탐색 도움말
가입하기 로그인
lizhen
/
yueke
1
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
트리: f2e7a412ea
브랜치 태그
yueke
/
vendor
/
symfony
/
mime
/
Crypto
/
SMimeSigner.php

SMimeSigner.php 2.6 KB
히스토리 Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Symfony package.
    5. 

  5.  *
    6. 

  6.  * (c) Fabien Potencier <fabien@symfony.com>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Symfony\Component\Mime\Crypto;
    13. 

  13. 

  14. use Symfony\Component\Mime\Exception\RuntimeException;
    15. 

  15. use Symfony\Component\Mime\Message;
    16. 

  16. 

  17. /**
    18. 

  18.  * @author Sebastiaan Stok <s.stok@rollerscapes.net>
    19. 

  19.  */
    20. 

  20. final class SMimeSigner extends SMime
    21. 

  21. {
    22. 

  22.     private $signCertificate;
    23. 

  23.     private $signPrivateKey;
    24. 

  24.     private $signOptions;
    25. 

  25.     private $extraCerts;
    26. 

  26. 

  27.     /**
    28. 

  28.      * @param string      $certificate          The path of the file containing the signing certificate (in PEM format)
    29. 

  29.      * @param string      $privateKey           The path of the file containing the private key (in PEM format)
    30. 

  30.      * @param string|null $privateKeyPassphrase A passphrase of the private key (if any)
    31. 

  31.      * @param string|null $extraCerts           The path of the file containing intermediate certificates (in PEM format) needed by the signing certificate
    32. 

  32.      * @param int|null    $signOptions          Bitwise operator options for openssl_pkcs7_sign() (@see https://secure.php.net/manual/en/openssl.pkcs7.flags.php)
    33. 

  33.      */
    34. 

  34.     public function __construct(string $certificate, string $privateKey, string $privateKeyPassphrase = null, string $extraCerts = null, int $signOptions = null)
    35. 

  35.     {
    36. 

  36.         if (!\extension_loaded('openssl')) {
    37. 

  37.             throw new \LogicException('PHP extension "openssl" is required to use SMime.');
    38. 

  38.         }
    39. 

  39. 

  40.         $this->signCertificate = $this->normalizeFilePath($certificate);
    41. 

  41. 

  42.         if (null !== $privateKeyPassphrase) {
    43. 

  43.             $this->signPrivateKey = [$this->normalizeFilePath($privateKey), $privateKeyPassphrase];
    44. 

  44.         } else {
    45. 

  45.             $this->signPrivateKey = $this->normalizeFilePath($privateKey);
    46. 

  46.         }
    47. 

  47. 

  48.         $this->signOptions = $signOptions ?? \PKCS7_DETACHED;
    49. 

  49.         $this->extraCerts = $extraCerts ? realpath($extraCerts) : null;
    50. 

  50.     }
    51. 

  51. 

  52.     public function sign(Message $message): Message
    53. 

  53.     {
    54. 

  54.         $bufferFile = tmpfile();
    55. 

  55.         $outputFile = tmpfile();
    56. 

  56. 

  57.         $this->iteratorToFile($message->getBody()->toIterable(), $bufferFile);
    58. 

  58. 

  59.         if (!@openssl_pkcs7_sign(stream_get_meta_data($bufferFile)['uri'], stream_get_meta_data($outputFile)['uri'], $this->signCertificate, $this->signPrivateKey, [], $this->signOptions, $this->extraCerts)) {
    60. 

  60.             throw new RuntimeException(sprintf('Failed to sign S/Mime message. Error: "%s".', openssl_error_string()));
    61. 

  61.         }
    62. 

  62. 

  63.         return new Message($message->getHeaders(), $this->convertMessageToSMimePart($outputFile, 'multipart', 'signed'));
    64. 

  64.     }
    65. 

  65. }
    66.