PHPackages gboddin/psk-validator - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Validation & Sanitization](/categories/validation) 4. / 5. gboddin/psk-validator ActiveLibrary[Validation & Sanitization](/categories/validation) gboddin/psk-validator ===================== Pre-shared key time based signature validtor 0.1.1(9y ago)82093GPLPHP Since Apr 28Pushed 9y ago2 watchersCompare [ Source](https://github.com/gboddin/psk-validator)[ Packagist](https://packagist.org/packages/gboddin/psk-validator)[ RSS](/packages/gboddin-psk-validator/feed)WikiDiscussions master Synced 2d ago READMEChangelogDependenciesVersions (2)Used By (0) PSK validator ============= [](#psk-validator) Introduction ------------ [](#introduction) This library allows you to authenticate signed message from a client using an pre-shared key and salt based hash. Installation ------------ [](#installation) ``` composer require gboddin/psk-validator ``` Usage ----- [](#usage) ### Client [](#client) ``` $sharedsecret = '43223ff65b6ce17072cda5729b20daceec611d1f39e76040d347ceeca51d2a47'; $data = json_encode(['suff','otherstuff',['machin' => 'bidule']]); /** * Client : * Invoke the validator with the pre-shared key and an algo (sha256 by default) and * define an allowed time drift in minutes ( 2 by default ). */ $sigValidation = new \Gbo\PSKValidator($sharedsecret, 'sha256'); /** * Signs a bunch of data and get the signature. * The second optional parameters allows for a user provided salt instead * of the default time based salt. It must be agreed on between client and server. */ $signature = $sigValidation->sign($data, null); ``` ### Server [](#server) ``` /** * Server : * The optional third parameter allows to define a maximum time drift in minutes ( default 2 minutes ) */ $signature = $httpRequest->getHeader('x-signature'); $sharedsecret = '43223ff65b6ce17072cda5729b20daceec611d1f39e76040d347ceeca51d2a47'; $sigValidation = new \PSKValidator($sharedsecret, 'sha256', 2); $data = $httpRequest->getBody(); /** * Server : * The third optional parameters allows for a user provided salt instead * of the default time based salt. It must be agreed on between client and server. */ $signatureIsValid = $sigValidation->verify($data, $signature, null); var_dump( $data, $signature, $sigValidation->getTimeBasedSignatures($data), $signatureIsValid ); ``` ### Server output [](#server-output) ``` string(41) "["suff","otherstuff",{"machin":"bidule"}]" string(64) "d85a2d6873e034cb3ab8c490cb82139d8dabae6c08581cca0a2e7497ead287a4" array(5) { [0]=> string(64) "d85a2d6873e034cb3ab8c490cb82139d8dabae6c08581cca0a2e7497ead287a4" [1]=> string(64) "dc150239c61fe272b7ca44ad0918d159a84e5bc1661db48bad04a81bc7f4c742" [2]=> string(64) "e1822fc6cc7bbf1184b29efaaaceac6d598fb406b4f8cf9b3717b3d0c533c19f" [3]=> string(64) "d85a2d6873e034cb3ab8c490cb82139d8dabae6c08581cca0a2e7497ead287a4" [4]=> string(64) "d85a2d6873e034cb3ab8c490cb82139d8dabae6c08581cca0a2e7497ead287a4" } bool(true) ``` ### Health Score 28 — LowBetter than 54% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity19 Limited adoption so far Community10 Small or concentrated contributor base Maturity53 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Unknown Total 1 Last Release 3303d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/9c5706004cb7e6ff55d100c8649a7c33039c28f9cf7b3af54343bb5db8d874db?d=identicon)[gboddin](/maintainers/gboddin) --- Top Contributors [![gboddin](https://avatars.githubusercontent.com/u/4395092?v=4)](https://github.com/gboddin "gboddin (3 commits)") --- Tags authenticationhmacotpphppsksha256sharedkey ### Embed Badge ![Health badge](/badges/gboddin-psk-validator/health.svg) ``` [![Health](https://phpackages.com/badges/gboddin-psk-validator/health.svg)](https://phpackages.com/packages/gboddin-psk-validator) ``` ### Alternatives [webmozart/assert Assertions to validate method input/output with nice error messages. 7.6k894.0M1.2k](/packages/webmozart-assert)[bensampo/laravel-enum Simple, extensible and powerful enumeration implementation for Laravel. 2.0k15.9M104](/packages/bensampo-laravel-enum)[swaggest/json-schema High definition PHP structures with JSON-schema based validation 48612.5M73](/packages/swaggest-json-schema)[stevebauman/purify An HTML Purifier / Sanitizer for Laravel 5325.6M19](/packages/stevebauman-purify)[ashallendesign/laravel-config-validator A package for validating your Laravel app's config. 217905.3k5](/packages/ashallendesign-laravel-config-validator)[crazybooot/base64-validation Laravel validators for base64 encoded files 1341.9M8](/packages/crazybooot-base64-validation) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)