n-car / rpc-php-toolkit
PHP JSON-RPC 2.0 client/server toolkit with middleware, schema validation, batch processing, introspection, and optional Safe Mode
Maintainers
Requires
- php: >=8.0
- ext-json: *
- ext-mbstring: *
Requires (Dev)
- phpstan/phpstan: ^1.0
- phpunit/phpunit: ^9.0
- squizlabs/php_codesniffer: ^3.6
README
PHP JSON-RPC 2.0 client/server toolkit with middleware, schema validation, batch processing, introspection, and optional RPC Toolkit Safe Mode.
Use this package when you need a PHP JSON-RPC endpoint, a PHP HTTP client, or a PHP runtime that interoperates with the broader RPC Toolkit ecosystem.
Standard First
Standard JSON-RPC 2.0 is the default behavior. Enable RPC Toolkit Safe Mode only when both sides are compatible endpoints and need type-aware round-tripping for marker-like strings, dates, and large integer markers.
Installation
Install from Packagist with Composer:
composer require n-car/rpc-php-toolkit
Quick Start
<?php require_once 'vendor/autoload.php'; use RpcPhpToolkit\RpcEndpoint; $rpc = new RpcEndpoint('/api/rpc'); $rpc->addMethod('getTime', function($params, $context) { return [ 'timestamp' => time(), 'datetime' => date('c') ]; }); $rpc->addMethod('echo', function($params, $context) { return ['message' => $params['message'] ?? 'Hello World']; }); $input = file_get_contents('php://input'); echo $rpc->handleRequest($input);
PHP Client
use RpcPhpToolkit\Client\RpcClient; $client = new RpcClient('http://localhost:8000/api/rpc'); $time = $client->call('getTime'); $echo = $client->call('echo', ['message' => 'Hello']); $results = $client->batch([ ['method' => 'getTime', 'id' => 1], ['method' => 'echo', 'params' => ['message' => 'Batch'], 'id' => 2], ]); $client->notify('log.event', ['source' => 'php-client']);
Key Capabilities
- JSON-RPC 2.0 calls, notifications, and batch requests
- PHP endpoint and PHP HTTP client
- Middleware for CORS, authentication, rate limiting, and custom request processing
- Schema validation for method parameters
- Optional introspection through
__rpc.*methods - Optional RPC Toolkit Safe Mode over HTTP headers
- Structured logging hooks and configurable error sanitization
Advanced Documentation
- Clients - PHP client, Safe client, batch calls, notifications, and browser/Node.js client notes.
- Schema Validation - method parameter schemas and validation errors.
- Introspection -
__rpc.listMethods,__rpc.describe,__rpc.describeAll,__rpc.version, and__rpc.capabilities. - Middleware - CORS, authentication, rate limiting, and custom middleware.
- Safe Mode - optional type-aware serialization, headers, marker behavior, and PHP type notes.
- Security - production hardening notes for validation, authentication, CORS, errors, and TLS.
Examples
The examples/ folder contains runnable PHP and cross-runtime examples:
basic-server.php- HTTP endpoint with middleware and validation examples.client.php- PHP client calls, batch requests, authentication, and errors.safe-mode-example.php-RpcSafeEndpointandRpcSafeClientusage.php-to-express-client.php- PHP client calling an Express RPC endpoint.node-to-php-client.mjs- JavaScript client calling a PHP endpoint.examples/introspection/- introspection server/client examples.
Quick local server:
cd examples
php -S localhost:8000 basic-server.php
Related Packages
- rpc-toolkit - ecosystem hub and compatibility reference
- rpc-express-toolkit - Express implementation
- rpc-node-toolkit - framework-agnostic Node.js core
- rpc-toolkit-js-client - shared JavaScript client
- rpc-dotnet-toolkit - .NET implementation
- rpc-java-toolkit - Java and Android implementation
- rpc-python-toolkit - Python implementation
- rpc-arduino-toolkit - Arduino/ESP32/ESP8266 implementation
- node-red-contrib-rpc-toolkit - Node-RED nodes
License
MIT. See LICENSE.