Merge branch 'release/0.2.0'

CHANGELOG.md

@@ -1,5 +1,10 @@
 # Otis changelog
 
+### 0.2.0 (2013-08-28)
+
+- **[BC BREAK]** Validators now accept the number of digits in the password as
+  an argument.
+
 ### 0.1.0 (2013-08-26)
 
 - **[NEW]** Initial implementation.

src/Eloquent/Otis/Hotp/HotpValidator.php

@@ -47,6 +47,7 @@ public function generator()
      * @param string       $secret         The HOTP secret.
      * @param integer      $currentCounter The current counter value.
      * @param integer|null &$newCounter    Will be set to the new counter value.
+     * @param integer|null $digits         The number of password digits.
      * @param integer|null $window         The amount of counter increments to search through for a match.
      *
      * @return boolean True if the password is valid.
@@ -56,15 +57,18 @@ public function validate(
         $secret,
         $currentCounter,
         &$newCounter = null,
+        $digits = null,
         $window = null
     ) {
+        $newCounter = $currentCounter;
+
+        if (null === $digits) {
+            $digits = 6;
+        }
         if (null === $window) {
             $window = 0;
         }
 
-        $newCounter = $currentCounter;
-        $length = strlen($password);
-
         for (
             $counter = $currentCounter;
             $counter <= $currentCounter + $window;
@@ -73,7 +77,7 @@ public function validate(
             $value = $this->generator()->generate($secret, $counter);
 
             try {
-                $thisPassword = $value->string($length);
+                $thisPassword = $value->string($digits);
             } catch (Exception\InvalidPasswordLengthException $e) {
                 return false;
             }
@@ -95,6 +99,7 @@ public function validate(
      * @param string        $secret         The HOTP secret.
      * @param integer       $currentCounter The current counter value.
      * @param integer|null  &$newCounter    Will be set to the new counter value.
+     * @param integer|null  $digits         The number of password digits.
      * @param integer|null  $window         The amount of counter increments to search through for a match.
      *
      * @return boolean True if the password is valid.
@@ -104,6 +109,7 @@ public function validateSequence(
         $secret,
         $currentCounter,
         &$newCounter = null,
+        $digits = null,
         $window = null
     ) {
         $newCounter = $currentCounter;
@@ -118,11 +124,20 @@ public function validateSequence(
                 $secret,
                 $currentCounter,
                 $counter,
+                $digits,
                 $window
             )
         ) {
             foreach ($passwords as $password) {
-                if (!$this->validate($password, $secret, $counter, $counter)) {
+                if (
+                    !$this->validate(
+                        $password,
+                        $secret,
+                        $counter,
+                        $counter,
+                        $digits
+                    )
+                ) {
                     return false;
                 }
             }

src/Eloquent/Otis/Hotp/HotpValidatorInterface.php

@@ -23,6 +23,7 @@ interface HotpValidatorInterface
      * @param string       $secret         The HOTP secret.
      * @param integer      $currentCounter The current counter value.
      * @param integer|null &$newCounter    Will be set to the new counter value.
+     * @param integer|null $digits         The number of password digits.
      * @param integer|null $window         The amount of counter increments to search through for a match.
      *
      * @return boolean True if the password is valid.
@@ -32,6 +33,7 @@ public function validate(
         $secret,
         $currentCounter,
         &$newCounter = null,
+        $digits = null,
         $window = null
     );
 
@@ -42,6 +44,7 @@ public function validate(
      * @param string        $secret         The HOTP secret.
      * @param integer       $currentCounter The current counter value.
      * @param integer|null  &$newCounter    Will be set to the new counter value.
+     * @param integer|null  $digits         The number of password digits.
      * @param integer|null  $window         The amount of counter increments to search through for a match.
      *
      * @return boolean True if the password is valid.
@@ -51,6 +54,7 @@ public function validateSequence(
         $secret,
         $currentCounter,
         &$newCounter = null,
+        $digits = null,
         $window = null
     );
 }

src/Eloquent/Otis/Totp/TotpValidator.php

@@ -52,6 +52,7 @@ public function generator()
      *
      * @param string       $password      The password to validate.
      * @param string       $secret        The TOTP secret.
+     * @param integer|null $digits        The number of password digits.
      * @param integer|null $window        The number of seconds each token is valid for.
      * @param integer|null $pastWindows   The number of past windows to check.
      * @param integer|null $futureWindows The number of future windows to check.
@@ -62,11 +63,17 @@ public function generator()
     public function validate(
         $password,
         $secret,
+        $digits = null,
         $window = null,
         $pastWindows = null,
         $futureWindows = null,
         &$driftWindows = null
     ) {
+        $driftWindows = null;
+
+        if (null === $digits) {
+            $digits = 6;
+        }
         if (null === $window) {
             $window = 30;
         }
@@ -77,9 +84,11 @@ public function validate(
             $futureWindows = 1;
         }
 
-        $driftWindows = null;
+        if (strlen($password) !== $digits) {
+            return false;
+        }
+
         $time = $this->isolator()->time();
-        $length = strlen($password);
 
         for ($i = -$pastWindows; $i <= $futureWindows; ++$i) {
             $result = $this->generator()->generate(
@@ -89,7 +98,7 @@ public function validate(
             );
 
             try {
-                $thisPassword = $result->string($length);
+                $thisPassword = $result->string($digits);
             } catch (InvalidPasswordLengthException $e) {
                 return false;
             }

src/Eloquent/Otis/Totp/TotpValidatorInterface.php

@@ -21,6 +21,7 @@ interface TotpValidatorInterface
      *
      * @param string       $password      The password to validate.
      * @param string       $secret        The TOTP secret.
+     * @param integer|null $digits        The number of password digits.
      * @param integer|null $window        The number of seconds each token is valid for.
      * @param integer|null $pastWindows   The number of past windows to check.
      * @param integer|null $futureWindows The number of future windows to check.
@@ -31,6 +32,7 @@ interface TotpValidatorInterface
     public function validate(
         $password,
         $secret,
+        $digits = null,
         $window = null,
         $pastWindows = null,
         $futureWindows = null,

test/suite/Eloquent/Otis/Hotp/HotpValidatorTest.php

@@ -37,51 +37,53 @@ public function testConstructorDefaults()
 
     public function validateData()
     {
-        //                                  password  secret                  currentCounter window expected newCounter
+        //                                  password  secret                  currentCounter digits window expected newCounter
         return array(
-            'No window, valid'     => array('969429', '12345678901234567890', 3,             null,  true,    4),
-            'With window, valid'   => array('520489', '12345678901234567890', 0,             9,     true,    10),
+            'No window, valid'     => array('969429', '12345678901234567890', 3,             null,  null,  true,    4),
+            'With window, valid'   => array('520489', '12345678901234567890', 0,             null,  9,     true,    10),
 
-            'No window, invalid'   => array('338314', '12345678901234567890', 3,             null,  false,   3),
-            'With window, invalid' => array('520489', '12345678901234567890', 0,             8,     false,   0),
-            'Invalid length'       => array('12345',  '12345678901234567890', 0,             100,   false,   0),
+            'No window, invalid'   => array('338314', '12345678901234567890', 3,             null,  null,  false,   3),
+            'With window, invalid' => array('520489', '12345678901234567890', 0,             null,  8,     false,   0),
+            'Length mismatch'      => array('969429', '12345678901234567890', 3,             8,     null,  false,   3),
+            'Invalid length'       => array('12345',  '12345678901234567890', 0,             5,     100,   false,   0),
         );
     }
 
     /**
      * @dataProvider validateData
      */
-    public function testValidate($password, $secret, $currentCounter, $window, $expected, $expectedCounter)
+    public function testValidate($password, $secret, $currentCounter, $digits, $window, $expected, $expectedCounter)
     {
         $this->assertSame(
             $expected,
-            $this->validator->validate($password, $secret, $currentCounter, $newCounter, $window)
+            $this->validator->validate($password, $secret, $currentCounter, $newCounter, $digits, $window)
         );
         $this->assertSame($expectedCounter, $newCounter);
     }
 
     public function validateSequenceData()
     {
-        //                                  passwords                  secret                  currentCounter window expected newCounter
+        //                                  passwords                  secret                  currentCounter digits window expected newCounter
         return array(
-            'No window, valid'     => array(array('969429', '338314'), '12345678901234567890', 3,             null,  true,    5),
-            'With window, valid'   => array(array('399871', '520489'), '12345678901234567890', 0,             8,     true,    10),
+            'No window, valid'     => array(array('969429', '338314'), '12345678901234567890', 3,             null,  null,  true,    5),
+            'With window, valid'   => array(array('399871', '520489'), '12345678901234567890', 0,             null,  8,     true,    10),
 
-            'No window, invalid'   => array(array('359152', '969429'), '12345678901234567890', 3,             null,  false,   3),
-            'With window, invalid' => array(array('755224', '359152'), '12345678901234567890', 0,             100,   false,   0),
-            'Invalid length'       => array(array('755224', '12345'),  '12345678901234567890', 0,             100,   false,   0),
-            'No passwords'         => array(array(),                   '12345678901234567890', 0,             100,   false,   0),
+            'No window, invalid'   => array(array('359152', '969429'), '12345678901234567890', 3,             null,  null,  false,   3),
+            'With window, invalid' => array(array('755224', '359152'), '12345678901234567890', 0,             null,  100,   false,   0),
+            'Length mismatch'      => array(array('969429', '338314'), '12345678901234567890', 3,             8,     null,  false,   3),
+            'Invalid length'       => array(array('755224', '12345'),  '12345678901234567890', 0,             null,  100,   false,   0),
+            'No passwords'         => array(array(),                   '12345678901234567890', 0,             null,  100,   false,   0),
         );
     }
 
     /**
      * @dataProvider validateSequenceData
      */
-    public function testValidateSequence($passwords, $secret, $currentCounter, $window, $expected, $expectedCounter)
+    public function testValidateSequence($passwords, $secret, $currentCounter, $digits, $window, $expected, $expectedCounter)
     {
         $this->assertSame(
             $expected,
-            $this->validator->validateSequence($passwords, $secret, $currentCounter, $newCounter, $window)
+            $this->validator->validateSequence($passwords, $secret, $currentCounter, $newCounter, $digits, $window)
         );
         $this->assertSame($expectedCounter, $newCounter);
     }

test/suite/Eloquent/Otis/Totp/TotpValidatorTest.php

@@ -40,30 +40,31 @@ public function testConstructorDefaults()
 
     public function validateData()
     {
-        //                                     password    secret                  window time        pastWindows futureWindows expected drift
+        //                                     password    secret                  digits window time        pastWindows futureWindows expected drift
         return array(
-            'Valid, no drift'         => array('14050471', '12345678901234567890', null,  1111111111, null,       null,         true,    0),
-            'Valid, 1 past drift'     => array('07081804', '12345678901234567890', null,  1111111111, null,       null,         true,    -1),
-            'Valid, 1 future drift'   => array('44266759', '12345678901234567890', null,  1111111111, null,       null,         true,    1),
-            'Valid, 10 past drift'    => array('13755423', '12345678901234567890', null,  1111111111, 100,        100,          true,    -10),
-            'Valid, 10 future drift'  => array('78536305', '12345678901234567890', null,  1111111111, 100,        100,          true,    10),
+            'Valid, no drift'         => array('14050471', '12345678901234567890', 8,     null,  1111111111, null,       null,         true,    0),
+            'Valid, 1 past drift'     => array('07081804', '12345678901234567890', 8,     null,  1111111111, null,       null,         true,    -1),
+            'Valid, 1 future drift'   => array('44266759', '12345678901234567890', 8,     null,  1111111111, null,       null,         true,    1),
+            'Valid, 10 past drift'    => array('13755423', '12345678901234567890', 8,     null,  1111111111, 100,        100,          true,    -10),
+            'Valid, 10 future drift'  => array('78536305', '12345678901234567890', 8,     null,  1111111111, 100,        100,          true,    10),
 
-            'Invalid, too far past'   => array('13755423', '12345678901234567890', null,  1111111111, 9,          null,         false,   null),
-            'Invalid, too far future' => array('78536305', '12345678901234567890', null,  1111111111, null,       9,            false,   null),
-            'Invalid length'          => array('12345',    '12345678901234567890', null,  1111111111, null,       null,         false,   null),
+            'Invalid, too far past'   => array('13755423', '12345678901234567890', 8,     null,  1111111111, 9,          null,         false,   null),
+            'Invalid, too far future' => array('78536305', '12345678901234567890', 8,     null,  1111111111, null,       9,            false,   null),
+            'Length mismatch'         => array('14050471', '12345678901234567890', null,  null,  1111111111, null,       null,         false,   null),
+            'Invalid length'          => array('12345',    '12345678901234567890', 5,     null,  1111111111, null,       null,         false,   null),
         );
     }
 
     /**
      * @dataProvider validateData
      */
-    public function testValidate($password, $secret, $window, $time, $pastWindows, $futureWindows, $expected, $expectedDrift)
+    public function testValidate($password, $secret, $digits, $window, $time, $pastWindows, $futureWindows, $expected, $expectedDrift)
     {
         Phake::when($this->isolator)->time()->thenReturn($time);
 
         $this->assertSame(
             $expected,
-            $this->validator->validate($password, $secret, $window, $pastWindows, $futureWindows, $actualDrift)
+            $this->validator->validate($password, $secret, $digits, $window, $pastWindows, $futureWindows, $actualDrift)
         );
         $this->assertSame($expectedDrift, $actualDrift);
     }