(PHP Extension) SFTP Authenticate Secure

Demonstrates how to do SFTP password authentication with secure strings.

This example requires Chilkat v9.5.0.71 or greater.

Chilkat PHP Downloads PHP Extension for Windows, Linux, MacOS, Alpine Linux

<?php

include("chilkat.php");
// Use "chilkat_9_5_0.php" for versions of Chilkat < 10.0.0

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Imagine we've previously saved our encrypted login and password within a JSON config file
// that contains this:

// {
//   "ssh_login": "2+qylFfC56Ck7OQQt/U2/w==",
//   "ssh_password": "5neIq9Jmn0E3p71N6Yc8TA=="
// }

$json = new CkJsonObject();
$json->LoadFile('qa_data/passwords/ssh.json');

$crypt = new CkCrypt2();

// These are the encryption settings we previously used to encrypt the credentials within the JSON config file.
$crypt->put_CryptAlgorithm('aes');
$crypt->put_CipherMode('cbc');
$crypt->put_KeyLength(128);
$crypt->SetEncodedKey('000102030405060708090A0B0C0D0E0F','hex');
$crypt->SetEncodedIV('000102030405060708090A0B0C0D0E0F','hex');
$crypt->put_EncodingMode('base64');

$ssLogin = new CkSecureString();
$ssPassword = new CkSecureString();

// Decrypt to the secure string.  (the strings will still held in memory encrypted, but are now encrypted using
// a randomly generated session key.)
$crypt->DecryptSecureENC($json->stringOf('ssh_login'),$ssLogin);
$crypt->DecryptSecureENC($json->stringOf('ssh_password'),$ssPassword);

$sftp = new CkSFtp();

$success = $sftp->Connect('MY-SSH-SERVER-DOMAIN-OR-IP',22);
if ($success != true) {
    print $sftp->lastErrorText() . "\n";
    exit;
}

// Authenticate using secure strings
$success = $sftp->AuthenticateSecPw($ssLogin,$ssPassword);
if ($success != true) {
    print $sftp->lastErrorText() . "\n";
    exit;
}

print 'SFTP Authentication successful.' . "\n";

$sftp->Disconnect();

?>