. */ /** * SecureTokensInterface.php * * @category Core * @package Core_package * @subpackage Name of the subpackage if needed * @copyright Manuela v.d.Decken * @author Manuela v.d.Decken * @license http://www.gnu.org/licenses/gpl.html GPL License * @version 0.0.1 * @revision $Revision: 2 $ * @link $HeadURL: svn://isteam.dynxs.de/wb/2.10.x/trunk/framework/SecureTokensInterface.php $ * @lastmodified $Date: 2017-07-02 17:14:29 +0200 (Sun, 02 Jul 2017) $ * @since File available since 13.02.2016 * @description xyz */ class SecureTokensInterface { /** int first private property */ private $oSecTok = null; /** constructor */ public function __construct() { $this->oSecTok = SecureTokens::getInstance(); } /** * Dummy method for backward compatibility * @return void * @deprecated from WB-2.8.3-SP5 */ final public function createFTAN() { trigger_error('Deprecated function call: '.__CLASS__.'::'.__METHOD__, E_USER_DEPRECATED); } // do nothing /** * Dummy method for backward compatibility * @return void * @deprecated from WB-2.8.3-SP5 */ final public function clearIDKEY() { trigger_error('Deprecated function call: '.__CLASS__.'::'.__METHOD__, E_USER_DEPRECATED); } // do nothing /** * returns the current FTAN * @param bool $mode: true or POST returns a complete prepared, hidden HTML-Input-Tag (default) * false or GET returns an GET argument 'key=value' * @return mixed: array or string * @deprecated the param $mMode is set deprecated * string retvals are set deprecated. From versions after 2.8.4 retval will be array only */ final public function getFTAN($mMode = 'POST') { return $this->oSecTok->getFTAN($mMode); } /** * checks received form-transactionnumbers against session-stored one * @param string $mode: requestmethode POST(default) or GET * @param bool $bPreserve (default=false) * @return bool: true if numbers matches against stored ones * * requirements: an active session must be available * this check will prevent from multiple sending a form. history.back() also will never work */ final public function checkFTAN($mMode = 'POST', $bPreserve = false) { return $this->oSecTok->checkFTAN($mMode, $bPreserve); } /** * store value in session and returns an accesskey to it * @param mixed $mValue can be numeric, string or array * @return string */ final public function getIDKEY($mValue) { return $this->oSecTok->getIDKEY($mValue); } /* * search for key in session and returns the original value * @param string $sFieldname: name of the POST/GET-Field containing the key or hex-key itself * @param mixed $mDefault: returnvalue if key not exist (default 0) * @param string $sRequest: requestmethode can be POST or GET or '' (default POST) * @param bool $bPreserve (default=false) * @return mixed: the original value (string, numeric, array) or DEFAULT if request fails * @description: each IDKEY can be checked only once. Unused Keys stay in list until they expire */ final public function checkIDKEY($sFieldname, $mDefault = 0, $sRequest = 'POST', $bPreserve = false) { return $this->oSecTok->checkIDKEY($sFieldname, $mDefault, $sRequest, $bPreserve); } /** * make a valid LifeTime value from given integer on the rules of class SecureTokens * @param integer $iLifeTime * @return integer */ final public function sanitizeLifeTime($iLifeTime) { return $this->oSecTok->sanitizeLifeTime($iLifeTime); } /** * returns all TokenLifeTime values * @return array */ final public function getTokenLifeTime() { return $this->oSecTok->getTokenLifeTime(); } } // end of class SecureTokensInterface