You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

SASL.php 5.2KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125
  1. <?php
  2. // +-----------------------------------------------------------------------+
  3. // | Copyright (c) 2002-2003 Richard Heyes |
  4. // | All rights reserved. |
  5. // | |
  6. // | Redistribution and use in source and binary forms, with or without |
  7. // | modification, are permitted provided that the following conditions |
  8. // | are met: |
  9. // | |
  10. // | o Redistributions of source code must retain the above copyright |
  11. // | notice, this list of conditions and the following disclaimer. |
  12. // | o Redistributions in binary form must reproduce the above copyright |
  13. // | notice, this list of conditions and the following disclaimer in the |
  14. // | documentation and/or other materials provided with the distribution.|
  15. // | o The names of the authors may not be used to endorse or promote |
  16. // | products derived from this software without specific prior written |
  17. // | permission. |
  18. // | |
  19. // | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS |
  20. // | "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT |
  21. // | LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR |
  22. // | A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT |
  23. // | OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
  24. // | SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT |
  25. // | LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
  26. // | DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
  27. // | THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
  28. // | (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE |
  29. // | OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
  30. // | |
  31. // +-----------------------------------------------------------------------+
  32. // | Author: Richard Heyes <richard@php.net> |
  33. // +-----------------------------------------------------------------------+
  34. //
  35. // $Id$
  36. /**
  37. * Client implementation of various SASL mechanisms
  38. *
  39. * @author Richard Heyes <richard@php.net>
  40. * @access public
  41. * @version 1.0
  42. * @package Auth_SASL
  43. */
  44. require_once('PEAR.php');
  45. class Auth_SASL
  46. {
  47. /**
  48. * Factory class. Returns an object of the request
  49. * type.
  50. *
  51. * @param string $type One of: Anonymous
  52. * Plain
  53. * CramMD5
  54. * DigestMD5
  55. * SCRAM-* (any mechanism of the SCRAM family)
  56. * Types are not case sensitive
  57. */
  58. function &factory($type)
  59. {
  60. switch (strtolower($type)) {
  61. case 'anonymous':
  62. $filename = 'Auth/SASL/Anonymous.php';
  63. $classname = 'Auth_SASL_Anonymous';
  64. break;
  65. case 'login':
  66. $filename = 'Auth/SASL/Login.php';
  67. $classname = 'Auth_SASL_Login';
  68. break;
  69. case 'plain':
  70. $filename = 'Auth/SASL/Plain.php';
  71. $classname = 'Auth_SASL_Plain';
  72. break;
  73. case 'external':
  74. $filename = 'Auth/SASL/External.php';
  75. $classname = 'Auth_SASL_External';
  76. break;
  77. case 'crammd5':
  78. // $msg = 'Deprecated mechanism name. Use IANA-registered name: CRAM-MD5.';
  79. // trigger_error($msg, E_USER_DEPRECATED);
  80. case 'cram-md5':
  81. $filename = 'Auth/SASL/CramMD5.php';
  82. $classname = 'Auth_SASL_CramMD5';
  83. break;
  84. case 'digestmd5':
  85. // $msg = 'Deprecated mechanism name. Use IANA-registered name: DIGEST-MD5.';
  86. // trigger_error($msg, E_USER_DEPRECATED);
  87. case 'digest-md5':
  88. // $msg = 'DIGEST-MD5 is a deprecated SASL mechanism as per RFC-6331. Using it could be a security risk.';
  89. // trigger_error($msg, E_USER_NOTICE);
  90. $filename = 'Auth/SASL/DigestMD5.php';
  91. $classname = 'Auth_SASL_DigestMD5';
  92. break;
  93. default:
  94. $scram = '/^SCRAM-(.{1,9})$/i';
  95. if (preg_match($scram, $type, $matches))
  96. {
  97. $hash = $matches[1];
  98. $filename = dirname(__FILE__) .'/SASL/SCRAM.php';
  99. $classname = 'Auth_SASL_SCRAM';
  100. $parameter = $hash;
  101. break;
  102. }
  103. return PEAR::raiseError('Invalid SASL mechanism type');
  104. break;
  105. }
  106. require_once($filename);
  107. if (isset($parameter))
  108. $obj = new $classname($parameter);
  109. else
  110. $obj = new $classname();
  111. return $obj;
  112. }
  113. }
  114. ?>