sbe1/signedcookielib

Simple library for creating and validating custom session/token cookies that use a cryptographic signature for verification.

Maintainers

Details

github.com/sbe1/signedcookielib

Homepage

Source

Issues

Installs: 2

Dependents: 0

Suggesters: 0

Security: 0

Stars: 1

Watchers: 1

Forks: 0

Open Issues: 0

dev-master 2020-10-02 22:03 UTC

Requires

  • php: >=7.1

MIT 65af6c5f622a36f1775a847d30adee65c04b3421

  • Shawn Ewald <shawn.ewald.woop@gmail.com>

cryptocookiesignedcookielib

This package is auto-updated.

Last update: 2025-06-18 06:25:17 UTC

README

Simple library for creating and validating custom session/token cookies that use a cryptographic signature for verification.

# Usage:
$expires = time()+3600;
$path = '/';
$domain = '.example.com';
$key = 'a cryptographically strong key for HMAC hashes.';
$algo = 'sha256';

$name = 'EXAMPLE_SESSION';
$value = 'An unsigned string.';

# Create signed cookie.

$c = new SignedCookieLib($expires, $path, $domain, $key, $algo);

$c->setCookie($name, $value)

# Cookie validation example.

$c = new SignedCookieLib($expires, $path, $domain, $key, $algo);
$result = $c->isValid($cookieName, $cookieUnsignedValue);

You can use this as an alternative method of validating logged in users with a private key or use this as a simple validation method for changing account passwords and other uses where you might like to use secure validation without dependence on a user information database or other data source.

Installation

composer require sbe1/signedcookielib dev-master