php-jwt
php-jwt copied to clipboard
firebase
PHP package for JWT
PHP 8.4 has deprecated implicitly nullable types. This PR fixes the issue. Tested with PHP 8.4 alpha 4. https://wiki.php.net/rfc/deprecate-implicitly-nullable-types
Fixes https://github.com/firebase/php-jwt/issues/593 In our case we need to be able to set the `crit` claim for a third party webservice. Found more info about crit here: https://mojoauth.com/glossary/jwt-critical/
Hello Team, Please add support for the PS256 (RSA-PSS with SHA-256) algorithm in the firebase/php-jwt library. This would improve security for applications requiring modern cryptographic standards. Thank you!
When unit testing, we have fixtures for valid JWTs. In tests, we often have to setUp/tearDown where we re/set these values. This is designed to make that easier.
Hello there. 👋 I'm using JWT::encode to send an authentication request to an external API. For the $headers argument on `JWT::encode` I provide the following since I have a chain...
There are instances when using CachedKeySet where a key is returned with an empty string as the kid. This is a valid use case and should be allowed. For example...
Since https://github.com/firebase/php-jwt/issues/577 was merged, 6.11.0 will break. Currently, if this package is pulled as a transitive dependency it does not properly block to supported versions. Ex, google/apiclient. 6.10.2 is the...
I'm running from docker php:8.1-apache and for some reason at this [line](https://github.com/firebase/php-jwt/blob/main/src/JWK.php#L127) openssl_pkey_get_public function is returning an empty instance of OpenSSLAsymmetricKey. To reproduce: The JWKs: ```json { "keys": [ {...
When passing an invalid token, I am getting a PHP error. The current line is: ``` if (!self::verify("{$headb64}.{$bodyb64}", $sig, $key->getKeyMaterial(), $header->alg)) { throw new SignatureInvalidException('Signature verification failed'); } ``` But...
