* site
*
* @param string $message The data you want to sign
+ * @param resource $privatekey The private key to sign the response with
* @return string An XML-DSig document
*/
-function mnet_sign_message($message) {
+function mnet_sign_message($message, $privatekey = null) {
global $CFG, $MNET;
$digest = sha1($message);
- $sig = $MNET->sign_message($message);
+
+ // If the user hasn't supplied a private key (for example, one of our older,
+ // expired private keys, we get the current default private key and use that.
+ if ($privatekey == null) {
+ $privatekey = $MNET->get_private_key();
+ }
+
+ // The '$sig' value below is returned by reference.
+ // We initialize it first to stop my IDE from complaining.
+ $sig = '';
+ $bool = openssl_sign($message, $sig, $privatekey); // TODO: On failure?
$message = '<?xml version="1.0" encoding="iso-8859-1"?>
<signedMessage>
if ($isOpen) {
// It's an older code, sir, but it checks out
$push_current_key = true;
+ break;
}
}
}
if($push_current_key) {
// NOTE: Here, we use the 'mnet_server_fault_xml' to avoid
// get_string being called on our public_key
- exit(mnet_server_fault_xml(7025, $MNET->public_key));
+ exit(mnet_server_fault_xml(7025, $MNET->public_key, $keyresource));
}
/**
/**
* Return the proper XML-RPC content to report an error.
*
- * @param int $code The ID code of the error message
- * @param string $text The error message
- * @return string $text The XML text of the error message
+ * @param int $code The ID code of the error message
+ * @param string $text The error message
+ * @param resource $privatekey The private key that should be used to sign the response
+ * @return string $text The XML text of the error message
*/
-function mnet_server_fault_xml($code, $text) {
+function mnet_server_fault_xml($code, $text, $privatekey = null) {
global $MNET_REMOTE_CLIENT, $CFG;
// Replace illegal XML chars - is this already in a lib somewhere?
$text = str_replace(array('<','>','&','"',"'"), array('<','>','&','"','''), $text);
</struct>
</value>
</fault>
-</methodResponse>');
+</methodResponse>', $privatekey);
if (!empty($CFG->mnet_rpcdebug)) {
trigger_error("XMLRPC Error Response $code: $text");
/**
* Package a response in any required envelope, and return it to the client
*
- * @param string $response The XMLRPC response string
- * @return string The encoded response string
+ * @param string $response The XMLRPC response string
+ * @param resource $privatekey The private key to sign the response with
+ * @return string The encoded response string
*/
-function mnet_server_prepare_response($response) {
+function mnet_server_prepare_response($response, $privatekey = null) {
global $MNET_REMOTE_CLIENT;
if ($MNET_REMOTE_CLIENT->request_was_signed) {
- $response = mnet_sign_message($response);
+ $response = mnet_sign_message($response, $privatekey);
}
if ($MNET_REMOTE_CLIENT->request_was_encrypted) {
projects / moodle.git / commitdiff