Replace emarref/jwt with lcobucci/jwt

Refactor all JWT-related components Replace RS256 with ES256 as a preferred JWT algorithm
2025-05-31 14:11:46 +05:30 · 2019-08-01 12:17:12 +03:00
parent 4c2a9cc172
commit 45c2ed601d
47 changed files with 805 additions and 621 deletions
--- a/api/components/Tokens/Algorithms/AlgorithmInterface.php
+++ b/api/components/Tokens/Algorithms/AlgorithmInterface.php
@ -0,0 +1,19 @@
+<?php
+declare(strict_types=1);
+
+namespace api\components\Tokens\Algorithms;
+
+use Lcobucci\JWT\Signer;
+use Lcobucci\JWT\Signer\Key;
+
+interface AlgorithmInterface {
+
+    public function getAlgorithmId(): string;
+
+    public function getSigner(): Signer;
+
+    public function getPrivateKey(): Key;
+
+    public function getPublicKey(): Key;
+
+}
--- a/api/components/Tokens/Algorithms/ES256.php
+++ b/api/components/Tokens/Algorithms/ES256.php
@ -0,0 +1,74 @@
+<?php
+declare(strict_types=1);
+
+namespace api\components\Tokens\Algorithms;
+
+use Lcobucci\JWT\Signer;
+use Lcobucci\JWT\Signer\Ecdsa\Sha256;
+use Lcobucci\JWT\Signer\Key;
+
+class ES256 implements AlgorithmInterface {
+
+    /**
+     * @var string
+     */
+    private $privateKey;
+
+    /**
+     * @var string|null
+     */
+    private $privateKeyPass;
+
+    /**
+     * @var string
+     */
+    private $publicKey;
+
+    /**
+     * @var Key|null
+     */
+    private $loadedPrivateKey;
+
+    /**
+     * @var Key|null
+     */
+    private $loadedPublicKey;
+
+    /**
+     * TODO: document arguments
+     *
+     * @param string $privateKey
+     * @param string|null $privateKeyPass
+     * @param string $publicKey
+     */
+    public function __construct(string $privateKey, ?string $privateKeyPass, string $publicKey) {
+        $this->privateKey = $privateKey;
+        $this->privateKeyPass = $privateKeyPass;
+        $this->publicKey = $publicKey;
+    }
+
+    public function getAlgorithmId(): string {
+        return 'ES256';
+    }
+
+    public function getSigner(): Signer {
+        return new Sha256();
+    }
+
+    public function getPrivateKey(): Key {
+        if ($this->loadedPrivateKey === null) {
+            $this->loadedPrivateKey = new Key($this->privateKey, $this->privateKeyPass);
+        }
+
+        return $this->loadedPrivateKey;
+    }
+
+    public function getPublicKey(): Key {
+        if ($this->loadedPublicKey === null) {
+            $this->loadedPublicKey = new Key($this->publicKey);
+        }
+
+        return $this->loadedPublicKey;
+    }
+
+}
--- a/api/components/Tokens/Algorithms/HS256.php
+++ b/api/components/Tokens/Algorithms/HS256.php
@ -0,0 +1,50 @@
+<?php
+declare(strict_types=1);
+
+namespace api\components\Tokens\Algorithms;
+
+use Lcobucci\JWT\Signer;
+use Lcobucci\JWT\Signer\Hmac\Sha256;
+use Lcobucci\JWT\Signer\Key;
+
+class HS256 implements AlgorithmInterface {
+
+    /**
+     * @var string
+     */
+    private $key;
+
+    /**
+     * @var Key|null
+     */
+    private $loadedKey;
+
+    public function __construct(string $key) {
+        $this->key = $key;
+    }
+
+    public function getAlgorithmId(): string {
+        return 'HS256';
+    }
+
+    public function getSigner(): Signer {
+        return new Sha256();
+    }
+
+    public function getPrivateKey(): Key {
+        return $this->loadKey();
+    }
+
+    public function getPublicKey(): Key {
+        return $this->loadKey();
+    }
+
+    private function loadKey(): Key {
+        if ($this->loadedKey === null) {
+            $this->loadedKey = new Key($this->key);
+        }
+
+        return $this->loadedKey;
+    }
+
+}