Skip to content
This repository was archived by the owner on Jan 6, 2023. It is now read-only.

Verify AppIdentityService signatures against all valid certificates #50

Open
wiz wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Verify AppIdentityService signatures against all valid certificates #50

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
40 changes: 33 additions & 7 deletions appengine-plugin/modules/uploads.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -148,14 +148,12 @@ public static function authenticate( $user, $username, $password ) {
return $user;
}

$user_id = absint( $_GET['gae_auth_user'] );
$sign_result = self::sign_auth_key( AUTH_KEY . $user_id );
$user_id = absint( $_GET['gae_auth_user'] );
$key_name = $_GET['gae_auth_key'];
$string_to_verify = AUTH_KEY . $user_id;
$signature_to_verify = base64_decode($_GET['gae_auth_signature']);

if ( $sign_result['key_name'] !== $_GET['gae_auth_key'] ) {
return $user;
}

if ( base64_decode( $_GET['gae_auth_signature'] ) !== $sign_result['signature'] ) {
if (self::verify_signed_auth_key($key_name, $string_to_verify, $signature_to_verify) !== true) {
return $user;
}

Expand Down Expand Up @@ -487,6 +485,34 @@ private static function sign_auth_key($auth_key) {
}
}

private static function verify_signed_auth_key($key_name, $string_to_verify, $signature_to_verify) {
if (self::is_production()) {

# get list of all valid certificates for GAE project
$public_certificates = AppIdentityService::getPublicCertificates();

# find certificate with matching key name
foreach ($public_certificates as $cert) {
if ($cert->getCertificateName() === $key_name) {

# extract public key from X509 certificate
$public_key = openssl_pkey_get_public($cert->getX509CertificateInPemFormat());

# verify the signed data, return true or false
return (openssl_verify($string_to_verify, $signature_to_verify, $public_key, "sha256") === 1);
}
}

# if no matching certificate, verification fails
return false;

} else {
// In the development server we are not concerned with trying to generate
// a secure signature.
return (sha1($string_to_verify) === $signature_to_verify);
}
}

public static function custom_image_editor( $editors ) {
$editors = [ __NAMESPACE__ . '\\Editor' ] + $editors;
return $editors;
Expand Down