45 lines
1.5 KiB
PHP
45 lines
1.5 KiB
PHP
<?php
|
|
|
|
namespace BeyondCode\LaravelWebSockets\LaravelEcho\Http\Controllers;
|
|
|
|
use BeyondCode\LaravelWebSockets\ClientProviders\Client;
|
|
use Illuminate\Http\Request;
|
|
use Symfony\Component\HttpKernel\Exception\HttpException;
|
|
|
|
class TriggerEvent extends EchoController
|
|
{
|
|
public function __invoke(Request $request)
|
|
{
|
|
$this->verifySignature($request);
|
|
|
|
foreach ($request->json()->get('channels', []) as $channelId) {
|
|
$channel = $this->channelManager->find($request->appId, $channelId);
|
|
|
|
optional($channel)->broadcastToEveryoneExcept([
|
|
'channel' => $channelId,
|
|
'event' => $request->json()->get('name'),
|
|
'data' => $request->json()->get('data'),
|
|
], $request->json()->get('socket_id'));
|
|
}
|
|
|
|
return $request->json()->all();
|
|
}
|
|
|
|
protected function verifySignature(Request $request)
|
|
{
|
|
$bodyMd5 = md5($request->getContent());
|
|
|
|
$signature =
|
|
"POST\n/apps/{$request->get('appId')}/events\n".
|
|
"auth_key={$request->get('auth_key')}".
|
|
"&auth_timestamp={$request->get('auth_timestamp')}".
|
|
"&auth_version={$request->get('auth_version')}".
|
|
"&body_md5={$bodyMd5}";
|
|
|
|
$authSignature = hash_hmac('sha256', $signature, Client::findByAppId($request->get('appId'))->appSecret);
|
|
|
|
if ($authSignature !== $request->get('auth_signature')) {
|
|
throw new HttpException(401, 'Invalid auth signature provided.');
|
|
}
|
|
}
|
|
} |