rhertogh\Yii2Oauth2Server\controllers\web\certificates\Oauth2JwksAction

Complexity

Total Complexity

2

Size/Duplication

Total Lines	31
Duplicated Lines	0 %

Test Coverage

Coverage

92.86%

Importance

Changes	2
Bugs	0	Features	0

1 Method

Rating	Name	Duplication	Size	Complexity
A	run()	0	22	2

<?php

namespace rhertogh\Yii2Oauth2Server\controllers\web\certificates;

use Jose\Component\Core\JWK;
use Jose\Component\Core\JWKSet;
use rhertogh\Yii2Oauth2Server\controllers\web\base\Oauth2BaseWebAction;
use rhertogh\Yii2Oauth2Server\controllers\web\Oauth2CertificatesController;
use rhertogh\Yii2Oauth2Server\interfaces\controllers\web\certificates\Oauth2JwksActionInterface;
use yii\base\InvalidConfigException;
use yii\helpers\StringHelper;

/**
 * @property Oauth2CertificatesController $controller
 */
class Oauth2JwksAction extends Oauth2BaseWebAction implements Oauth2JwksActionInterface
{
    /**
     * RFC7517: JSON Web Key (JWK)
     * https://datatracker.ietf.org/doc/html/rfc7517
     *
     * For algorithms see RFC7518: JSON Web Algorithms - Parameters for RSA Keys
     * https://datatracker.ietf.org/doc/html/rfc7518#section-6.3.
     */
    public function run()
    {
        if (!extension_loaded('openssl')) {
            throw new InvalidConfigException('JWKS functionality requires the openssl extension to be loaded in PHP.');
        }

        $module = $this->controller->module;

        $publicKey = $module->getPublicKey();

        $keyInfo = openssl_pkey_get_details(openssl_pkey_get_public($publicKey->getKeyContents()));

        $keys = [new JWK([
            // ToDo 'kid' => '', // https://datatracker.ietf.org/doc/html/rfc7517#section-4.5.
            'kty' => 'RSA',
            'alg' => 'RS256', // https://datatracker.ietf.org/doc/html/rfc7518#section-6.3.
            'use' => 'sig',
            'n' => rtrim(StringHelper::base64UrlEncode($keyInfo['rsa']['n']), '='),
            'e' => rtrim(StringHelper::base64UrlEncode($keyInfo['rsa']['e']), '='),
        ])];

        return new JWKSet($keys);
    }
}