Created
April 26, 2012 18:48
-
-
Save niczak/2501891 to your computer and use it in GitHub Desktop.
PHP Encrypt/Decrypt Class
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| class Encryption { | |
| var $skey = "yourSecretKey"; // change this | |
| public function safe_b64encode($string) { | |
| $data = base64_encode($string); | |
| $data = str_replace(array('+','/','='),array('-','_',''),$data); | |
| return $data; | |
| } | |
| public function safe_b64decode($string) { | |
| $data = str_replace(array('-','_'),array('+','/'),$string); | |
| $mod4 = strlen($data) % 4; | |
| if ($mod4) { | |
| $data .= substr('====', $mod4); | |
| } | |
| return base64_decode($data); | |
| } | |
| public function encode($value){ | |
| if(!$value){return false;} | |
| $text = $value; | |
| $iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB); | |
| $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND); | |
| $crypttext = mcrypt_encrypt(MCRYPT_RIJNDAEL_256, $this->skey, $text, MCRYPT_MODE_ECB, $iv); | |
| return trim($this->safe_b64encode($crypttext)); | |
| } | |
| public function decode($value){ | |
| if(!$value){return false;} | |
| $crypttext = $this->safe_b64decode($value); | |
| $iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB); | |
| $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND); | |
| $decrypttext = mcrypt_decrypt(MCRYPT_RIJNDAEL_256, $this->skey, $crypttext, MCRYPT_MODE_ECB, $iv); | |
| return trim($decrypttext); | |
| } | |
| } | |
| /* | |
| Sample Call: | |
| $str = "myPassword"; | |
| $converter = new Encryption; | |
| $encoded = $converter->encode($str ); | |
| $decoded = $converter->decode($encode); | |
| echo "$encoded<p>$decoded"; | |
| */ | |
| ?> |
any hope for adding this to composer someday? thanks.
Hi!
I am not sure about the purpose of your Encrypt/Decrypt class, but the code is not secure!
- ECB mode is generally not recommended! see https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation
- The created IV is completely ignored by this mode too!
var $skey = "1234567890123456"; // 16, 24 or 32 Digits
$decoded = $converter->decode($encoded);
I'm getting sometimes not valid source text after decode. it looks like ugly characters:
https://gyazo.com/243cb5ec3a1ca5e6683da6280f3fdc73
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
hi. THERE IS AN ERROR, FIX THE 46 line, where should be $encoded, instead of $encode.