You are here

public function OAuthSignatureMethod_HMAC_SHA1::verify in Lingotek Translation 7.2

Same name and namespace in other branches
  1. 7.3 lib/oauth-php/library/signature_method/OAuthSignatureMethod_HMAC_SHA1.php \OAuthSignatureMethod_HMAC_SHA1::verify()

* Check if the request signature corresponds to the one calculated for the request. * *

Parameters

OAuthRequest request: * @param string base_string data to be signed, usually the base string, can be a request body * @param string consumer_secret * @param string token_secret * @param string signature from the request, still urlencoded * @return string

Overrides OAuthSignatureMethod::verify

File

lib/oauth-php/library/signature_method/OAuthSignatureMethod_HMAC_SHA1.php, line 98

Class

OAuthSignatureMethod_HMAC_SHA1

Code

public function verify($request, $base_string, $consumer_secret, $token_secret, $signature) {
  $a = $request
    ->urldecode($signature);
  $b = $request
    ->urldecode($this
    ->signature($request, $base_string, $consumer_secret, $token_secret));

  // We have to compare the decoded values
  $valA = base64_decode($a);
  $valB = base64_decode($b);

  // Crude binary comparison
  return rawurlencode($valA) == rawurlencode($valB);
}