????JFIF??x?x????'
| Server IP : 104.21.30.238  /  Your IP : 216.73.216.145 Web Server : LiteSpeed System : Linux premium151.web-hosting.com 4.18.0-553.44.1.lve.el8.x86_64 #1 SMP Thu Mar 13 14:29:12 UTC 2025 x86_64 User : tempvsty ( 647) PHP Version : 8.0.30 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /proc/./self/root/opt/alt/ruby26/lib64/ruby/gems/2.6.0/gems/rack-3.0.8/lib/rack/auth/ | 
| Upload File : | 
# frozen_string_literal: true
require_relative 'abstract/handler'
require_relative 'abstract/request'
require 'digest/md5'
require 'base64'
module Rack
  warn "Rack::Auth::Digest is deprecated and will be removed in Rack 3.1", uplevel: 1
  module Auth
    module Digest
      # Rack::Auth::Digest::Nonce is the default nonce generator for the
      # Rack::Auth::Digest::MD5 authentication handler.
      #
      # +private_key+ needs to set to a constant string.
      #
      # +time_limit+ can be optionally set to an integer (number of seconds),
      # to limit the validity of the generated nonces.
      class Nonce
        class << self
          attr_accessor :private_key, :time_limit
        end
        def self.parse(string)
          new(*Base64.decode64(string).split(' ', 2))
        end
        def initialize(timestamp = Time.now, given_digest = nil)
          @timestamp, @given_digest = timestamp.to_i, given_digest
        end
        def to_s
          Base64.encode64("#{@timestamp} #{digest}").strip
        end
        def digest
          ::Digest::MD5.hexdigest("#{@timestamp}:#{self.class.private_key}")
        end
        def valid?
          digest == @given_digest
        end
        def stale?
          !self.class.time_limit.nil? && (Time.now.to_i - @timestamp) > self.class.time_limit
        end
        def fresh?
          !stale?
        end
      end
      class Params < Hash
        def self.parse(str)
          Params[*split_header_value(str).map do |param|
            k, v = param.split('=', 2)
            [k, dequote(v)]
          end.flatten]
        end
        def self.dequote(str) # From WEBrick::HTTPUtils
          ret = (/\A"(.*)"\Z/ =~ str) ? $1 : str.dup
          ret.gsub!(/\\(.)/, "\\1")
          ret
        end
        def self.split_header_value(str)
          str.scan(/\w+\=(?:"[^\"]+"|[^,]+)/n)
        end
        def initialize
          super()
          yield self if block_given?
        end
        def [](k)
          super k.to_s
        end
        def []=(k, v)
          super k.to_s, v.to_s
        end
        UNQUOTED = ['nc', 'stale']
        def to_s
          map do |k, v|
            "#{k}=#{(UNQUOTED.include?(k) ? v.to_s : quote(v))}"
          end.join(', ')
        end
        def quote(str) # From WEBrick::HTTPUtils
          '"' + str.gsub(/[\\\"]/o, "\\\1") + '"'
        end
      end
      class Request < Auth::AbstractRequest
        def method
          @env[RACK_METHODOVERRIDE_ORIGINAL_METHOD] || @env[REQUEST_METHOD]
        end
        def digest?
          "digest" == scheme
        end
        def correct_uri?
          request.fullpath == uri
        end
        def nonce
          @nonce ||= Nonce.parse(params['nonce'])
        end
        def params
          @params ||= Params.parse(parts.last)
        end
        def respond_to?(sym, *)
          super or params.has_key? sym.to_s
        end
        def method_missing(sym, *args)
          return super unless params.has_key?(key = sym.to_s)
          return params[key] if args.size == 0
          raise ArgumentError, "wrong number of arguments (#{args.size} for 0)"
        end
      end
      # Rack::Auth::Digest::MD5 implements the MD5 algorithm version of
      # HTTP Digest Authentication, as per RFC 2617.
      #
      # Initialize with the [Rack] application that you want protecting,
      # and a block that looks up a plaintext password for a given username.
      #
      # +opaque+ needs to be set to a constant base64/hexadecimal string.
      #
      class MD5 < AbstractHandler
        attr_accessor :opaque
        attr_writer :passwords_hashed
        def initialize(app, realm = nil, opaque = nil, &authenticator)
          @passwords_hashed = nil
          if opaque.nil? and realm.respond_to? :values_at
            realm, opaque, @passwords_hashed = realm.values_at :realm, :opaque, :passwords_hashed
          end
          super(app, realm, &authenticator)
          @opaque = opaque
        end
        def passwords_hashed?
          !!@passwords_hashed
        end
        def call(env)
          auth = Request.new(env)
          unless auth.provided?
            return unauthorized
          end
          if !auth.digest? || !auth.correct_uri? || !valid_qop?(auth)
            return bad_request
          end
          if valid?(auth)
            if auth.nonce.stale?
              return unauthorized(challenge(stale: true))
            else
              env['REMOTE_USER'] = auth.username
              return @app.call(env)
            end
          end
          unauthorized
        end
        private
        QOP = 'auth'
        def params(hash = {})
          Params.new do |params|
            params['realm'] = realm
            params['nonce'] = Nonce.new.to_s
            params['opaque'] = H(opaque)
            params['qop'] = QOP
            hash.each { |k, v| params[k] = v }
          end
        end
        def challenge(hash = {})
          "Digest #{params(hash)}"
        end
        def valid?(auth)
          valid_opaque?(auth) && valid_nonce?(auth) && valid_digest?(auth)
        end
        def valid_qop?(auth)
          QOP == auth.qop
        end
        def valid_opaque?(auth)
          H(opaque) == auth.opaque
        end
        def valid_nonce?(auth)
          auth.nonce.valid?
        end
        def valid_digest?(auth)
          pw = @authenticator.call(auth.username)
          pw && Rack::Utils.secure_compare(digest(auth, pw), auth.response)
        end
        def md5(data)
          ::Digest::MD5.hexdigest(data)
        end
        alias :H :md5
        def KD(secret, data)
          H "#{secret}:#{data}"
        end
        def A1(auth, password)
          "#{auth.username}:#{auth.realm}:#{password}"
        end
        def A2(auth)
          "#{auth.method}:#{auth.uri}"
        end
        def digest(auth, password)
          password_hash = passwords_hashed? ? password : H(A1(auth, password))
          KD password_hash, "#{auth.nonce}:#{auth.nc}:#{auth.cnonce}:#{QOP}:#{H A2(auth)}"
        end
      end
    end
  end
end