Home Explore Help
Sign In
chengwenliang
/
newsupernova
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c9405dd336
Branches Tags
newsupernova
/
vendor
/
braintree
/
braintree_php
/
lib
/
Braintree
/
WebhookNotificationGateway.php

WebhookNotificationGateway.php 2.5 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. <?php
    2. 

  2. namespace Braintree;
    3. 

  3. 

  4. class WebhookNotificationGateway
    5. 

  5. {
    6. 

  6. 

  7.     public function __construct($gateway)
    8. 

  8.     {
    9. 

  9.         $this->config = $gateway->config;
    10. 

  10.         $this->config->assertHasAccessTokenOrKeys();
    11. 

  11.     }
    12. 

  12. 

  13.     public function parse($signature, $payload)
    14. 

  14.     {
    15. 

  15.         if (is_null($signature)) {
    16. 

  16.             throw new Exception\InvalidSignature("signature cannot be null");
    17. 

  17.         }
    18. 

  18. 

  19.         if (is_null($payload)) {
    20. 

  20.             throw new Exception\InvalidSignature("payload cannot be null");
    21. 

  21.         }
    22. 

  22. 

  23.         if (preg_match("/[^A-Za-z0-9+=\/\n]/", $payload) === 1) {
    24. 

  24.             throw new Exception\InvalidSignature("payload contains illegal characters");
    25. 

  25.         }
    26. 

  26. 

  27.         self::_validateSignature($signature, $payload);
    28. 

  28. 

  29.         $xml = base64_decode($payload);
    30. 

  30.         $attributes = Xml::buildArrayFromXml($xml);
    31. 

  31.         return WebhookNotification::factory($attributes['notification']);
    32. 

  32.     }
    33. 

  33. 

  34.     public function verify($challenge)
    35. 

  35.     {
    36. 

  36.         if (!preg_match('/^[a-f0-9]{20,32}$/', $challenge)) {
    37. 

  37.             throw new Exception\InvalidChallenge("challenge contains non-hex characters");
    38. 

  38.         }
    39. 

  39.         $publicKey = $this->config->getPublicKey();
    40. 

  40.         $digest = Digest::hexDigestSha1($this->config->getPrivateKey(), $challenge);
    41. 

  41.         return "{$publicKey}|{$digest}";
    42. 

  42.     }
    43. 

  43. 

  44.     private function _payloadMatches($signature, $payload)
    45. 

  45.     {
    46. 

  46.         $payloadSignature = Digest::hexDigestSha1($this->config->getPrivateKey(), $payload);
    47. 

  47.         return Digest::secureCompare($signature, $payloadSignature);
    48. 

  48.     }
    49. 

  49. 

  50.     private function _validateSignature($signatureString, $payload)
    51. 

  51.     {
    52. 

  52.         $signaturePairs = preg_split("/&/", $signatureString);
    53. 

  53.         $signature = self::_matchingSignature($signaturePairs);
    54. 

  54.         if (!$signature) {
    55. 

  55.             throw new Exception\InvalidSignature("no matching public key");
    56. 

  56.         }
    57. 

  57. 

  58.         if (!(self::_payloadMatches($signature, $payload) || self::_payloadMatches($signature, $payload . "\n"))) {
    59. 

  59.             throw new Exception\InvalidSignature("signature does not match payload - one has been modified");
    60. 

  60.         }
    61. 

  61.     }
    62. 

  62. 

  63.     private function _matchingSignature($signaturePairs)
    64. 

  64.     {
    65. 

  65.         foreach ($signaturePairs as $pair)
    66. 

  66.         {
    67. 

  67.             $components = preg_split("/\|/", $pair);
    68. 

  68.             if ($components[0] == $this->config->getPublicKey()) {
    69. 

  69.                 return $components[1];
    70. 

  70.             }
    71. 

  71.         }
    72. 

  72. 

  73.         return null;
    74. 

  74.     }
    75. 

  75. }
    76. 

  76. 

  77. class_alias('Braintree\WebhookNotificationGateway', 'Braintree_WebhookNotificationGateway');
    78.