Download the PHP package jakub-onderka/openid-connect-php without Composer
On this page you can find all versions of the php package jakub-onderka/openid-connect-php. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download jakub-onderka/openid-connect-php
More information about jakub-onderka/openid-connect-php
Files in jakub-onderka/openid-connect-php
Package openid-connect-php
Short Description Bare-bones OpenID Connect client
License Apache-2.0
Informations about the package openid-connect-php
PHP OpenID Connect Basic Client
A simple library that allows an application to authenticate a user through the basic OpenID Connect flow. This library hopes to encourage OpenID Connect use by making it simple enough for a developer with little knowledge of the OpenID Connect protocol to setup authentication.
This is a fork of jumbojett/OpenID-Connect-PHP
Jumbojett`s library is great, but lacks of some features, proper testing, and it is not ready for new PHP versions. So I created this fork. This fork requires PHP 7.0 or greater, if you need to use older PHP version, please use original version.
Most important changes:
- Added support for elliptic curve (EC) JWT token signature algorithms, that are faster than RSA signatures
- Added support for
client_secret_jwt
andprivate_key_jwt
authentication methods to token endpoint, that are more secure that traditional method - JWT ID Token Validation compliant to OpenID Connect standard
- Much higher code coverage by unit tests
- A lot of small optimisations and fixes
A special thanks goes to Michael Jett, original author of this library and Justin Richer and Amanda Anganes for their help and support of the protocol.
Requirements
- PHP 7.0 or greater
- CURL extension
- JSON extension
- APCu for caching (optional)
Install
-
Install library using composer
- Include composer autoloader
Example 1: Basic Client
See openid spec for available user attributes
Example 2: Dynamic Registration
Example 3: Network and Security
Example 4: Request Client Credentials Token
Example 5: Request Resource Owners Token (with client auth)
Example 6: Basic client for implicit flow e.g. with Azure AD B2C
See https://openid.net/specs/openid-connect-core-1_0.html#ImplicitFlowAuth
Example 7: Introspection of access token
See https://tools.ietf.org/html/rfc7662
Example 8: PKCE Client
Development Environments
In some cases you may need to disable SSL security on your development systems. Note: This is not recommended on production systems.
Also, your local system might not support HTTPS, so you might disable upgrading to it:
Todo
- Dynamic registration does not support registration auth tokens and endpoints
Contributing
- All pull requests, once merged, should be added to the CHANGELOG.md file.
All versions of openid-connect-php with dependencies
phpseclib/phpseclib Version >=3.0.7
ext-json Version *
ext-curl Version *