157 lines
3.7 KiB
PHP
157 lines
3.7 KiB
PHP
<?php namespace Models\OAuth2;
|
|
/**
|
|
* Copyright 2016 OpenStack Foundation
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
**/
|
|
use jwk\IJWK;
|
|
use jwk\impl\RSAJWKFactory;
|
|
use jwk\impl\RSAJWKPEMPrivateKeySpecification;
|
|
use OAuth2\Models\IServerPrivateKey;
|
|
use DateTime;
|
|
use phpseclib\Crypt\RSA;
|
|
use Illuminate\Support\Facades\Crypt;
|
|
/**
|
|
* Class ServerPrivateKey
|
|
* @package Models\OAuth2
|
|
*/
|
|
final class ServerPrivateKey extends AsymmetricKey implements IServerPrivateKey
|
|
{
|
|
/**
|
|
* @param array $attributes
|
|
*/
|
|
public function __construct(array $attributes = array())
|
|
{
|
|
parent::__construct($attributes);
|
|
}
|
|
|
|
/**
|
|
* @param string $value
|
|
* @return String
|
|
*/
|
|
private function encrypt($value)
|
|
{
|
|
return base64_encode(Crypt::encrypt($value));
|
|
}
|
|
|
|
/**
|
|
* @param string $value
|
|
* @return String
|
|
*/
|
|
private function decrypt($value)
|
|
{
|
|
$value = base64_decode($value);
|
|
return Crypt::decrypt($value);
|
|
}
|
|
|
|
|
|
public function getPemContentAttribute()
|
|
{
|
|
return $this->decrypt($this->attributes['pem_content']);
|
|
}
|
|
|
|
public function setPemContentAttribute($value)
|
|
{
|
|
|
|
$this->attributes['pem_content'] = $this->encrypt($value);
|
|
}
|
|
|
|
public function getPasswordAttribute()
|
|
{
|
|
return $this->decrypt($this->attributes['password']);
|
|
}
|
|
|
|
public function setPasswordAttribute($value)
|
|
{
|
|
$this->attributes['password'] = $this->encrypt($value);
|
|
}
|
|
|
|
/**
|
|
* @return string
|
|
*/
|
|
public function getPassword()
|
|
{
|
|
return $this->password;
|
|
}
|
|
|
|
/**
|
|
* @param string $kid
|
|
* @param DateTime $valid_from
|
|
* @param DateTime $valid_to
|
|
* @param string $type
|
|
* @param string $use
|
|
* @param bool $active
|
|
* @param string $pem_content
|
|
* @param null|string $password
|
|
* @return IServerPrivateKey
|
|
*/
|
|
static function build
|
|
(
|
|
$kid,
|
|
DateTime $valid_from,
|
|
DateTime $valid_to,
|
|
$type,
|
|
$use,
|
|
$alg,
|
|
$active,
|
|
$pem_content,
|
|
$password = null
|
|
)
|
|
{
|
|
$key = new self;
|
|
$key->kid = $kid;
|
|
$key->valid_from = $valid_from;
|
|
$key->valid_to = $valid_to;
|
|
$key->type = $type;
|
|
$key->usage = $use;
|
|
$key->active = $active;
|
|
$key->alg = $alg;
|
|
$key->pem_content = $pem_content;
|
|
$key->password = $password;
|
|
|
|
return $key;
|
|
}
|
|
|
|
public function getPublicKeyPEM()
|
|
{
|
|
$private_key_pem = $this->pem_content;
|
|
$rsa = new RSA();
|
|
|
|
if(!empty($this->password)){
|
|
$rsa->setPassword($this->password);
|
|
}
|
|
|
|
$rsa->loadKey($private_key_pem);
|
|
return $rsa->getPublicKey();
|
|
}
|
|
|
|
/**
|
|
* @return IJWK
|
|
*/
|
|
public function toJWK()
|
|
{
|
|
//load server private key.
|
|
$jwk = RSAJWKFactory::build
|
|
(
|
|
new RSAJWKPEMPrivateKeySpecification
|
|
(
|
|
$this->pem_content,
|
|
$this->password,
|
|
$this->alg
|
|
)
|
|
);
|
|
|
|
$jwk->setId($this->kid);
|
|
$jwk->setType($this->type);
|
|
$jwk->setKeyUse($this->usage);
|
|
|
|
return $jwk;
|
|
}
|
|
} |