public static function MoAuthRBA::mo2f_evaluate_risk in Google Authenticator / 2 Factor Authentication - 2FA 7
File
- classes/MoAuthRBA.php, line 52
Class
- MoAuthRBA
Code
public static function mo2f_evaluate_risk($useremail, $sessionUuid) {
$url = MoAuthConstants::$BASE_URL . '/rest/rba/evaluate-risk';
$ch = curl_init($url);
$customerKey = variable_get('mo_auth_customer_id', '');
$apiKey = variable_get('mo_auth_customer_api_key', '');
$appSecret = variable_get('mo_auth_customer_app_secret', '');
$currentTimeInMillis = round(microtime(true) * 1000);
$stringToHash = $customerKey . number_format($currentTimeInMillis, 0, '', '') . $apiKey;
$hashValue = hash("sha512", $stringToHash);
$customerKeyHeader = "Customer-Key: " . $customerKey;
$timestampHeader = "Timestamp: " . number_format($currentTimeInMillis, 0, '', '');
$authorizationHeader = "Authorization: " . $hashValue;
$fields = array(
'customerKey' => $customerKey,
'appSecret' => $appSecret,
'userKey' => $useremail,
'sessionUuid' => $sessionUuid,
);
$field_string = json_encode($fields);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, false);
curl_setopt($ch, CURLOPT_ENCODING, "");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_AUTOREFERER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_MAXREDIRS, 10);
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
"Content-Type: application/json",
$customerKeyHeader,
$timestampHeader,
$authorizationHeader,
));
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, $field_string);
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
curl_setopt($ch, CURLOPT_TIMEOUT, 20);
$content = curl_exec($ch);
if (curl_errno($ch)) {
return null;
}
curl_close($ch);
return $content;
}
