fachsimpeln/easyjwt
Composer 安装命令:
composer require fachsimpeln/easyjwt
包简介
A easy-to-use implementation of of JWT Standard (JSON Web Tokens)
README 文档
README
An easy-to-use implementation of of JWT Standard (JSON Web Tokens)
What is JWT?
JSON Web Token (JWT [...]) is an internet standard for creating JSON-based access tokens. [...] For example, a server could generate a token that has the claim "logged in as admin" and provide that to a client. The client could then use that token to prove that it is logged in as admin. The tokens can be signed by one party's private key (usually the server's) so that party can subsequently verify the token is legitimate. If the other party, by some suitable and trustworthy means, is in possession of the corresponding public key, they too are able to verify the token's legitimacy. The tokens are designed to be compact, URL-safe, and usable especially in a web-browser single-sign-on (SSO) context. JWT claims can typically be used to pass identity of authenticated users between an identity provider and a service provider, or any other type of claims as required by business processes.
~ taken from Wikipedia
Why EasyJWT?
EasyJWT is intended to provide a version of JWT that is particularly easy to implement. So far only the easy to understand symmetric signing methods are used.
The library also supports the symmetric encryption of the JWT token with AES (using openssl), if confidential or sensitive information is to be stored in JWT.
Install via Composer
composer require fachsimpeln/easyjwt
Install without Composer
- Clone this repository
- Include ./lib/JWT.inc.php
require __DIR__ . '/lib/JWT.inc.php';
Documentation
Usage documentation can be found in the Wiki. The documentation for the code can be found in docs/
Supported Algorithms
| Signing Algorithm | What is this? |
|---|---|
| HS256 | HMAC-SHA256 |
| HS384 | HMAC-SHA384 |
| HS512 | HMAC-SHA512 |
| none | not recommended |
| Encryption Algorithm | What is this? |
|---|---|
| AES-256-GCM | OpenSSL AES Encryption |
Example Code
Create a new JWT
// Sample array $sample_array = array(); $sample_array['id'] = '0'; $sample_array['name'] = 'fachsimpeln'; // Reserved claims $jwt_r_claims = new EasyJWT\JWTReservedClaims(); // Expire in 30 seconds $jwt_r_claims->SetClaim('EXP', time() + 30); // Be valid in 5 seconds, not immediately $jwt_r_claims->SetClaim('NBF', time() + 5); /* To overwrite an automatically set reserved claim $jwt_r_claims->SetClaim('ISS', 'localhost'); */ // Options for the JWT (method) $jwt_options = new EasyJWT\JWTOptions('HS512', $jwt_r_claims, true); // Set data to JWTData object $jwt_data = new EasyJWT\JWTData($sample_array, $jwt_options); /* For encryption: $jwt_data = new EasyJWT\JWTDataEncrypted($sample_array, $jwt_options); */ // Create new JWT object to interact with JWT $jwt = new EasyJWT\JWT($jwt_data); // Send the JWT as a cookie to the user's browser $jwt->SetJWT(); // $jwt->toString();
Read a JWT from cookies
// Read directly from cookie $jwt_data = new EasyJWT\JWTData(); /* Read from string ($value) $jwt_data = new EasyJWT\JWTData($value); For encryption: $jwt_data = new EasyJWT\JWTDataEncrypted(); or $jwt_data = new EasyJWT\JWTDataEncrypted($enc_value); */ // Create new JWT object to validate signature, validate reserved claims and interact with JWT $jwt = new EasyJWT\JWT($jwt_data); // Check success (returns false when anything is invalid) if ($jwt->IsValid()) { print 'Valid!<br>'; } else { print 'Invalid!'; die(); } // Read main content (body) as array from JWT // Returns null on error $sample_array = $jwt->GetData(); // $jwt->GetJWT(); $jwt->d(); // Show the contents of the JWT var_dump($sample_array);
More
These examples can also be found in the folder sample/
fachsimpeln/easyjwt 适用场景与选型建议
fachsimpeln/easyjwt 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 20 次下载、GitHub Stars 达 1, 最近一次更新时间为 2020 年 04 月 14 日, 在 PHP 生态内属于活跃度较高的组件。
它主要适用于以下技术方向: 「json」 「Authentication」 「Simple」 「token」 「easy」 「jwt」 等业务场景。在实际项目中,围绕这些方向常见需要落地的问题包括:接口对接、性能调优、并发安全、与既有框架(Laravel / ThinkPHP / Yii / Webman 等)的兼容适配,以及生产环境的日志埋点与稳定性保障。
我们在过去多个企业项目中使用过 fachsimpeln/easyjwt 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 fachsimpeln/easyjwt 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
与 fachsimpeln/easyjwt 相关的其它包
同方向 / 同关键字的高下载量 PHP Composer 包推荐,方便对比选型:
Automatically logs-in users if they are already authenticated by a remote source. (e.g. environment variable REMOTE_USER)
Kinikit - PHP Application development framework MVC component
GraphQL authentication for your headless Craft CMS applications.
A simple library for make Lexer and Parsers to build a language
A simple library that allows transform any kind of data to native php data or whatever
A simple library that uses the hydration pattern to fill objects given different sources of data.
统计信息
- 总下载量: 20
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 2
- 点击次数: 10
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2020-04-14