Sākums Izpētīt Palīdzība
Pierakstīties
fphammerle
/
yii2-client-cert-auth
spogulis no https://github.com/fphammerle/yii2-client-cert-auth
1
0
Atdalīts 0
Faili Problēmas 0 Vikivietne
Koks: 40c3e27c92
Atzari Tagi
yii2-client-cer...
/
Authenticator.php

Authenticator.php 1.3 KB
Vēsture Neapstrādāts

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556 
  1. <?php
    2. 

  2. 

  3. namespace fphammerle\yii2\auth\clientcert;
    4. 

  4. 

  5. class Authenticator extends \yii\base\Component
    6. 

  6. {
    7. 

  7.     use \fphammerle\helpers\PropertyAccessTrait;
    8. 

  8. 

  9.     public function init()
    10. 

  10.     {
    11. 

  11.         parent::init();
    12. 

  12. 

  13.         $this->loginByClientCertficiate();
    14. 

  14.     }
    15. 

  15. 

  16.     /**
    17. 

  17.      * @see \yii\web\User::switchIdentity
    18. 

  18.      * @return IdentityInterface|null
    19. 

  19.      */
    20. 

  20.     public function loginByDistinguishedName($dn, $duration = 0)
    21. 

  21.     {
    22. 

  22.         $subj = Subject::findByDistinguishedName($dn);
    23. 

  23.         if($subj) {
    24. 

  24.             \Yii::$app->user->switchIdentity($subj->identity, $duration);
    25. 

  25.             if(\Yii::$app->user->identity == $subj->identity) {
    26. 

  26.                 return $subj->identity;
    27. 

  27.             } else {
    28. 

  28.                 return null;
    29. 

  29.             }
    30. 

  30.         } else {
    31. 

  31.             return null;
    32. 

  32.         }
    33. 

  33.     }
    34. 

  34. 

  35.     /**
    36. 

  36.      * @return bool
    37. 

  37.      */
    38. 

  38.     public function getClientCertVerified()
    39. 

  39.     {
    40. 

  40.         return isset($_SERVER['SSL_CLIENT_VERIFY'])
    41. 

  41.             && $_SERVER['SSL_CLIENT_VERIFY'] == 'SUCCESS';
    42. 

  42.     }
    43. 

  43. 

  44.     /**
    45. 

  45.      * @return IdentityInterface|null
    46. 

  46.      */
    47. 

  47.     public function loginByClientCertficiate()
    48. 

  48.     {
    49. 

  49.         if($this->getClientCertVerified()) {
    50. 

  50.             // Subject DN in client certificate
    51. 

  51.             return $this->loginByDistinguishedName($_SERVER["SSL_CLIENT_S_DN"]);
    52. 

  52.         } else {
    53. 

  53.             return null;
    54. 

  54.         }
    55. 

  55.     }
    56. 

  56. }
    57.