Home Explore Help
Register Sign In
wuwenqiang
/
dm-v2.com
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
dm-v2.com
/
11.php

11.php 1.2 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849 
  1. <?php
    2. 

  2. function generateHash($macAddress, $timestamp, $customString) {
    3. 

  3.     // 组合输入字符串
    4. 

  4.     $inputString = $macAddress . $timestamp . $customString;
    5. 

  5. 

  6.     // 使用SHA256进行加密
    7. 

  7.     $hash = hash('sha256', $inputString);
    8. 

  8. 

  9.     return $hash;
    10. 

  10. }
    11. 

  11. 

  12. function get_all_headers() {
    13. 

  13.     $headers = [];
    14. 

  14.     foreach ($_SERVER as $key => $value) {
    15. 

  15.         if (substr($key, 0, 5) === 'HTTP_') {
    16. 

  16.             $header = str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($key, 5)))));
    17. 

  17.             $headers[$header] = $value;
    18. 

  18.         }
    19. 

  19.     }
    20. 

  20.     return $headers;
    21. 

  21. }
    22. 

  22. 

  23. 

  24. $headers = get_all_headers();
    25. 

  25. 

  26. 

  27. //有一个不存在就判断异常
    28. 

  28. if(!isset($headers['X-Special-Header'])||!isset($headers['Timestamp'])||!isset($headers['Clinet-Mac'])){
    29. 

  29.     die("非法访问");
    30. 

  30. }
    31. 

  31. //foreach ($headers as $name => $value) {
    32. 

  32. //    echo "$name: $value<br>";
    33. 

  33. //}
    34. 

  34. 

  35. 

  36. //X-Special-Header  token 字段 ='sha256' (Mac+时间戳+自定义字符串)
    37. 

  37. //Timestamp  时间戳
    38. 

  38. //Clinet-Mac mac地址
    39. 

  39. 

  40. //10秒内可以访问
    41. 

  41. if((time()-$headers['Timestamp'])>10){
    42. 

  42.     die("无效访问");
    43. 

  43. }
    44. 

  44. if(generateHash($headers['Clinet-Mac'],$headers['Timestamp'],"minong123")!=$headers['X-Special-Header']){
    45. 

  45.     die("非法访问");
    46. 

  46. }
    47. 

  47. 

  48. 

  49. ?>
    50.