php-solution / jwt-bundle
Symfony bundle for work with JWT.
Installs: 46 622
Dependents: 2
Suggesters: 0
Security: 0
Stars: 3
Watchers: 8
Forks: 2
Open Issues: 1
Type:symfony-bundle
Requires
- php: >=7.1
- lcobucci/jwt: ^4.0
- symfony/config: >=3.0
- symfony/dependency-injection: >=3.0
- symfony/http-kernel: >=3.0
This package is auto-updated.
Last update: 2024-03-25 05:36:48 UTC
README
This bundle allows developer to use "lcobucci/jwt" lib for work with JWT.
Configure JWT Configuration
jwt: default_configuration: 'default' configurations: default: # name asymmetric: true signer: class: 'Lcobucci\JWT\Signer\Rsa\Sha512' signing_key: content: 'file://%kernel.project_dir%/etc/jwt/keys/private.pem' pass: 'test' verification_key: content: 'file://%kernel.project_dir%/etc/jwt/keys/public.pub'
If you want use signer, signing_key, verification_key as DI service use this example:
jwt: default_configuration: 'default' configurations: default: # name signer: service_id: 'jwt_signer_service_id' signing_key: 'jwt_signing_key_service_id' verification_key: 'jwt_verification_key_service_id'
Generate the JWT keys
$ mkdir -p config/jwt $ openssl genrsa -out config/jwt/private.pem -aes256 4096 $ openssl rsa -pubout -in config/jwt/private.pem -out var/jwt/public.pem
Configure JWT Types on config.yaml
You can specify JWT Type on your basic config.yaml. If configuration is null, system set default configuration
jwt: types: authorization: #name of type configuration: 'default' exr: 0 issued_at: 0 used_after: 0 claimes: [] headers: [] issuer: '' id: '' audience: '' subject: ''
using on controller:
<?php /** * Class UserConfirm */ class UserConfirmController extends Controller { public function sendLinkAction(): Response { /* @var $token \Lcobucci\JWT\Token\Plain */ $token = $this->get('jwt.manager')->create('authorization', ['claim' => 'value']); $jwtStr = $token->__toString(); } public function confirmAction(string $token): Response { /* @var $token \Lcobucci\JWT\Token\Plain */ $token = $this->get('jwt.manager')->parse($token, 'authorization'); $userId = $token->claims()->get('user_id'); } }
Specify service as JWT Type
<?php namespace App\Services\JwtType; use Lcobucci\Clock\SystemClock; use Lcobucci\JWT\Builder as BuilderInterface; use Lcobucci\JWT\Configuration; use Lcobucci\JWT\Validation\Constraint; use PhpSolution\JwtBundle\Jwt\Type\TypeInterface; /** * Class UserConfirm */ class UserConfirm implements TypeInterface { private const EXP_TIME = 3600; public const NAME = 'user_confirm_registration'; public function getName(): string { return self::NAME; } public function configureBuilder(BuilderInterface $builder): void { $builder->expiresAt(new \DateTimeImmutable('+' . self::EXP_TIME . 'second')); } public function getConstraints(Configuration $config):? iterable { yield new Constraint\SignedWith($config->getSigner(), $config->getVerificationKey()); yield new Constraint\ValidAt(new SystemClock()); } }
on service.yaml
services: jwt.type.user_confirm_registration: class: 'App\Services\JwtType\UserConfirmReg' tags: [{name: 'jwt.token_type'}]
using on controller:
<?php use App\Services\JwtType\UserConfirm; /** * Class UserConfirm */ class UserConfirmController extends Controller { public function sendLinkAction(): Response { /* @var $token \Lcobucci\JWT\Token\Plain */ $token = $this->get('jwt.manager')->create(UserConfirm::NAME, ['user_id' => $userId]); $jwtStr = $token->__toString(); } public function confirmAction(string $token): Response { /* @var $token \Lcobucci\JWT\Token\Plain */ $token = $this->get('jwt.manager')->parse($token, UserConfirm::NAME); $userId = $token->claims()->get('user_id'); } }
Full Default Configuration
jwt: default_configuration: 'default' configurations: default: asymmetric: true signer: service_id: ~ class: 'Lcobucci\JWT\Signer\Rsa\Sha512' signing_key: service_id: ~ content: ~ pass: ~ verification_key: service_id: ~ content: ~ types: authorization: configuration: 'default' exr: ~ issued_at: ~ used_after: ~ claimes: [] headers: [] issuer: ~ id: ~ audience: ~ subject: ~