ubiquity/_content_security_manager_8php_source.html

<?php

namespace Ubiquity\security\csp;


use Ubiquity\utils\http\URequest;


class ContentSecurityManager {


    private static NonceGenerator $nonceGenerator;


    private static array $csp = [];


    private static bool $reportOnly;


    private static string $hashAlgo = 'sha256';


    private static $onGenerate;


    public static function start(string $nonceGeneratorClass = null, bool $reportOnly = false, ?callable $onGenerate = null): void {

        $nonceGeneratorClass ??= NonceGenerator::class;

        self::$onGenerate = $onGenerate;

        self::$nonceGenerator = new $nonceGeneratorClass($onGenerate);

        self::$reportOnly = $reportOnly;

    }


    public static function getNonce(string $name): string {

        return self::$nonceGenerator->getNonce($name);

    }


    public static function getHash(string $name, string $code, string $algo = 'sha256'): string {

        $code = \preg_replace('/\r\n/', '\n', $code);

        $hash = \base64_encode(\hash($algo, $code, true));

        $hash = "$algo-$hash";

        if (isset(self::$onGenerate) && ! URequest::isAjax()) {

            $onG = self::$onGenerate;

            $onG($name, $hash, $algo);

        }

        return $hash;

    }


    public static function hasNonce(string $name): bool {

        if (isset(self::$nonceGenerator)) {

            return self::$nonceGenerator->hasNonce($name);

        }

        return false;

    }


    public static function isStarted(): bool {

        return isset(self::$nonceGenerator);

    }


    public static function addCsp(?bool $reportOnly = null): ContentSecurity {

        return self::$csp[] = new ContentSecurity($reportOnly ?? self::$reportOnly);

    }


    public static function defaultCsp(?bool $reportOnly = null): ContentSecurity {

        return self::$csp['default'] ??= new ContentSecurity($reportOnly ?? self::$reportOnly);

    }


    public static function clearCsp(): void {

        self::$csp = [];

    }


    public static function defaultUbiquity(?bool $reportOnly = null): ContentSecurity {

        return self::$csp['defaultUbiquity'] ??= ContentSecurity::defaultUbiquity()->reportOnly($reportOnly);

    }


    public static function defaultUbiquityDebug(?bool $reportOnly = null, string $livereloadServer = '127.0.0.1:35729'): ContentSecurity {

        return self::$csp['defaultUbiquity'] ??= ContentSecurity::defaultUbiquityDebug($livereloadServer)->reportOnly($reportOnly);

    }


    public static function addHeadersToResponse(?bool $reportOnly = null): void {

        $reportOnly ??= self::$reportOnly;

        foreach (self::$csp as $csp) {

            $csp->addHeaderToResponse($reportOnly);

        }

    }


    public static function getNonceGenerator(): NonceGenerator {

        return self::$nonceGenerator;

    }


    public static function getCsp(): array {

        return self::$csp;

    }


    public static function isReportOnly(): bool {

        return self::$reportOnly;

    }


    public static function getHashAlgo(): string {

        return ContentSecurityManager::$hashAlgo;

    }


    public static function setHashAlgo(string $hashAlgo) {

        ContentSecurityManager::$hashAlgo = $hashAlgo;

    }


    public static function setOnGenerate(callable $onGenerate) {

        ContentSecurityManager::$onGenerate = $onGenerate;

    }


}


Ubiquity\security\csp\ContentSecurity
Creates a Content Security Policy object.
Definition ContentSecurity.php:16

Ubiquity\security\csp\ContentSecurityManager
Manage Content Security Policies.
Definition ContentSecurityManager.php:15

Ubiquity\security\csp\ContentSecurityManager\addCsp
static addCsp(?bool $reportOnly=null)
Creates and returns a new ContentSecurity object.
Definition ContentSecurityManager.php:100

Ubiquity\security\csp\ContentSecurityManager\getHash
static getHash(string $name, string $code, string $algo='sha256')
Generates a hash and add it to a directive.
Definition ContentSecurityManager.php:62

Ubiquity\security\csp\ContentSecurityManager\isReportOnly
static isReportOnly()
Returns true if reportOnly header is activated.
Definition ContentSecurityManager.php:176

Ubiquity\security\csp\ContentSecurityManager\getNonceGenerator
static getNonceGenerator()
Returns the NonceGenerator instance.
Definition ContentSecurityManager.php:159

Ubiquity\security\csp\ContentSecurityManager\setOnGenerate
static setOnGenerate(callable $onGenerate)
Definition ContentSecurityManager.php:200

Ubiquity\security\csp\ContentSecurityManager\hasNonce
static hasNonce(string $name)
Definition ContentSecurityManager.php:78

Ubiquity\security\csp\ContentSecurityManager\$reportOnly
static bool $reportOnly
Definition ContentSecurityManager.php:21

Ubiquity\security\csp\ContentSecurityManager\addHeadersToResponse
static addHeadersToResponse(?bool $reportOnly=null)
Adds all Content security policies to headers.
Definition ContentSecurityManager.php:147

Ubiquity\security\csp\ContentSecurityManager\defaultUbiquityDebug
static defaultUbiquityDebug(?bool $reportOnly=null, string $livereloadServer='127.0.0.1:35729')
Creates a new ContentSecurity object for Ubiquity Webtools in debug mode.
Definition ContentSecurityManager.php:138

Ubiquity\security\csp\ContentSecurityManager\$hashAlgo
static string $hashAlgo
Definition ContentSecurityManager.php:23

Ubiquity\security\csp\ContentSecurityManager\getCsp
static getCsp()
Definition ContentSecurityManager.php:167

Ubiquity\security\csp\ContentSecurityManager\defaultUbiquity
static defaultUbiquity(?bool $reportOnly=null)
Creates a new ContentSecurity object for Ubiquity Webtools.
Definition ContentSecurityManager.php:127

Ubiquity\security\csp\ContentSecurityManager\getNonce
static getNonce(string $name)
Returns a new or an existing nonce.
Definition ContentSecurityManager.php:49

Ubiquity\security\csp\ContentSecurityManager\$nonceGenerator
static NonceGenerator $nonceGenerator
Definition ContentSecurityManager.php:17

Ubiquity\security\csp\ContentSecurityManager\getHashAlgo
static getHashAlgo()
Definition ContentSecurityManager.php:184

Ubiquity\security\csp\ContentSecurityManager\start
static start(string $nonceGeneratorClass=null, bool $reportOnly=false, ?callable $onGenerate=null)
Starts the Content Security Policies manager.
Definition ContentSecurityManager.php:35

Ubiquity\security\csp\ContentSecurityManager\$csp
static array $csp
Definition ContentSecurityManager.php:19

Ubiquity\security\csp\ContentSecurityManager\clearCsp
static clearCsp()
Removes all CSP objects.
Definition ContentSecurityManager.php:117

Ubiquity\security\csp\ContentSecurityManager\defaultCsp
static defaultCsp(?bool $reportOnly=null)
Returns a default ContentSecurity object.
Definition ContentSecurityManager.php:110

Ubiquity\security\csp\ContentSecurityManager\isStarted
static isStarted()
Checks if the manager is started.
Definition ContentSecurityManager.php:90

Ubiquity\security\csp\ContentSecurityManager\$onGenerate
static $onGenerate
Definition ContentSecurityManager.php:25

Ubiquity\security\csp\ContentSecurityManager\setHashAlgo
static setHashAlgo(string $hashAlgo)
Definition ContentSecurityManager.php:192

Ubiquity\security\csp\NonceGenerator
Definition NonceGenerator.php:6

Ubiquity\utils\http\URequest
Http Request utilities, wrapper for accessing to $_GET, $_POST and php://input.
Definition URequest.php:18

Ubiquity\security\csp
Definition ContentSecurity.php:2