welcome back to dyb-tech

2024-05-18 02:28:01 +02:00
parent 9513cdba09
commit 9f30bc98c7
6149 changed files with 668407 additions and 0 deletions
@@ -0,0 +1,27 @@
+<?php
+
+namespace Lexik\Bundle\JWTAuthenticationBundle\Encoder;
+
+use Lexik\Bundle\JWTAuthenticationBundle\Services\JWSProvider\JWSProviderInterface;
+use Namshi\JOSE\JWS;
+
+/**
+ * Default Json Web Token encoder/decoder.
+ *
+ * @author Robin Chalas <robin.chalas@gmail.com>
+ *
+ * @deprecated since version 2.5, to be removed in 3.0
+ */
+class DefaultEncoder extends LcobucciJWTEncoder
+{
+    public function __construct(JWSProviderInterface $jwsProvider)
+    {
+        if (!class_exists(JWS::class)) {
+            throw new \RuntimeException('The "namshi/jose" library is deprecated, this bundle does not require it anymore. If you need to keep using it, require it in your composer.json.');
+        }
+
+        @trigger_error(sprintf('The "%s\DefaultEncoder" class is deprecated since version 2.5 and will be removed in 3.0. Use "%s" or create your own encoder instead.', __NAMESPACE__, LcobucciJWTEncoder::class), E_USER_DEPRECATED);
+
+        parent::__construct($jwsProvider);
+    }
+}
@@ -0,0 +1,19 @@
+<?php
+
+namespace Lexik\Bundle\JWTAuthenticationBundle\Encoder;
+
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTEncodeFailureException;
+
+/**
+ * HeaderAwareJWTEncoderInterface.
+ */
+interface HeaderAwareJWTEncoderInterface extends JWTEncoderInterface
+{
+    /**
+     * @return string the encoded token string
+     *
+     * @throws JWTEncodeFailureException If an error occurred while trying to create
+     *                                   the token (invalid crypto key, invalid payload...)
+     */
+    public function encode(array $data, array $header = []);
+}
@@ -0,0 +1,32 @@
+<?php
+
+namespace Lexik\Bundle\JWTAuthenticationBundle\Encoder;
+
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTDecodeFailureException;
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTEncodeFailureException;
+
+/**
+ * JWTEncoderInterface.
+ *
+ * @author Nicolas Cabot <n.cabot@lexik.fr>
+ */
+interface JWTEncoderInterface
+{
+    /**
+     * @return string the encoded token string
+     *
+     * @throws JWTEncodeFailureException If an error occurred while trying to create
+     *                                   the token (invalid crypto key, invalid payload...)
+     */
+    public function encode(array $data);
+
+    /**
+     * @param string $token
+     *
+     * @return array
+     *
+     * @throws JWTDecodeFailureException If an error occurred while trying to load the token
+     *                                   (invalid signature, invalid crypto key, expired token...)
+     */
+    public function decode($token);
+}
@@ -0,0 +1,69 @@
+<?php
+
+namespace Lexik\Bundle\JWTAuthenticationBundle\Encoder;
+
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTDecodeFailureException;
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTEncodeFailureException;
+use Lexik\Bundle\JWTAuthenticationBundle\Services\JWSProvider\JWSProviderInterface;
+
+/**
+ * Json Web Token encoder/decoder based on the lcobucci/jwt library.
+ *
+ * @author Robin Chalas <robin.chalas@gmail.com>
+ */
+class LcobucciJWTEncoder implements JWTEncoderInterface, HeaderAwareJWTEncoderInterface
+{
+    /**
+     * @var JWSProviderInterface
+     */
+    protected $jwsProvider;
+
+    public function __construct(JWSProviderInterface $jwsProvider)
+    {
+        $this->jwsProvider = $jwsProvider;
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    public function encode(array $payload, array $header = [])
+    {
+        try {
+            $jws = $this->jwsProvider->create($payload, $header);
+        } catch (\InvalidArgumentException $e) {
+            throw new JWTEncodeFailureException(JWTEncodeFailureException::INVALID_CONFIG, 'An error occurred while trying to encode the JWT token. Please verify your configuration (private key/passphrase)', $e, $payload);
+        }
+
+        if (!$jws->isSigned()) {
+            throw new JWTEncodeFailureException(JWTEncodeFailureException::UNSIGNED_TOKEN, 'Unable to create a signed JWT from the given configuration.', null, $payload);
+        }
+
+        return $jws->getToken();
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    public function decode($token)
+    {
+        try {
+            $jws = $this->jwsProvider->load($token);
+        } catch (\Exception $e) {
+            throw new JWTDecodeFailureException(JWTDecodeFailureException::INVALID_TOKEN, 'Invalid JWT Token', $e);
+        }
+
+        if ($jws->isInvalid()) {
+            throw new JWTDecodeFailureException(JWTDecodeFailureException::INVALID_TOKEN, 'Invalid JWT Token', null, $jws->getPayload());
+        }
+
+        if ($jws->isExpired()) {
+            throw new JWTDecodeFailureException(JWTDecodeFailureException::EXPIRED_TOKEN, 'Expired JWT Token', null, $jws->getPayload());
+        }
+
+        if (!$jws->isVerified()) {
+            throw new JWTDecodeFailureException(JWTDecodeFailureException::UNVERIFIED_TOKEN, 'Unable to verify the given JWT through the given configuration. If the "lexik_jwt_authentication.encoder" encryption options have been changed since your last authentication, please renew the token. If the problem persists, verify that the configured keys/passphrase are valid.', null, $jws->getPayload());
+        }
+
+        return $jws->getPayload();
+    }
+}
@@ -0,0 +1,65 @@
+<?php
+
+namespace Lexik\Bundle\JWTAuthenticationBundle\Encoder;
+
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTDecodeFailureException;
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTEncodeFailureException;
+use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTFailureException;
+use Lexik\Bundle\JWTAuthenticationBundle\Services\WebToken\AccessTokenBuilder;
+use Lexik\Bundle\JWTAuthenticationBundle\Services\WebToken\AccessTokenLoader;
+
+/**
+ * Json Web Token encoder/decoder based on the web-token framework.
+ *
+ * @author Florent Morsellis <florent.morselli@spomky-labs.com>
+ */
+final class WebTokenEncoder implements HeaderAwareJWTEncoderInterface
+{
+    /**
+     * @var AccessTokenBuilder|null
+     */
+    private $accessTokenBuilder;
+
+    /**
+     * @var AccessTokenLoader|null
+     */
+    private $accessTokenLoader;
+
+    public function __construct(?AccessTokenBuilder $accessTokenBuilder, ?AccessTokenLoader $accessTokenLoader)
+    {
+        $this->accessTokenBuilder = $accessTokenBuilder;
+        $this->accessTokenLoader = $accessTokenLoader;
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    public function encode(array $payload, array $header = [])
+    {
+        if (!$this->accessTokenBuilder) {
+            throw new \LogicException('The access token issuance features are not enabled.');
+        }
+
+        try {
+            return $this->accessTokenBuilder->build($header, $payload);
+        } catch (\InvalidArgumentException $e) {
+            throw new JWTEncodeFailureException(JWTEncodeFailureException::INVALID_CONFIG, 'An error occurred while trying to encode the JWT token. Please verify your configuration (private key/passphrase)', $e, $payload);
+        }
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    public function decode($token)
+    {
+        if (!$this->accessTokenLoader) {
+            throw new \LogicException('The access token verification features are not enabled.');
+        }
+
+        try {
+            return $this->accessTokenLoader->load($token);
+        } catch (JWTFailureException $e) {
+            throw $e;
+        }
+    }
+}