Class: Ucenter::Interface::Authcode

Inherits:
Base
  • Object
show all
Defined in:
lib/ucenter/interface/authcode.rb

Constant Summary collapse

KeyLength = 
4

Instance Method Summary collapse

Methods inherited from Base

#db_client, #get, #initialize, #post

Constructor Details

This class inherits a constructor from Ucenter::Interface::Base

Instance Method Details

#decode(string) ⇒ Object

参考 github.com/daxingplay/dokuwiki_ucenter/blob/master/api/uc.php#L295



7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
 
# File 'lib/ucenter/interface/authcode.rb', line 7

def decode string
  string = '' if string.nil?
  # 拆分key,并各自做md5
  key = md5(Ucenter::Config.uc_key)
  key_left, key_right = md5(key[0, 16]), md5(key[16, 16])
  # 拆分string auth和content部分
  string_auth, string_content = string[0, KeyLength], string[KeyLength..-1]
  # 从key_crypt抽取box
  key_crypt = key_left + md5(key_left + string_auth)
  key_crypt_length = key_crypt.length
  rndkey = []
  0.upto(255) do |i|
    rndkey[i] = (key_crypt[i % key_crypt_length]).ord
  end
  a = b = 0
  box = (0..255).to_a
  while b < 256 do
    a = (a + box[b] + rndkey[b]) % 256
    box[b], box[a] = box[a], box[b]
    b +=1
  end
  # 联合key_crypt和key_content解密出result
  string_content_ords = base64_url_decode(string_content).bytes.to_a
  string_content_ords_length = string_content_ords.length
  a = b = string_idx = 0
  result = ""
  while string_idx < string_content_ords_length
    a = (a + 1) % 256
    b = (b + box[a]) % 256
    box[a], box[b] = box[b], box[a]
    result << (string_content_ords[string_idx] ^ (box[(box[a] + box[b]) % 256])).chr
    string_idx +=1
  end
  result_time_valided = (result[0, 10] == '0'*10) || (result[0, 10].to_i - Time.now.to_i > 0)
  result_string_valided = result[10, 16] == md5("#{result[26..-1]}#{key_right}")[0, 16] # 重新加密和string对比验证
  if (result_time_valided && result_string_valided)
    return result[26..-1]
  else
    return ''
  end
end

#encode(string) ⇒ Object 



49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
 
# File 'lib/ucenter/interface/authcode.rb', line 49

def encode string
  operation = 'ENCODE'
  expiry = 0
  ckey_length = 4
  key = md5(Ucenter::Config.uc_key)
  keya = md5(key[0, 16])
  keyb = md5(key[16, 16])
  keyc = ckey_length > 0 ? (operation == 'DECODE' ? string[0, ckey_length] : (md5(microtime()))[-ckey_length..-1]) : ''
  cryptkey = keya + md5(keya+keyc)
  key_length = cryptkey.size
  string = operation == 'DECODE' ? base64_url_decode(string[ckey_length..-1]) : sprintf('%010d', expiry>0 ? expiry + Time.now.to_i : 0)+ (md5(string+keyb))[0, 16] + string
  string_ords = ords(string)
  string_length = string_ords.size
  result = ''
  box = (0..255).to_a

  rndkey = []

  0.upto(255) do |i|
    rndkey[i] = (cryptkey[i % key_length]).ord
  end

  j = i = 0
  while i < 256 do
    j = (j + box[i] + rndkey[i]) % 256
    box[i], box[j] = box[j], box[i]
    i +=1
  end

  a = j = i = 0
  while i < string_length
    a = (a + 1) % 256
    j = (j + box[a]) % 256
    box[a], box[j] = box[j], box[a]
    result += (string_ords[i] ^ (box[(box[a] + box[j]) % 256])).chr
    i +=1
  end

  if operation == 'DECODE' then
    if ( result[0,10] == '0'*10 || (result[0, 10]).to_i - Time.now.to_i  >  0 ) and
        result[10, 16] == (md5(result[26..-1] + keyb))[0, 16] then
      return result[26..-1]
    else
      return ''
    end
  else
    keyc + (Base64.encode64(result)).gsub(/=/, '')
  end
end

#microtimeObject 



99
100
101
102
103
104
 
# File 'lib/ucenter/interface/authcode.rb', line 99

def microtime
  epoch_mirco = Time.now.to_f
  epoch_full = Time.now.to_i
  epoch_fraction = epoch_mirco - epoch_full
  epoch_fraction.to_s + ' ' + epoch_full.to_s
end