ross-kvit/php-mtls-hmac
Composer 安装命令:
composer require ross-kvit/php-mtls-hmac
包简介
mTLS + HMAC-signed GET client for testing
README 文档
README
# PHP mTLS + HMAC client Minimal Composer package demonstrating: - mTLS client configuration using Guzzle - HMAC-SHA256 signature computation over canonical query string - PSR-4 autoloading, .env configuration via vlucas/phpdotenv - Unit and integration tests (integration test uses badssl client endpoint) ## Setup 1. Copy files into a directory and run `composer install`. 2. Create a `.env` file (copy `.env.example`) and set the real paths/secrets. Example `.env` for testing with badssl (download certs from https://badssl.com/download/): ```ini MTLS_CLIENT_CERT=./certs/badssl.com-client-cert.pem MTLS_CLIENT_KEY=./certs/badssl.com-client-key.pem MTLS_CLIENT_KEY_PASSPHRASE=badssl.com HMAC_SECRET=your_shared_hmac_secret API_ENDPOINT=https://client.badssl.com/ ``` 3. Run unit tests: `./vendor/bin/phpunit --filter SignerTest` 4. Run integration test (if `.env` contains real cert/key/secret): `./vendor/bin/phpunit --filter IntegrationTest` ## Notes - Guzzle options set `cert` and `ssl_key`. If your private key is encrypted, set `MTLS_CLIENT_KEY_PASSPHRASE`. - `verify` defaults to system CA if `MTLS_CA_BUNDLE` not set. To force validation with a specific bundle, set `MTLS_CA_BUNDLE` to the path to your CA bundle. - The Signer canonicalizes by sorting keys and building an RFC3986-encoded query string, then computing HMAC-SHA256. ## Final notes This package is structured for testability: Signer is pure and unit-testable; Client depends on Config and Guzzle. The integration test is intentionally skipped unless environment variables are set so CI won't fail.
ross-kvit/php-mtls-hmac 适用场景与选型建议
ross-kvit/php-mtls-hmac 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 0 次下载、GitHub Stars 达 0, 最近一次更新时间为 2025 年 09 月 10 日, 在 PHP 生态内属于活跃度较高的组件。
我们在过去多个企业项目中使用过 ross-kvit/php-mtls-hmac 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 ross-kvit/php-mtls-hmac 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
统计信息
- 总下载量: 0
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 0
- 点击次数: 19
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2025-09-10