Download the PHP package werk365/jwtauthroles without Composer
On this page you can find all versions of the php package werk365/jwtauthroles. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download werk365/jwtauthroles
More information about werk365/jwtauthroles
Files in werk365/jwtauthroles
Package jwtauthroles
Short Description Made to use fusionauth users in Laravel using JWT. Possible to either use pem keys directly or use the jwks endpoint.
License MIT
Homepage https://github.com/365werk/jwtauthroles
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package jwtauthroles
JWT Auth and Roles
Made to use JWTs from an external identity provider in Laravel. Tested with Fusionauth, but should be quite general purpose.
With this package you can validate the incoming JWT, and create an authenticated user that has to roles specified in the JWT for further (route based) authentication using a role middleware that is included.
.
Take a look at contributing.md to see a to do list.
Installation
Via Composer
Publish config and migration
Migrations are only needed if you want to either cache the JWKs or store the user, this can be configured in the config. It's possible to use this package without storing anything related to it in the database at all.
Run migration
Usage
In your AuthServiceProvider modify boot()
Then either change one of your guards in config/auth.php to use the jwt driver and jwt_users provider, or add a new guard
Now you can use the JWT guard in your routes, for example on a group:
You can also use the RolesMiddelware to do role-based authentication on a route like this:
To make the authenticated user actually useful, the JwtUser model extends the User model. This means that you can define any relations in the User model, and then use them for the authenticated user.
For example, add the following relationship in the default User model:
This assumes you have a Documents model where the uuid provided by your identity provider is stored in a 'user' column, this can be anything you want of course, but the local key should always be uuid.
This can then be used as follows to retrieve all documents belonging to this user:
Finally, configure the config to your needs. The default published config will validate the JWT, but not use the database. It looks like this:
Laravel version
Currently this package supports Laravel 8. Since we use the default User model, it expects it to be in the app\Models\User namespace. To make this package work with previous versions of Laravel, you'll only have to make a model in this namespace, besides that the package should work with any recent version.
Change log
Please see the changelog for more information on what has changed recently.
Testing
Testing is not yet implemented
Contributing
Please see contributing.md for details and a todolist.
Security
If you discover any security related issues, please email [email protected] instead of using the issue tracker.
Credits
- Hergen Dillema
- All Contributors
License
license. Please see the license file for more information.
All versions of jwtauthroles with dependencies
firebase/php-jwt Version ^5.4
phpseclib/phpseclib Version ^3.0.7