Verzeichnisstruktur phpBB-3.3.15
- Veröffentlicht
- 28.08.2024
So funktioniert es
|
|
Auf das letzte Element klicken. Dies geht jeweils ein Schritt zurück |
Auf das Icon klicken, dies öffnet das Verzeichnis. Nochmal klicken schließt das Verzeichnis. |
|
|
(Beispiel Datei-Icons)
|
Auf das Icon klicken um den Quellcode anzuzeigen |
ReCaptcha.php
001 <?php
002 /**
003 * This is a PHP library that handles calling reCAPTCHA.
004 *
005 * BSD 3-Clause License
006 * @copyright (c) 2019, Google Inc.
007 * @link https://www.google.com/recaptcha
008 * All rights reserved.
009 *
010 * Redistribution and use in source and binary forms, with or without
011 * modification, are permitted provided that the following conditions are met:
012 * 1. Redistributions of source code must retain the above copyright notice, this
013 * list of conditions and the following disclaimer.
014 *
015 * 2. Redistributions in binary form must reproduce the above copyright notice,
016 * this list of conditions and the following disclaimer in the documentation
017 * and/or other materials provided with the distribution.
018 *
019 * 3. Neither the name of the copyright holder nor the names of its
020 * contributors may be used to endorse or promote products derived from
021 * this software without specific prior written permission.
022 *
023 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
024 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
025 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
026 * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
027 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
028 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
029 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
030 * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
031 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
032 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
033 */
034
035 namespace ReCaptcha;
036
037 /**
038 * reCAPTCHA client.
039 */
040 class ReCaptcha
041 {
042 /**
043 * Version of this client library.
044 * @const string
045 */
046 const VERSION = 'php_1.2.4';
047
048 /**
049 * URL for reCAPTCHA siteverify API
050 * @const string
051 */
052 const SITE_VERIFY_URL = 'https://www.google.com/recaptcha/api/siteverify';
053
054 /**
055 * Invalid JSON received
056 * @const string
057 */
058 const E_INVALID_JSON = 'invalid-json';
059
060 /**
061 * Could not connect to service
062 * @const string
063 */
064 const E_CONNECTION_FAILED = 'connection-failed';
065
066 /**
067 * Did not receive a 200 from the service
068 * @const string
069 */
070 const E_BAD_RESPONSE = 'bad-response';
071
072 /**
073 * Not a success, but no error codes received!
074 * @const string
075 */
076 const E_UNKNOWN_ERROR = 'unknown-error';
077
078 /**
079 * ReCAPTCHA response not provided
080 * @const string
081 */
082 const E_MISSING_INPUT_RESPONSE = 'missing-input-response';
083
084 /**
085 * Expected hostname did not match
086 * @const string
087 */
088 const E_HOSTNAME_MISMATCH = 'hostname-mismatch';
089
090 /**
091 * Expected APK package name did not match
092 * @const string
093 */
094 const E_APK_PACKAGE_NAME_MISMATCH = 'apk_package_name-mismatch';
095
096 /**
097 * Expected action did not match
098 * @const string
099 */
100 const E_ACTION_MISMATCH = 'action-mismatch';
101
102 /**
103 * Score threshold not met
104 * @const string
105 */
106 const E_SCORE_THRESHOLD_NOT_MET = 'score-threshold-not-met';
107
108 /**
109 * Challenge timeout
110 * @const string
111 */
112 const E_CHALLENGE_TIMEOUT = 'challenge-timeout';
113
114 /**
115 * Shared secret for the site.
116 * @var string
117 */
118 private $secret;
119
120 /**
121 * Method used to communicate with service. Defaults to POST request.
122 * @var RequestMethod
123 */
124 private $requestMethod;
125
126 /**
127 * Create a configured instance to use the reCAPTCHA service.
128 *
129 * @param string $secret The shared key between your site and reCAPTCHA.
130 * @param RequestMethod $requestMethod method used to send the request. Defaults to POST.
131 * @throws \RuntimeException if $secret is invalid
132 */
133 public function __construct($secret, RequestMethod $requestMethod = null)
134 {
135 if (empty($secret)) {
136 throw new \RuntimeException('No secret provided');
137 }
138
139 if (!is_string($secret)) {
140 throw new \RuntimeException('The provided secret must be a string');
141 }
142
143 $this->secret = $secret;
144 $this->requestMethod = (is_null($requestMethod)) ? new RequestMethod\Post() : $requestMethod;
145 }
146
147 /**
148 * Calls the reCAPTCHA siteverify API to verify whether the user passes
149 * CAPTCHA test and additionally runs any specified additional checks
150 *
151 * @param string $response The user response token provided by reCAPTCHA, verifying the user on your site.
152 * @param string $remoteIp The end user's IP address.
153 * @return Response Response from the service.
154 */
155 public function verify($response, $remoteIp = null)
156 {
157 // Discard empty solution submissions
158 if (empty($response)) {
159 $recaptchaResponse = new Response(false, array(self::E_MISSING_INPUT_RESPONSE));
160 return $recaptchaResponse;
161 }
162
163 $params = new RequestParameters($this->secret, $response, $remoteIp, self::VERSION);
164 $rawResponse = $this->requestMethod->submit($params);
165 $initialResponse = Response::fromJson($rawResponse);
166 $validationErrors = array();
167
168 if (isset($this->hostname) && strcasecmp($this->hostname, $initialResponse->getHostname()) !== 0) {
169 $validationErrors[] = self::E_HOSTNAME_MISMATCH;
170 }
171
172 if (isset($this->apkPackageName) && strcasecmp($this->apkPackageName, $initialResponse->getApkPackageName()) !== 0) {
173 $validationErrors[] = self::E_APK_PACKAGE_NAME_MISMATCH;
174 }
175
176 if (isset($this->action) && strcasecmp($this->action, $initialResponse->getAction()) !== 0) {
177 $validationErrors[] = self::E_ACTION_MISMATCH;
178 }
179
180 if (isset($this->threshold) && $this->threshold > $initialResponse->getScore()) {
181 $validationErrors[] = self::E_SCORE_THRESHOLD_NOT_MET;
182 }
183
184 if (isset($this->timeoutSeconds)) {
185 $challengeTs = strtotime($initialResponse->getChallengeTs());
186
187 if ($challengeTs > 0 && time() - $challengeTs > $this->timeoutSeconds) {
188 $validationErrors[] = self::E_CHALLENGE_TIMEOUT;
189 }
190 }
191
192 if (empty($validationErrors)) {
193 return $initialResponse;
194 }
195
196 return new Response(
197 false,
198 array_merge($initialResponse->getErrorCodes(), $validationErrors),
199 $initialResponse->getHostname(),
200 $initialResponse->getChallengeTs(),
201 $initialResponse->getApkPackageName(),
202 $initialResponse->getScore(),
203 $initialResponse->getAction()
204 );
205 }
206
207 /**
208 * Provide a hostname to match against in verify()
209 * This should be without a protocol or trailing slash, e.g. www.google.com
210 *
211 * @param string $hostname Expected hostname
212 * @return ReCaptcha Current instance for fluent interface
213 */
214 public function setExpectedHostname($hostname)
215 {
216 $this->hostname = $hostname;
217 return $this;
218 }
219
220 /**
221 * Provide an APK package name to match against in verify()
222 *
223 * @param string $apkPackageName Expected APK package name
224 * @return ReCaptcha Current instance for fluent interface
225 */
226 public function setExpectedApkPackageName($apkPackageName)
227 {
228 $this->apkPackageName = $apkPackageName;
229 return $this;
230 }
231
232 /**
233 * Provide an action to match against in verify()
234 * This should be set per page.
235 *
236 * @param string $action Expected action
237 * @return ReCaptcha Current instance for fluent interface
238 */
239 public function setExpectedAction($action)
240 {
241 $this->action = $action;
242 return $this;
243 }
244
245 /**
246 * Provide a threshold to meet or exceed in verify()
247 * Threshold should be a float between 0 and 1 which will be tested as response >= threshold.
248 *
249 * @param float $threshold Expected threshold
250 * @return ReCaptcha Current instance for fluent interface
251 */
252 public function setScoreThreshold($threshold)
253 {
254 $this->threshold = floatval($threshold);
255 return $this;
256 }
257
258 /**
259 * Provide a timeout in seconds to test against the challenge timestamp in verify()
260 *
261 * @param int $timeoutSeconds Expected hostname
262 * @return ReCaptcha Current instance for fluent interface
263 */
264 public function setChallengeTimeout($timeoutSeconds)
265 {
266 $this->timeoutSeconds = $timeoutSeconds;
267 return $this;
268 }
269 }
270