Skip to content

limosa-io/openid-connect-server

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

71 Commits

.github/workflows

.github/workflows

 
 

src

src

 
 

tests

tests

 
 

.gitignore

.gitignore

 
 

LICENSE.md

LICENSE.md

 
 

README.md

README.md

 
 

composer.json

composer.json

 
 

phpunit.xml

phpunit.xml

 
 

Repository files navigation

Latest Stable Version Total Downloads

PHP OpenID Connect Server

This is an OpenID Connect Server written in PHP, built on top of thephpleague/oauth2-server.

It is used by idaas.nl: (not) yet another identity as a service platform.

This library supports everything that is supported by thephpleague/oauth2-server, plus the following specifications

This library was created by Arie Timmerman.

Installation

composer require nl.idaas/openid-server

Example

This example implements show how to implement an authorization server with support for an authorization grant, including OpenID Connect support.

// Init our repositories
$scopeRepository = new ScopeRepository(); // instance of ScopeRepositoryInterface
$authCodeRepository = new AuthCodeRepository(); // instance of AuthCodeRepositoryInterface
$refreshTokenRepository = new RefreshTokenRepository(); // instance of RefreshTokenRepositoryInterface

// Specific to this module
$clientRepository = new ClientRepository(); // instance of \Idaas\OpenID\Repositories\ClientRepositoryInterface
$accessTokenRepository = new AccessTokenRepository(); // instance of \Idaas\OpenID\Repositories\AccessTokenRepositoryInterface
$claimRepository = new ClaimRepository(); // instance of ClaimRepositoryInterface

$privateKey = 'file://path/to/private.key';
//$privateKey = new CryptKey('file://path/to/private.key', 'passphrase'); // if private key has a pass phrase
$encryptionKey = 'lxZFUEsBCJ2Yb14IF2ygAHI5N4+ZAUXXaSeeJm6+twsUmIen'; // generate using base64_encode(random_bytes(32))

// Setup the authorization server
$server = new \League\OAuth2\Server\AuthorizationServer(
    $clientRepository,
    $accessTokenRepository,
    $scopeRepository,
    $privateKey,
    $encryptionKey
);

// OpenID Connect Authorization Code Grant
$grant = new \Idaas\OpenID\Grant\AuthCodeGrant(
    $authCodeRepository,
    $refreshTokenRepository,
    $claimRepository,
    new \Idaas\OpenID\Session,
    new DateInterval('PT10M'), // authorization codes will expire after 10 minutes
    new DateInterval('PT10M') // ID Token will expire after 10 minutes
);

$grant->setRefreshTokenTTL(new \DateInterval('P1M')); // refresh tokens will expire after 1 month

// Enable the authentication code grant on the server
$server->enableGrantType(
    $grant,
    new \DateInterval('PT1H') // access tokens will expire after 1 hour
);

Usages

About

This is an OpenID Connect Server written in PHP.

Topics

php oauth2 oauth2-server openid-connect openid-connect-provider

Resources

Readme

License

AGPL-3.0 license
Activity
Custom properties

Stars

40 stars

Watchers

6 watching

Forks

9 forks
Report repository

Releases 1

Support for version 8 of league/oauth2-server Latest
Jan 18, 2022

Packages 2

 
 

Contributors 4

  •  
  •  
  •  
  •  

Languages