| Server IP : 80.87.202.40 / Your IP : 216.73.216.169 Web Server : Apache System : Linux rospirotorg.ru 5.14.0-539.el9.x86_64 #1 SMP PREEMPT_DYNAMIC Thu Dec 5 22:26:13 UTC 2024 x86_64 User : bitrix ( 600) PHP Version : 8.2.27 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /home/bitrix/ext_www/rospirotorg.ru/bitrix/modules/main/lib/security/mfa/ |
Upload File : |
<?php
namespace Bitrix\Main\Security\Mfa;
use Bitrix\Main\Config\Option;
use Bitrix\Main\ArgumentOutOfRangeException;
use Bitrix\Main\Security\OtpException;
use Bitrix\Main\Localization\Loc;
Loc::loadMessages(__FILE__);
class HotpAlgorithm extends OtpAlgorithm
{
const SYNC_WINDOW = 15000;
protected static $type = 'hotp';
protected $window = 10;
public function __construct()
{
$window = (int)Option::get('security', 'hotp_user_window', 10);
if ($window && $window > 0)
{
$this->window = $window;
}
}
/**
* @inheritDoc
*/
public function verify($input, $params = null)
{
$input = (string)$input;
if (!preg_match('#^\d+$#D', $input))
{
throw new ArgumentOutOfRangeException('input', 'string with numbers');
}
$counter = (int)$params;
$result = false;
$window = $this->window;
while ($window--)
{
if ($this->isStringsEqual($input, $this->generateOTP($counter)))
{
$result = true;
break;
}
$counter++;
}
if ($result === true)
{
return [true, $counter + 1];
}
return [false, null];
}
/**
* @inheritDoc
*/
public function generateUri($label, array $opts = [])
{
$opts += ['counter' => 1];
return parent::generateUri($label, $opts);
}
/**
* @inheritDoc
*/
public function getSyncParameters($inputA, $inputB)
{
$counter = 0;
$this->window = 1;
for ($i = 0; $i < self::SYNC_WINDOW; $i++)
{
[$verifyA,] = $this->verify($inputA, $counter);
[$verifyB,] = $this->verify($inputB, $counter + 1);
$counter++;
if ($verifyA && $verifyB)
{
break;
}
}
if ($i === self::SYNC_WINDOW)
{
throw new OtpException('Cannot synchronize this secret key with the provided password values.');
}
return $counter;
}
}