Add secure context loader that require https even when redirecting.

2013-02-18 16:34:14 -05:00 · 2013-02-18 16:34:14 -05:00 · 41ee90f02c
parent dfbea38c6f
commit 41ee90f02c
1 changed files with 54 additions and 4 deletions
--- a/jsonld.php
+++ b/jsonld.php
@ -219,12 +219,18 @@ function jsonld_get_url($url) {
 */
 function jsonld_default_get_url($url) {
  // default JSON-LD GET implementation
-  $opts = array('http' =>
-    array(
+  $opts = array(
+    'http' => array(
      'method' => "GET",
      'header' =>
-      "Accept: application/ld+json\r\n" .
-      "User-Agent: PaySwarm PHP Client/1.0\r\n"));
+        "Accept: application/ld+json\r\n" .
+        "User-Agent: PaySwarm PHP Client/1.0\r\n"),
+    'https' => array(
+      'verify_peer' => true,
+      'method' => "GET",
+      'header' =>
+        "Accept: application/ld+json\r\n" .
+        "User-Agent: PaySwarm PHP Client/1.0\r\n"));
  $stream = stream_context_create($opts);
  $result = @file_get_contents($url, false, $stream);
  if($result === false) {
@ -233,6 +239,50 @@ function jsonld_default_get_url($url) {
  return $result;
 }

+/**
+ * The default implementation to retrieve JSON-LD at the given secure URL.
+ *
+ * @param string $url the secure URL to to retrieve.
+ *
+ * @return the JSON-LD.
+ */
+function jsonld_default_get_secure_url($url) {
+  if(strpos($url, 'https') !== 0) {
+    throw new Exception("Could not GET url: '$url'; 'https' is required.");
+  }
+
+  $redirects = array();
+
+  // default JSON-LD https GET implementation
+  $opts = array(
+    'https' => array(
+      'verify_peer' => true,
+      'method' => "GET",
+      'header' =>
+        "Accept: application/ld+json\r\n" .
+        "User-Agent: PaySwarm PHP Client/1.0\r\n"));
+  $stream = stream_context_create($opts);
+  stream_context_set_params($stream, array('notification' =>
+    function($notification_code, $severity, $message) use (&$redirects) {
+      switch($notification_code) {
+      case STREAM_NOTIFY_REDIRECTED:
+        $redirects[] = $message;
+        break;
+      };
+  }));
+  $result = @file_get_contents($url, false, $stream);
+  if($result === false) {
+    throw new Exception("Could not GET url: '$url'");
+  }
+  foreach($redirects as $redirect) {
+    if(strpos($redirect, 'https') !== 0) {
+      throw new Exception(
+        "Could not GET redirected url: '$redirect'; 'https' is required.");
+    }
+  }
+  return $result;
+}
+
 /** Registered global RDF Statement parsers hashed by content-type. */
 global $jsonld_rdf_parsers;
 $jsonld_rdf_parsers = new stdClass();