blax-software
/
laravel-websockets
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

wip

This commit is contained in:
Marcel Pociot 2018-11-24 15:34:11 +01:00
parent d6ef5883a9
commit cf3c87ee61
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/LaravelEcho/Http/Controllers/TriggerEvent.php
View File

@ -2,6 +2,7 @@
namespace BeyondCode\LaravelWebSockets\LaravelEcho\Http\Controllers;
use BeyondCode\LaravelWebSockets\ClientProviders\Client;
use Illuminate\Http\Request;
use Symfony\Component\HttpKernel\Exception\HttpException;
@ -35,8 +36,7 @@ class TriggerEvent extends EchoController
"&auth_version={$request->get('auth_version')}".
"&body_md5={$bodyMd5}";
/** TODO: use client config from config file */
$authSignature = hash_hmac('sha256', $signature, config('broadcasting.connections.pusher.secret'));
$authSignature = hash_hmac('sha256', $signature, Client::findByAppId($request->get('appId'))->appSecret);
if ($authSignature !== $request->get('auth_signature')) {
throw new HttpException(401, 'Invalid auth signature provided.');