Easy Digital Downloads a2z

Easy Digital Downloads a2z

Home / APIs / IpnHandler::verifySignatureIsCorrectFromCertificate() –

You appear to be a bot. Output may be restricted

Description

Usage

IpnHandler::verifySignatureIsCorrectFromCertificate( $signature );

Parameters

$signature
( mixed ) required

Returns

void

Source

File name: easy-digital-downloads/includes/gateways/libs/amazon/IpnHandler.php
Lines:

1 to 32 of 32
    public function verifySignatureIsCorrectFromCertificate($signature)
    {
        $certKey = openssl_get_publickey($this->certificate);

        if ($certKey === False) {
            throw new \Exception("Unable to extract public key from cert");
        }

        try {
            $certInfo    = openssl_x509_parse($this->certificate, true);
            $certSubject = $certInfo["subject"];

            if (is_null($certSubject)) {
                throw new \Exception("Error with certificate - subject cannot be found");
            }
        } catch (\Exception $ex) {
            throw new \Exception("Unable to verify certificate - error with the certificate subject", null, $ex);
        }

        if (strcmp($certSubject["CN"], $this->expectedCnName)) {
            throw new \Exception("Unable to verify certificate issued by Amazon - error with certificate subject");
        }

        $result = -1;
        try {
            $result = openssl_verify($this->signatureFields, $signature, $certKey, OPENSSL_ALGO_SHA1);
        } catch (\Exception $ex) {
            throw new \Exception("Unable to verify signature - error with the verification algorithm", null, $ex);
        }

        return ($result > 0);
    }
 

 View on GitHub View on Trac

Published: | Last updated: