openssl_spki_verify
(PHP 5 >= 5.6.0, PHP 7, PHP 8)
openssl_spki_verify — Verifies a signed public key and challenge
Description
openssl_spki_verify(string $spki): bool
Validates the supplied signed public key and challenge
Parameters
-
spki -
Expects a valid signed public key and challenge
Return Values
Returns true on success or false on failure.
Errors/Exceptions
Emits an E_WARNING level error if an invalid argument is passed via the spki parameter.
Examples
Example #1 openssl_spki_verify() example
Validates an existing signed public key and challenge
<?php
$pkey = openssl_pkey_new('secret password');
$spkac = openssl_spki_new($pkey, 'challenge string');
if (openssl_spki_verify(preg_replace('/SPKAC=/', '', $spkac))) {
echo $spkac;
} else {
echo "SPKAC validation failed";
}
?>
Example #2 openssl_spki_verify() example from <keygen>
Validates an existing signed public key and challenge issued from the <keygen> element
<?php
if (openssl_spki_verify(preg_replace('/SPKAC=/', '', $_POST['spkac']))) {
echo $spkac;
} else {
echo "SPKAC validation failed";
}
?>
<keygen name="spkac" challenge="challenge string" keytype="RSA">
See Also
- openssl_spki_new() - Generate a new signed public key and challenge
- openssl_spki_export_challenge() - Exports the challenge associated with a signed public key and challenge
- openssl_spki_export() - Exports a valid PEM formatted public key signed public key and challenge
- openssl_get_md_methods() - Gets available digest methods
- openssl_csr_new() - Generates a CSR
- openssl_csr_sign() - Sign a CSR with another certificate (or itself) and generate a certificate
© 1997–2021 The PHP Documentation Group
Licensed under the Creative Commons Attribution License v3.0 or later.
https://www.php.net/manual/en/function.openssl-spki-verify.php
