shota/jwt-covertor

此包已被弃用,不再维护。未建议替代包。

简单的jwt转换器

维护者

详细信息

github.com/YaoMiss/jwt-convertor-php

主页

源代码

问题

安装: 0

依赖: 0

建议者: 0

安全性: 0

星星: 0

关注者: 1

分支: 0

v1.0.0 2021-08-09 09:25 UTC

Requires

Requires (Dev)

MIT 427f1284cc7bd9bdbd13e1eb740d5a60685fa306

  • Packie Pat <biyongyao.woop@gmail.com>

phpjwt

This package is auto-updated.

Last update: 2024-07-09 16:16:12 UTC

README

依赖

  • PHP版本 : >=7.2.0|^8.0

  • php-ext : opensslmbstringsodium

算法

Algo 包括 支持 评论
HMAC with SHA-2 HS256 HS384 HS512
EC DSA signature with SHA-2 ES256 ES384 ES512 短慢
RSA signature with PKCS #1 and SHA-2 RS256 RS384 RS512 长快
RSA PSS signature with SHA-2 PS256 PS384 PS512
Edwards-curve DSA signature with SHA-2 EdDSA

安装

composer require shota/jwt-covertor

生成密钥

RSA (RSA signature with PKCS #1 and SHA-2)

高级:密钥长但快

# generate the private key
bash > openssl
> genrsa -out rsa_private_key.pem 2048

# generate the public key
bash > openssl
> rsa -in rsa_private_key.pem -pubout -out rsa_public_key.pem

ECS (EC DSA signature with SHA-2)

高级:密钥短但慢

# generate the private key
bash > openssl ecparam -name secp256k1 -genkey -out privateKey.pem

# generate the public key
bash > openssl ec -in privateKey.pem -pubout -out publicKey.pem

EdDSA (Edwards-curve DSA signature with SHA-2)

// $sign_seed = random_bytes(SODIUM_CRYPTO_SIGN_SEEDBYTES);
// $sign_pair = sodium_crypto_sign_seed_keypair($sign_seed);

$sign_pair = sodium_crypto_sign_keypair();
$sign_secret = sodium_crypto_sign_secretkey($sign_pair);
$sign_public = sodium_crypto_sign_publickey($sign_pair);

$message = 'Hello';

$signature = sodium_crypto_sign_detached($message, $sign_secret);
$message_valid = sodium_crypto_sign_verify_detached($signature, $message, $sign_public);

使用

使用HMAC的示例

use Shota\JWT\JWT;

$key = 'encode-key';
$payload = [
        "iss" => "John Doe",
        "exp" => time() + 100000,
        "sub" => "unit-test-01",
        "aud" => "all",
        "nbf" => time(),
        "iat" => time(),
        "jti" => time(),

        "name" => "John Doe",
        "admin" => true,
];
$jwtStr = JWT::encode($this->payload, $key, 'HS512');
echo sprintf('jwt : %s \n',jwtStr);

$decodePayload = JWT::decode($jwtStr,$key)
print_r($decodePayload);

使用EC DSA签名的示例

use Shota\JWT\JWT;

$privateKey = file_get_contents(__DIR__ . '/cert/ecs-private-key.pem');
$publicKey =  file_get_contents(__DIR__ . '/cert/ecs-public-key.pem');

$payload = [
    "iss" => "John Doe",
    "exp" => time() + 100000,
    "sub" => "unit-test-01",
    "aud" => "all",
    "nbf" => time(),
    "iat" => time(),
    "jti" => time(),

    "name" => "John Doe",
    "admin" => true,
];
$jwtStr = JWT::encode($this->payload, $privateKey, 'HS512');
echo sprintf('jwt : %s \n',jwtStr);

$decodePayload = JWT::decode($jwtStr,$publicKey)
print_r($decodePayload);

使用RSA签名的示例

use Shota\JWT\JWT;

$privateKey = file_get_contents(__DIR__ . '/cert/rsa-private-key.pem');
$publicKey = file_get_contents(__DIR__ . "/cert/rsa-public-key.pem");

$payload = [
    "iss" => "John Doe",
    "exp" => time() + 100000,
    "sub" => "unit-test-01",
    "aud" => "all",
    "nbf" => time(),
    "iat" => time(),
    "jti" => time(),

    "name" => "John Doe",
    "admin" => true,
];

$jwtStr = JWT::encode($this->payload, $privateKey, 'HS512');
echo sprintf('jwt : %s \n',jwtStr);

$decodePayload = JWT::decode($jwtStr,$publicKey)
print_r($decodePayload);

使用EdDSA的示例

use Shota\JWT\JWT;

$payload = [
    "iss" => "John Doe",
    "exp" => time() + 100000,
    "sub" => "unit-test-01",
    "aud" => "all",
    "nbf" => time(),
    "iat" => time(),
    "jti" => time(),

    "name" => "John Doe",
    "admin" => true,
];

$signPair = sodium_crypto_sign_keypair();
$secret = sodium_crypto_sign_secretkey($signPair);
$publicKey = sodium_crypto_sign_publickey($signPair);

$jwtStr = JWT::encode($payload, $secret, 'EdDSA');
echo sprintf('jwt : %s \n',jwtStr);

$decodePayload = JWT::decode(jwtStr, publicKey);
print_r($decodePayload);

测试

bash > composer require --dev phpunit/phpunit
bash > vendor/bin/phpunit  --configuration phpunit.xml.dist