Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
waibao
/
NN2024010801
2
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: 2ef8d1a3dd
Branche Tagy
NN2024010801
/
vendor
/
ramsey
/
uuid
/
docs
/
rfc4122
/
version5.rst

version5.rst 4.1 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108 
  1. .. _rfc4122.version5:
    2. 

  2. 

  3. =============================
    4. 

  4. Version 5: Name-based (SHA-1)
    5. 

  5. =============================
    6. 

  6. 

  7. .. danger::
    8. 

  8. 

  9.     Since :ref:`version 3 <rfc4122.version3>` and version 5 UUIDs essentially
    10. 

  10.     use a *salt* (the namespace) to hash data, it may be tempting to use them to
    11. 

  11.     hash passwords. **DO NOT do this under any circumstances!** You should not
    12. 

  12.     store any sensitive information in a version 3 or version 5 UUID, since `MD5
    13. 

  13.     and SHA-1 are insecure and have known attacks demonstrated against them
    14. 

  14.     <https://en.wikipedia.org/wiki/Hash_function_security_summary>`_. *Use these
    15. 

  15.     types of UUIDs as identifiers only.*
    16. 

  16. 

  17. The first thing that comes to mind with most people think of a UUID is a
    18. 

  18. *random* identifier, but name-based UUIDs aren't random at all. In fact, they're
    19. 

  19. deterministic. For any given identical namespace and name, you will always
    20. 

  20. generate the same UUID.
    21. 

  21. 

  22. Name-based UUIDs are useful when you need an identifier that's based on
    23. 

  23. something's *name* --- think *identity* --- and will always be the same no
    24. 

  24. matter where or when it is created.
    25. 

  25. 

  26. For example, let's say I want to create an identifier for a URL. I could use
    27. 

  27. a :ref:`version 1 <rfc4122.version1>` or :ref:`version 4 <rfc4122.version4>`
    28. 

  28. UUID to create an identifier for the URL, but what if I'm working with a
    29. 

  29. distributed system, and I want to ensure that every client in this system can
    30. 

  30. always generate the same identifier for any given URL?
    31. 

  31. 

  32. This is where a name-based UUID comes in handy.
    33. 

  33. 

  34. Name-based UUIDs combine a namespace with a name. This way, the UUIDs are unique
    35. 

  35. to the namespace they're created in. `RFC 4122`_ defines some
    36. 

  36. :ref:`predefined namespaces <reference.name-based-namespaces>`, one of which is
    37. 

  37. for URLs.
    38. 

  38. 

  39. .. note::
    40. 

  40. 

  41.     Version 5 UUIDs use `SHA-1`_ as the hashing algorithm for combining the
    42. 

  42.     namespace and the name.
    43. 

  43. 

  44. .. code-block:: php
    45. 

  45.     :caption: Generate a version 5, name-based UUID for a URL
    46. 

  46.     :name: rfc4122.version5.url-example
    47. 

  47. 

  48.     use Ramsey\Uuid\Uuid;
    49. 

  49. 

  50.     $uuid = Uuid::uuid5(Uuid::NAMESPACE_URL, 'https://www.php.net');
    51. 

  51. 

  52. The UUID generated will always be the same, as long as the namespace and name
    53. 

  53. are the same. The version 5 UUID for "https://www.php.net" in the URL namespace
    54. 

  54. will always be ``a8f6ae40-d8a7-58f0-be05-a22f94eca9ec``. See for yourself. Run
    55. 

  55. the code above, and you'll see it always generates the same UUID.
    56. 

  56. 

  57. .. tip::
    58. 

  58. 

  59.     Version 5 UUIDs generated in ramsey/uuid are instances of UuidV5. Check out
    60. 

  60.     the :php:class:`Ramsey\\Uuid\\Rfc4122\\UuidV5` API documentation to learn
    61. 

  61.     more about what you can do with a UuidV5 instance.
    62. 

  62. 

  63. 

  64. .. _rfc4122.version5.custom-namespaces:
    65. 

  65. 

  66. Custom Namespaces
    67. 

  67. #################
    68. 

  68. 

  69. If you're working with name-based UUIDs for names that don't fit into any of
    70. 

  70. the :ref:`predefined namespaces <reference.name-based-namespaces>`, or you don't
    71. 

  71. want to use any of the predefined namespaces, you can create your own namespace.
    72. 

  72. 

  73. The best way to do this is to generate a :ref:`version 1 <rfc4122.version1>` or
    74. 

  74. :ref:`version 4 <rfc4122.version4>` UUID and save this UUID as your namespace.
    75. 

  75. 

  76. .. code-block:: php
    77. 

  77.     :caption: Generate a custom namespace UUID
    78. 

  78.     :name: rfc4122.version5.create-namespace
    79. 

  79. 

  80.     use Ramsey\Uuid\Uuid;
    81. 

  81. 

  82.     $uuid = Uuid::uuid1();
    83. 

  83. 

  84.     printf("My namespace UUID is %s\n", $uuid->toString());
    85. 

  85. 

  86. This will generate a version 1, Gregorian time UUID, which we'll store to a
    87. 

  87. constant so we can reuse it as our own custom namespace.
    88. 

  88. 

  89. .. code-block:: php
    90. 

  90.     :caption: Use a custom namespace to create version 5, name-based UUIDs
    91. 

  91.     :name: rfc4122.version5.custom-example
    92. 

  92. 

  93.     use Ramsey\Uuid\Uuid;
    94. 

  94. 

  95.     const WIDGET_NAMESPACE = '4bdbe8ec-5cb5-11ea-bc55-0242ac130003';
    96. 

  96. 

  97.     $uuid = Uuid::uuid5(WIDGET_NAMESPACE, 'widget/1234567890');
    98. 

  98. 

  99. With this custom namespace, the version 5 UUID for the name "widget/1234567890"
    100. 

  100. will always be ``a35477ae-bfb1-5f2e-b5a4-4711594d855f``.
    101. 

  101. 

  102. We can publish this namespace, allowing others to use it to generate identifiers
    103. 

  103. for widgets. When two or more systems try to reference the same widget, they'll
    104. 

  104. end up generating the same identifier for it, which is exactly what we want.
    105. 

  105. 

  106. 

  107. .. _RFC 4122: https://tools.ietf.org/html/rfc4122
    108. 

  108. .. _SHA-1: https://en.wikipedia.org/wiki/SHA-1
    109.