Corrections to the posted code: I changed the code to encrypt the returned text. I also note that using openSSL in php returns base64 data. Bill
--------temp, testing iv for encryption --To test this on your own server, upload the php script where you put cgi's -- and modify the myURL setting. //Be sure to change the encryption key and tiv value on testEncryption put "http://earthexplorer.earthlearningsolutions.org/scgi-bin/wpEncryptionTest.php"; into myURL put "AES-256-CTR" into tCipher put "AFBDDFCFBDBBDDCCFFACGHDFFFFEEDCC" into tEncryptionKey //must be 43 chars put "ABCDEEABCDEEAA%A" into tIV //must be 16 chars put "The php should return this text." into tPostA["theQuery"] put "query" into tPostA["type"] put ArrayToJSON(tPostA,"string",pPretty) into tJson encrypt tJson using tCipher with key tEncryptionKey and iV tIV put base64encode(it) into tMyEncryptedData post tMyEncryptedData to url myURL put it into tRet put tRet into fld "status" —Note that openSSL in php returns base64 encoded data. put base64decode(tRet) into tRetVal decrypt tRetVal using tCipher with key tEncryptionKey and iV tIV put it into theResult put theResult after fld "status" end testEncryption ----------php script, on server --------------------------- --Note: you can run the above script on my server, --to test the LC script. <?php //file: wpEncryptionTest.php //external function function debug($msg) { $debug = false; if ($debug) { error_log("[DB LIB] $msg"); echo "$msg.\n"; } } //php code $encryption_key = "AFBDDFCFBDBBDDCCFFACGHDFFFFEEDCC"; $cipher = "AES-256-CTR"; // do not change cipher unless you know what you're doing $post = file_get_contents('php://input'); $iv = 'ABCDEEABCDEEAA%A'; $ivlen = 16; /* set for debugging. To encrypt, set to TRUE */ $post = openssl_decrypt($post, $cipher, $encryption_key, $options=0, $iv); $req = json_decode($post,true); if (!$req) { debug("error on decrypt"); debug(openssl_error_string()); } $theOut = $req["theQuery"]; //This is just the text of the query //$req is the array value of the tPostA array sent with the post comand. //Access the elements of tPostA using $req[“name of element”] //example: $req[“theQuery”] is tPoasA[“theQuery”] $retVal = "Decrypted query: $theOut.\n"; $doEncryptOutput = TRUE; if ($doEncryptOutput) { $retVal = openssl_encrypt($retVal, $cipher, $encryption_key,0,$iv); //openSSL in php returns base64 encoded data.` } echo $retVal; ?> William A. Prothero http://earthlearningsolutions.org _______________________________________________ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
