scottpan/huangjingfen
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c1e74d8e68e6930fc3b25fa7e995b5d930d50a7d
huangjingfen/pro_v3.5.1/crmeb/services/upload/extend/cos/Signature.php
panchengyong c1e74d8e68 chore(php): 统一 ScottPan 文件头与注释域名替换 
- 按 docs/renew-code-comment.md 将 PHP 文件头改为带边框的 Author 注释\n- 注释中的 crmeb.com 替换为 uj345.cn(代码字符串中的外链未改)\n- 新增 docs/renew-code-comment.md 说明

Made-with: Cursor
2026-03-29 11:22:58 +08:00

206 lines
6.4 KiB
PHP
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
<?php
// +----------------------------------------------------------------------
// | Author: ScottPan Team
// +----------------------------------------------------------------------
namespace crmeb\services\upload\extend\cos;
/**
* Class 生成签名
* @author 等风来
* @email 136327134@qq.com
* @date 2022/9/26
* @package crmeb\services\upload\extend\cos
*/
class Signature
{
/**
* @var string
*/
private $accessKey;
/**
* @var string
*/
private $secretKey;
/**
* @var array
*/
private $options;
/**
* Signature constructor.
* @param string $accessKey
* @param string $secretKey
* @param array $options
* @param string $token
*/
public function __construct(string $accessKey, string $secretKey, array $options = [], string $token = '')
{
$this->accessKey = $accessKey;
$this->secretKey = $secretKey;
$this->options = $options;
$this->token = $token;
$this->signHeader = [
'cache-control',
'content-disposition',
'content-encoding',
'content-length',
'content-md5',
'content-type',
'expect',
'expires',
'host',
'if-match',
'if-modified-since',
'if-none-match',
'if-unmodified-since',
'origin',
'range',
'response-cache-control',
'response-content-disposition',
'response-content-encoding',
'response-content-language',
'response-content-type',
'response-expires',
'transfer-encoding',
'versionid',
];
date_default_timezone_set('PRC');
}
public function needCheckHeader($header)
{
if ($this->startWith($header, 'x-cos-')) {
return true;
}
if (in_array($header, $this->signHeader)) {
return true;
}
return false;
}
/**
* @author 等风来
* @email 136327134@qq.com
* @date 2022/9/29
* @param $haystack
* @param $needle
* @return bool
*/
protected function startWith($haystack, $needle)
{
$length = strlen($needle);
if ($length == 0) {
return true;
}
return (substr($haystack, 0, $length) === $needle);
}
/**
* @param string $method
* @param string $urlPath
* @param array $querys
* @param array $headers
* @return string[]
* @author 等风来
* @email 136327134@qq.com
* @date 2022/9/26
*/
public function signRequest(string $method, string $urlPath, array $querys = [], array $headers = [])
{
$authorization = $this->createAuthorization($method, $urlPath, $querys, $headers);
return ['Authorization' => $authorization];
}
/**
* @param string $method
* @param string $urlPath
* @param array $querys
* @param array $headers
* @param string $expires
* @return string
* @author 等风来
* @email 136327134@qq.com
* @date 2022/9/26
*/
public function createAuthorization(string $method, string $urlPath, array $querys = [], array $headers = [], $expires = '+30 minutes')
{
if (is_null($expires) || !strtotime($expires)) {
$expires = '+30 minutes';
}
$signTime = ( string )(time() - 60) . ';' . ( string )(strtotime($expires));
$urlParamListArray = [];
foreach ($querys as $query) {
if (!empty($query)) {
$tmpquery = explode('=', $query);
//为了保证CI的key中有=号的情况也能正常通过ci在这层之前已经encode了这里需要拆开重新encode防止上方explode拆错
$key = strtolower(rawurlencode(urldecode($tmpquery[0])));
if (count($tmpquery) >= 2) {
$value = $tmpquery[1];
} else {
$value = "";
}
//host开关
if (!$this->options['signHost'] && $key == 'host') {
continue;
}
$urlParamListArray[$key] = $key . '=' . $value;
}
}
ksort($urlParamListArray);
$urlParamList = join(';', array_keys($urlParamListArray));
$httpParameters = join('&', array_values($urlParamListArray));
$headerListArray = [];
foreach ($headers as $key => $value) {
$key = strtolower(urlencode($key));
$value = rawurlencode($value);
if (!$this->options['signHost'] && $key == 'host') {
continue;
}
if ($this->needCheckHeader($key)) {
$headerListArray[$key] = $key . '=' . $value;
}
}
ksort($headerListArray);
$headerList = join(';', array_keys($headerListArray));
$httpHeaders = join('&', array_values($headerListArray));
$httpString = strtolower($method) . "\n" . urldecode($urlPath) . "\n" . $httpParameters .
"\n" . $httpHeaders . "\n";
$sha1edHttpString = sha1($httpString);
$stringToSign = "sha1\n$signTime\n$sha1edHttpString\n";
$signKey = hash_hmac('sha1', $signTime, trim($this->secretKey));
$signature = hash_hmac('sha1', $stringToSign, $signKey);
$authorization = 'q-sign-algorithm=sha1&q-ak=' . trim($this->accessKey) .
"&q-sign-time=$signTime&q-key-time=$signTime&q-header-list=$headerList&q-url-param-list=$urlParamList&" .
"q-signature=$signature";
return $authorization;
}
/**
* @param string $url
* @param string $method
* @param string $urlPath
* @param array $querys
* @param array $headers
* @param string $expires
* @return string[]
* @author 等风来
* @email 136327134@qq.com
* @date 2022/9/26
*/
public function createPresignedUrl(string $url, string $method, string $urlPath, array $querys = [], array $headers = [], string $expires = '+30 minutes')
{
$authorization = $this->createAuthorization($method, $urlPath, $querys, $headers, $expires);
$uri = $url;
$query = 'sign=' . urlencode($authorization) . '&' . implode('&', $querys);
if ($this->token != null) {
$query = $query . '&x-cos-security-token=' . $this->token;
}
return [$uri, $query];
}
}
Reference in New Issue View Git Blame Copy Permalink