PHP 클래스 lithium\storage\session\strategy\Encrypt
To use this class, you need to have the
mcrypt extension enabled.
Example configuration:
{{{
Session::config(array('default' => array(
'adapter' => 'Cookie',
'strategies' => array('Encrypt' => array('secret' => 'foobar'))
)));
}}}
By default, this strategy uses the AES algorithm in the CBC mode. This means that an
initialization vector has to be generated and transported with the payload data. This
is done transparently, but you may want to keep this in mind (the ECB mode doesn't require
an itialization vector but is not recommended to use as it's insecure). You can override this
defaults by passing a different
cipher and/or
mode to the config like this:
{{{
Session::config(array('default' => array(
'adapter' => 'Cookie',
'strategies' => array('Encrypt' => array(
'cipher' => MCRYPT_RIJNDAEL_128,
'mode' => MCRYPT_MODE_ECB, // Don't use ECB when you don't have to!
'secret' => 'foobar'
))
)));
}}}
Please keep in mind that it is generally not a good idea to store sensitive information in
cookies (or generally on the client side) and this class is no exception to the rule. It allows
you to store client side data in a more secure way, but 100% security can't be achieved.
파일 보기
프로젝트 열기: unionofrad/lithium
1 사용 예제들
보호된 프로퍼티들
프로퍼티 |
타입 |
설명 |
|
$_defaults |
|
Default configuration. |
|
$_resource |
|
Holds the crypto resource after initialization. |
|
$_vector |
|
Holds the initialization vector. |
|
공개 메소드들
보호된 메소드들
메소드 상세
Destructor. Closes the crypto resource when it is no longer needed.
Decrypt and unserialize a previously encrypted string.
Serialize and encrypt a given data array.
protected _encrypt ( array $decrypted = [] ) : string |
$decrypted |
array |
The cleartext data to be encrypted. |
리턴 |
string |
A Base64 encoded and encrypted string. |
This method figures out the appropriate key size for the chosen encryption algorithm and
then hashes the given key accordingly. Note that if the key has already the needed length,
it is considered to be hashed (secure) already and is therefore not hashed again. This lets
you change the hashing method in your own code if you like.
The default MCRYPT_RIJNDAEL_128 key should be 32 byte long sha256 is used as the hashing
algorithm. If the key size is shorter than the one generated by sha256, the first n bytes
will be used.
Generates an initialization vector.
_vectorSize()
보호된 정적인 메소드
Returns the vector size vor a given cipher and mode.
Delete encryption method.
Determines if the Mcrypt extension has been installed.
public read ( array $data, array $options = [] ) : mixed |
$data |
array |
the Data being read. |
$options |
array |
Options for this method. |
리턴 |
mixed |
Returns the decrypted key or the dataset. |
public write ( mixed $data, array $options = [] ) : string |
$data |
mixed |
The data to be encrypted. |
$options |
array |
Options for this method. |
리턴 |
string |
Returns the written data in cleartext. |
프로퍼티 상세
$_resource 보호되어 있는 정적으로 프로퍼티
Holds the crypto resource after initialization.
protected static $_resource |
$_vector 보호되어 있는 정적으로 프로퍼티
Holds the initialization vector.
protected static $_vector |