sourcecodedocumentation/4.9.5/oxcaptcha_8php_source.html

<?php


class oxCaptcha extends oxSuperCfg

{


    protected $_iMacLength = 5;


    protected $_sText = null;


    private $_sMacChars = 'abcdefghijkmnpqrstuvwxyz23456789';


    protected $_iTimeout = 300;


    public function getText()

    {

        if (!$this->_sText) {

            $this->_sText = '';

            for ($i = 0; $i < $this->_iMacLength; $i++) {

                $this->_sText .= strtolower($this->_sMacChars{rand(0, strlen($this->_sMacChars) - 1)});

            }

        }


        return $this->_sText;

    }


    public function getHash($sText = null)

    {

        // inserting captcha record

        $iTime = time() + $this->_iTimeout;

        $sTextHash = $this->getTextHash($sText);


        // if session is started - storing captcha info here

        $session = $this->getSession();

        if ($session->isSessionStarted()) {

            $sHash = oxUtilsObject::getInstance()->generateUID();

            $aHash = $session->getVariable("aCaptchaHash");

            $aHash[$sHash] = array($sTextHash => $iTime);

            $session->setVariable("aCaptchaHash", $aHash);

        } else {

            $oDb = oxDb::getDb();

            $sQ = "insert into oxcaptcha ( oxhash, oxtime ) values ( '{$sTextHash}', '{$iTime}' )";

            $oDb->execute($sQ);

            $sHash = $oDb->getOne("select LAST_INSERT_ID()", false, false);

        }


        return $sHash;

    }


    public function getTextHash($sText)

    {

        if (!$sText) {

            $sText = $this->getText();

        }


        $sText = strtolower($sText);


        return md5("ox{$sText}");

    }


    public function getImageUrl()

    {

        $sUrl = $this->getConfig()->getCoreUtilsURL() . "verificationimg.php?e_mac=";

        $sUrl .= oxRegistry::getUtils()->strMan($this->getText());


        return $sUrl;

    }


    public function isImageVisible()

    {

        return ((function_exists('imagecreatetruecolor') || function_exists('imagecreate')) && $this->getConfig()->getConfigParam('iUseGDVersion') > 1);

    }


    protected function _passFromSession($sMacHash, $sHash, $iTime)

    {

        $blPass = null;

        $oSession = $this->getSession();

        if (($aHash = $oSession->getVariable("aCaptchaHash"))) {

            $blPass = (isset($aHash[$sMacHash][$sHash]) && $aHash[$sMacHash][$sHash] >= $iTime) ? true : false;

            unset($aHash[$sMacHash]);

            if (!empty($aHash)) {

                $oSession->setVariable("aCaptchaHash", $aHash);

            } else {

                $oSession->deleteVariable("aCaptchaHash");

            }

        }


        return $blPass;

    }


    protected function _passFromDb($iMacHash, $sHash, $iTime)

    {

        $blPass = false;


        $oDb = oxDb::getDb();

        $sQ = "select 1 from oxcaptcha where oxid = {$iMacHash} and oxhash = '{$sHash}'";

        if (($blPass = (bool) $oDb->getOne($sQ, false, false))) {

            // cleanup

            $sQ = "delete from oxcaptcha where oxid = {$iMacHash} and oxhash = '{$sHash}'";

            $oDb->execute($sQ);

        }


        // garbage cleanup

        $sQ = "delete from oxcaptcha where oxtime < $iTime";

        $oDb->execute($sQ);


        return $blPass;

    }


    public function pass($sMac, $sMacHash)

    {

        $iTime = time();

        $sHash = $this->getTextHash($sMac);


        $blPass = $this->_passFromSession($sMacHash, $sHash, $iTime);


        // if captha info was NOT stored in session

        if ($blPass === null) {

            $blPass = $this->_passFromDb((int) $sMacHash, $sHash, $iTime);

        }


        return (bool) $blPass;

    }

}