z-trippete/jwt-verifier
Composer 安装命令:
composer require z-trippete/jwt-verifier
包简介
Library for jwt token verifier
README 文档
README
A simple and lightweight php class to verify JWT tokens using JWKS (JSON Web Key Sets). Perfect for integrating with identity providers.
Features
- JWKS Support: Automatically fetches public keys from a remote URL.
- Smart Caching: Includes a flexible
CacheManagerto store JWKS data, reducing latency and avoiding rate-limiting from your Identity Provider. - Claim Validation: Verifies
iss(Issuer),aud(Audience), andexp(Expiration). - Clear Exception Handling
Provides dedicated exceptions for every failure scenario:TokenFormatException– Thrown when the JWT structure is invalid or malformed.TokenValidationException– Thrown when signature, issuer, or audience validation fails.TokenExpireException– Thrown when the token is expired (expclaim).OAuthProviderException– Thrown when the JWKS endpoint cannot be reached or the HTTP request fails.JwksFormatException– Thrown when the JWKS response is malformed, missing keys, or the requestedkidis not found.
Requirements
- PHP 8.1 or higher
Dependencies
This package leverages the most reliable libraries in the PHP ecosystem:
- lcobucci/jwt: For high-security JWT parsing and validation (v5.0+).
- guzzlehttp/guzzle: For robust asynchronous HTTP requests to fetch JWKS keys.
Installation
Install the package via Composer:
composer require z-trippete/jwt-verifier
统计信息
- 总下载量: 533
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 0
- 点击次数: 14
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2026-02-26