|
11 | 11 |
|
12 | 12 | namespace FOS\UserBundle\Util; |
13 | 13 |
|
14 | | -use Symfony\Component\HttpKernel\Log\LoggerInterface; |
15 | | - |
16 | 14 | class TokenGenerator implements TokenGeneratorInterface |
17 | 15 | { |
18 | | - private $logger; |
19 | | - private $useOpenSsl; |
20 | | - |
21 | | - public function __construct(LoggerInterface $logger = null) |
22 | | - { |
23 | | - $this->logger = $logger; |
24 | | - |
25 | | - // determine whether to use OpenSSL |
26 | | - if (defined('PHP_WINDOWS_VERSION_BUILD') && version_compare(PHP_VERSION, '5.3.4', '<')) { |
27 | | - $this->useOpenSsl = false; |
28 | | - } elseif (!function_exists('openssl_random_pseudo_bytes')) { |
29 | | - if (null !== $this->logger) { |
30 | | - $this->logger->notice('It is recommended that you enable the "openssl" extension for random number generation.'); |
31 | | - } |
32 | | - $this->useOpenSsl = false; |
33 | | - } else { |
34 | | - $this->useOpenSsl = true; |
35 | | - } |
36 | | - } |
37 | | - |
| 16 | + /** |
| 17 | + * {@inheritdoc} |
| 18 | + */ |
38 | 19 | public function generateToken() |
39 | 20 | { |
40 | | - return rtrim(strtr(base64_encode($this->getRandomNumber()), '+/', '-_'), '='); |
41 | | - } |
42 | | - |
43 | | - private function getRandomNumber() |
44 | | - { |
45 | | - $nbBytes = 32; |
46 | | - |
47 | | - // try OpenSSL |
48 | | - if ($this->useOpenSsl) { |
49 | | - $bytes = openssl_random_pseudo_bytes($nbBytes, $strong); |
50 | | - |
51 | | - if (false !== $bytes && true === $strong) { |
52 | | - return $bytes; |
53 | | - } |
54 | | - |
55 | | - if (null !== $this->logger) { |
56 | | - $this->logger->info('OpenSSL did not produce a secure random number.'); |
57 | | - } |
58 | | - } |
59 | | - |
60 | | - return hash('sha256', uniqid(mt_rand(), true), true); |
| 21 | + return rtrim(strtr(base64_encode(random_bytes(32)), '+/', '-_'), '='); |
61 | 22 | } |
62 | 23 | } |
0 commit comments