"4011",
"VK_VERSION" => "008",
"VK_SND_ID" => "uid100052",
"VK_REPLY" => "3012",
"VK_RETURN" => "https://banks.pastel.thorgate.eu/project/sjZfG6RrKJT4YbY5?auth_action=success",
"VK_DATETIME" => "2025-07-18T23:32:26+0000",
"VK_RID" => "1752881546597",
"VK_ENCODING" => "utf-8",
);
// STEP 3. Generate data to be signed
// ==================================
// Data to be signed is in the form of XXXYYYYY where XXX is 3 char
// zero padded length of the value and YYY the value itself
// NB! Swedbank expects symbol count, not byte count with UTF-8,
// so use `mb_strlen` instead of `strlen` to detect the length of a string
$data = str_pad (mb_strlen($fields["VK_SERVICE"], "UTF-8"), 3, "0", STR_PAD_LEFT) . $fields["VK_SERVICE"] . /* 4011 */
str_pad (mb_strlen($fields["VK_VERSION"], "UTF-8"), 3, "0", STR_PAD_LEFT) . $fields["VK_VERSION"] . /* 008 */
str_pad (mb_strlen($fields["VK_SND_ID"], "UTF-8"), 3, "0", STR_PAD_LEFT) . $fields["VK_SND_ID"] . /* uid100052 */
str_pad (mb_strlen($fields["VK_REPLY"], "UTF-8"), 3, "0", STR_PAD_LEFT) . $fields["VK_REPLY"] . /* 3012 */
str_pad (mb_strlen($fields["VK_RETURN"], "UTF-8"), 3, "0", STR_PAD_LEFT) . $fields["VK_RETURN"] . /* https://banks.pastel.thorgate.eu/project/sjZfG6RrKJT4YbY5?auth_action=success */
str_pad (mb_strlen($fields["VK_DATETIME"], "UTF-8"), 3, "0", STR_PAD_LEFT) . $fields["VK_DATETIME"] . /* 2025-07-18T23:32:26+0000 */
str_pad (mb_strlen($fields["VK_RID"], "UTF-8"), 3, "0", STR_PAD_LEFT) . $fields["VK_RID"]; /* 1752881546597 */
/* $data = "0044011003008009uid1000520043012077https://banks.pastel.thorgate.eu/project/sjZfG6RrKJT4YbY5?auth_action=success0242025-07-18T23:32:26+00000131752881546597"; */
// STEP 4. Sign the data with RSA-SHA1 to generate MAC code
// ========================================================
openssl_sign ($data, $signature, $private_key, OPENSSL_ALGO_SHA1);
/* pcuQp2X5Icsf1PvH4CBg1xksoFYagkZpKvecxd+wUxmezuSdawhigeYB7PGhgeqOot6l3zPArMUHRGAXiloYmeDRgsrO9RwUpfPzZpiLzUg61Fdjl96BbCHYbcFDRbrTkq5huZqdvSfwiDvu9Am5OQcpgEXbzhjWJKoamFfO9tcU57k12j1cXmGz4NmDCNjZV4KNm8jfg9DLDwWCRnSjtYGB4ZfvEoXBtrJDKGiLCCDBZUJQhKcaWCoAi86wwAkta3ub9x0Ic+AQm7kMzG9CezOjyjI1UxtLrmik2rMcwNpk7Jj4ZLYMc3IGJ43F0JuFddir0aaK1J4gO0E0qqJShg== */
$fields["VK_MAC"] = base64_encode($signature);
// STEP 5. Generate POST form with payment data that will be sent to the bank
// ==========================================================================
?>
Autentimise näidisrakendus "Swedbank"