Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/paragonie/hpkp-builder

Build HTTP Public-Key-Pinning headers from a JSON file (or build them programmatically)
https://github.com/paragonie/hpkp-builder

Last synced: 10 months ago
JSON representation

Build HTTP Public-Key-Pinning headers from a JSON file (or build them programmatically)

Awesome Lists containing this project

README 

          
# HTTP Public-Key-Pinning Builder



[![Build Status](https://travis-ci.org/paragonie/hpkp-builder.svg?branch=master)](https://travis-ci.org/paragonie/hpkp-builder)



This library aims to make it easy to build HTTP Public-Key-Pinning headers

in your PHP projects. HPKP Builder was  was created by

[Paragon Initiative Enterprises](https://paragonie.com) as part of our effort

to encourage better [application security](https://paragonie.com/service/appsec)

practices.



Check out our other [open source projects](https://paragonie.com/projects) too.



## PHP Version requirements



* PHP 7.0 or newer



## Build a Public-Key-Pinning header from a JSON configuration file



```php

sendHPKPHeader();

```

### Example JSON configuration



```json

{

    "hashes": [

        {

            "algo": "sha256",

            "hash": "hwGEkxDWJ2oHtKv6lsvylKvhotXAAZQR1e0nq0eb2Vw="

        },

        {

            "algo": "sha256",

            "hash": "0jum0Eiu4Eg6vjn3zTmyd/RobfN6e4EagFQcz6E5ZKI="

        }

    ],

    "include-subdomains": false,

    "max-age": 5184000,

    "report-only": false,

    "report-uri": null

}

```



## Build a Public-Key-Pinning Header



```php

addHash('hwGEkxDWJ2oHtKv6lsvylKvhotXAAZQR1e0nq0eb2Vw=')

    ->addHash('0jum0Eiu4Eg6vjn3zTmyd/RobfN6e4EagFQcz6E5ZKI=')

    ->addHash('JDR7yv7lvdKaM26fnKriSPiyryeYw9qi5sO8Ot7SNUQ=')

    ->includeSubdomains(true)

    ->reportOnly(true)

    ->reportUri('https://report-uri.io')

    ->sendHPKPHeader();

```