AND id='.mysql_quote($clientId);
$r = query($stmt);
if (mysql_num_rows($r) > 0) {
$row = mysql_fetch_assoc($r);
mysql_free_result($r);
return $row;
}
return null;
} // End getClientData
?>