filesite
/
machete
1
1
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

add Nginx secure link md5 pattern valid check function

master
filesite 3 years ago
parent
263705221a
commit
164598c83f
2 changed files with 30 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 26
      lib/DirScanner.php
  2. 5
      test/DirScannerTest.php

26
lib/DirScanner.php
Unescape View File

@ -81,6 +81,26 @@ Class DirScanner {
return !empty($realpath) ? md5($realpath) : ''; return !empty($realpath) ? md5($realpath) : '';
} }
//判断Nginx防盗链MD5加密方式字符串是否合格
private function isNginxSecureLinkMd5PatternValid($pattern) {
$valid = true;
$fieldsNeeded = [
'{secure_link_expires}',
'{uri}',
'{remote_addr}',
'{secret}',
];
foreach($fieldsNeeded as $needle) {
if (strstr($pattern, $needle) === false) {
$valid = false;
break;
}
}
return $valid;
}
//根据文件生成防盗链网址 //根据文件生成防盗链网址
//参考:https://nginx.org/en/docs/http/ngx_http_secure_link_module.html#secure_link //参考:https://nginx.org/en/docs/http/ngx_http_secure_link_module.html#secure_link
@ -159,6 +179,9 @@ Class DirScanner {
} }
if (!empty($pattern) && is_string($pattern)) { if (!empty($pattern) && is_string($pattern)) {
if ($this->isNginxSecureLinkMd5PatternValid($pattern) == false) {
throw new Exception("Invalid Nginx secure link md5 pattern: {$pattern}", 500);
}
$this->nginxSecureLinkMd5Pattern = $pattern; $this->nginxSecureLinkMd5Pattern = $pattern;
} }
@ -204,6 +227,9 @@ Class DirScanner {
*/ */
public function setNginxSecureLinkMd5Pattern($pattern) { public function setNginxSecureLinkMd5Pattern($pattern) {
if (!empty($pattern) && is_string($pattern)) { if (!empty($pattern) && is_string($pattern)) {
if ($this->isNginxSecureLinkMd5PatternValid($pattern) == false) {
throw new Exception("Invalid Nginx secure link md5 pattern: {$pattern}", 500);
}
$this->nginxSecureLinkMd5Pattern = $pattern; $this->nginxSecureLinkMd5Pattern = $pattern;
} }
} }

5
test/DirScannerTest.php
Unescape View File

@ -53,7 +53,10 @@ class DirScannerTest extends DirScanner {
//--调用测试方法-- //--调用测试方法--
$scanner = new DirScannerTest(); $scanner = new DirScannerTest();
$scanner->secureLinkTest('/default/', 'foo=bar', '127.0.0.1'); //$scanner->secureLinkTest('/default/', 'foo=bar', '127.0.0.1', '{test}hello');
//$scanner->secureLinkTest('/default/', 'foo=bar', '127.0.0.1', '');
//$scanner->secureLinkTest('/default/', 'foo=bar', '127.0.0.1', '{secret} {secure_link_expires}{uri}{remote_addr}');
$scanner->getFilePathTest('/content/小说/金庸/', '书剑恩仇录', 'md'); $scanner->getFilePathTest('/content/小说/金庸/', '书剑恩仇录', 'md');
$scanner->getFilePathTest('/content/小说/金庸/', '封面图', 'jpg'); $scanner->getFilePathTest('/content/小说/金庸/', '封面图', 'jpg');
$scanner->getFilePathTest('/content/视频/游戏/', 'demo', 'm3u8'); $scanner->getFilePathTest('/content/视频/游戏/', 'demo', 'm3u8');

Write Preview
Loading…
Cancel
Save