Initial Import

Signed-off-by: Chris Hallgren <[email protected]>

Author: challgren

.gitignore

@@ -0,0 +1,3 @@
+/.phpunit.result.cache
+/.idea/
+/vendor

LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2021-present, Chris Hallgren.
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

README.md

@@ -1,2 +1,26 @@
 # php-aws-smtp-password
 Converts an AWS secret access key to a SMTP password.
+
+This library helps you convert and IAM user credentials to SES SMTP credentials.
+
+The SMTP username is the Access Key ID. The password can be derived by using a formula provided by AWS at https://docs.aws.amazon.com/ses/latest/DeveloperGuide/smtp-credentials.html 
+
+## Installation
+PhpAwsSmtpPassword convert is available on Packagist (using semantic versioning), and installation via Composer is the recommended way to install this. Just add this line to your `composer.json` file:
+```json
+"challgren/php-aws-smtp-password": "^1.0"
+```
+or run
+```
+composer require challgren/php-aws-smtp-password
+```
+
+## A Simple example
+
+```php
+<?php
+use PhpAwsSmtpPassword\PhpAwsSmtpPassword;
+
+$smtp_password = PhpAwsSmtpPassword::convert($key, $region)
+```
+ 

composer.json

@@ -0,0 +1,35 @@
+{
+  "name": "challgren/php-aws-smtp-password",
+  "type": "library",
+  "description": "Converts an AWS secret access key to a SMTP password.",
+  "keywords": [
+    "aws",
+    "access secret",
+    "smtp",
+    "smpt password",
+    "aws smtp password"
+  ],
+  "license": "MIT",
+  "authors": [
+    {
+      "name": "Chris Hallgren",
+      "email": "[email protected]"
+    }
+  ],
+  "require": {
+    "php": ">=7.4"
+  },
+  "require-dev": {
+    "phpunit/phpunit": "^8.5 || ^9.3"
+  },
+  "autoload": {
+    "psr-4": {
+      "PhpAwsSmtpPassword\\": "src/"
+    }
+  },
+  "autoload-dev": {
+    "psr-4": {
+      "PhpAwsSmtpPassword\\Test\\": "tests/"
+    }
+  }
+}

phpunit.xml.dist

@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<phpunit xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" colors="true" backupGlobals="true" xsi:noNamespaceSchemaLocation="https://schema.phpunit.de/9.3/phpunit.xsd">
+  <coverage>
+    <include>
+      <directory suffix=".php">src/</directory>
+    </include>
+  </coverage>
+  <testsuites>
+    <testsuite name="app">
+      <directory>tests/TestCase/</directory>
+    </testsuite>
+  </testsuites>
+  <!-- Prevent coverage reports from looking in tests, vendors, config folders -->
+  <php>
+    <ini name="memory_limit" value="-1"/>
+    <!-- E_ALL & ~E_USER_DEPRECATED (16383)-->
+    <!-- E_ALL (32767) -->
+    <ini name="error_reporting" value="32767"/>
+  </php>
+</phpunit>

src/PhpAwsSmtpPassword.php

@@ -0,0 +1,55 @@
+<?php
+
+namespace PhpAwsSmtpPassword;
+
+class PhpAwsSmtpPassword
+{
+    /**
+     * Per https://docs.aws.amazon.com/ses/latest/DeveloperGuide/smtp-credentials.html this should never change
+     * @var string Date to hash with
+     */
+    protected static $date = '11111111';
+
+    /**
+     * Per https://docs.aws.amazon.com/ses/latest/DeveloperGuide/smtp-credentials.html this should never change
+     * @var string Service to hash with
+     */
+    protected static $service = 'ses';
+
+    /**
+     * Per https://docs.aws.amazon.com/ses/latest/DeveloperGuide/smtp-credentials.html this should never change
+     * @var string Terminal to hash with
+     */
+    protected static $terminal = 'aws4_request';
+
+    /**
+     * Per https://docs.aws.amazon.com/ses/latest/DeveloperGuide/smtp-credentials.html this should never change
+     * @var string Message to hash with
+     */
+    protected static $message = 'SendRawEmail';
+
+    /**
+     * Per https://docs.aws.amazon.com/ses/latest/DeveloperGuide/smtp-credentials.html this should never change
+     * @var string Version to hash with
+     */
+    protected static $version = '[4]';
+
+    /**
+     * Converts a secret key to a password that can be used with SMTP
+     *
+     * @param string $key Access secret key
+     * @param string $region AWS Region
+     * @return string SMTP password
+     */
+    public static function convert($key, $region)
+    {
+        $signature = hash_hmac('sha256', PhpAwsSmtpPassword::$date, 'AWS4' . $key, true);
+        $signature = hash_hmac('sha256', $region, $signature, true);
+        $signature = hash_hmac('sha256', PhpAwsSmtpPassword::$service, $signature, true);
+        $signature = hash_hmac('sha256', PhpAwsSmtpPassword::$terminal, $signature, true);
+        $signature = hash_hmac('sha256', PhpAwsSmtpPassword::$message, $signature, true);
+        $signatureAndVersion = PhpAwsSmtpPassword::$version . $signature;
+
+        return base64_encode($signatureAndVersion);
+    }
+}

tests/TestCase/PhpAwsSmtpPasswordTest.php

@@ -0,0 +1,20 @@
+<?php
+namespace PhpAwsSmtpPassword\Test\TestCase;
+
+use PhpAwsSmtpPassword\PhpAwsSmtpPassword;
+use PHPUnit\Framework\TestCase;
+
+class PhpAwsSmtpPasswordTest extends TestCase
+{
+    /**
+     * Tests the convert function
+     */
+    public function testConvert()
+    {
+        $key = 'wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY';
+        $region = 'us-east-1';
+        $expected = 'WzRdsEz/2FJQQt+rwbD6tTVhwGOQ7EZuFPZcbvrfFUsZYv0=';
+
+        $this->assertEquals($expected, PhpAwsSmtpPassword::convert($key, $region));
+    }
+}