CodeExplorer
You are a developer and looking for Shopware projects?
Apply Now!
AlgorithmManager example
$time = time();
$claims = [
'iat' => $time,
'nbf' => $time,
'exp' => $time + 3600,
'iss' => 'https://www.example.com',
'aud' => 'Symfony OIDC',
'sub' => 'e21bf182-1538-406e-8ccb-e25a17aba39f',
'username' => 'dunglas',
];
$token = (new CompactSerializer())->serialize((new JWSBuilder(new AlgorithmManager([
new ES256(),
])))->create()
->withPayload(json_encode($claims))
// tip: use https://mkjwk.org/ to generate a JWK ->addSignature(new JWK([
'kty' => 'EC',
'crv' => 'P-256',
'x' => '0QEAsI1wGI-dmYatdUZoWSRWggLEpyzopuhwk-YUnA4',
'y' => 'KYl-qyZ26HobuYwlQh-r0iHX61thfP82qqEku7i0woo',
'd' => 'iA_TV2zvftni_9aFAQwFO_9aypfJFCSpcCyevDvz220',
]), ['alg' => 'ES256'])
new ES256(),
self::getJWK(),
self::AUDIENCE,
['https://www.example.com'],
'email',
$loggerMock,
))->getUserBadgeFrom($token);
}
private static function buildJWS(string $payload): string
{
return (new CompactSerializer())->serialize((new JWSBuilder(new AlgorithmManager([
new ES256(),
])))->create()
->withPayload($payload)
->addSignature(self::getJWK(), ['alg' => 'ES256'])
->build()
);
}
private static function getJWK(): JWK
{
// tip: use https://mkjwk.org/ to generate a JWK
self::getJWK(),
self::AUDIENCE,
['https://www.example.com'],
'email',
$loggerMock,
))->getUserBadgeFrom($token);
}
private static function buildJWS(string $payload): string
{
return (new CompactSerializer())->serialize((new JWSBuilder(new AlgorithmManager([
new ES256(),
])))->create()
->withPayload($payload)
->addSignature(self::getJWK(), ['alg' => 'ES256'])
->build()
);
}
private static function getJWK(): JWK
{
// tip: use https://mkjwk.org/ to generate a JWK
{
}
public function getUserBadgeFrom(string $accessToken): UserBadge
{
if (!class_exists(JWSVerifier::class) || !class_exists(Checker\HeaderCheckerManager::class)) {
throw new \LogicException('You cannot use the "oidc" token handler since "web-token/jwt-signature" and "web-token/jwt-checker" are not installed. Try running "composer require web-token/jwt-signature web-token/jwt-checker".');
}
try {
// Decode the token $jwsVerifier = new JWSVerifier(new AlgorithmManager([$this->signatureAlgorithm]));
$serializerManager = new JWSSerializerManager([new CompactSerializer()]);
$jws = $serializerManager->unserialize($accessToken);
$claims = json_decode($jws->getPayload(), true);
// Verify the signature if (!$jwsVerifier->verifyWithKey($jws, $this->jwk, 0)) {
throw new InvalidSignatureException();
}
// Verify the headers $headerCheckerManager = new Checker\HeaderCheckerManager([
}
public function getUserBadgeFrom(string $accessToken): UserBadge
{
if (!class_exists(JWSVerifier::class) || !class_exists(Checker\HeaderCheckerManager::class)) {
throw new \LogicException('You cannot use the "oidc" token handler since "web-token/jwt-signature" and "web-token/jwt-checker" are not installed. Try running "composer require web-token/jwt-signature web-token/jwt-checker".');
}
try {
// Decode the token $jwsVerifier = new JWSVerifier(new AlgorithmManager([$this->signatureAlgorithm]));
$serializerManager = new JWSSerializerManager([new CompactSerializer()]);
$jws = $serializerManager->unserialize($accessToken);
$claims = json_decode($jws->getPayload(), true);
// Verify the signature if (!$jwsVerifier->verifyWithKey($jws, $this->jwk, 0)) {
throw new InvalidSignatureException();
}
// Verify the headers $headerCheckerManager = new Checker\HeaderCheckerManager([