search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
www-apps/gc-fallout - updates
[anomen-overlay.git] / www-apps / gc-fallout / dev / token.php
blob4df75a4354fb4e52bcfe5246b83f188b780966e6
1 <?php
2
3 require_once('phpseclib/AES.php');
4
5 define('SEED_LENGTH', 2);
6
7 function base64_url_encode($input) {
8 return strtr(base64_encode($input), '+', '_');
9 }
10
11 function base64_url_decode($input) {
12 return base64_decode(strtr($input, '_', '+'));
13 }
14
15 function aes_encrypt($pass, $plaintext)
16 {
17 $aes = new Crypt_AES(CRYPT_AES_MODE_CTR);
18
19 $size = 32;
20 $i = 'a';
21 while (strlen($pass) < $size) {
22 $pass .= $i;
23 $i++;
24 }
25 $aes->setKey($pass);
26
27 return $aes->encrypt($plaintext);
28 }
29
30 function aes_decrypt($pass, $cipher)
31 {
32 $aes = new Crypt_AES(CRYPT_AES_MODE_CTR);
33
34 $size = 32;
35 $i = 'a';
36 while (strlen($pass) < $size) {
37 $pass .= $i;
38 $i++;
39 }
40 $aes->setKey($pass);
41
42 return $aes->decrypt($cipher);
43 }
44
45 function getToken($U)
46 {
47 $perkyStr = implode('!',$U['perky']);
48 $seed = str_pad('', SEED_LENGTH, 'x');
49 $plain = "$seed!${U['login']}!${U['karma']}!${U['penize']}!${U['jidlo']}!${U['skore']}!$perkyStr";
50 while (strlen($plain) % 3 != 0) { // pad to base64 block
51 $plain .= ' ';
52 }
53 $sha = sha1(PASSWORD . $plain, true);
54 for ($i = 0; $i < SEED_LENGTH; $i++) {
55 $plain{$i} = $sha{$i};
56 }
57 echo " XXX $plain XXX";
58
59 $token = aes_encrypt(PASSWORD, $plain);
60 $token_b64 = base64_url_encode($token);
61 return $token_b64;
62 }
63
64 function decodeToken($token)
65 {
66 $U = array();
67 $token_raw = base64_url_decode($token);
68 $token_dec = aes_decrypt(PASSWORD, $token_raw);
69 $sep = $token_dec{SEED_LENGTH};
70
71 $token_check = $token_dec;
72 for ($i = 0; $i < SEED_LENGTH; $i++) {
73 $token_check{$i} = 'x';
74 }
75 header('X-Token: '.$token_check );
76 $sha = sha1(PASSWORD . $token_check, true);
77
78 if (substr($token_dec,0,SEED_LENGTH) != substr($sha,0,SEED_LENGTH)) {
79 // error
80 header('X-Error: sha1fail');
81 readfile('img/no.png');
82 die;
83 }
84 header('X-Token: ' . $token_check);
85
86 $token_list = explode($sep, trim($token_check));
87 array_shift($token_list); // = xx
88 $U['login'] = array_shift($token_list);
89 $U['karma'] = array_shift($token_list);
90 $U['penize'] = array_shift($token_list);
91 $U['jidlo'] = array_shift($token_list);
92 $U['skore'] = array_shift($token_list);
93
94 $U['perky'] = $token_list;
95
96 return $U;
97 }
anomen's personal gentoo overlay