Wallogit.com
2017 © Pedro Peláez
A JWT implementation for Phalcon 2
JWT session drop-in for Phalcon 2., (*1)
Install composer in a common location or in your project:, (*2)
curl -s http://getcomposer.org/installer | php
Create the composer.json file as follows:, (*3)
{
"require": {
"rootwork/phalcon-jwt": "dev-master"
}
}
Run the composer installer:, (*4)
php composer.phar install
$jwtKey = 'c8cb6ae1fb193e1e9d3d2d6553479755bbe59e34e2b965629ee4346e4c4902646c93ccd6cd7fd6d2392f300d251632e64bf1a1c260adf1b7219e8caa6dc7d27e';
$di = new FactoryDefault();
// Load the Jwt session
$di->setShared('session', function () use ($config) {
$session = new Jwt(['key' => $jwtKey]);
$session->start();
return $session;
});
// In your login controller/action
$session = $this->session;
$session->set('sub', $userId);
$session->write();
// Usually in a security plugin
if ($sub = $this->session->get('sub')) {
if ($user = Users::findFirstById($sub)) {
$this->getDi()->setShared('user', $user);
} else {
$this->getDi()->getShared('session')->destroy();
}
}
// Logging the user out $this->session->destroy();
Easily done from a PHP prompt., (*5)
php -a echo bin2hex(openssl_random_pseudo_bytes(64)); c8cb6ae1fb193e1e9d3d2d6553479755bbe59e34e2b965629ee4346e4c4902646c93ccd6cd7fd6d2392f300d251632e64bf1a1c260adf1b7219e8caa6dc7d27e
Then in your code:, (*6)
// In the real world, this would go in your application configuration. $jwtKey = 'c8cb6ae1fb193e1e9d3d2d6553479755bbe59e34e2b965629ee4346e4c4902646c93ccd6cd7fd6d2392f300d251632e64bf1a1c260adf1b7219e8caa6dc7d27e';
Phalcon JWT uses the Firebase JWT library. To learn more about it and JSON Web Tokens in general, visit: https://github.com/firebase/php-jwt, (*7)
A JWT implementation for Phalcon 2
BSD-3-Clause
jwt phalcon rootwork