streams/Zotlabs/Zot6/Receiver.php

<?php

namespace Zotlabs\Zot6;

use Zotlabs\Lib\Config;
use Zotlabs\Lib\Libzot;
use Zotlabs\Web\HTTPSig;

class Receiver {

	protected $data;
	protected $encrypted;
	protected $error;
	protected $messagetype;
	protected $sender;
	protected $validated;
	protected $recipients;
	protected $response;
	protected $handler;
	protected $prvkey;
	protected $rawdata;

	function __construct($handler) {

		$this->error       = false;
		$this->validated   = false;
		$this->messagetype = '';
		$this->response    = [ 'success' => false ];
		$this->handler     = $handler;
		$this->data        = null;
		$this->rawdata     = null;
		$this->prvkey      = Config::get('system','prvkey');

		$this->rawdata = file_get_contents('php://input');

		// All access to the zot endpoint must use http signatures

		if (! $this->Valid_Httpsig()) {
			logger('signature failed');
			http_status_exit(400);
		}

		if ($this->rawdata) {
			$this->data = json_decode($this->rawdata,true);
		}
		else {
			$this->error = true;
			$this->response['message'] = 'no data';
		}

		logger('received: ' . print_r($this->data,true), LOGGER_DATA);

		if ($this->data && is_array($this->data)) {
			$this->encrypted = ((array_key_exists('encrypted',$this->data) && intval($this->data['encrypted'])) ? true : false);

			if ($this->encrypted && $this->prvkey) {
				$uncrypted = crypto_unencapsulate($this->data,$this->prvkey);
				if ($uncrypted) {
					$this->data = json_decode($uncrypted,true);
				}
				else {
					$this->error = true;
					$this->response['message'] = 'no data';
				}
			}
		}
	}


	function run() {

		if ($this->error) {
			// make timing attacks on the decryption engine a bit more difficult
			usleep(mt_rand(10000,100000));
			json_return_and_die($this->response);
		}

		if ($this->data) {
			if (array_key_exists('type',$this->data))
				$this->messagetype = $this->data['type'];

			if (! $this->messagetype) {
				$this->error = true;
				$this->response['message'] = 'no datatype';
			}

			$this->sender     = ((array_key_exists('sender',$this->data)) ? $this->data['sender'] : null);
			$this->recipients = ((array_key_exists('recipients',$this->data)) ? $this->data['recipients'] : null);
		}

		if ($this->sender) {
			$this->ValidateSender();
		}

		$this->Dispatch();
	}

	function ValidateSender() {

		$hubs = Libzot::gethub($this->sender,true);

		if (! $hubs) {

			/* Have never seen this guid or this guid coming from this location. Check it and register it. */
			/* (!!) this will validate the sender. */

        	$result = Libzot::register_hub($this->sender);

        	if ((! $result['success']) || (! ($hubs = zot_gethub($this->sender,true)))) {
            	$this->response['message'] = 'Hub not available.';
	            json_return_and_die($this->response);
    	    }
		}
		foreach ($hubs as $hub) {
			Libzot::update_hub_connected($hub,((array_key_exists('sitekey',$this->sender)) ? $this->sender['sitekey'] : ''));
		}
		$this->validated = true;
		$this->hubs = $hubs;
    }


	function Valid_Httpsig() {

		$result = false;

		$verified = HTTPSig::verify($this->rawdata);
		if($verified && $verified['header_signed'] && $verified['header_valid']) {
			$result = true;

			// It is OK to not have signed content - not all messages provide content.
			// But if it is signed, it has to be valid

			if (($verified['content_signed']) && (! $verified['content_valid'])) {
					$result = false;
			}
		}
		return $result;
	}	
		
	function Dispatch() {

		/* These tasks require sender validation */

		if (! $this->validated) {
			$this->response['message'] = 'Sender not valid';
			json_return_and_die($this->response);
		}

		switch ($this->messagetype) {

			case 'request':
				$this->handler->Request($this->data,$this->hubs);
				break;

			case 'purge':
				$this->handler->Purge($this->sender,$this->recipients,$this->hubs);
				break;

			case 'refresh':
				$this->handler->Refresh($this->sender,$this->recipients,$this->hubs);
				break;

			case 'notify':
				$this->handler->Notify($this->data,$this->hubs);
				break;

			case 'rekey':
				$this->handler->Rekey($this->sender, $this->data,$this->hubs);
				break;

			default:
				$this->response['message'] = 'Not implemented';
				json_return_and_die($this->response);
				break;
		}

	}
}
z6 work 2018-04-23 01:51:46 +00:00			`<?php`

			`namespace Zotlabs\Zot6;`

			`use Zotlabs\Lib\Config;`
move libzot to class 2018-06-01 02:42:13 +00:00			`use Zotlabs\Lib\Libzot;`
more work 2018-05-30 06:52:08 +00:00			`use Zotlabs\Web\HTTPSig;`
z6 work 2018-04-23 01:51:46 +00:00
			`class Receiver {`

			`protected $data;`
			`protected $encrypted;`
			`protected $error;`
			`protected $messagetype;`
			`protected $sender;`
			`protected $validated;`
			`protected $recipients;`
			`protected $response;`
			`protected $handler;`
			`protected $prvkey;`
basic communication 2018-05-30 04:08:52 +00:00			`protected $rawdata;`
z6 work 2018-04-23 01:51:46 +00:00
			`function __construct($handler) {`

			`$this->error = false;`
			`$this->validated = false;`
			`$this->messagetype = '';`
			`$this->response = [ 'success' => false ];`
			`$this->handler = $handler;`
			`$this->data = null;`
basic communication 2018-05-30 04:08:52 +00:00			`$this->rawdata = null;`
z6 work 2018-04-23 01:51:46 +00:00			`$this->prvkey = Config::get('system','prvkey');`

basic communication 2018-05-30 04:08:52 +00:00			`$this->rawdata = file_get_contents('php://input');`
z6 work 2018-04-23 01:51:46 +00:00
more work 2018-05-30 06:52:08 +00:00			`// All access to the zot endpoint must use http signatures`

			`if (! $this->Valid_Httpsig()) {`
basic communication 2018-05-30 04:08:52 +00:00			`logger('signature failed');`
			`http_status_exit(400);`
			`}`

more work 2018-05-30 06:52:08 +00:00			`if ($this->rawdata) {`
basic communication 2018-05-30 04:08:52 +00:00			`$this->data = json_decode($this->rawdata,true);`
z6 work 2018-04-23 01:51:46 +00:00			`}`
			`else {`
			`$this->error = true;`
			`$this->response['message'] = 'no data';`
			`}`

make refresh packet work 2018-05-31 03:32:59 +00:00			`logger('received: ' . print_r($this->data,true), LOGGER_DATA);`
zot communications 2018-05-29 02:42:40 +00:00
more work 2018-05-30 06:52:08 +00:00			`if ($this->data && is_array($this->data)) {`
			`$this->encrypted = ((array_key_exists('encrypted',$this->data) && intval($this->data['encrypted'])) ? true : false);`
z6 work 2018-04-23 01:51:46 +00:00
more work 2018-05-30 06:52:08 +00:00			`if ($this->encrypted && $this->prvkey) {`
zot communications 2018-05-29 02:42:40 +00:00			`$uncrypted = crypto_unencapsulate($this->data,$this->prvkey);`
more work 2018-05-30 06:52:08 +00:00			`if ($uncrypted) {`
z6 work 2018-04-23 01:51:46 +00:00			`$this->data = json_decode($uncrypted,true);`
			`}`
			`else {`
			`$this->error = true;`
			`$this->response['message'] = 'no data';`
			`}`
			`}`
			`}`
			`}`


			`function run() {`

more work 2018-05-30 06:52:08 +00:00			`if ($this->error) {`
z6 work 2018-04-23 01:51:46 +00:00			`// make timing attacks on the decryption engine a bit more difficult`
			`usleep(mt_rand(10000,100000));`
			`json_return_and_die($this->response);`
			`}`

more work 2018-05-30 06:52:08 +00:00			`if ($this->data) {`
			`if (array_key_exists('type',$this->data))`
z6 work 2018-04-23 01:51:46 +00:00			`$this->messagetype = $this->data['type'];`

more work 2018-05-30 06:52:08 +00:00			`if (! $this->messagetype) {`
z6 work 2018-04-23 01:51:46 +00:00			`$this->error = true;`
			`$this->response['message'] = 'no datatype';`
			`}`

			`$this->sender = ((array_key_exists('sender',$this->data)) ? $this->data['sender'] : null);`
			`$this->recipients = ((array_key_exists('recipients',$this->data)) ? $this->data['recipients'] : null);`
			`}`

more work 2018-05-30 06:52:08 +00:00			`if ($this->sender) {`
z6 work 2018-04-23 01:51:46 +00:00			`$this->ValidateSender();`
more work 2018-05-30 06:52:08 +00:00			`}`
basic communication 2018-05-30 04:08:52 +00:00
z6 work 2018-04-23 01:51:46 +00:00			`$this->Dispatch();`
			`}`

			`function ValidateSender() {`
basic communication 2018-05-30 04:08:52 +00:00
move libzot to class 2018-06-01 02:42:13 +00:00			`$hubs = Libzot::gethub($this->sender,true);`
zot communications 2018-05-29 02:42:40 +00:00
z6 work 2018-04-23 01:51:46 +00:00			`if (! $hubs) {`

			`/* Have never seen this guid or this guid coming from this location. Check it and register it. */`
			`/* (!!) this will validate the sender. */`

move libzot to class 2018-06-01 02:42:13 +00:00			`$result = Libzot::register_hub($this->sender);`
z6 work 2018-04-23 01:51:46 +00:00
			`if ((! $result['success']) \|\| (! ($hubs = zot_gethub($this->sender,true)))) {`
			`$this->response['message'] = 'Hub not available.';`
			`json_return_and_die($this->response);`
			`}`
			`}`
more work 2018-05-30 06:52:08 +00:00			`foreach ($hubs as $hub) {`
move libzot to class 2018-06-01 02:42:13 +00:00			`Libzot::update_hub_connected($hub,((array_key_exists('sitekey',$this->sender)) ? $this->sender['sitekey'] : ''));`
z6 work 2018-04-23 01:51:46 +00:00			`}`
			`$this->validated = true;`
zot communications 2018-05-29 02:42:40 +00:00			`$this->hubs = $hubs;`
z6 work 2018-04-23 01:51:46 +00:00			`}`

basic communication 2018-05-30 04:08:52 +00:00
			`function Valid_Httpsig() {`

more work 2018-05-30 06:52:08 +00:00			`$result = false;`
basic communication 2018-05-30 04:08:52 +00:00
more work 2018-05-30 06:52:08 +00:00			`$verified = HTTPSig::verify($this->rawdata);`
basic communication 2018-05-30 04:08:52 +00:00			`if($verified && $verified['header_signed'] && $verified['header_valid']) {`
more work 2018-05-30 06:52:08 +00:00			`$result = true;`

			`// It is OK to not have signed content - not all messages provide content.`
			`// But if it is signed, it has to be valid`

			`if (($verified['content_signed']) && (! $verified['content_valid'])) {`
			`$result = false;`
basic communication 2018-05-30 04:08:52 +00:00			`}`
			`}`
more work 2018-05-30 06:52:08 +00:00			`return $result;`
basic communication 2018-05-30 04:08:52 +00:00			`}`
z6 work 2018-04-23 01:51:46 +00:00
			`function Dispatch() {`

more work 2018-05-30 06:52:08 +00:00			`/* These tasks require sender validation */`

			`if (! $this->validated) {`
z6 work 2018-04-23 01:51:46 +00:00			`$this->response['message'] = 'Sender not valid';`
			`json_return_and_die($this->response);`
			`}`

more work 2018-05-30 06:52:08 +00:00			`switch ($this->messagetype) {`
z6 work 2018-04-23 01:51:46 +00:00
			`case 'request':`
zot communications 2018-05-29 02:42:40 +00:00			`$this->handler->Request($this->data,$this->hubs);`
z6 work 2018-04-23 01:51:46 +00:00			`break;`

			`case 'purge':`
zot communications 2018-05-29 02:42:40 +00:00			`$this->handler->Purge($this->sender,$this->recipients,$this->hubs);`
z6 work 2018-04-23 01:51:46 +00:00			`break;`

			`case 'refresh':`
zot communications 2018-05-29 02:42:40 +00:00			`$this->handler->Refresh($this->sender,$this->recipients,$this->hubs);`
z6 work 2018-04-23 01:51:46 +00:00			`break;`

			`case 'notify':`
zot communications 2018-05-29 02:42:40 +00:00			`$this->handler->Notify($this->data,$this->hubs);`
z6 work 2018-04-23 01:51:46 +00:00			`break;`

			`case 'rekey':`
zot communications 2018-05-29 02:42:40 +00:00			`$this->handler->Rekey($this->sender, $this->data,$this->hubs);`
z6 work 2018-04-23 01:51:46 +00:00			`break;`

			`default:`
			`$this->response['message'] = 'Not implemented';`
			`json_return_and_die($this->response);`
			`break;`
			`}`

			`}`
			`}`