yannstatic/static/2019/12/25/JsonWebToken(jwt).html

2429 lines
246 KiB
HTML
Raw Permalink Normal View History

2024-10-31 20:18:37 +01:00
<!DOCTYPE html><html lang="fr">
<head><meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>JsonWebToken(jwt) - YannStatic</title>
<meta name="description" content="JWT on PHP">
<link rel="canonical" href="https://static.rnmkcy.eu/2019/12/25/JsonWebToken(jwt).html"><link rel="alternate" type="application/rss+xml" title="YannStatic" href="/feed.xml">
<!-- - include head/favicon.html - -->
<link rel="shortcut icon" type="image/png" href="/assets/favicon/favicon.png"><link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.0.13/css/all.css" ><!-- start custom head snippets --><link rel="stylesheet" href="/assets/css/expand.css">
<!-- end custom head snippets --><script>(function() {
window.isArray = function(val) {
return Object.prototype.toString.call(val) === '[object Array]';
};
window.isString = function(val) {
return typeof val === 'string';
};
window.hasEvent = function(event) {
return 'on'.concat(event) in window.document;
};
window.isOverallScroller = function(node) {
return node === document.documentElement || node === document.body || node === window;
};
window.isFormElement = function(node) {
var tagName = node.tagName;
return tagName === 'INPUT' || tagName === 'SELECT' || tagName === 'TEXTAREA';
};
window.pageLoad = (function () {
var loaded = false, cbs = [];
window.addEventListener('load', function () {
var i;
loaded = true;
if (cbs.length > 0) {
for (i = 0; i < cbs.length; i++) {
cbs[i]();
}
}
});
return {
then: function(cb) {
cb && (loaded ? cb() : (cbs.push(cb)));
}
};
})();
})();
(function() {
window.throttle = function(func, wait) {
var args, result, thisArg, timeoutId, lastCalled = 0;
function trailingCall() {
lastCalled = new Date;
timeoutId = null;
result = func.apply(thisArg, args);
}
return function() {
var now = new Date,
remaining = wait - (now - lastCalled);
args = arguments;
thisArg = this;
if (remaining <= 0) {
clearTimeout(timeoutId);
timeoutId = null;
lastCalled = now;
result = func.apply(thisArg, args);
} else if (!timeoutId) {
timeoutId = setTimeout(trailingCall, remaining);
}
return result;
};
};
})();
(function() {
var Set = (function() {
var add = function(item) {
var i, data = this._data;
for (i = 0; i < data.length; i++) {
if (data[i] === item) {
return;
}
}
this.size ++;
data.push(item);
return data;
};
var Set = function(data) {
this.size = 0;
this._data = [];
var i;
if (data.length > 0) {
for (i = 0; i < data.length; i++) {
add.call(this, data[i]);
}
}
};
Set.prototype.add = add;
Set.prototype.get = function(index) { return this._data[index]; };
Set.prototype.has = function(item) {
var i, data = this._data;
for (i = 0; i < data.length; i++) {
if (this.get(i) === item) {
return true;
}
}
return false;
};
Set.prototype.is = function(map) {
if (map._data.length !== this._data.length) { return false; }
var i, j, flag, tData = this._data, mData = map._data;
for (i = 0; i < tData.length; i++) {
for (flag = false, j = 0; j < mData.length; j++) {
if (tData[i] === mData[j]) {
flag = true;
break;
}
}
if (!flag) { return false; }
}
return true;
};
Set.prototype.values = function() {
return this._data;
};
return Set;
})();
window.Lazyload = (function(doc) {
var queue = {js: [], css: []}, sources = {js: {}, css: {}}, context = this;
var createNode = function(name, attrs) {
var node = doc.createElement(name), attr;
for (attr in attrs) {
if (attrs.hasOwnProperty(attr)) {
node.setAttribute(attr, attrs[attr]);
}
}
return node;
};
var end = function(type, url) {
var s, q, qi, cbs, i, j, cur, val, flag;
if (type === 'js' || type ==='css') {
s = sources[type], q = queue[type];
s[url] = true;
for (i = 0; i < q.length; i++) {
cur = q[i];
if (cur.urls.has(url)) {
qi = cur, val = qi.urls.values();
qi && (cbs = qi.callbacks);
for (flag = true, j = 0; j < val.length; j++) {
cur = val[j];
if (!s[cur]) {
flag = false;
}
}
if (flag && cbs && cbs.length > 0) {
for (j = 0; j < cbs.length; j++) {
cbs[j].call(context);
}
qi.load = true;
}
}
}
}
};
var load = function(type, urls, callback) {
var s, q, qi, node, i, cur,
_urls = typeof urls === 'string' ? new Set([urls]) : new Set(urls), val, url;
if (type === 'js' || type ==='css') {
s = sources[type], q = queue[type];
for (i = 0; i < q.length; i++) {
cur = q[i];
if (_urls.is(cur.urls)) {
qi = cur;
break;
}
}
val = _urls.values();
if (qi) {
callback && (qi.load || qi.callbacks.push(callback));
callback && (qi.load && callback());
} else {
q.push({
urls: _urls,
callbacks: callback ? [callback] : [],
load: false
});
for (i = 0; i < val.length; i++) {
node = null, url = val[i];
if (s[url] === undefined) {
(type === 'js' ) && (node = createNode('script', { src: url }));
(type === 'css') && (node = createNode('link', { rel: 'stylesheet', href: url }));
if (node) {
node.onload = (function(type, url) {
return function() {
end(type, url);
};
})(type, url);
(doc.head || doc.body).appendChild(node);
s[url] = false;
}
}
}
}
}
};
return {
js: function(url, callback) {
load('js', url, callback);
},
css: function(url, callback) {
load('css', url, callback);
}
};
})(this.document);
})();
</script><script>
(function() {
var TEXT_VARIABLES = {
version: '2.2.6',
sources: {
font_awesome: 'https://use.fontawesome.com/releases/v5.0.13/css/all.css',
jquery: '/assets/js/jquery.min.js',
leancloud_js_sdk: '//cdn.jsdelivr.net/npm/leancloud-storage@3.13.2/dist/av-min.js',
chart: 'https://cdn.bootcss.com/Chart.js/2.7.2/Chart.bundle.min.js',
gitalk: {
js: 'https://cdn.bootcss.com/gitalk/1.2.2/gitalk.min.js',
css: 'https://cdn.bootcss.com/gitalk/1.2.2/gitalk.min.css'
},
valine: 'https://unpkg.com/valine/dist/Valine.min.js'
},
site: {
toc: {
selectors: 'h1,h2,h3'
}
},
paths: {
search_js: '/assets/search.js'
}
};
window.TEXT_VARIABLES = TEXT_VARIABLES;
})();
</script>
</head>
<body>
<div class="root" data-is-touch="false">
<div class="layout--page js-page-root"><!----><div class="page__main js-page-main page__viewport hide-footer has-aside has-aside cell cell--auto">
<div class="page__main-inner"><div class="page__header d-print-none"><header class="header"><div class="main">
<div class="header__title">
<div class="header__brand"><svg id="svg" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" width="400" height="478.9473684210526" viewBox="0, 0, 400,478.9473684210526"><g id="svgg"><path id="path0" d="M308.400 56.805 C 306.970 56.966,303.280 57.385,300.200 57.738 C 290.906 58.803,278.299 59.676,269.200 59.887 L 260.600 60.085 259.400 61.171 C 258.010 62.428,256.198 63.600,255.645 63.600 C 255.070 63.600,252.887 65.897,252.598 66.806 C 252.460 67.243,252.206 67.600,252.034 67.600 C 251.397 67.600,247.206 71.509,247.202 72.107 C 247.201 72.275,246.390 73.190,245.400 74.138 C 243.961 75.517,243.598 76.137,243.592 77.231 C 243.579 79.293,241.785 83.966,240.470 85.364 C 239.176 86.740,238.522 88.365,237.991 91.521 C 237.631 93.665,236.114 97.200,235.554 97.200 C 234.938 97.200,232.737 102.354,232.450 104.472 C 232.158 106.625,230.879 109.226,229.535 110.400 C 228.933 110.926,228.171 113.162,226.434 119.500 C 226.178 120.435,225.795 121.200,225.584 121.200 C 225.373 121.200,225.200 121.476,225.200 121.813 C 225.200 122.149,224.885 122.541,224.500 122.683 C 223.606 123.013,223.214 123.593,223.204 124.600 C 223.183 126.555,220.763 132.911,219.410 134.562 C 218.443 135.742,217.876 136.956,217.599 138.440 C 217.041 141.424,215.177 146.434,214.532 146.681 C 214.240 146.794,214.000 147.055,214.000 147.261 C 214.000 147.467,213.550 148.086,213.000 148.636 C 212.450 149.186,212.000 149.893,212.000 150.208 C 212.000 151.386,208.441 154.450,207.597 153.998 C 206.319 153.315,204.913 150.379,204.633 147.811 C 204.365 145.357,202.848 142.147,201.759 141.729 C 200.967 141.425,199.200 137.451,199.200 135.974 C 199.200 134.629,198.435 133.224,196.660 131.311 C 195.363 129.913,194.572 128.123,193.870 125.000 C 193.623 123.900,193.236 122.793,193.010 122.540 C 190.863 120.133,190.147 118.880,188.978 115.481 C 188.100 112.928,187.151 111.003,186.254 109.955 C 185.358 108.908,184.518 107.204,183.847 105.073 C 183.280 103.273,182.497 101.329,182.108 100.753 C 181.719 100.177,180.904 98.997,180.298 98.131 C 179.693 97.265,178.939 95.576,178.624 94.378 C 178.041 92.159,177.125 90.326,175.023 87.168 C 174.375 86.196,173.619 84.539,173.342 83.486 C 172.800 81.429,171.529 79.567,170.131 78.785 C 169.654 78.517,168.697 77.511,168.006 76.549 C 167.316 75.587,166.594 74.800,166.402 74.800 C 166.210 74.800,164.869 73.633,163.421 72.206 C 160.103 68.936,161.107 69.109,146.550 69.301 C 133.437 69.474,128.581 70.162,126.618 72.124 C 126.248 72.495,125.462 72.904,124.872 73.033 C 124.282 73.163,123.088 73.536,122.219 73.863 C 121.349 74.191,119.028 74.638,117.061 74.858 C 113.514 75.254,109.970 76.350,108.782 77.419 C 107.652 78.436,100.146 80.400,97.388 80.400 C 95.775 80.400,93.167 81.360,91.200 82.679 C 90.430 83.195,89.113 83.804,88.274 84.031 C 85.875 84.681,78.799 90.910,74.400 96.243 L 73.400 97.456 73.455 106.028 C 73.526 117.055,74.527 121.238,77.820 124.263 C 78.919 125.273,80.400 127.902,80.400 128.842 C 80.400 129.202,81.075 130.256,81.900 131.186 C 83.563 133.059,85.497 136.346,86.039 138.216 C 86.233 138.886,87.203 140.207,88.196 141.153 C 89.188 142.098,90.000 143.104,90.000 143.388 C 90.000 144.337,92.129 148.594,92.869 149.123 C 93.271 149.410,93.600 149.831,93.600 150.059 C 93.600 150.286,93.932 150.771,94.337 151.136 C 94.743 151.501,95.598 153.004,96.237 154.475 C 96.877 155.947,97.760 157.351,98.200 157.596 C 98.640 157.841,99.900 159.943,101.000 162.267 C 102.207 164.817,103.327 166.644,103.825 166.876 C 104.278 167.087,105.065 168.101,105.573 169.130 C 107.658 173.348,108.097 174.093,110.006 176.647 C 111.103 178.114,112.000 179.725,112.000 180.227 C 112.000 181.048,113.425 183.163,114.678 184.200 C 115.295 184.711,117.396 188.733,117.720 190.022 C 117.855 190.562,118.603 191.633,119.381 192.402 C 120.160 193.171,121.496 195.258,122.351 197.039 C 123.206 198.820,124.167 200.378,124.487 200.501 C 124.807 200.624,125.953 202.496,127.034 204.662 C 128.114 206.828,129.676 209.299,130.505 210.153 C 131.333 211.007,132.124 212.177,132.262 212.753 C 132.618 214.239,134.291 217.048,136.288 219.5
" href="/">YannStatic</a></div><!--<button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button>--><!-- <li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li> -->
<!-- Champ de recherche -->
<div id="searchbox" class="search search--dark" style="visibility: visible">
<div class="main">
<div class="search__header"></div>
<div class="search-bar">
<div class="search-box js-search-box">
<div class="search-box__icon-search"><i class="fas fa-search"></i></div>
<input id="search-input" type="text" />
<!-- <div class="search-box__icon-clear js-icon-clear">
<a><i class="fas fa-times"></i></a>
</div> -->
</div>
</div>
</div>
</div>
<!-- Script pointing to search-script.js -->
<script>/*!
* Simple-Jekyll-Search
* Copyright 2015-2020, Christian Fei
* Licensed under the MIT License.
*/
(function(){
'use strict'
var _$Templater_7 = {
compile: compile,
setOptions: setOptions
}
const options = {}
options.pattern = /\{(.*?)\}/g
options.template = ''
options.middleware = function () {}
function setOptions (_options) {
options.pattern = _options.pattern || options.pattern
options.template = _options.template || options.template
if (typeof _options.middleware === 'function') {
options.middleware = _options.middleware
}
}
function compile (data) {
return options.template.replace(options.pattern, function (match, prop) {
const value = options.middleware(prop, data[prop], options.template)
if (typeof value !== 'undefined') {
return value
}
return data[prop] || match
})
}
'use strict';
function fuzzysearch (needle, haystack) {
var tlen = haystack.length;
var qlen = needle.length;
if (qlen > tlen) {
return false;
}
if (qlen === tlen) {
return needle === haystack;
}
outer: for (var i = 0, j = 0; i < qlen; i++) {
var nch = needle.charCodeAt(i);
while (j < tlen) {
if (haystack.charCodeAt(j++) === nch) {
continue outer;
}
}
return false;
}
return true;
}
var _$fuzzysearch_1 = fuzzysearch;
'use strict'
/* removed: const _$fuzzysearch_1 = require('fuzzysearch') */;
var _$FuzzySearchStrategy_5 = new FuzzySearchStrategy()
function FuzzySearchStrategy () {
this.matches = function (string, crit) {
return _$fuzzysearch_1(crit.toLowerCase(), string.toLowerCase())
}
}
'use strict'
var _$LiteralSearchStrategy_6 = new LiteralSearchStrategy()
function LiteralSearchStrategy () {
this.matches = function (str, crit) {
if (!str) return false
str = str.trim().toLowerCase()
crit = crit.trim().toLowerCase()
return crit.split(' ').filter(function (word) {
return str.indexOf(word) >= 0
}).length === crit.split(' ').length
}
}
'use strict'
var _$Repository_4 = {
put: put,
clear: clear,
search: search,
setOptions: __setOptions_4
}
/* removed: const _$FuzzySearchStrategy_5 = require('./SearchStrategies/FuzzySearchStrategy') */;
/* removed: const _$LiteralSearchStrategy_6 = require('./SearchStrategies/LiteralSearchStrategy') */;
function NoSort () {
return 0
}
const data = []
let opt = {}
opt.fuzzy = false
opt.limit = 10
opt.searchStrategy = opt.fuzzy ? _$FuzzySearchStrategy_5 : _$LiteralSearchStrategy_6
opt.sort = NoSort
opt.exclude = []
function put (data) {
if (isObject(data)) {
return addObject(data)
}
if (isArray(data)) {
return addArray(data)
}
return undefined
}
function clear () {
data.length = 0
return data
}
function isObject (obj) {
return Boolean(obj) && Object.prototype.toString.call(obj) === '[object Object]'
}
function isArray (obj) {
return Boolean(obj) && Object.prototype.toString.call(obj) === '[object Array]'
}
function addObject (_data) {
data.push(_data)
return data
}
function addArray (_data) {
const added = []
clear()
for (let i = 0, len = _data.length; i < len; i++) {
if (isObject(_data[i])) {
added.push(addObject(_data[i]))
}
}
return added
}
function search (crit) {
if (!crit) {
return []
}
return findMatches(data, crit, opt.searchStrategy, opt).sort(opt.sort)
}
function __setOptions_4 (_opt) {
opt = _opt || {}
opt.fuzzy = _opt.fuzzy || false
opt.limit = _opt.limit || 10
opt.searchStrategy = _opt.fuzzy ? _$FuzzySearchStrategy_5 : _$LiteralSearchStrategy_6
opt.sort = _opt.sort || NoSort
opt.exclude = _opt.exclude || []
}
function findMatches (data, crit, strategy, opt) {
const matches = []
for (let i = 0; i < data.length && matches.length < opt.limit; i++) {
const match = findMatchesInObject(data[i], crit, strategy, opt)
if (match) {
matches.push(match)
}
}
return matches
}
function findMatchesInObject (obj, crit, strategy, opt) {
for (const key in obj) {
if (!isExcluded(obj[key], opt.exclude) && strategy.matches(obj[key], crit)) {
return obj
}
}
}
function isExcluded (term, excludedTerms) {
for (let i = 0, len = excludedTerms.length; i < len; i++) {
const excludedTerm = excludedTerms[i]
if (new RegExp(excludedTerm).test(term)) {
return true
}
}
return false
}
/* globals ActiveXObject:false */
'use strict'
var _$JSONLoader_2 = {
load: load
}
function load (location, callback) {
const xhr = getXHR()
xhr.open('GET', location, true)
xhr.onreadystatechange = createStateChangeListener(xhr, callback)
xhr.send()
}
function createStateChangeListener (xhr, callback) {
return function () {
if (xhr.readyState === 4 && xhr.status === 200) {
try {
callback(null, JSON.parse(xhr.responseText))
} catch (err) {
callback(err, null)
}
}
}
}
function getXHR () {
return window.XMLHttpRequest ? new window.XMLHttpRequest() : new ActiveXObject('Microsoft.XMLHTTP')
}
'use strict'
var _$OptionsValidator_3 = function OptionsValidator (params) {
if (!validateParams(params)) {
throw new Error('-- OptionsValidator: required options missing')
}
if (!(this instanceof OptionsValidator)) {
return new OptionsValidator(params)
}
const requiredOptions = params.required
this.getRequiredOptions = function () {
return requiredOptions
}
this.validate = function (parameters) {
const errors = []
requiredOptions.forEach(function (requiredOptionName) {
if (typeof parameters[requiredOptionName] === 'undefined') {
errors.push(requiredOptionName)
}
})
return errors
}
function validateParams (params) {
if (!params) {
return false
}
return typeof params.required !== 'undefined' && params.required instanceof Array
}
}
'use strict'
var _$utils_9 = {
merge: merge,
isJSON: isJSON
}
function merge (defaultParams, mergeParams) {
const mergedOptions = {}
for (const option in defaultParams) {
mergedOptions[option] = defaultParams[option]
if (typeof mergeParams[option] !== 'undefined') {
mergedOptions[option] = mergeParams[option]
}
}
return mergedOptions
}
function isJSON (json) {
try {
if (json instanceof Object && JSON.parse(JSON.stringify(json))) {
return true
}
return false
} catch (err) {
return false
}
}
var _$src_8 = {};
(function (window) {
'use strict'
let options = {
searchInput: null,
resultsContainer: null,
json: [],
success: Function.prototype,
searchResultTemplate: '<li><a href="{url}" title="{desc}">{title}</a></li>',
templateMiddleware: Function.prototype,
sortMiddleware: function () {
return 0
},
noResultsText: 'No results found',
limit: 10,
fuzzy: false,
debounceTime: null,
exclude: []
}
let debounceTimerHandle
const debounce = function (func, delayMillis) {
if (delayMillis) {
clearTimeout(debounceTimerHandle)
debounceTimerHandle = setTimeout(func, delayMillis)
} else {
func.call()
}
}
const requiredOptions = ['searchInput', 'resultsContainer', 'json']
/* removed: const _$Templater_7 = require('./Templater') */;
/* removed: const _$Repository_4 = require('./Repository') */;
/* removed: const _$JSONLoader_2 = require('./JSONLoader') */;
const optionsValidator = _$OptionsValidator_3({
required: requiredOptions
})
/* removed: const _$utils_9 = require('./utils') */;
window.SimpleJekyllSearch = function (_options) {
const errors = optionsValidator.validate(_options)
if (errors.length > 0) {
throwError('You must specify the following required options: ' + requiredOptions)
}
options = _$utils_9.merge(options, _options)
_$Templater_7.setOptions({
template: options.searchResultTemplate,
middleware: options.templateMiddleware
})
_$Repository_4.setOptions({
fuzzy: options.fuzzy,
limit: options.limit,
sort: options.sortMiddleware,
exclude: options.exclude
})
if (_$utils_9.isJSON(options.json)) {
initWithJSON(options.json)
} else {
initWithURL(options.json)
}
const rv = {
search: search
}
typeof options.success === 'function' && options.success.call(rv)
return rv
}
function initWithJSON (json) {
_$Repository_4.put(json)
registerInput()
}
function initWithURL (url) {
_$JSONLoader_2.load(url, function (err, json) {
if (err) {
throwError('failed to get JSON (' + url + ')')
}
initWithJSON(json)
})
}
function emptyResultsContainer () {
options.resultsContainer.innerHTML = ''
}
function appendToResultsContainer (text) {
options.resultsContainer.innerHTML += text
}
function registerInput () {
options.searchInput.addEventListener('input', function (e) {
if (isWhitelistedKey(e.which)) {
emptyResultsContainer()
debounce(function () { search(e.target.value) }, options.debounceTime)
}
})
}
function search (query) {
if (isValidQuery(query)) {
emptyResultsContainer()
render(_$Repository_4.search(query), query)
}
}
function render (results, query) {
const len = results.length
if (len === 0) {
return appendToResultsContainer(options.noResultsText)
}
for (let i = 0; i < len; i++) {
results[i].query = query
appendToResultsContainer(_$Templater_7.compile(results[i]))
}
}
function isValidQuery (query) {
return query && query.length > 0
}
function isWhitelistedKey (key) {
return [13, 16, 20, 37, 38, 39, 40, 91].indexOf(key) === -1
}
function throwError (message) {
throw new Error('SimpleJekyllSearch --- ' + message)
}
})(window)
}());
</script>
<!-- Configuration -->
<script>
SimpleJekyllSearch({
searchInput: document.getElementById('search-input'),
resultsContainer: document.getElementById('results-container'),
json: '/search.json',
//searchResultTemplate: '<li><a href="https://static.rnmkcy.eu{url}">{date}&nbsp;{title}</a></li>'
searchResultTemplate: '<li><a href="{url}">{date}&nbsp;{title}</a></li>'
})
</script>
<!-- Fin déclaration champ de recherche --></div><nav class="navigation">
<ul><li class="navigation__item"><a href="/archive.html">Etiquettes</a></li><li class="navigation__item"><a href="/htmldoc.html">Documents</a></li><li class="navigation__item"><a href="/liens_ttrss.html">Liens</a></li><li class="navigation__item"><a href="/aide-jekyll-text-theme.html">Aide</a></li></ul>
</nav></div>
</header>
</div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
<div class="col-main cell cell--auto"><!-- start custom main top snippet --><div id="results-container" class="search-result js-search-result"></div><!-- end custom main top snippet -->
<article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1 style="color:Tomato;">JsonWebToken(jwt)</h1></header></div><meta itemprop="headline" content="JsonWebToken(jwt)"><div class="article__info clearfix"><ul class="left-col menu"><li>
2024-11-08 14:10:33 +01:00
<a class="button button--secondary button--pill button--sm" style="color:#00FFFF" href="/archive.html?tag=json">json</a>
2024-10-31 20:18:37 +01:00
</li></ul><ul class="right-col menu"><li>
<i class="far fa-calendar-alt"></i>&nbsp;<span title="Création" style="color:#FF00FF">25&nbsp;déc.&nbsp;&nbsp;2019</span>
<span title="Modification" style="color:#00FF7F">26&nbsp;sept.&nbsp;2019</span></li></ul></div><meta itemprop="datePublished" content="2019-09-26T00:00:00+02:00">
<meta itemprop="keywords" content="json"><div class="js-article-content">
<div class="layout--article"><!-- start custom article top snippet -->
<style>
#myBtn {
display: none;
position: fixed;
bottom: 10px;
right: 10px;
z-index: 99;
font-size: 12px;
font-weight: bold;
border: none;
outline: none;
background-color: white;
color: black;
cursor: pointer;
padding: 5px;
border-radius: 4px;
}
#myBtn:hover {
background-color: #555;
}
</style>
<button onclick="topFunction()" id="myBtn" title="Haut de page">&#8679;</button>
<script>
//Get the button
var mybutton = document.getElementById("myBtn");
// When the user scrolls down 20px from the top of the document, show the button
window.onscroll = function() {scrollFunction()};
function scrollFunction() {
if (document.body.scrollTop > 20 || document.documentElement.scrollTop > 20) {
mybutton.style.display = "block";
} else {
mybutton.style.display = "none";
}
}
// When the user clicks on the button, scroll to the top of the document
function topFunction() {
document.body.scrollTop = 0;
document.documentElement.scrollTop = 0;
}
</script>
<!-- end custom article top snippet -->
<div class="article__content" itemprop="articleBody"><details>
<summary><b>Afficher/cacher Sommaire</b></summary>
<!-- affichage sommaire -->
<div class="toc-aside js-toc-root"></div>
</details><h1 id="jwt-on-php">JWT on PHP</h1>
<ul>
<li>https://medium.com/@crmcmullen/simple-example-using-json-web-tokens-with-php-and-jquery-c648a80854c</li>
<li>https://github.com/crmcmullen/jwtphpjquery/blob/master/index.html</li>
<li>https://medium.com/tag/json-web-token</li>
<li><a href="https://website.simplx.fr/blog/2016/09/27/authentification-api-via-jwt-et-cookies/">Authentification dAPI via JWT et les Cookies</a></li>
<li><a href="https://www.ekino.com/articles/securite-avec-jwt-premiere-partie">En toute sécurité avec JWT (1re partie)</a></li>
<li><a href="https://www.ekino.fr/articles/securite-avec-jwt-seconde-partie">En toute sécurité avec JWT (2de partie)</a></li>
<li><a href="https://www.pierre-giraud.com/php-mysql-apprendre-coder-cours/cookie-creation-gestion/">Création et gestion des cookies en PHP</a></li>
<li><a href="https://blog.zend.com/2018/11/06/modern-cryptography-in-php-7-2-with-sodium/">Modern cryptography in PHP 7.2 with Sodium</a></li>
<li>
<p><a href="https://openclassrooms.com/fr/courses/2091901-protegez-vous-efficacement-contre-les-failles-web/2863569-la-csrf">Protégez-vous efficacement contre les failles web</a></p>
<p>index.html</p>
</li>
</ul>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>&lt;!DOCTYPE html&gt;
&lt;html&gt;
&lt;head&gt;
&lt;meta http-equiv="content-type" content="text/html; charset=utf-8" /&gt;
&lt;title&gt;JWT Example&lt;/title&gt;
&lt;/head&gt;
&lt;body&gt;
&lt;div&gt;
&lt;button id="test"&gt;Test if Logged In&lt;/button&gt;
&lt;button id="goodLogin"&gt;Good Login&lt;/button&gt;
&lt;button id="badLogin"&gt;Bad Login&lt;/button&gt;
&lt;button id="logout"&gt;Logout and Clear Token&lt;/button&gt;
&lt;/div&gt;
&lt;script type="text/javascript" src="https://code.jquery.com/jquery-2.1.1.min.js"&gt;&lt;/script&gt;
&lt;script type="text/javascript"&gt;
$(document).ready(function() {
$('#test').click(function() {
$.ajax({
type: 'GET',
url: 'app_client.php',
dataType: "json",
data: {
token: localStorage.token
},
success: function(data) {
if (typeof data['userId'] !== 'undefined') {
var alertMessage = 'You have a valid token! Here is your user Id: ' + data['userId'];
if (typeof data['exp'] !== 'undefined') {
alertMessage = alertMessage + ' and your token expires: ' + data['exp'];
}
alert(alertMessage);
}
else if (typeof data['error'] !== 'undefined') {
alert('Error: ' + data['error']);
}
else {
alert('Error: Your request has failed.');
}
}
});
});
$('#goodLogin').click(function() {
$.ajax({
type: "POST",
url: "app_client.php",
dataType: "json",
data: {
username: "john.doe",
password: "foobar"
},
success: function(data) {
localStorage.token = data['token'];
alert('Successfully retrieved token from the server! Token: ' + data['token']);
},
error: function() {
alert("Error: Login Failed");
}
});
});
$('#badLogin').click(function() {
$.ajax({
type: "POST",
url: "app_client.php",
dataType: "json",
data: {
username: "john.doe",
password: "foobarfoobar"
},
success: function(data) {
if (typeof data['error'] !== 'undefined') {
alert('Error: ' + data['error']);
localStorage.clear();
}
},
error: function() {
alert('Error: Your request has failed.');
}
});
});
$('#logout').click(function() {
localStorage.clear();
});
});
&lt;/script&gt;
&lt;/body&gt;
&lt;/html&gt;
</code></pre></div></div>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>app_client.php
</code></pre></div></div>
<div class="language-php highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="cp">&lt;?php</span>
<span class="cd">/**
* This file processes the login request and sends back a token response
* if successful.
*/</span>
<span class="nv">$requestMethod</span> <span class="o">=</span> <span class="nv">$_SERVER</span><span class="p">[</span><span class="s1">'REQUEST_METHOD'</span><span class="p">];</span>
<span class="c1">// retrieve the inbound parameters based on request type.</span>
<span class="k">switch</span><span class="p">(</span><span class="nv">$requestMethod</span><span class="p">)</span> <span class="p">{</span>
<span class="k">case</span> <span class="s1">'POST'</span><span class="o">:</span>
<span class="nv">$username</span> <span class="o">=</span> <span class="s1">''</span><span class="p">;</span>
<span class="nv">$password</span> <span class="o">=</span> <span class="s1">''</span><span class="p">;</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'username'</span><span class="p">]))</span> <span class="p">{</span><span class="nv">$username</span> <span class="o">=</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'username'</span><span class="p">];}</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">]))</span> <span class="p">{</span><span class="nv">$password</span> <span class="o">=</span> <span class="nv">$_POST</span><span class="p">[</span><span class="s1">'password'</span><span class="p">];}</span>
<span class="k">if</span> <span class="p">((</span><span class="nv">$username</span> <span class="o">==</span> <span class="s1">'john.doe'</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="nv">$password</span> <span class="o">==</span> <span class="s1">'foobar'</span><span class="p">))</span> <span class="p">{</span>
<span class="k">require_once</span><span class="p">(</span><span class="s1">'jwt.php'</span><span class="p">);</span>
<span class="cd">/**
* Create some payload data with user data we would normally retrieve from a
* database with users credentials. Then when the client sends back the token,
* this payload data is available for us to use to retrieve other data
* if necessary.
*/</span>
<span class="nv">$userId</span> <span class="o">=</span> <span class="s1">'USER123456'</span><span class="p">;</span>
<span class="cd">/**
* Uncomment the following line and add an appropriate date to enable the
* "not before" feature.
*/</span>
<span class="c1">// $nbf = strtotime('2021-01-01 00:00:01');</span>
<span class="cd">/**
* Uncomment the following line and add an appropriate date and time to enable the
* "expire" feature.
*/</span>
<span class="c1">// $exp = strtotime('2021-01-01 00:00:01');</span>
<span class="c1">// Get our server-side secret key from a secure location.</span>
<span class="nv">$serverKey</span> <span class="o">=</span> <span class="s1">'5f2b5cdbe5194f10b3241568fe4e2b24'</span><span class="p">;</span>
<span class="c1">// create a token</span>
<span class="nv">$payloadArray</span> <span class="o">=</span> <span class="k">array</span><span class="p">();</span>
<span class="nv">$payloadArray</span><span class="p">[</span><span class="s1">'userId'</span><span class="p">]</span> <span class="o">=</span> <span class="nv">$userId</span><span class="p">;</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$nbf</span><span class="p">))</span> <span class="p">{</span><span class="nv">$payloadArray</span><span class="p">[</span><span class="s1">'nbf'</span><span class="p">]</span> <span class="o">=</span> <span class="nv">$nbf</span><span class="p">;}</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$exp</span><span class="p">))</span> <span class="p">{</span><span class="nv">$payloadArray</span><span class="p">[</span><span class="s1">'exp'</span><span class="p">]</span> <span class="o">=</span> <span class="nv">$exp</span><span class="p">;}</span>
<span class="nv">$token</span> <span class="o">=</span> <span class="no">JWT</span><span class="o">::</span><span class="nf">encode</span><span class="p">(</span><span class="nv">$payloadArray</span><span class="p">,</span> <span class="nv">$serverKey</span><span class="p">);</span>
<span class="c1">// return to caller</span>
<span class="nv">$returnArray</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'token'</span> <span class="o">=&gt;</span> <span class="nv">$token</span><span class="p">);</span>
<span class="nv">$jsonEncodedReturnArray</span> <span class="o">=</span> <span class="nb">json_encode</span><span class="p">(</span><span class="nv">$returnArray</span><span class="p">,</span> <span class="no">JSON_PRETTY_PRINT</span><span class="p">);</span>
<span class="k">echo</span> <span class="nv">$jsonEncodedReturnArray</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">else</span> <span class="p">{</span>
<span class="nv">$returnArray</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'error'</span> <span class="o">=&gt;</span> <span class="s1">'Invalid user ID or password.'</span><span class="p">);</span>
<span class="nv">$jsonEncodedReturnArray</span> <span class="o">=</span> <span class="nb">json_encode</span><span class="p">(</span><span class="nv">$returnArray</span><span class="p">,</span> <span class="no">JSON_PRETTY_PRINT</span><span class="p">);</span>
<span class="k">echo</span> <span class="nv">$jsonEncodedReturnArray</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">break</span><span class="p">;</span>
<span class="k">case</span> <span class="s1">'GET'</span><span class="o">:</span>
<span class="nv">$token</span> <span class="o">=</span> <span class="kc">null</span><span class="p">;</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_GET</span><span class="p">[</span><span class="s1">'token'</span><span class="p">]))</span> <span class="p">{</span><span class="nv">$token</span> <span class="o">=</span> <span class="nv">$_GET</span><span class="p">[</span><span class="s1">'token'</span><span class="p">];}</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nb">is_null</span><span class="p">(</span><span class="nv">$token</span><span class="p">))</span> <span class="p">{</span>
<span class="k">require_once</span><span class="p">(</span><span class="s1">'jwt.php'</span><span class="p">);</span>
<span class="c1">// Get our server-side secret key from a secure location.</span>
<span class="nv">$serverKey</span> <span class="o">=</span> <span class="s1">'5f2b5cdbe5194f10b3241568fe4e2b24'</span><span class="p">;</span>
<span class="k">try</span> <span class="p">{</span>
<span class="nv">$payload</span> <span class="o">=</span> <span class="no">JWT</span><span class="o">::</span><span class="nf">decode</span><span class="p">(</span><span class="nv">$token</span><span class="p">,</span> <span class="nv">$serverKey</span><span class="p">,</span> <span class="k">array</span><span class="p">(</span><span class="s1">'HS256'</span><span class="p">));</span>
<span class="nv">$returnArray</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'userId'</span> <span class="o">=&gt;</span> <span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">userId</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">exp</span><span class="p">))</span> <span class="p">{</span>
<span class="nv">$returnArray</span><span class="p">[</span><span class="s1">'exp'</span><span class="p">]</span> <span class="o">=</span> <span class="nb">date</span><span class="p">(</span><span class="nc">DateTime</span><span class="o">::</span><span class="no">ISO8601</span><span class="p">,</span> <span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">exp</span><span class="p">);;</span>
<span class="p">}</span>
<span class="p">}</span>
<span class="k">catch</span><span class="p">(</span><span class="nc">Exception</span> <span class="nv">$e</span><span class="p">)</span> <span class="p">{</span>
<span class="nv">$returnArray</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'error'</span> <span class="o">=&gt;</span> <span class="nv">$e</span><span class="o">-&gt;</span><span class="nf">getMessage</span><span class="p">());</span>
<span class="p">}</span>
<span class="p">}</span>
<span class="k">else</span> <span class="p">{</span>
<span class="nv">$returnArray</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'error'</span> <span class="o">=&gt;</span> <span class="s1">'You are not logged in with a valid token.'</span><span class="p">);</span>
<span class="p">}</span>
<span class="c1">// return to caller</span>
<span class="nv">$jsonEncodedReturnArray</span> <span class="o">=</span> <span class="nb">json_encode</span><span class="p">(</span><span class="nv">$returnArray</span><span class="p">,</span> <span class="no">JSON_PRETTY_PRINT</span><span class="p">);</span>
<span class="k">echo</span> <span class="nv">$jsonEncodedReturnArray</span><span class="p">;</span>
<span class="k">break</span><span class="p">;</span>
<span class="k">default</span><span class="o">:</span>
<span class="nv">$returnArray</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'error'</span> <span class="o">=&gt;</span> <span class="s1">'You have requested an invalid method.'</span><span class="p">);</span>
<span class="nv">$jsonEncodedReturnArray</span> <span class="o">=</span> <span class="nb">json_encode</span><span class="p">(</span><span class="nv">$returnArray</span><span class="p">,</span> <span class="no">JSON_PRETTY_PRINT</span><span class="p">);</span>
<span class="k">echo</span> <span class="nv">$jsonEncodedReturnArray</span><span class="p">;</span>
<span class="p">}</span>
</code></pre></div></div>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>jwt-php
</code></pre></div></div>
<div class="language-php highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="cp">&lt;?php</span>
<span class="cd">/**
* JSON Web Token implementation, based on this spec:
* https://tools.ietf.org/html/rfc7519
*
* This class library is based on original Firebase/JWT source code written by
* Neuman Vong and Anant Narayanan found here: https://github.com/firebase/php-jwt
*
* @license http://opensource.org/licenses/BSD-3-Clause 3-clause BSD
*
*/</span>
<span class="kd">class</span> <span class="nc">JWT</span> <span class="p">{</span>
<span class="k">public</span> <span class="k">static</span> <span class="nv">$leeway</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="c1">// allows for nbf, iat or exp clock skew</span>
<span class="k">public</span> <span class="k">static</span> <span class="nv">$timestamp</span> <span class="o">=</span> <span class="kc">null</span><span class="p">;</span> <span class="c1">// allow timestamp to be specified for testing. Defaults to php (time) if null.</span>
<span class="k">public</span> <span class="k">static</span> <span class="nv">$supported_algs</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span>
<span class="s1">'HS256'</span> <span class="o">=&gt;</span> <span class="k">array</span><span class="p">(</span><span class="s1">'hash_hmac'</span><span class="p">,</span> <span class="s1">'SHA256'</span><span class="p">),</span>
<span class="s1">'HS512'</span> <span class="o">=&gt;</span> <span class="k">array</span><span class="p">(</span><span class="s1">'hash_hmac'</span><span class="p">,</span> <span class="s1">'SHA512'</span><span class="p">),</span>
<span class="s1">'HS384'</span> <span class="o">=&gt;</span> <span class="k">array</span><span class="p">(</span><span class="s1">'hash_hmac'</span><span class="p">,</span> <span class="s1">'SHA384'</span><span class="p">),</span>
<span class="s1">'RS256'</span> <span class="o">=&gt;</span> <span class="k">array</span><span class="p">(</span><span class="s1">'openssl'</span><span class="p">,</span> <span class="s1">'SHA256'</span><span class="p">),</span>
<span class="s1">'RS384'</span> <span class="o">=&gt;</span> <span class="k">array</span><span class="p">(</span><span class="s1">'openssl'</span><span class="p">,</span> <span class="s1">'SHA384'</span><span class="p">),</span>
<span class="s1">'RS512'</span> <span class="o">=&gt;</span> <span class="k">array</span><span class="p">(</span><span class="s1">'openssl'</span><span class="p">,</span> <span class="s1">'SHA512'</span><span class="p">),</span>
<span class="p">);</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Decodes a JWT string into a PHP object.
*
* @param string $token The JSON web token
* @param string|array $key The secret key
* @param array $allowed_algs If the algorithm used is asymmetric, this is the public key list
* of supported verification algorithms. Supported algorithms are:
* 'HS256', 'HS384', 'HS512' and 'RS256'
*
* @return object The JWT's payload as a PHP object
*
*/</span>
<span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">decode</span><span class="p">(</span><span class="nv">$token</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="kt">array</span> <span class="nv">$allowed_algs</span> <span class="o">=</span> <span class="k">array</span><span class="p">())</span>
<span class="p">{</span>
<span class="k">if</span> <span class="p">((</span><span class="o">!</span><span class="k">isset</span><span class="p">(</span><span class="nv">$timestamp</span><span class="p">))</span> <span class="o">||</span> <span class="p">(</span><span class="nb">is_null</span><span class="p">(</span><span class="nv">$timestamp</span><span class="p">)))</span> <span class="p">{</span>
<span class="nv">$timestamp</span> <span class="o">=</span> <span class="nb">time</span><span class="p">();</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$key</span><span class="p">))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Invalid or missing key.'</span><span class="p">);</span>
<span class="p">}</span>
<span class="nv">$tokenSegments</span> <span class="o">=</span> <span class="nb">explode</span><span class="p">(</span><span class="s1">'.'</span><span class="p">,</span> <span class="nv">$token</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="nb">count</span><span class="p">(</span><span class="nv">$tokenSegments</span><span class="p">)</span> <span class="o">!=</span> <span class="mi">3</span><span class="p">)</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Wrong number of segments'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">list</span><span class="p">(</span><span class="nv">$headb64</span><span class="p">,</span> <span class="nv">$bodyb64</span><span class="p">,</span> <span class="nv">$cryptob64</span><span class="p">)</span> <span class="o">=</span> <span class="nv">$tokenSegments</span><span class="p">;</span>
<span class="k">if</span> <span class="p">(</span><span class="kc">null</span> <span class="o">===</span> <span class="p">(</span><span class="nv">$header</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nf">jsonDecode</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nf">urlsafeB64Decode</span><span class="p">(</span><span class="nv">$headb64</span><span class="p">))))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Invalid header encoding'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="kc">null</span> <span class="o">===</span> <span class="nv">$payload</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nf">jsonDecode</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nf">urlsafeB64Decode</span><span class="p">(</span><span class="nv">$bodyb64</span><span class="p">)))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Invalid claims encoding'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="kc">false</span> <span class="o">===</span> <span class="p">(</span><span class="nv">$sig</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nf">urlsafeB64Decode</span><span class="p">(</span><span class="nv">$cryptob64</span><span class="p">)))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Invalid signature encoding'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$header</span><span class="o">-&gt;</span><span class="n">alg</span><span class="p">))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Empty algorithm'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nv">$supported_algs</span><span class="p">[</span><span class="nv">$header</span><span class="o">-&gt;</span><span class="n">alg</span><span class="p">]))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Algorithm not supported'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nb">in_array</span><span class="p">(</span><span class="nv">$header</span><span class="o">-&gt;</span><span class="n">alg</span><span class="p">,</span> <span class="nv">$allowed_algs</span><span class="p">))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Algorithm not allowed'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="nb">is_array</span><span class="p">(</span><span class="nv">$key</span><span class="p">)</span> <span class="o">||</span> <span class="nv">$key</span> <span class="k">instanceof</span> <span class="nc">ArrayAccess</span><span class="p">)</span> <span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$header</span><span class="o">-&gt;</span><span class="n">kid</span><span class="p">))</span> <span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">isset</span><span class="p">(</span><span class="nv">$key</span><span class="p">[</span><span class="nv">$header</span><span class="o">-&gt;</span><span class="n">kid</span><span class="p">]))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">UnexpectedValueException</span><span class="p">(</span><span class="s1">'"kid" invalid, unable to lookup correct key'</span><span class="p">);</span>
<span class="p">}</span>
<span class="nv">$key</span> <span class="o">=</span> <span class="nv">$key</span><span class="p">[</span><span class="nv">$header</span><span class="o">-&gt;</span><span class="n">kid</span><span class="p">];</span>
<span class="p">}</span> <span class="k">else</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">UnexpectedValueException</span><span class="p">(</span><span class="s1">'"kid" empty, unable to lookup correct key'</span><span class="p">);</span>
<span class="p">}</span>
<span class="p">}</span>
<span class="c1">// Check the signature</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">static</span><span class="o">::</span><span class="nf">verify</span><span class="p">(</span><span class="s2">"</span><span class="nv">$headb64</span><span class="s2">.</span><span class="nv">$bodyb64</span><span class="s2">"</span><span class="p">,</span> <span class="nv">$sig</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="nv">$header</span><span class="o">-&gt;</span><span class="n">alg</span><span class="p">))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Signature verification failed'</span><span class="p">);</span>
<span class="p">}</span>
<span class="c1">// Check if the nbf if it is defined. This is the time that the</span>
<span class="c1">// token can actually be used. If it's not yet that time, abort.</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">nbf</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">nbf</span> <span class="o">&gt;</span> <span class="p">(</span><span class="nv">$timestamp</span> <span class="o">+</span> <span class="k">static</span><span class="o">::</span><span class="nv">$leeway</span><span class="p">))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span>
<span class="s1">'Cannot handle token prior to '</span> <span class="mf">.</span> <span class="nb">date</span><span class="p">(</span><span class="nc">DateTime</span><span class="o">::</span><span class="no">ISO8601</span><span class="p">,</span> <span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">nbf</span><span class="p">)</span>
<span class="p">);</span>
<span class="p">}</span>
<span class="c1">// Check that this token has been created before 'now'. This prevents</span>
<span class="c1">// using tokens that have been created for later use (and haven't</span>
<span class="c1">// correctly used the nbf claim).</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">iat</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">iat</span> <span class="o">&gt;</span> <span class="p">(</span><span class="nv">$timestamp</span> <span class="o">+</span> <span class="k">static</span><span class="o">::</span><span class="nv">$leeway</span><span class="p">))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span>
<span class="s1">'Cannot handle token prior to '</span> <span class="mf">.</span> <span class="nb">date</span><span class="p">(</span><span class="nc">DateTime</span><span class="o">::</span><span class="no">ISO8601</span><span class="p">,</span> <span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">iat</span><span class="p">)</span>
<span class="p">);</span>
<span class="p">}</span>
<span class="c1">// Check if this token has expired.</span>
<span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">exp</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="nv">$timestamp</span> <span class="o">-</span> <span class="k">static</span><span class="o">::</span><span class="nv">$leeway</span><span class="p">)</span> <span class="o">&gt;=</span> <span class="nv">$payload</span><span class="o">-&gt;</span><span class="n">exp</span><span class="p">)</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Expired token'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">return</span> <span class="nv">$payload</span><span class="p">;</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Converts and signs a PHP object or array into a JWT string.
*
* @param object|array $payload PHP object or array
* @param string $key The secret key.
* If the algorithm used is asymmetric, this is the private key
* @param string $alg The signing algorithm.
* Supported algorithms are 'HS256', 'HS384', 'HS512' and 'RS256'
* @param mixed $keyId
* @param array $head An array with header elements to attach
*
* @return string A signed JWT
*
*/</span>
<span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">encode</span><span class="p">(</span><span class="nv">$payload</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="nv">$alg</span> <span class="o">=</span> <span class="s1">'HS256'</span><span class="p">,</span> <span class="nv">$keyId</span> <span class="o">=</span> <span class="kc">null</span><span class="p">,</span> <span class="nv">$head</span> <span class="o">=</span> <span class="kc">null</span><span class="p">)</span>
<span class="p">{</span>
<span class="nv">$header</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'typ'</span> <span class="o">=&gt;</span> <span class="s1">'JWT'</span><span class="p">,</span> <span class="s1">'alg'</span> <span class="o">=&gt;</span> <span class="nv">$alg</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="nv">$keyId</span> <span class="o">!==</span> <span class="kc">null</span><span class="p">)</span> <span class="p">{</span>
<span class="nv">$header</span><span class="p">[</span><span class="s1">'kid'</span><span class="p">]</span> <span class="o">=</span> <span class="nv">$keyId</span><span class="p">;</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span> <span class="k">isset</span><span class="p">(</span><span class="nv">$head</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="nb">is_array</span><span class="p">(</span><span class="nv">$head</span><span class="p">)</span> <span class="p">)</span> <span class="p">{</span>
<span class="nv">$header</span> <span class="o">=</span> <span class="nb">array_merge</span><span class="p">(</span><span class="nv">$head</span><span class="p">,</span> <span class="nv">$header</span><span class="p">);</span>
<span class="p">}</span>
<span class="nv">$segments</span> <span class="o">=</span> <span class="k">array</span><span class="p">();</span>
<span class="nv">$segments</span><span class="p">[]</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nf">urlsafeB64Encode</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nf">jsonEncode</span><span class="p">(</span><span class="nv">$header</span><span class="p">));</span>
<span class="nv">$segments</span><span class="p">[]</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nf">urlsafeB64Encode</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nf">jsonEncode</span><span class="p">(</span><span class="nv">$payload</span><span class="p">));</span>
<span class="nv">$signing_input</span> <span class="o">=</span> <span class="nb">implode</span><span class="p">(</span><span class="s1">'.'</span><span class="p">,</span> <span class="nv">$segments</span><span class="p">);</span>
<span class="nv">$signature</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nf">sign</span><span class="p">(</span><span class="nv">$signing_input</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="nv">$alg</span><span class="p">);</span>
<span class="nv">$segments</span><span class="p">[]</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nf">urlsafeB64Encode</span><span class="p">(</span><span class="nv">$signature</span><span class="p">);</span>
<span class="k">return</span> <span class="nb">implode</span><span class="p">(</span><span class="s1">'.'</span><span class="p">,</span> <span class="nv">$segments</span><span class="p">);</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Sign a string with a given key and algorithm.
*
* @param string $msg The message to sign
* @param string|resource $key The secret key
* @param string $alg The signing algorithm.
* Supported algorithms are 'HS256', 'HS384', 'HS512' and 'RS256'
*
* @return string An encrypted message
*
*/</span>
<span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">sign</span><span class="p">(</span><span class="nv">$msg</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="nv">$alg</span> <span class="o">=</span> <span class="s1">'HS256'</span><span class="p">)</span>
<span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nv">$supported_algs</span><span class="p">[</span><span class="nv">$alg</span><span class="p">]))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Algorithm not supported'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">list</span><span class="p">(</span><span class="nv">$function</span><span class="p">,</span> <span class="nv">$algorithm</span><span class="p">)</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nv">$supported_algs</span><span class="p">[</span><span class="nv">$alg</span><span class="p">];</span>
<span class="k">switch</span><span class="p">(</span><span class="nv">$function</span><span class="p">)</span> <span class="p">{</span>
<span class="k">case</span> <span class="s1">'hash_hmac'</span><span class="o">:</span>
<span class="k">return</span> <span class="nb">hash_hmac</span><span class="p">(</span><span class="nv">$algorithm</span><span class="p">,</span> <span class="nv">$msg</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="kc">true</span><span class="p">);</span>
<span class="k">case</span> <span class="s1">'openssl'</span><span class="o">:</span>
<span class="nv">$signature</span> <span class="o">=</span> <span class="s1">''</span><span class="p">;</span>
<span class="nv">$success</span> <span class="o">=</span> <span class="nb">openssl_sign</span><span class="p">(</span><span class="nv">$msg</span><span class="p">,</span> <span class="nv">$signature</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="nv">$algorithm</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nv">$success</span><span class="p">)</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s2">"OpenSSL unable to sign data"</span><span class="p">);</span>
<span class="p">}</span> <span class="k">else</span> <span class="p">{</span>
<span class="k">return</span> <span class="nv">$signature</span><span class="p">;</span>
<span class="p">}</span>
<span class="p">}</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Verify a signature with the message, key and method. Not all methods
* are symmetric, so we must have a separate verify and sign method.
*
* @param string $msg The original message (header and body)
* @param string $signature The original signature
* @param string|resource $key For HS*, a string key works. for RS*, must be a resource of an openssl public key
* @param string $alg The algorithm
*
* @return bool
*/</span>
<span class="k">private</span> <span class="k">static</span> <span class="k">function</span> <span class="n">verify</span><span class="p">(</span><span class="nv">$msg</span><span class="p">,</span> <span class="nv">$signature</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="nv">$alg</span><span class="p">)</span>
<span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nv">$supported_algs</span><span class="p">[</span><span class="nv">$alg</span><span class="p">]))</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Algorithm not supported'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">list</span><span class="p">(</span><span class="nv">$function</span><span class="p">,</span> <span class="nv">$algorithm</span><span class="p">)</span> <span class="o">=</span> <span class="k">static</span><span class="o">::</span><span class="nv">$supported_algs</span><span class="p">[</span><span class="nv">$alg</span><span class="p">];</span>
<span class="k">switch</span><span class="p">(</span><span class="nv">$function</span><span class="p">)</span> <span class="p">{</span>
<span class="k">case</span> <span class="s1">'openssl'</span><span class="o">:</span>
<span class="nv">$success</span> <span class="o">=</span> <span class="nb">openssl_verify</span><span class="p">(</span><span class="nv">$msg</span><span class="p">,</span> <span class="nv">$signature</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="nv">$algorithm</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="nv">$success</span> <span class="o">===</span> <span class="mi">1</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="kc">true</span><span class="p">;</span>
<span class="p">}</span> <span class="k">elseif</span> <span class="p">(</span><span class="nv">$success</span> <span class="o">===</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span>
<span class="k">return</span> <span class="kc">false</span><span class="p">;</span>
<span class="p">}</span>
<span class="c1">// returns 1 on success, 0 on failure, -1 on error.</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span>
<span class="s1">'OpenSSL error: '</span> <span class="mf">.</span> <span class="nb">openssl_error_string</span><span class="p">()</span>
<span class="p">);</span>
<span class="k">case</span> <span class="s1">'hash_hmac'</span><span class="o">:</span>
<span class="k">default</span><span class="o">:</span>
<span class="nv">$hash</span> <span class="o">=</span> <span class="nb">hash_hmac</span><span class="p">(</span><span class="nv">$algorithm</span><span class="p">,</span> <span class="nv">$msg</span><span class="p">,</span> <span class="nv">$key</span><span class="p">,</span> <span class="kc">true</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="nb">function_exists</span><span class="p">(</span><span class="s1">'hash_equals'</span><span class="p">))</span> <span class="p">{</span>
<span class="k">return</span> <span class="nb">hash_equals</span><span class="p">(</span><span class="nv">$signature</span><span class="p">,</span> <span class="nv">$hash</span><span class="p">);</span>
<span class="p">}</span>
<span class="nv">$len</span> <span class="o">=</span> <span class="nb">min</span><span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nf">safeStrlen</span><span class="p">(</span><span class="nv">$signature</span><span class="p">),</span> <span class="k">static</span><span class="o">::</span><span class="nf">safeStrlen</span><span class="p">(</span><span class="nv">$hash</span><span class="p">));</span>
<span class="nv">$status</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span>
<span class="k">for</span> <span class="p">(</span><span class="nv">$i</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nv">$i</span> <span class="o">&lt;</span> <span class="nv">$len</span><span class="p">;</span> <span class="nv">$i</span><span class="o">++</span><span class="p">)</span> <span class="p">{</span>
<span class="nv">$status</span> <span class="o">|=</span> <span class="p">(</span><span class="nb">ord</span><span class="p">(</span><span class="nv">$signature</span><span class="p">[</span><span class="nv">$i</span><span class="p">])</span> <span class="o">^</span> <span class="nb">ord</span><span class="p">(</span><span class="nv">$hash</span><span class="p">[</span><span class="nv">$i</span><span class="p">]));</span>
<span class="p">}</span>
<span class="nv">$status</span> <span class="o">|=</span> <span class="p">(</span><span class="k">static</span><span class="o">::</span><span class="nf">safeStrlen</span><span class="p">(</span><span class="nv">$signature</span><span class="p">)</span> <span class="o">^</span> <span class="k">static</span><span class="o">::</span><span class="nf">safeStrlen</span><span class="p">(</span><span class="nv">$hash</span><span class="p">));</span>
<span class="k">return</span> <span class="p">(</span><span class="nv">$status</span> <span class="o">===</span> <span class="mi">0</span><span class="p">);</span>
<span class="p">}</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Decode a JSON string into a PHP object.
*
* @param string $input JSON string
*
* @return object Object representation of JSON string
*
* @throws Exception Provided string was invalid JSON
*/</span>
<span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">jsonDecode</span><span class="p">(</span><span class="nv">$input</span><span class="p">)</span>
<span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="nb">version_compare</span><span class="p">(</span><span class="kc">PHP_VERSION</span><span class="p">,</span> <span class="s1">'5.4.0'</span><span class="p">,</span> <span class="s1">'&gt;='</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="p">(</span><span class="nb">defined</span><span class="p">(</span><span class="s1">'JSON_C_VERSION'</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="kc">PHP_INT_SIZE</span> <span class="o">&gt;</span> <span class="mi">4</span><span class="p">))</span> <span class="p">{</span>
<span class="cd">/** In PHP &gt;=5.4.0, json_decode() accepts an options parameter, that allows you
* to specify that large ints (like Steam Transaction IDs) should be treated as
* strings, rather than the PHP default behaviour of converting them to floats.
*/</span>
<span class="nv">$obj</span> <span class="o">=</span> <span class="nb">json_decode</span><span class="p">(</span><span class="nv">$input</span><span class="p">,</span> <span class="kc">false</span><span class="p">,</span> <span class="mi">512</span><span class="p">,</span> <span class="no">JSON_BIGINT_AS_STRING</span><span class="p">);</span>
<span class="p">}</span> <span class="k">else</span> <span class="p">{</span>
<span class="cd">/** Not all servers will support that, however, so for older versions we must
* manually detect large ints in the JSON string and quote them (thus converting
*them to strings) before decoding, hence the preg_replace() call.
*/</span>
<span class="nv">$max_int_length</span> <span class="o">=</span> <span class="nb">strlen</span><span class="p">((</span><span class="n">string</span><span class="p">)</span> <span class="kc">PHP_INT_MAX</span><span class="p">)</span> <span class="o">-</span> <span class="mi">1</span><span class="p">;</span>
<span class="nv">$json_without_bigints</span> <span class="o">=</span> <span class="nb">preg_replace</span><span class="p">(</span><span class="s1">'/:\s*(-?\d{'</span><span class="mf">.</span><span class="nv">$max_int_length</span><span class="mf">.</span><span class="s1">',})/'</span><span class="p">,</span> <span class="s1">': "$1"'</span><span class="p">,</span> <span class="nv">$input</span><span class="p">);</span>
<span class="nv">$obj</span> <span class="o">=</span> <span class="nb">json_decode</span><span class="p">(</span><span class="nv">$json_without_bigints</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">if</span> <span class="p">(</span><span class="nb">function_exists</span><span class="p">(</span><span class="s1">'json_last_error'</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="nv">$errno</span> <span class="o">=</span> <span class="nb">json_last_error</span><span class="p">())</span> <span class="p">{</span>
<span class="k">static</span><span class="o">::</span><span class="nf">handleJsonError</span><span class="p">(</span><span class="nv">$errno</span><span class="p">);</span>
<span class="p">}</span> <span class="k">elseif</span> <span class="p">(</span><span class="nv">$obj</span> <span class="o">===</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="nv">$input</span> <span class="o">!==</span> <span class="s1">'null'</span><span class="p">)</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Null result with non-null input'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">return</span> <span class="nv">$obj</span><span class="p">;</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Encode a PHP object into a JSON string.
*
* @param object|array $input A PHP object or array
*
* @return string JSON representation of the PHP object or array
*
* @throws Exception Provided object could not be encoded to valid JSON
*/</span>
<span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">jsonEncode</span><span class="p">(</span><span class="nv">$input</span><span class="p">)</span>
<span class="p">{</span>
<span class="nv">$json</span> <span class="o">=</span> <span class="nb">json_encode</span><span class="p">(</span><span class="nv">$input</span><span class="p">);</span>
<span class="k">if</span> <span class="p">(</span><span class="nb">function_exists</span><span class="p">(</span><span class="s1">'json_last_error'</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="nv">$errno</span> <span class="o">=</span> <span class="nb">json_last_error</span><span class="p">())</span> <span class="p">{</span>
<span class="k">static</span><span class="o">::</span><span class="nf">handleJsonError</span><span class="p">(</span><span class="nv">$errno</span><span class="p">);</span>
<span class="p">}</span> <span class="k">elseif</span> <span class="p">(</span><span class="nv">$json</span> <span class="o">===</span> <span class="s1">'null'</span> <span class="o">&amp;&amp;</span> <span class="nv">$input</span> <span class="o">!==</span> <span class="kc">null</span><span class="p">)</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span><span class="s1">'Null result with non-null input'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">return</span> <span class="nv">$json</span><span class="p">;</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Decode a string with URL-safe Base64.
*
* @param string $input A Base64 encoded string
*
* @return string A decoded string
*/</span>
<span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">urlsafeB64Decode</span><span class="p">(</span><span class="nv">$input</span><span class="p">)</span>
<span class="p">{</span>
<span class="nv">$remainder</span> <span class="o">=</span> <span class="nb">strlen</span><span class="p">(</span><span class="nv">$input</span><span class="p">)</span> <span class="o">%</span> <span class="mi">4</span><span class="p">;</span>
<span class="k">if</span> <span class="p">(</span><span class="nv">$remainder</span><span class="p">)</span> <span class="p">{</span>
<span class="nv">$padlen</span> <span class="o">=</span> <span class="mi">4</span> <span class="o">-</span> <span class="nv">$remainder</span><span class="p">;</span>
<span class="nv">$input</span> <span class="mf">.</span><span class="o">=</span> <span class="nb">str_repeat</span><span class="p">(</span><span class="s1">'='</span><span class="p">,</span> <span class="nv">$padlen</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">return</span> <span class="nb">base64_decode</span><span class="p">(</span><span class="nb">strtr</span><span class="p">(</span><span class="nv">$input</span><span class="p">,</span> <span class="s1">'-_'</span><span class="p">,</span> <span class="s1">'+/'</span><span class="p">));</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Encode a string with URL-safe Base64.
*
* @param string $input The string you want encoded
*
* @return string The base64 encode of what you passed in
*/</span>
<span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">urlsafeB64Encode</span><span class="p">(</span><span class="nv">$input</span><span class="p">)</span>
<span class="p">{</span>
<span class="k">return</span> <span class="nb">str_replace</span><span class="p">(</span><span class="s1">'='</span><span class="p">,</span> <span class="s1">''</span><span class="p">,</span> <span class="nb">strtr</span><span class="p">(</span><span class="nb">base64_encode</span><span class="p">(</span><span class="nv">$input</span><span class="p">),</span> <span class="s1">'+/'</span><span class="p">,</span> <span class="s1">'-_'</span><span class="p">));</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Helper method to create a JSON error.
*
* @param int $errno An error number from json_last_error()
*
* @return void
*/</span>
<span class="k">private</span> <span class="k">static</span> <span class="k">function</span> <span class="n">handleJsonError</span><span class="p">(</span><span class="nv">$errno</span><span class="p">)</span>
<span class="p">{</span>
<span class="nv">$messages</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span>
<span class="no">JSON_ERROR_DEPTH</span> <span class="o">=&gt;</span> <span class="s1">'Maximum stack depth exceeded'</span><span class="p">,</span>
<span class="no">JSON_ERROR_STATE_MISMATCH</span> <span class="o">=&gt;</span> <span class="s1">'Invalid or malformed JSON'</span><span class="p">,</span>
<span class="no">JSON_ERROR_CTRL_CHAR</span> <span class="o">=&gt;</span> <span class="s1">'Unexpected control character found'</span><span class="p">,</span>
<span class="no">JSON_ERROR_SYNTAX</span> <span class="o">=&gt;</span> <span class="s1">'Syntax error, malformed JSON'</span><span class="p">,</span>
<span class="no">JSON_ERROR_UTF8</span> <span class="o">=&gt;</span> <span class="s1">'Malformed UTF-8 characters'</span> <span class="c1">//PHP &gt;= 5.3.3</span>
<span class="p">);</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nc">Exception</span><span class="p">(</span>
<span class="k">isset</span><span class="p">(</span><span class="nv">$messages</span><span class="p">[</span><span class="nv">$errno</span><span class="p">])</span>
<span class="o">?</span> <span class="nv">$messages</span><span class="p">[</span><span class="nv">$errno</span><span class="p">]</span>
<span class="o">:</span> <span class="s1">'Unknown JSON error: '</span> <span class="mf">.</span> <span class="nv">$errno</span>
<span class="p">);</span>
<span class="p">}</span>
<span class="cd">/** ----------------------------------------------------------------------------------------------------------
* Get the number of bytes in cryptographic strings.
*
* @param string
*
* @return int
*/</span>
<span class="k">private</span> <span class="k">static</span> <span class="k">function</span> <span class="n">safeStrlen</span><span class="p">(</span><span class="nv">$str</span><span class="p">)</span>
<span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="nb">function_exists</span><span class="p">(</span><span class="s1">'mb_strlen'</span><span class="p">))</span> <span class="p">{</span>
<span class="k">return</span> <span class="nb">mb_strlen</span><span class="p">(</span><span class="nv">$str</span><span class="p">,</span> <span class="s1">'8bit'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">return</span> <span class="nb">strlen</span><span class="p">(</span><span class="nv">$str</span><span class="p">);</span>
<span class="p">}</span>
<span class="p">}</span>
</code></pre></div></div>
<hr />
<h2 id="chiffrement-par-clé-secrète">Chiffrement par clé secrète</h2>
<p>Le cryptage par clé secrète (ou cryptage symétrique comme on lappelle aussi) utilise une seule clé pour crypter et décrypter les données. Voyons comment nous allons mettre en place un tel mécanisme en utilisant Sodium, qui a été introduit dans PHP 7.2. Si vous utilisez une version plus ancienne de PHP, vous pouvez installer sodium via PECL.</p>
<p>Tout dabord, nous avons besoin dune clé de cryptage, qui peut être générée en utilisant la fonction <code class="language-plaintext highlighter-rouge">random_bytes()</code>. Habituellement, vous ne le ferez quune seule fois et le stockerez comme variable denvironnement. Rappelez-vous que cette clé doit être gardée secrète à tout prix. Une fois que la clé est compromise, les données cryptées le sont aussi.</p>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>$key = random_bytes(SODIUM_CRYPTO_SECRETBOX_KEYBYTES);
</code></pre></div></div>
<p>Pour crypter la valeur, nous la passons à <code class="language-plaintext highlighter-rouge">sodium_crypto_secretbox()</code> avec notre <code class="language-plaintext highlighter-rouge">$key</code> et un <code class="language-plaintext highlighter-rouge">$nonce</code>. Le nonce est généré en utilisant <code class="language-plaintext highlighter-rouge">random_bytes()</code>, car le même nonce ne doit jamais être réutilisé.</p>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>$nonce = random_bytes(SODIUM_CRYPTO_SECRETBOX_NONCEBYTES);
$ciphertext = sodium_crypto_secretbox('This is a secret!', $nonce, $key);
</code></pre></div></div>
<p>Cela pose un problème car nous avons besoin du nonce pour décrypter la valeur plus tard. Heureusement, les nonces nont pas besoin dêtre gardées secrètes pour que nous puissions les préfixer à notre $ciphertext puis base64_encode() la valeur avant de les enregistrer dans la base de données.</p>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>$encoded = base64_encode($nonce . $ciphertext);
var_dump($encoded);
// string 'v6KhzRACVfUCyJKCGQF4VNoPXYfeFY+/pyRZcixz4x/0jLJOo+RbeGBTiZudMLEO7aRvg44HRecC' (length=76)
</code></pre></div></div>
<p>Lorsquil sagit de décrypter la valeur, nous faisons le contraire.</p>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>$decoded = base64_decode($encoded);
</code></pre></div></div>
<p>Parce que nous connaissons la longueur de nonce, nous pouvons lextraire en utilisant <code class="language-plaintext highlighter-rouge">mb_substr()</code> avant de décrypter la valeur.</p>
<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>$nonce = mb_substr($decoded, 0, SODIUM_CRYPTO_SECRETBOX_NONCEBYTES, '8bit');
$ciphertext = mb_substr($decoded, SODIUM_CRYPTO_SECRETBOX_NONCEBYTES, null, '8bit');
$plaintext = sodium_crypto_secretbox_open($ciphertext, $nonce, $key);
var_dump($plaintext);
// string 'This is a secret!' (length=17)
</code></pre></div></div>
<p>Exemples</p>
<div class="language-php highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="cp">&lt;?php</span>
<span class="k">echo</span> <span class="s2">"Chiffrage</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span>
<span class="nv">$key</span> <span class="o">=</span> <span class="nb">random_bytes</span><span class="p">(</span><span class="no">SODIUM_CRYPTO_SECRETBOX_KEYBYTES</span><span class="p">);</span>
<span class="nv">$nonce</span> <span class="o">=</span> <span class="nb">random_bytes</span><span class="p">(</span><span class="no">SODIUM_CRYPTO_SECRETBOX_NONCEBYTES</span><span class="p">);</span>
<span class="nv">$ciphertext</span> <span class="o">=</span> <span class="nb">sodium_crypto_secretbox</span><span class="p">(</span><span class="s1">'This is a secret!'</span><span class="p">,</span> <span class="nv">$nonce</span><span class="p">,</span> <span class="nv">$key</span><span class="p">);</span>
<span class="nv">$encoded</span> <span class="o">=</span> <span class="nb">base64_encode</span><span class="p">(</span><span class="nv">$nonce</span> <span class="mf">.</span> <span class="nv">$ciphertext</span><span class="p">);</span>
<span class="nb">var_dump</span><span class="p">(</span><span class="nv">$encoded</span><span class="p">);</span>
<span class="k">echo</span> <span class="s2">"Déchiffrage</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span>
<span class="nv">$decoded</span> <span class="o">=</span> <span class="nb">base64_decode</span><span class="p">(</span><span class="nv">$encoded</span><span class="p">);</span>
<span class="nv">$nonce</span> <span class="o">=</span> <span class="nb">mb_substr</span><span class="p">(</span><span class="nv">$decoded</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="no">SODIUM_CRYPTO_SECRETBOX_NONCEBYTES</span><span class="p">,</span> <span class="s1">'8bit'</span><span class="p">);</span>
<span class="nv">$ciphertext</span> <span class="o">=</span> <span class="nb">mb_substr</span><span class="p">(</span><span class="nv">$decoded</span><span class="p">,</span> <span class="no">SODIUM_CRYPTO_SECRETBOX_NONCEBYTES</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="s1">'8bit'</span><span class="p">);</span>
<span class="nv">$plaintext</span> <span class="o">=</span> <span class="nb">sodium_crypto_secretbox_open</span><span class="p">(</span><span class="nv">$ciphertext</span><span class="p">,</span> <span class="nv">$nonce</span><span class="p">,</span> <span class="nv">$key</span><span class="p">);</span>
<span class="nb">var_dump</span><span class="p">(</span><span class="nv">$plaintext</span><span class="p">);</span>
<span class="nv">$msg</span> <span class="o">=</span> <span class="s1">'This is a super secret message!'</span><span class="p">;</span>
<span class="c1">// Generating an encryption key and a nonce</span>
<span class="nv">$key</span> <span class="o">=</span> <span class="nb">random_bytes</span><span class="p">(</span><span class="no">SODIUM_CRYPTO_SECRETBOX_KEYBYTES</span><span class="p">);</span> <span class="c1">// 256 bit</span>
<span class="nv">$nonce</span> <span class="o">=</span> <span class="nb">random_bytes</span><span class="p">(</span><span class="no">SODIUM_CRYPTO_SECRETBOX_NONCEBYTES</span><span class="p">);</span> <span class="c1">// 24 bytes</span>
<span class="c1">// Encrypt</span>
<span class="nv">$ciphertext</span> <span class="o">=</span> <span class="nb">sodium_crypto_secretbox</span><span class="p">(</span><span class="nv">$msg</span><span class="p">,</span> <span class="nv">$nonce</span><span class="p">,</span> <span class="nv">$key</span><span class="p">);</span>
<span class="c1">// Decrypt</span>
<span class="nv">$plaintext</span> <span class="o">=</span> <span class="nb">sodium_crypto_secretbox_open</span><span class="p">(</span><span class="nv">$ciphertext</span><span class="p">,</span> <span class="nv">$nonce</span><span class="p">,</span> <span class="nv">$key</span><span class="p">);</span>
<span class="k">echo</span> <span class="nv">$plaintext</span> <span class="o">===</span> <span class="nv">$msg</span> <span class="o">?</span> <span class="s1">'Success'</span> <span class="o">:</span> <span class="s1">'Error'</span><span class="p">;</span>
<span class="nv">$msg</span> <span class="o">=</span> <span class="s1">'This is the message to authenticate!'</span><span class="p">;</span>
<span class="nv">$key</span> <span class="o">=</span> <span class="nb">random_bytes</span><span class="p">(</span><span class="no">SODIUM_CRYPTO_SECRETBOX_KEYBYTES</span><span class="p">);</span> <span class="c1">// 256 bit</span>
<span class="c1">// Generate the Message Authentication Code</span>
<span class="nv">$mac</span> <span class="o">=</span> <span class="nb">sodium_crypto_auth</span><span class="p">(</span><span class="nv">$msg</span><span class="p">,</span> <span class="nv">$key</span><span class="p">);</span>
<span class="c1">// Altering $mac or $msg, verification will fail</span>
<span class="k">echo</span> <span class="nb">sodium_crypto_auth_verify</span><span class="p">(</span><span class="nv">$mac</span><span class="p">,</span> <span class="nv">$msg</span><span class="p">,</span> <span class="nv">$key</span><span class="p">)</span> <span class="o">?</span> <span class="s1">'Success'</span> <span class="o">:</span> <span class="s1">'Error'</span><span class="p">;</span>
<span class="nv">$password</span> <span class="o">=</span> <span class="s1">'password'</span><span class="p">;</span>
<span class="k">echo</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">Argon2i with Sodium</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span>
<span class="nv">$hash</span> <span class="o">=</span> <span class="nb">sodium_crypto_pwhash_str</span><span class="p">(</span>
<span class="nv">$password</span><span class="p">,</span>
<span class="no">SODIUM_CRYPTO_PWHASH_OPSLIMIT_INTERACTIVE</span><span class="p">,</span>
<span class="no">SODIUM_CRYPTO_PWHASH_MEMLIMIT_INTERACTIVE</span>
<span class="p">);</span> <span class="c1">// 97 bytes</span>
<span class="k">echo</span> <span class="nb">sodium_crypto_pwhash_str_verify</span><span class="p">(</span><span class="nv">$hash</span><span class="p">,</span> <span class="nv">$password</span><span class="p">)</span> <span class="o">?</span>
<span class="s1">'OK'</span> <span class="o">:</span> <span class="s1">'Error'</span><span class="p">;</span>
<span class="k">echo</span> <span class="s2">"</span><span class="se">\n</span><span class="s2">Argon2i without Sodium</span><span class="se">\n</span><span class="s2">"</span><span class="p">;</span>
<span class="nv">$hash</span> <span class="o">=</span> <span class="nb">password_hash</span><span class="p">(</span><span class="nv">$password</span><span class="p">,</span> <span class="no">PASSWORD_ARGON2I</span><span class="p">);</span> <span class="c1">// 95 bytes</span>
<span class="k">echo</span> <span class="nb">password_verify</span><span class="p">(</span><span class="nv">$password</span><span class="p">,</span> <span class="nv">$hash</span><span class="p">)</span> <span class="o">?</span> <span class="s1">'OK'</span> <span class="o">:</span> <span class="s1">'Error'</span><span class="p">;</span>
<span class="cp">?&gt;</span>
</code></pre></div></div>
<p>Cest tout ce quil y a à faire avec le cryptage par clé secrète en PHP, grâce à Sodium !</p>
</div>
<div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2019-12-25T00:00:00+01:00"><!-- start custom article footer snippet -->
<!-- end custom article footer snippet -->
<!--
<div align="right"><a type="application/rss+xml" href="/feed.xml" title="S'abonner"><i class="fa fa-rss fa-2x"></i></a>
&emsp;</div>
-->
</footer>
<div class="article__section-navigator clearfix"><div class="previous"><span>PRÉCÉDENT</span><a href="/2019/12/25/Jekyll-Linux-Debian9-Stretch.html">Jekyll-Linux-Debian9-Stretch</a></div><div class="next"><span>SUIVANT</span><a href="/2019/12/25/KVM-Xen-OpenVZ_2017-01-04T09.56.14.html">KVM-Xen-OpenVZ_2017-01-04T09.56.14</a></div></div></div>
</div>
<script>(function() {
var SOURCES = window.TEXT_VARIABLES.sources;
window.Lazyload.js(SOURCES.jquery, function() {
$(function() {
var $this ,$scroll;
var $articleContent = $('.js-article-content');
var hasSidebar = $('.js-page-root').hasClass('layout--page--sidebar');
var scroll = hasSidebar ? '.js-page-main' : 'html, body';
$scroll = $(scroll);
$articleContent.find('.highlight').each(function() {
$this = $(this);
$this.attr('data-lang', $this.find('code').attr('data-lang'));
});
$articleContent.find('h1[id], h2[id], h3[id], h4[id], h5[id], h6[id]').each(function() {
$this = $(this);
$this.append($('<a class="anchor d-print-none" aria-hidden="true"></a>').html('<i class="fas fa-anchor"></i>'));
});
$articleContent.on('click', '.anchor', function() {
$scroll.scrollToAnchor('#' + $(this).parent().attr('id'), 400);
});
});
});
})();
</script>
</div><section class="page__comments d-print-none"></section></article><!-- start custom main bottom snippet -->
<!-- end custom main bottom snippet -->
</div>
</div></div></div></div>
</div><script>(function() {
var SOURCES = window.TEXT_VARIABLES.sources;
window.Lazyload.js(SOURCES.jquery, function() {
var $body = $('body'), $window = $(window);
var $pageRoot = $('.js-page-root'), $pageMain = $('.js-page-main');
var activeCount = 0;
function modal(options) {
var $root = this, visible, onChange, hideWhenWindowScroll = false;
var scrollTop;
function setOptions(options) {
var _options = options || {};
visible = _options.initialVisible === undefined ? false : show;
onChange = _options.onChange;
hideWhenWindowScroll = _options.hideWhenWindowScroll;
}
function init() {
setState(visible);
}
function setState(isShow) {
if (isShow === visible) {
return;
}
visible = isShow;
if (visible) {
activeCount++;
scrollTop = $(window).scrollTop() || $pageMain.scrollTop();
$root.addClass('modal--show');
$pageMain.scrollTop(scrollTop);
activeCount === 1 && ($pageRoot.addClass('show-modal'), $body.addClass('of-hidden'));
hideWhenWindowScroll && window.hasEvent('touchstart') && $window.on('scroll', hide);
$window.on('keyup', handleKeyup);
} else {
activeCount > 0 && activeCount--;
$root.removeClass('modal--show');
$window.scrollTop(scrollTop);
activeCount === 0 && ($pageRoot.removeClass('show-modal'), $body.removeClass('of-hidden'));
hideWhenWindowScroll && window.hasEvent('touchstart') && $window.off('scroll', hide);
$window.off('keyup', handleKeyup);
}
onChange && onChange(visible);
}
function show() {
setState(true);
}
function hide() {
setState(false);
}
function handleKeyup(e) {
// Char Code: 27 ESC
if (e.which === 27) {
hide();
}
}
setOptions(options);
init();
return {
show: show,
hide: hide,
$el: $root
};
}
$.fn.modal = modal;
});
})();
</script><div class="modal modal--overflow page__search-modal d-print-none js-page-search-modal"><script>
(function () {
var SOURCES = window.TEXT_VARIABLES.sources;
window.Lazyload.js(SOURCES.jquery, function() {
// search panel
var search = (window.search || (window.search = {}));
var useDefaultSearchBox = window.useDefaultSearchBox === undefined ?
true : window.useDefaultSearchBox ;
var $searchModal = $('.js-page-search-modal');
var $searchToggle = $('.js-search-toggle');
var searchModal = $searchModal.modal({ onChange: handleModalChange, hideWhenWindowScroll: true });
var modalVisible = false;
search.searchModal = searchModal;
var $searchBox = null;
var $searchInput = null;
var $searchClear = null;
function getModalVisible() {
return modalVisible;
}
search.getModalVisible = getModalVisible;
function handleModalChange(visible) {
modalVisible = visible;
if (visible) {
search.onShow && search.onShow();
useDefaultSearchBox && $searchInput[0] && $searchInput[0].focus();
} else {
search.onShow && search.onHide();
useDefaultSearchBox && $searchInput[0] && $searchInput[0].blur();
setTimeout(function() {
useDefaultSearchBox && ($searchInput.val(''), $searchBox.removeClass('not-empty'));
search.clear && search.clear();
window.pageAsideAffix && window.pageAsideAffix.refresh();
}, 400);
}
}
$searchToggle.on('click', function() {
modalVisible ? searchModal.hide() : searchModal.show();
});
// Char Code: 83 S, 191 /
$(window).on('keyup', function(e) {
if (!modalVisible && !window.isFormElement(e.target || e.srcElement) && (e.which === 83 || e.which === 191)) {
modalVisible || searchModal.show();
}
});
if (useDefaultSearchBox) {
$searchBox = $('.js-search-box');
$searchInput = $searchBox.children('input');
$searchClear = $searchBox.children('.js-icon-clear');
search.getSearchInput = function() {
return $searchInput.get(0);
};
search.getVal = function() {
return $searchInput.val();
};
search.setVal = function(val) {
$searchInput.val(val);
};
$searchInput.on('focus', function() {
$(this).addClass('focus');
});
$searchInput.on('blur', function() {
$(this).removeClass('focus');
});
$searchInput.on('input', window.throttle(function() {
var val = $(this).val();
if (val === '' || typeof val !== 'string') {
search.clear && search.clear();
} else {
$searchBox.addClass('not-empty');
search.onInputNotEmpty && search.onInputNotEmpty(val);
}
}, 400));
$searchClear.on('click', function() {
$searchInput.val(''); $searchBox.removeClass('not-empty');
search.clear && search.clear();
});
}
});
})();
</script><div class="search search--dark">
<div class="main">
<div class="search__header">Recherche</div>
<div class="search-bar">
<div class="search-box js-search-box">
<div class="search-box__icon-search"><i class="fas fa-search"></i></div>
<input id="search-input" type="text" />
<div class="search-box__icon-clear js-icon-clear">
<a><i class="fas fa-times"></i></a>
</div>
</div>
<button class="button button--theme-dark button--pill search__cancel js-search-toggle">
Annuler</button>
</div>
<div id="results-container" class="search-result js-search-result"></div>
</div>
</div>
<!-- Script pointing to search-script.js -->
<script>/*!
* Simple-Jekyll-Search
* Copyright 2015-2020, Christian Fei
* Licensed under the MIT License.
*/
(function(){
'use strict'
var _$Templater_7 = {
compile: compile,
setOptions: setOptions
}
const options = {}
options.pattern = /\{(.*?)\}/g
options.template = ''
options.middleware = function () {}
function setOptions (_options) {
options.pattern = _options.pattern || options.pattern
options.template = _options.template || options.template
if (typeof _options.middleware === 'function') {
options.middleware = _options.middleware
}
}
function compile (data) {
return options.template.replace(options.pattern, function (match, prop) {
const value = options.middleware(prop, data[prop], options.template)
if (typeof value !== 'undefined') {
return value
}
return data[prop] || match
})
}
'use strict';
function fuzzysearch (needle, haystack) {
var tlen = haystack.length;
var qlen = needle.length;
if (qlen > tlen) {
return false;
}
if (qlen === tlen) {
return needle === haystack;
}
outer: for (var i = 0, j = 0; i < qlen; i++) {
var nch = needle.charCodeAt(i);
while (j < tlen) {
if (haystack.charCodeAt(j++) === nch) {
continue outer;
}
}
return false;
}
return true;
}
var _$fuzzysearch_1 = fuzzysearch;
'use strict'
/* removed: const _$fuzzysearch_1 = require('fuzzysearch') */;
var _$FuzzySearchStrategy_5 = new FuzzySearchStrategy()
function FuzzySearchStrategy () {
this.matches = function (string, crit) {
return _$fuzzysearch_1(crit.toLowerCase(), string.toLowerCase())
}
}
'use strict'
var _$LiteralSearchStrategy_6 = new LiteralSearchStrategy()
function LiteralSearchStrategy () {
this.matches = function (str, crit) {
if (!str) return false
str = str.trim().toLowerCase()
crit = crit.trim().toLowerCase()
return crit.split(' ').filter(function (word) {
return str.indexOf(word) >= 0
}).length === crit.split(' ').length
}
}
'use strict'
var _$Repository_4 = {
put: put,
clear: clear,
search: search,
setOptions: __setOptions_4
}
/* removed: const _$FuzzySearchStrategy_5 = require('./SearchStrategies/FuzzySearchStrategy') */;
/* removed: const _$LiteralSearchStrategy_6 = require('./SearchStrategies/LiteralSearchStrategy') */;
function NoSort () {
return 0
}
const data = []
let opt = {}
opt.fuzzy = false
opt.limit = 10
opt.searchStrategy = opt.fuzzy ? _$FuzzySearchStrategy_5 : _$LiteralSearchStrategy_6
opt.sort = NoSort
opt.exclude = []
function put (data) {
if (isObject(data)) {
return addObject(data)
}
if (isArray(data)) {
return addArray(data)
}
return undefined
}
function clear () {
data.length = 0
return data
}
function isObject (obj) {
return Boolean(obj) && Object.prototype.toString.call(obj) === '[object Object]'
}
function isArray (obj) {
return Boolean(obj) && Object.prototype.toString.call(obj) === '[object Array]'
}
function addObject (_data) {
data.push(_data)
return data
}
function addArray (_data) {
const added = []
clear()
for (let i = 0, len = _data.length; i < len; i++) {
if (isObject(_data[i])) {
added.push(addObject(_data[i]))
}
}
return added
}
function search (crit) {
if (!crit) {
return []
}
return findMatches(data, crit, opt.searchStrategy, opt).sort(opt.sort)
}
function __setOptions_4 (_opt) {
opt = _opt || {}
opt.fuzzy = _opt.fuzzy || false
opt.limit = _opt.limit || 10
opt.searchStrategy = _opt.fuzzy ? _$FuzzySearchStrategy_5 : _$LiteralSearchStrategy_6
opt.sort = _opt.sort || NoSort
opt.exclude = _opt.exclude || []
}
function findMatches (data, crit, strategy, opt) {
const matches = []
for (let i = 0; i < data.length && matches.length < opt.limit; i++) {
const match = findMatchesInObject(data[i], crit, strategy, opt)
if (match) {
matches.push(match)
}
}
return matches
}
function findMatchesInObject (obj, crit, strategy, opt) {
for (const key in obj) {
if (!isExcluded(obj[key], opt.exclude) && strategy.matches(obj[key], crit)) {
return obj
}
}
}
function isExcluded (term, excludedTerms) {
for (let i = 0, len = excludedTerms.length; i < len; i++) {
const excludedTerm = excludedTerms[i]
if (new RegExp(excludedTerm).test(term)) {
return true
}
}
return false
}
/* globals ActiveXObject:false */
'use strict'
var _$JSONLoader_2 = {
load: load
}
function load (location, callback) {
const xhr = getXHR()
xhr.open('GET', location, true)
xhr.onreadystatechange = createStateChangeListener(xhr, callback)
xhr.send()
}
function createStateChangeListener (xhr, callback) {
return function () {
if (xhr.readyState === 4 && xhr.status === 200) {
try {
callback(null, JSON.parse(xhr.responseText))
} catch (err) {
callback(err, null)
}
}
}
}
function getXHR () {
return window.XMLHttpRequest ? new window.XMLHttpRequest() : new ActiveXObject('Microsoft.XMLHTTP')
}
'use strict'
var _$OptionsValidator_3 = function OptionsValidator (params) {
if (!validateParams(params)) {
throw new Error('-- OptionsValidator: required options missing')
}
if (!(this instanceof OptionsValidator)) {
return new OptionsValidator(params)
}
const requiredOptions = params.required
this.getRequiredOptions = function () {
return requiredOptions
}
this.validate = function (parameters) {
const errors = []
requiredOptions.forEach(function (requiredOptionName) {
if (typeof parameters[requiredOptionName] === 'undefined') {
errors.push(requiredOptionName)
}
})
return errors
}
function validateParams (params) {
if (!params) {
return false
}
return typeof params.required !== 'undefined' && params.required instanceof Array
}
}
'use strict'
var _$utils_9 = {
merge: merge,
isJSON: isJSON
}
function merge (defaultParams, mergeParams) {
const mergedOptions = {}
for (const option in defaultParams) {
mergedOptions[option] = defaultParams[option]
if (typeof mergeParams[option] !== 'undefined') {
mergedOptions[option] = mergeParams[option]
}
}
return mergedOptions
}
function isJSON (json) {
try {
if (json instanceof Object && JSON.parse(JSON.stringify(json))) {
return true
}
return false
} catch (err) {
return false
}
}
var _$src_8 = {};
(function (window) {
'use strict'
let options = {
searchInput: null,
resultsContainer: null,
json: [],
success: Function.prototype,
searchResultTemplate: '<li><a href="{url}" title="{desc}">{title}</a></li>',
templateMiddleware: Function.prototype,
sortMiddleware: function () {
return 0
},
noResultsText: 'No results found',
limit: 10,
fuzzy: false,
debounceTime: null,
exclude: []
}
let debounceTimerHandle
const debounce = function (func, delayMillis) {
if (delayMillis) {
clearTimeout(debounceTimerHandle)
debounceTimerHandle = setTimeout(func, delayMillis)
} else {
func.call()
}
}
const requiredOptions = ['searchInput', 'resultsContainer', 'json']
/* removed: const _$Templater_7 = require('./Templater') */;
/* removed: const _$Repository_4 = require('./Repository') */;
/* removed: const _$JSONLoader_2 = require('./JSONLoader') */;
const optionsValidator = _$OptionsValidator_3({
required: requiredOptions
})
/* removed: const _$utils_9 = require('./utils') */;
window.SimpleJekyllSearch = function (_options) {
const errors = optionsValidator.validate(_options)
if (errors.length > 0) {
throwError('You must specify the following required options: ' + requiredOptions)
}
options = _$utils_9.merge(options, _options)
_$Templater_7.setOptions({
template: options.searchResultTemplate,
middleware: options.templateMiddleware
})
_$Repository_4.setOptions({
fuzzy: options.fuzzy,
limit: options.limit,
sort: options.sortMiddleware,
exclude: options.exclude
})
if (_$utils_9.isJSON(options.json)) {
initWithJSON(options.json)
} else {
initWithURL(options.json)
}
const rv = {
search: search
}
typeof options.success === 'function' && options.success.call(rv)
return rv
}
function initWithJSON (json) {
_$Repository_4.put(json)
registerInput()
}
function initWithURL (url) {
_$JSONLoader_2.load(url, function (err, json) {
if (err) {
throwError('failed to get JSON (' + url + ')')
}
initWithJSON(json)
})
}
function emptyResultsContainer () {
options.resultsContainer.innerHTML = ''
}
function appendToResultsContainer (text) {
options.resultsContainer.innerHTML += text
}
function registerInput () {
options.searchInput.addEventListener('input', function (e) {
if (isWhitelistedKey(e.which)) {
emptyResultsContainer()
debounce(function () { search(e.target.value) }, options.debounceTime)
}
})
}
function search (query) {
if (isValidQuery(query)) {
emptyResultsContainer()
render(_$Repository_4.search(query), query)
}
}
function render (results, query) {
const len = results.length
if (len === 0) {
return appendToResultsContainer(options.noResultsText)
}
for (let i = 0; i < len; i++) {
results[i].query = query
appendToResultsContainer(_$Templater_7.compile(results[i]))
}
}
function isValidQuery (query) {
return query && query.length > 0
}
function isWhitelistedKey (key) {
return [13, 16, 20, 37, 38, 39, 40, 91].indexOf(key) === -1
}
function throwError (message) {
throw new Error('SimpleJekyllSearch --- ' + message)
}
})(window)
}());
</script>
<!-- Configuration -->
<script>
SimpleJekyllSearch({
searchInput: document.getElementById('search-input'),
resultsContainer: document.getElementById('results-container'),
noResultsText: '<p>Aucun résultat!</p>',
json: '/search.json',
searchResultTemplate: '<li><a href="{url}">{date}&nbsp;{title}</a>&nbsp;(Création {create})</li>'
})
</script>
</div></div>
<script>(function() {
var SOURCES = window.TEXT_VARIABLES.sources;
window.Lazyload.js(SOURCES.jquery, function() {
function scrollToAnchor(anchor, duration, callback) {
var $root = this;
$root.animate({ scrollTop: $(anchor).position().top }, duration, function() {
window.history.replaceState(null, '', window.location.href.split('#')[0] + anchor);
callback && callback();
});
}
$.fn.scrollToAnchor = scrollToAnchor;
});
})();
(function() {
var SOURCES = window.TEXT_VARIABLES.sources;
window.Lazyload.js(SOURCES.jquery, function() {
function affix(options) {
var $root = this, $window = $(window), $scrollTarget, $scroll,
offsetBottom = 0, scrollTarget = window, scroll = window.document, disabled = false, isOverallScroller = true,
rootTop, rootLeft, rootHeight, scrollBottom, rootBottomTop,
hasInit = false, curState;
function setOptions(options) {
var _options = options || {};
_options.offsetBottom && (offsetBottom = _options.offsetBottom);
_options.scrollTarget && (scrollTarget = _options.scrollTarget);
_options.scroll && (scroll = _options.scroll);
_options.disabled !== undefined && (disabled = _options.disabled);
$scrollTarget = $(scrollTarget);
isOverallScroller = window.isOverallScroller($scrollTarget[0]);
$scroll = $(scroll);
}
function preCalc() {
top();
rootHeight = $root.outerHeight();
rootTop = $root.offset().top + (isOverallScroller ? 0 : $scrollTarget.scrollTop());
rootLeft = $root.offset().left;
}
function calc(needPreCalc) {
needPreCalc && preCalc();
scrollBottom = $scroll.outerHeight() - offsetBottom - rootHeight;
rootBottomTop = scrollBottom - rootTop;
}
function top() {
if (curState !== 'top') {
$root.removeClass('fixed').css({
left: 0,
top: 0
});
curState = 'top';
}
}
function fixed() {
if (curState !== 'fixed') {
$root.addClass('fixed').css({
left: rootLeft + 'px',
top: 0
});
curState = 'fixed';
}
}
function bottom() {
if (curState !== 'bottom') {
$root.removeClass('fixed').css({
left: 0,
top: rootBottomTop + 'px'
});
curState = 'bottom';
}
}
function setState() {
var scrollTop = $scrollTarget.scrollTop();
if (scrollTop >= rootTop && scrollTop <= scrollBottom) {
fixed();
} else if (scrollTop < rootTop) {
top();
} else {
bottom();
}
}
function init() {
if(!hasInit) {
var interval, timeout;
calc(true); setState();
// run calc every 100 millisecond
interval = setInterval(function() {
calc();
}, 100);
timeout = setTimeout(function() {
clearInterval(interval);
}, 45000);
window.pageLoad.then(function() {
setTimeout(function() {
clearInterval(interval);
clearTimeout(timeout);
}, 3000);
});
$scrollTarget.on('scroll', function() {
disabled || setState();
});
$window.on('resize', function() {
disabled || (calc(true), setState());
});
hasInit = true;
}
}
setOptions(options);
if (!disabled) {
init();
}
$window.on('resize', window.throttle(function() {
init();
}, 200));
return {
setOptions: setOptions,
refresh: function() {
calc(true, { animation: false }); setState();
}
};
}
$.fn.affix = affix;
});
})();
(function() {
var SOURCES = window.TEXT_VARIABLES.sources;
window.Lazyload.js(SOURCES.jquery, function() {
function toc(options) {
var $root = this, $window = $(window), $scrollTarget, $scroller, $tocUl = $('<ul class="toc toc--ellipsis"></ul>'), $tocLi, $headings, $activeLast, $activeCur,
selectors = 'h1,h2,h3', container = 'body', scrollTarget = window, scroller = 'html, body', disabled = false,
headingsPos, scrolling = false, hasRendered = false, hasInit = false;
function setOptions(options) {
var _options = options || {};
_options.selectors && (selectors = _options.selectors);
_options.container && (container = _options.container);
_options.scrollTarget && (scrollTarget = _options.scrollTarget);
_options.scroller && (scroller = _options.scroller);
_options.disabled !== undefined && (disabled = _options.disabled);
$headings = $(container).find(selectors).filter('[id]');
$scrollTarget = $(scrollTarget);
$scroller = $(scroller);
}
function calc() {
headingsPos = [];
$headings.each(function() {
headingsPos.push(Math.floor($(this).position().top));
});
}
function setState(element, disabled) {
var scrollTop = $scrollTarget.scrollTop(), i;
if (disabled || !headingsPos || headingsPos.length < 1) { return; }
if (element) {
$activeCur = element;
} else {
for (i = 0; i < headingsPos.length; i++) {
if (scrollTop >= headingsPos[i]) {
$activeCur = $tocLi.eq(i);
} else {
$activeCur || ($activeCur = $tocLi.eq(i));
break;
}
}
}
$activeLast && $activeLast.removeClass('active');
($activeLast = $activeCur).addClass('active');
}
function render() {
if(!hasRendered) {
$root.append($tocUl);
$headings.each(function() {
var $this = $(this);
$tocUl.append($('<li></li>').addClass('toc-' + $this.prop('tagName').toLowerCase())
.append($('<a></a>').text($this.text()).attr('href', '#' + $this.prop('id'))));
});
$tocLi = $tocUl.children('li');
$tocUl.on('click', 'a', function(e) {
e.preventDefault();
var $this = $(this);
scrolling = true;
setState($this.parent());
$scroller.scrollToAnchor($this.attr('href'), 400, function() {
scrolling = false;
});
});
}
hasRendered = true;
}
function init() {
var interval, timeout;
if(!hasInit) {
render(); calc(); setState(null, scrolling);
// run calc every 100 millisecond
interval = setInterval(function() {
calc();
}, 100);
timeout = setTimeout(function() {
clearInterval(interval);
}, 45000);
window.pageLoad.then(function() {
setTimeout(function() {
clearInterval(interval);
clearTimeout(timeout);
}, 3000);
});
$scrollTarget.on('scroll', function() {
disabled || setState(null, scrolling);
});
$window.on('resize', window.throttle(function() {
if (!disabled) {
render(); calc(); setState(null, scrolling);
}
}, 100));
}
hasInit = true;
}
setOptions(options);
if (!disabled) {
init();
}
$window.on('resize', window.throttle(function() {
init();
}, 200));
return {
setOptions: setOptions
};
}
$.fn.toc = toc;
});
})();
/*(function () {
})();*/
</script><script>
/* toc must before affix, since affix need to konw toc' height. */(function() {
var SOURCES = window.TEXT_VARIABLES.sources;
var TOC_SELECTOR = window.TEXT_VARIABLES.site.toc.selectors;
window.Lazyload.js(SOURCES.jquery, function() {
var $window = $(window);
var $articleContent = $('.js-article-content');
var $tocRoot = $('.js-toc-root'), $col2 = $('.js-col-aside');
var toc;
var tocDisabled = false;
var hasSidebar = $('.js-page-root').hasClass('layout--page--sidebar');
var hasToc = $articleContent.find(TOC_SELECTOR).length > 0;
function disabled() {
return $col2.css('display') === 'none' || !hasToc;
}
tocDisabled = disabled();
toc = $tocRoot.toc({
selectors: TOC_SELECTOR,
container: $articleContent,
scrollTarget: hasSidebar ? '.js-page-main' : null,
scroller: hasSidebar ? '.js-page-main' : null,
disabled: tocDisabled
});
$window.on('resize', window.throttle(function() {
tocDisabled = disabled();
toc && toc.setOptions({
disabled: tocDisabled
});
}, 100));
});
})();
(function() {
var SOURCES = window.TEXT_VARIABLES.sources;
window.Lazyload.js(SOURCES.jquery, function() {
var $window = $(window), $pageFooter = $('.js-page-footer');
var $pageAside = $('.js-page-aside');
var affix;
var tocDisabled = false;
var hasSidebar = $('.js-page-root').hasClass('layout--page--sidebar');
affix = $pageAside.affix({
offsetBottom: $pageFooter.outerHeight(),
scrollTarget: hasSidebar ? '.js-page-main' : null,
scroller: hasSidebar ? '.js-page-main' : null,
scroll: hasSidebar ? $('.js-page-main').children() : null,
disabled: tocDisabled
});
$window.on('resize', window.throttle(function() {
affix && affix.setOptions({
disabled: tocDisabled
});
}, 100));
window.pageAsideAffix = affix;
});
})();
</script><!---->
</div>
<script>(function () {
var $root = document.getElementsByClassName('root')[0];
if (window.hasEvent('touchstart')) {
$root.dataset.isTouch = true;
document.addEventListener('touchstart', function(){}, false);
}
})();
</script>
</body>
</html>