在线时间:8:00-16:00
迪恩网络APP
随时随地掌握行业动态
扫描二维码
关注迪恩网络微信公众号
开源软件名称(OpenSource Name):PHPGangsta/GoogleAuthenticator开源软件地址(OpenSource Url):https://github.com/PHPGangsta/GoogleAuthenticator开源编程语言(OpenSource Language):PHP 100.0%开源软件介绍(OpenSource Introduction):Google Authenticator PHP class
This PHP class can be used to interact with the Google Authenticator mobile app for 2-factor-authentication. This class can generate secrets, generate codes, validate codes and present a QR-Code for scanning the secret. It implements TOTP according to RFC6238 For a secure installation you have to make sure that used codes cannot be reused (replay-attack). You also need to limit the number of verifications, to fight against brute-force attacks. For example you could limit the amount of verifications to 10 tries within 10 minutes for one IP address (or IPv6 block). It depends on your environment. Usage:See following example: <?php
require_once 'PHPGangsta/GoogleAuthenticator.php';
$ga = new PHPGangsta_GoogleAuthenticator();
$secret = $ga->createSecret();
echo "Secret is: ".$secret."\n\n";
$qrCodeUrl = $ga->getQRCodeGoogleUrl('Blog', $secret);
echo "Google Charts URL for the QR-Code: ".$qrCodeUrl."\n\n";
$oneCode = $ga->getCode($secret);
echo "Checking Code '$oneCode' and Secret '$secret':\n";
$checkResult = $ga->verifyCode($secret, $oneCode, 2); // 2 = 2*30sec clock tolerance
if ($checkResult) {
echo 'OK';
} else {
echo 'FAILED';
} Running the script provides the following output:
Installation:
Run Tests:
ToDo:
Notes:If you like this script or have some features to add: contact me, visit my blog, fork this project, send pull requests, you know how it works. |
2023-10-27
2022-08-15
2022-08-17
2022-09-23
2022-08-13
请发表评论