ホーム エクスプローラ ヘルプ
登録 サインイン
lizhen
/
lizhi
1
0
フォーク 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: 4d68f024e9
ブランチ タグ
lizhi
/
addons
/
alioss
/
library
/
Auth.php

Auth.php 2.8 KB
履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. <?php
    2. 

  2. 

  3. namespace addons\alioss\library;
    4. 

  4. 

  5. use app\common\library\Upload;
    6. 

  6. 

  7. class Auth
    8. 

  8. {
    9. 

  9. 

  10.     public function __construct()
    11. 

  11.     {
    12. 

  12. 

  13.     }
    14. 

  14. 

  15.     public function params($name, $md5, $callback = true)
    16. 

  16.     {
    17. 

  17.         $config = get_addon_config('alioss');
    18. 

  18.         $callback_param = array(
    19. 

  19.             'callbackUrl'      => isset($config['notifyurl']) ? $config['notifyurl'] : '',
    20. 

  20.             'callbackBody'     => 'filename=${object}&size=${size}&mimeType=${mimeType}&height=${imageInfo.height}&width=${imageInfo.width}',
    21. 

  21.             'callbackBodyType' => "application/x-www-form-urlencoded"
    22. 

  22.         );
    23. 

  23. 

  24.         $base64_callback_body = base64_encode(json_encode($callback_param));
    25. 

  25. 

  26.         $now = time();
    27. 

  27.         $end = $now + $config['expire']; //设置该policy超时时间是10s. 即这个policy过了这个有效时间,将不能访问
    28. 

  28.         $expiration = $this->gmt_iso8601($end);
    29. 

  29. 

  30.         preg_match('/(\d+)(\w+)/', $config['maxsize'], $matches);
    31. 

  31.         $type = strtolower($matches[2]);
    32. 

  32.         $typeDict = ['b' => 0, 'k' => 1, 'kb' => 1, 'm' => 2, 'mb' => 2, 'gb' => 3, 'g' => 3];
    33. 

  33.         $size = (int)$config['maxsize'] * pow(1024, isset($typeDict[$type]) ? $typeDict[$type] : 0);
    34. 

  34. 

  35.         //最大文件大小.用户可以自己设置
    36. 

  36.         $condition = array(0 => 'content-length-range', 1 => 0, 2 => $size);
    37. 

  37.         $conditions[] = $condition;
    38. 

  38. 

  39.         //表示用户上传的数据,必须是以$dir开始, 不然上传会失败,这一步不是必须项,只是为了安全起见,防止用户通过policy上传到别人的目录
    40. 

  40.         //$start = array(0 => 'starts-with', 1 => '$key', 2 => $dir);
    41. 

  41.         //$conditions[] = $start;
    42. 

  42. 

  43.         $arr = array('expiration' => $expiration, 'conditions' => $conditions);
    44. 

  44. 

  45.         $policy = base64_encode(json_encode($arr));
    46. 

  46.         $signature = base64_encode(hash_hmac('sha1', $policy, $config['accessKeySecret'], true));
    47. 

  47. 

  48.         $key = (new Upload())->getSavekey($config['savekey'], $name, $md5);
    49. 

  49.         $key = ltrim($key, "/");
    50. 

  50. 

  51.         $response = array();
    52. 

  52.         $response['id'] = $config['accessKeyId'];
    53. 

  53.         $response['key'] = $key;
    54. 

  54.         $response['policy'] = $policy;
    55. 

  55.         $response['signature'] = $signature;
    56. 

  56.         $response['expire'] = $end;
    57. 

  57.         $response['callback'] = '';
    58. 

  58.         return $response;
    59. 

  59.     }
    60. 

  60. 

  61.     public function check($signature, $policy)
    62. 

  62.     {
    63. 

  63.         $config = get_addon_config('alioss');
    64. 

  64.         $sign = base64_encode(hash_hmac('sha1', $policy, $config['accessKeySecret'], true));
    65. 

  65.         return $signature == $sign;
    66. 

  66.     }
    67. 

  67. 

  68.     private function gmt_iso8601($time)
    69. 

  69.     {
    70. 

  70.         $dtStr = date("c", $time);
    71. 

  71.         $mydatetime = new \DateTime($dtStr);
    72. 

  72.         $expiration = $mydatetime->format(\DateTime::ISO8601);
    73. 

  73.         $pos = strpos($expiration, '+');
    74. 

  74.         $expiration = substr($expiration, 0, $pos);
    75. 

  75.         return $expiration . "Z";
    76. 

  76.     }
    77. 

  77. 

  78. }
    79.