1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
|
<?php
/**
* Zend Framework
*
* LICENSE
*
* This source file is subject to the new BSD license that is bundled
* with this package in the file LICENSE.txt.
* It is also available through the world-wide-web at this URL:
* http://framework.zend.com/license/new-bsd
* If you did not receive a copy of the license and are unable to
* obtain it through the world-wide-web, please send an email
* to license@zend.com so we can send you a copy immediately.
*
* @category Zend
* @package Zend_Service_Amazon
* @subpackage Authentication
* @copyright Copyright (c) 2005-2014 Zend Technologies USA Inc. (http://www.zend.com)
* @license http://framework.zend.com/license/new-bsd New BSD License
*/
/**
* @see Zend_Service_Amazon_Authentication
*/
require_once 'Zend/Service/Amazon/Authentication.php';
/**
* @see Zend_Crypt_Hmac
*/
require_once 'Zend/Crypt/Hmac.php';
/**
* @category Zend
* @package Zend_Service_Amazon
* @subpackage Authentication
* @copyright Copyright (c) 2005-2014 Zend Technologies USA Inc. (http://www.zend.com)
* @license http://framework.zend.com/license/new-bsd New BSD License
*/
class Zend_Service_Amazon_Authentication_V2 extends Zend_Service_Amazon_Authentication
{
/**
* Signature Version
*/
protected $_signatureVersion = '2';
/**
* Signature Encoding Method
*/
protected $_signatureMethod = 'HmacSHA256';
/**
* Type of http request
* @var string
*/
protected $_httpMethod = "POST";
/**
* Generate the required attributes for the signature
* @param string $url
* @param array $parameters
* @return string
*/
public function generateSignature($url, array &$parameters)
{
$parameters['AWSAccessKeyId'] = $this->_accessKey;
$parameters['SignatureVersion'] = $this->_signatureVersion;
$parameters['Version'] = $this->_apiVersion;
$parameters['SignatureMethod'] = $this->_signatureMethod;
if(!isset($parameters['Timestamp'])) {
$parameters['Timestamp'] = gmdate('Y-m-d\TH:i:s\Z', time()+10);
}
$data = $this->_signParameters($url, $parameters);
return $data;
}
/**
* Set http request type to POST or GET
* @param string $method
*/
public function setHttpMethod($method = "POST") {
$this->_httpMethod = strtoupper($method);
}
/**
* Get the current http request type
* @return string
*/
public function getHttpMethod()
{
return $this->_httpMethod;
}
/**
* Computes the RFC 2104-compliant HMAC signature for request parameters
*
* This implements the Amazon Web Services signature, as per the following
* specification:
*
* 1. Sort all request parameters (including <tt>SignatureVersion</tt> and
* excluding <tt>Signature</tt>, the value of which is being created),
* ignoring case.
*
* 2. Iterate over the sorted list and append the parameter name (in its
* original case) and then its value. Do not URL-encode the parameter
* values before constructing this string. Do not use any separator
* characters when appending strings.
*
* @param string $queue_url Queue URL
* @param array $parameters the parameters for which to get the signature.
*
* @return string the signed data.
*/
protected function _signParameters($url, array &$paramaters)
{
$data = $this->_httpMethod . "\n";
$data .= parse_url($url, PHP_URL_HOST) . "\n";
$data .= ('' == $path = parse_url($url, PHP_URL_PATH)) ? '/' : $path;
$data .= "\n";
uksort($paramaters, 'strcmp');
unset($paramaters['Signature']);
$arrData = array();
foreach($paramaters as $key => $value) {
$arrData[] = $key . '=' . str_replace('%7E', '~', rawurlencode($value));
}
$data .= implode('&', $arrData);
$hmac = Zend_Crypt_Hmac::compute($this->_secretKey, 'SHA256', $data, Zend_Crypt_Hmac::BINARY);
$paramaters['Signature'] = base64_encode($hmac);
return $data;
}
}
|
