PHP code example of magentron / openid-connect-php

1. Go to this page and download the library: Download magentron/openid-connect-php library. Choose the download type require.

2. Extract the ZIP file and open the index.php.

3. Add this code to the index.php.

/* Start to develop here. Best regards */


magentron / openid-connect-php example snippets

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient('',
$name = $oidc->requestUserInfo('given_name');

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient("");

$client_id = $oidc->getClientID();
$client_secret = $oidc->getClientSecret();

// Be sure to add logic to store the client id and client secret

// Configure a proxy

// Configure a cert

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient('',

// this assumes success (to validate check if the access_token property is there and a valid JWT) :
$clientCredentialsToken = $oidc->requestClientCredentialsToken()->access_token;

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient('',

//Add username and password

//Perform the auth and return the token (to validate check if the access_token property is there and a valid JWT) :
$token = $oidc->requestResourceOwnerToken(TRUE)->access_token;

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient('',
$oidc->addAuthParam(['response_mode' => 'form_post']);
$sub = $oidc->getVerifiedClaims('sub');

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient('',
$data = $oidc->introspectToken('');
if (!$data->active) {
    // the token is no longer usable

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient('',
$name = $oidc->requestUserInfo('given_name');

function handleLogout() {
    // NOTE: assumes that $this->oidc is an instance of OpenIDConnectClient()
    if ($this->oidc->verifyLogoutToken()) {
        $sid = $this->oidc->getSidFromBackChannel();

        if (isset($sid)) {
            // Somehow find the session based on the $sid and
            // destroy it. This depends on your RP's design,
            // there is nothing in the OIDC spec to mandate how.
            // In this example, we find a Redis key, which was
            // previously stored using the sid we obtained from
            // the access token after login.
            // The value of the Redis key is that of the user's
            // session ID specific to this hypothetical RP app.
            // We then switch to that session and destroy it.
            $this->redis->connect('', 6379);
            $session_id_to_destroy = $this->redis->get($sid);
            if ($session_id_to_destroy) {
                session_id($session_id_to_destroy); // switches to that session
                $_SESSION = []; // effectively ends the session

use Jumbojett\OpenIDConnectClient;

$oidc = new OpenIDConnectClient('',
# enable 'client_secret_basic' and 'client_secret_jwt'                                
$oidc->setTokenEndpointAuthMethodsSupported(['client_secret_basic', 'client_secret_jwt']);

# for 'private_key_jwt' in addition also the generator function has to be set.
$oidc->setPrivateKeyJwtGenerator(function(string $token_endpoint) {
    # TODO: what ever is necessary


