trianglman / sqrl
PHP Server side implementation of a SQRL generator/listener
Installs: 169
Dependents: 0
Suggesters: 0
Security: 0
Stars: 98
Watchers: 36
Forks: 17
Open Issues: 7
Requires
- php: >=7.2.0
- endroid/qr-code: ~1.1.3
Requires (Dev)
- phpunit/phpunit: ~7.2.4
This package is not auto-updated.
Last update: 2024-11-19 06:19:45 UTC
README
sqrl
PHP Server side implementation of a SQRL generator/listener
This project is in pre-alpha until there is a defined reference implementation.
Follow the conversation at grc sqrl newsgroup for updates on the standard.
Software Requirements
- Composer - http://getcomposer.org
- Endroid/qrcode Loaded automatically by Composer - https://github.com/endroid/QrCode
Purpose
The goal of this software is to provide a simple PHP implementation of Steve Gibson's SQRL authentication proposal. This library will allow any site using it to generate the QR code with a nonce, validate a signed nonce, and store the public key for connection to a site account.
Installation
Composer
-
Download the
composer.phar
executable or use the installer.$ curl -sS https://getcomposer.org/installer | php
-
Create a composer.json defining your dependencies. Note that this example is a short version for applications that are not meant to be published as packages themselves. To create libraries/packages please read the documentation.
"require": { "trianglman/sqrl": "dev-master" }
-
Run Composer:
php composer.phar update
Configuration
If you want to have the library automatically store generated nonces and validated
public keys, first generate the database tables based on the supplied
ExampleStatefulStorage.php, then create a JSON config file based on the sample
provided in sqrl/config.sample.json. You can then configure the
generator or validator by calling the appropriate configure($filepath);
method.
If you would rather manage storage of this information in your own tables, you can configure the generator manually:
$generator = new \Trianglman\Sqrl\SqrlGenerate(); //whether SQRL responses should come back over SSL (sqrl://) $generator->setSecure(true); //the domain sqrl clients should generate their key off of $generator->setKeyDomain('www.example.com'); //the path to the SQRL authentication script relative to the key domain $generator->setAuthenticationPath('sqrl/login.php'); //The above would generate a SQRL URL pointing to //sqrl://www.example.com/sqrl/login.php //...
You can also configure the size of the QR code generated and the amount of padding between the image edge and the start of the code, as well as supply your own salt for the nonce:
//... $generator->setHeight(300); $generator->setPadding(10); $generator->setSalt('foo'); //...
Usage
Generate a nonce
//Initialize the generator $generator = new \Trianglman\Sqrl\SqrlGenerate(); $generator->configure('/path/to/config'); //output the QR file to stdout $generator->render(); //get the nonce for other uses, i.e. link, etc. $nonce = $generator->getNonce();
Verify a user's input
//initialize the validator $validator = new \Trianglman\Sqrl\SqrlValidate(); $validator->configure('/path/to/config'); $validator->setValidator(new \Trianglman\Sqrl\ed25519\Crypto()); //initialize the request handler $requestResponse = new \Trianglman\Sqrl\SqrlRequestHandler($validator); $requestResponse->parseRequest($_GET, $_POST, $_SERVER); //check validation $requestResponse = $obj->getResponseMessage(); $requestResponseCode = $obj->getResponseCode(); //OR //Let the request handler also handle the response $reqHandler->sendResponse();