International PHP Conference Berlin 2025

sodium_crypto_auth

(PHP 7 >= 7.2.0, PHP 8)

sodium_crypto_authCalcule une étiquette pour le message

Description

sodium_crypto_auth(string $message, #[\SensitiveParameter] string $key): string

Le message symétrique d'authentification via sodium_crypto_auth() fournit l'intégrité, mais pas la confidentialité.

Contrairement aux signatures numériques (par exemple sodium_crypto_sign_detached()), toute partie capable de vérifier un message est également capable d'authentifier ses propres messages. (D'où, l'authentification symétrique.)

Liste de paramètres

message

Le message que vous souhaitez authentifier

key

La clé d'authentification

Valeurs de retour

La clé d'authentification

add a note

User Contributed Notes 1 note

up
1
craig at craigfrancis dot co dot uk
6 years ago
Here's a quick example on how to use sodium_crypto_auth(); where you have a message that you want to sign, so anyone who can access the *shared* key can confirm that the message hasn't been tampered with.

This is similar to sodium_crypto_sign_detached(), but both signer and verifier have access to the same key.

<?php

$key
= sodium_crypto_auth_keygen();

//--------------------------------------------------
// Person 1, signing

$message = 'Hello';

$signature = sodium_crypto_auth($message, $key);

//--------------------------------------------------
// Person 2, verifying

$message_valid = sodium_crypto_auth_verify($signature, $message, $key);

if (!
$message_valid) {
exit(
'Message has been changed.');
}

?>
To Top