Fixed nonce expiry example

wheelsandcogs · wheelsandcogs · commit 5df90c9ae107 · 2012-07-27T16:41:52.000+02:00
With the existing example, nonces can be 
re-used for five minutes and then expire,
which is the reverse of the desired effect.
diff --git a/cookbook/security/custom_authentication_provider.rst b/cookbook/security/custom_authentication_provider.rst
@@ -226,7 +226,7 @@ the ``PasswordDigest`` header value matches with the user's password.
             }
 
             // Validate nonce is unique within 5 minutes
-            if (file_exists($this->cacheDir.'/'.$nonce) && file_get_contents($this->cacheDir.'/'.$nonce) + 300 < time()) {
+            if (file_exists($this->cacheDir.'/'.$nonce) && file_get_contents($this->cacheDir.'/'.$nonce) + 300 > time()) {
                 throw new NonceExpiredException('Previously used nonce detected');
             }
             file_put_contents($this->cacheDir.'/'.$nonce, time());

Original file line number	Diff line number	Diff line change
@@ -226,7 +226,7 @@ the ``PasswordDigest`` header value matches with the user's password.
`226`	`226`	`}`
`227`	`227`
`228`	`228`	`// Validate nonce is unique within 5 minutes`
`229`		`- if (file_exists($this->cacheDir.'/'.$nonce) && file_get_contents($this->cacheDir.'/'.$nonce) + 300 < time()) {`
	`229`	`+ if (file_exists($this->cacheDir.'/'.$nonce) && file_get_contents($this->cacheDir.'/'.$nonce) + 300 > time()) {`
`230`	`230`	`throw new NonceExpiredException('Previously used nonce detected');`
`231`	`231`	`}`
`232`	`232`	`file_put_contents($this->cacheDir.'/'.$nonce, time());`