bayfrontmedia/php-jwt
Composer 安装命令:
composer require bayfrontmedia/php-jwt
包简介
A simple library to encode and decode JSON Web Tokens (JWT) in PHP, conforming to RFC 7519.
README 文档
README
A simple library to encode and decode JSON Web Tokens (JWT) in PHP, conforming to RFC 7519.
Currently, the only supported algorithm is "HS256". Support for additional algorithms is planned for future versions.
License
This project is open source and available under the MIT License.
Author
Requirements
- PHP
^8.0(Tested up to8.4) - JSON PHP extension
Installation
composer require bayfrontmedia/php-jwt
Usage
A private, reproducible secret must be passed to the constructor. The same secret used to encode the JWT must also be used when decoding in order to verify the signature.
A cryptographically secure secret can be generated using the static createSecret() method, if needed.
use Bayfront\JWT\Jwt;
$secret = Jwt::createSecret(); // Be sure to save the secret to be used to decode the JWT
$jwt = new Jwt($secret);
Public methods
- createSecret
- getHeader
- setHeader
- removeHeader
- getPayload
- setPayload
- removePayload
- aud
- exp
- iat
- iss
- jti
- nbf
- sub
- encode
- decode
- validateSignature
- validateClaims
createSecret
Description:
Create a cryptographically secure secret of random bytes.
NOTE: Secrets are meant to be stored, as the same secret used to encode a JWT must be used to decode it.
Parameters:
$characters = 32(int): Number of characters
Returns:
- (string)
Throws:
Exception
Example:
use Bayfront\JWT\Jwt;
try {
$secret = Jwt::createSecret();
} catch (Exception $e) {
die($e->getMessage());
}
getHeader
Description:
Returns current header array.
Parameters:
- None
Returns:
- (array)
Example:
print_r($jwt->getHeader());
setHeader
Description:
Set custom value(s) to the current header array.
Parameters:
$header(array): Key/value pairs to set to the header array
Returns:
- (self)
Example:
$header = [
'cty' => 'custom-content-type;v=1'
];
$jwt->setHeader($header);
removeHeader
Description:
Remove header key, if existing.
Parameters:
$key(string)
Returns:
- (self)
Example:
$jwt->removeHeader('cty');
getPayload
Description:
Returns current payload array.
Parameters:
- None
Returns:
- (array)
Example:
print_r($jwt->getPayload());
setPayload
Description:
Set custom value(s) to the current payload array.
Parameters:
$payload(array): Key/value pairs to set to the payload array
Returns:
- (self)
Example:
$payload = [
'user_id' => 10
];
$jwt->setPayload($payload);
removePayload
Description:
Remove payload key, if existing.
Parameters:
$key(string)
Returns:
- (self)
Example:
$jwt->removePayload('user_id');
aud
Description:
Set audience.
Parameters:
$aud(string)
Returns:
- (self)
exp
Description:
Set expiration time.
Parameters:
$exp(int)
Returns:
- (self)
iat
Description:
Set issued at time.
Parameters:
$iat(int)
Returns:
- (self)
iss
Description:
Set issuer.
Parameters:
$iss(string)
Returns:
- (self)
jti
Description:
Set JWT ID.
Parameters:
$jti(string)
Returns:
- (self)
nbf
Description:
Set not before time.
Parameters:
$nbf(int)
Returns:
- (self)
sub
Description:
Set subject.
Parameters:
$sub(string)
Returns:
- (self)
encode
Description:
Encode and return a signed JWT.
Parameters:
$payload = [](array)
Returns:
- (string)
Example:
$now = time();
$token = $jwt->iss('API key whose secret signs the token')
->iat($now)
->nbf($now)
->exp($now + 86400) // 24 hours
->encode([
'user_id' => 10
]);
decode
Description:
Decode a JWT.
This method validates the token structure as three segments separated by dots.
The returned array will contain the keys header, payload and signature.
If $validate = true, the signature and claims will also be validated.
Parameters:
$jwt(string): The JWT itself or the entireAuthorizationheader can be used$validate = true(bool): Validate signature and claims
Returns:
- (array)
Throws:
Bayfront\JWT\TokenException
Example:
try {
$decoded = $jwt->decode('encoded.jwt');
} catch (TokenException $e) {
die($e->getMessage());
}
validateSignature
Description:
Validate signature.
Parameters:
$jwt(string): The JWT itself or the entireAuthorizationheader can be used
Returns:
- (self)
Throws:
Bayfront\JWT\TokenException
Example:
try {
$decoded = $jwt->validateSignature('encoded.jwt')->decode('encoded.jwt', false);
} catch (TokenException $e) {
die($e->getMessage());
}
validateClaims
Description:
Validate the claims "iat", "nbf" and "exp", if existing.
Parameters:
$jwt(string): The JWT itself or the entireAuthorizationheader can be used
Returns:
- (self)
Throws:
Bayfront\JWT\TokenException
Example:
try {
$decoded = $jwt->validateClaims('encoded.jwt')->decode('encoded.jwt', false);
} catch (TokenException $e) {
die($e->getMessage());
}
bayfrontmedia/php-jwt 适用场景与选型建议
bayfrontmedia/php-jwt 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 1.03k 次下载、GitHub Stars 达 0, 最近一次更新时间为 2020 年 10 月 20 日, 在 PHP 生态内属于活跃度较高的组件。
它主要适用于以下技术方向: 「php」 「json」 「encode」 「decode」 「token」 「jwt」 等业务场景。在实际项目中,围绕这些方向常见需要落地的问题包括:接口对接、性能调优、并发安全、与既有框架(Laravel / ThinkPHP / Yii / Webman 等)的兼容适配,以及生产环境的日志埋点与稳定性保障。
我们在过去多个企业项目中使用过 bayfrontmedia/php-jwt 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 bayfrontmedia/php-jwt 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
与 bayfrontmedia/php-jwt 相关的其它包
同方向 / 同关键字的高下载量 PHP Composer 包推荐,方便对比选型:
Kinikit - PHP Application development framework MVC component
Encode integer IDs using a preset or customized symbol set
ext-json wrapper with sane defaults
A package to cast json fields, each sub-keys is castable
Runn Me! Serialization Library
swagger-php - Generate interactive documentation for your RESTful API using phpdoc annotations
统计信息
- 总下载量: 1.03k
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 0
- 点击次数: 19
- 依赖项目数: 1
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2020-10-20