1  2  3  4  5  6  7  8  9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 

<?php
/* --------------------------------------------------------------
   Md5Strategy.inc.php 2016-08-08
   Gambio GmbH
   http://www.gambio.de
   Copyright (c) 2016 Gambio GmbH
   Released under the GNU General Public License (Version 2)
   [http://www.gnu.org/licenses/gpl-2.0.html]
   --------------------------------------------------------------
*/

/**
 * Class Md5Strategy
 *
 * @category   System
 * @package    Authentication
 * @subpackage Strategies
 */
class Md5Strategy implements AuthStrategyInterface
{
    /**
     * Verifies a given password by its stored hash from the current hashing algorithm.
     *
     * @param StringType             $password
     * @param NonEmptyStringType     $hash
     * @param AuthStrategyCollection $authStrategyCollection
     *
     * @return bool Is the password valid?
     */
    public function verify(StringType $password,
                           NonEmptyStringType $hash,
                           AuthStrategyCollection $authStrategyCollection = null)
    {
        if(md5($password->asString()) === $hash->asString())
        {
            return true;
        }
        
        if($authStrategyCollection !== null)
        {
            /** @var AuthStrategyInterface $algorithm */
            foreach($authStrategyCollection->getArray() as $algorithm)
            {
                if($algorithm->verify($password, $hash))
                {
                    return true;
                }
            }
        }
        
        return false;
    }
    
    
    /**
     * Generates a hash by given password string.
     *
     * @param StringType $password String that should be hashed.
     *
     * @throws RuntimeException if password_hash() could not create a hash.
     *
     * @return string Resulting hash.
     */
    public function getHash(StringType $password)
    {
        return md5($password->asString());
    }
    
    
    /**
     * Returns a rehashed password hash if it does not match the currently used hashing algorithm.
     *
     * @param StringType                  $password                       Password that should be rehashed by a new
     *                                                                    algorithm.
     * @param NonEmptyStringType          $hash                           Current password hash.
     * @param AuthStrategyCollection|null $authStrategyCollection         Collection of hashing algorithms.
     *
     * @return string The new password hash.
     */
    public function getRehashedPassword(StringType $password,
                                        NonEmptyStringType $hash,
                                        AuthStrategyCollection $authStrategyCollection = null)
    {
        if($authStrategyCollection !== null)
        {
            /** @var AuthStrategyInterface $algorithm */
            foreach($authStrategyCollection->getArray() as $algorithm)
            {
                if($algorithm->verify($password, $hash))
                {
                    return $this->getHash($password);
                }
            }
        }
        
        return $hash->asString();
    }
}