meta-tech/pws-auth
meta-tech/pws-auth
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

update README & fix config filename

Browse Source
This commit is contained in:
a-sansara 2017-03-14 21:09:48 +01:00
parent ba89e1d8bd
commit 8f317ad178
4 changed files with 48 additions and 47 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.gitignore vendored Normal file
View File

@ -0,0 +1,2 @@
vendor
composer.lock

47
README.md
View File

@ -28,8 +28,8 @@ wich can be redefined to move the session token part into the complete token
<< hash.session.index >> << hash.noise.length >> << hash.session.index >> << hash.noise.length >>
|-----------------------------------------------------------<<-^->>---------------------------------------------<<-^->>--------| |-----------------------------------------------------------<<-^->>---------------------------------------------<<-^->>--------|
|- type -|-- date ---|------------ obfuscate token ---------<<-^->>-------------- session token ----------------<<-^->> noise -| |- type ||-- date ---|------------ obfuscate token ---------<<-^->>-------------- session token ----------------<<-^->> noise -|
| | 1 | 2 | 3 | 4 | | || 1 | 2 | 3 | 4 |
PwsAuth2 242003031711e1a6104135f04c6c01e6cd5952ecafbb53c928603b0gb64tqo609qse6ovd7lhdvk4fnaqk7cdl26e4d4qh7jb41eu5f1zb5y79m8pgu3 PwsAuth2 242003031711e1a6104135f04c6c01e6cd5952ecafbb53c928603b0gb64tqo609qse6ovd7lhdvk4fnaqk7cdl26e4d4qh7jb41eu5f1zb5y79m8pgu3
@ -54,30 +54,31 @@ user key match the given `Pws-Ident` value
Configuration must be the same on server and client sides Configuration must be the same on server and client sides
Hash definition is a convenient way to obfuscate your tokens Hash definition is a convenient way to obfuscate your tokens
`config/pwsauth.yml`
```yaml ```yaml
pwsauth :
type : PwsAuth2 type : PwsAuth2
header : header :
auth : Pws-Authorization auth : Pws-Authorization
ident : Pws-Ident ident : Pws-Ident
salt : salt :
common : jK5#p9Mh5.Zv} common : jK5#p9Mh5.Zv}
# used for generating user specific salt # used for generating user specific salt
user.index : 10 user.index : 10
user.length : 12 user.length : 12
hash : hash :
sep : / sep : /
algo : sha256 algo : sha256
# effective token length size. out of bound data is simply noise # effective token length size. out of bound data is simply noise
length : 52 length : 52
# session index (or obfuscate length) # session index (or obfuscate length)
session.index : 58 session.index : 58
# ending noise data length) # ending noise data length)
noise.length : 12 noise.length : 12
``` ```
### Authenticator instanciation ### Authenticator instanciation
@ -90,7 +91,7 @@ use Symfony\Component\Yaml\Yaml;
use MetaTech\PwsAuth\Authenticator; use MetaTech\PwsAuth\Authenticator;
$config = Yaml::parse(file_get_contents(__dir__ . '/config/pwsauth.yml')); $config = Yaml::parse(file_get_contents(__dir__ . '/config/pwsauth.yml'));
$authenticator = new Authenticator($config['pwsauth']); $authenticator = new Authenticator($config);
``` ```
### Notes ### Notes

22
config/pwsauth.yml.dist Normal file
View File

@ -0,0 +1,22 @@
type : PwsAuth2
header :
auth : Pws-Authorization
ident : Pws-Ident
salt :
common : jK5#p9Mh5.Zv}
# used for generating user specific salt
user.index : 10
user.length : 12
hash :
sep : /
algo : sha256
# effective token length size. out of bound data is simply noise
length : 52
# session index (or obfuscate length)
session.index : 58
# ending noise data length)
noise.length : 12

24
config/pwshauth.yml.dist
View File

@ -1,24 +0,0 @@
pwsauth :
type : PwsAuth2
header :
auth : Pws-Authorization
ident : Pws-Ident
salt :
common : jK5#p9Mh5.Zv}
# used for generating user specific salt
user.index : 10
user.length : 12
hash :
sep : /
algo : sha256
# effective token length size. out of bound data is simply noise
length : 52
# session index (or obfuscate length)
session.index : 58
# ending noise data length)
noise.length : 12