<?php
header('Content-Type: text/html; charset=utf-8');
$fastphp = 'Yasak bolge :)';
$kullanicilar = array(
        'kullanici1' => 'sifre1',
        'kullanici2' => 'sifre2',
);

if(!function_exists('http_digest_parse'))
{
    function http_digest_parse($txt)
    {
        $needed_parts = array('nonce'=>1, 'nc'=>1, 'cnonce'=>1, 'qop'=>1, 'username'=>1, 'uri'=>1, 'response'=>1);
        $data = array();
        $keys = implode('|', array_keys($needed_parts));

        preg_match_all('@(' . $keys . ')=(?:([\'"])([^\2]+?)\2|([^\s,]+))@', $txt, $matches, PREG_SET_ORDER);

        foreach ($matches as $m) {
            $data[$m[1]] = $m[3] ? $m[3] : $m[4];
            unset($needed_parts[$m[1]]);
        }

        return $needed_parts ? false : $data;
    }
}


if(empty($_SERVER['PHP_AUTH_DIGEST']))
{
    header('HTTP/1.1 401 Unauthorized');
    header('WWW-Authenticate: Digest realm="'.$fastphp.'",qop="auth",nonce="'.uniqid().'",opaque="'.md5($fastphp).'"');

    exit($fastphp);
}

if (!($data = http_digest_parse($_SERVER['PHP_AUTH_DIGEST'])) || !isset($kullanicilar[$data['username']]))
{
    header('HTTP/1.1 401 Unauthorized');
    header('WWW-Authenticate: Digest realm="'.$fastphp.'",qop="auth",nonce="'.uniqid().'",opaque="'.md5($fastphp).'"');

    exit($fastphp);
}
    

$MD51 = md5($data['username'] . ':' . $fastphp . ':' . $kullanicilar[$data['username']]);
$MD52 = md5($_SERVER['REQUEST_METHOD'].':'.$data['uri']);
$resp = md5($MD51.':'.$data['nonce'].':'.$data['nc'].':'.$data['cnonce'].':'.$data['qop'].':'.$MD52);

if ($data['response'] != $resp)
{
    exit($fastphp);
}

echo 'Giriş yaptığınız kullanıcı: ' . $data['username'];
?>