aetah/oidc-dynamic-client-registration

Generic PHP library implementing OpenID Connect Dynamic Client Registration 1.0 processing helpers

Maintainers

Package info

github.com/aetah/php-oidc-dynamic-client-registration

pkg:composer/aetah/oidc-dynamic-client-registration

Statistics

Installs: 2

Dependents: 0

Suggesters: 0

Stars: 0

Security

Advisories: 0

Aikido package health analysis

0.1.0 2026-06-18 05:24 UTC

Requires

  • php: ^8.3

Requires (Dev)

AGPL-3.0-or-later 81a89fa1771d86fe60069d331195bba869c5abc6

This package is not auto-updated.

Last update: 2026-06-20 15:35:46 UTC

README

This repository is a read-only split of aetah/php-openid-toolkit.

  • Development happens in the monorepo.
  • Feature PRs and issues should be opened against aetah/php-openid-toolkit.
  • This split repository is published from the monorepo and should not be treated as the source of truth.

OIDC Dynamic Client Registration

Generic PHP library for OpenID Connect Dynamic Client Registration 1.0 processing primitives.

Scope

This package is designed as a reusable base for aetah/* libraries and CMS integrations. It provides:

  • Client registration request parsing and structural validation.
  • Client registration response parsing and structural validation.
  • Helper checks for common protocol constraints (redirect_uris, response/grant compatibility, auth method requirements).

The package intentionally leaves software statement JWT verification, access token authorization policy, and HTTP endpoint orchestration to host applications.

Install

composer require aetah/oidc-dynamic-client-registration

Quick Start

<?php

declare(strict_types=1);

use Aetah\OIDCDynamicClientRegistration\OIDCDynamicClientRegistration;

$registration = new OIDCDynamicClientRegistration();

$request = $registration->parseClientRegistrationRequest($payload);
$registration->validateClientRegistrationRequest($request);

Spec

OpenID Connect Dynamic Client Registration 1.0: https://openid.net/specs/openid-connect-registration-1_0.html

Spec Status

Missing/currently out of scope:

  • Software statement JWT signature and claim verification.
  • Access-token authorization enforcement for read/update/delete registration operations.
  • HTTP transport orchestration and endpoint runtime behavior.
  • Discovery-driven default resolution and server policy negotiation behaviors.

Quality Checks

Run Static Analysis

composer analyse

Run Tests

composer test

Generated artifacts are written under build/:

  • build/phpunit/ for JUnit reports
  • build/coverage/ for coverage output

Clean Build Artifacts

composer clean

Run Test Coverage

composer test:coverage

Run Style Checks

composer lint

Fix Style Checks

composer lint:fix

License

Licensed under AGPL-3.0-or-later. See LICENSE for details.