OAuth 2.0 Client
Nyholm PSR-7
Our great sponsors
OAuth 2.0 Client | Nyholm PSR-7 | |
---|---|---|
9 | 7 | |
3,600 | 1,118 | |
0.6% | - | |
4.4 | 4.2 | |
2 months ago | 11 days ago | |
PHP | PHP | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
OAuth 2.0 Client
-
Best social login library for PHP ("sign in with Apple/Google/Facebook" etc.)?
League/oauth2-client has a lot of implementations
Have a look on this one https://oauth2-client.thephpleague.com/
-
Looking for PHP classes that will authenticate against existing OAuth or SAML IdP servers
In regards to oauth the phpleague packages are fairly popular. Again, the flow requires some redirect dancing so not something that can be (simply) just a single boolean-returning method on the PHP side. Additionally, oauth is a relatively weak standard (Especially where you want to verify identity) in which case platform specific actions/tweaks are needed hence why most use platform-specific oauth libraries. OIDC builds upon oauth to standardize the flow, including getting the identity, but it isn't supported by all platforms offering oauth.
- Mobile application using website's PHP OAuth
-
The PHPer's Guide to OAuth
For the client side, I'll be using the library league/oauth2-client.
-
Looking for low security and simple login ideas.
"Login with Google/Facebook/Twitter/etc": That's called OAuth2 and quite easy to implement. This package is good OAuth2 client to start.
-
I'm stuck with PHP Oauth 2.0 Implementation!
I'd recommend using a library - for Azure AD OAuth we've been using https://github.com/thephpleague/oauth2-client + https://github.com/thenetworg/oauth2-azure (see also https://oauth2-client.thephpleague.com/providers/thirdparty/ )
-
Weekly "ask anything" thread
For Azure AD, I'd recommend the combination of https://github.com/thephpleague/oauth2-client for the authentication part (getting the token) and the Microsoft Graph SDK for then using the token to get information about the user https://github.com/microsoftgraph/msgraph-sdk-php
-
Testing PHP API for a small key-value database
Here's a good example of that: https://github.com/thephpleague/oauth2-client/blob/master/.gitattributes
Nyholm PSR-7
-
Testing an OpenAPI specification in PHP
As the documentation states, this package only performs the conversion, so we would need a PSR-7 and a PSR-17 implementation to convert the objects to and from PSR-7. We can use the library the documentation recommends, nyholm/psr7, but there are others.
-
Creating an application #9 - http Factories
The following example shows how to create configuration for the HTTP factories, using the nyholm/psr7 package:
-
The PHPer's Guide to OAuth
Since the library is designed to be easily integrated with different frameworks, it relies on the usage of PSR-7 compliant HTTP messages. To fulfill this requirement, I'll be using the nyholm/psr7 package.
-
Decorator pattern implementing interface
If you go strict PSR-7, as you see in nyholm/psr7, Tobias uses traits to add the functionality of the extended RequestInterface and MessageInterface:
-
Validate your PHP API tests against OpenAPI definitions – a Laravel example
The Symfony folks thought of this, however, and provided a bridge that converts HttpFoundation objects to PSR-7 ones. The bridge simply needs a PSR-7 and PSR-17 factory, for which they suggest to use Tobias Nyholm's PSR-7 implementation.
-
re: On using PSR abstractions
“In theory, theory and practice are the same. In practice, they are not.” (Dr. Albert Einstein). I believe same goes for packages, too. A good example is the [comparison](https://github.com/Nyholm/psr7) of some PSR-7 implementations.
-
Introducing FEAST Framework
The point is why would I pull in code in the first place that is not needed? If it is optional, then why is it not a separate package? Same with all of the bloated HTTP requests and response objects that frameworks and other libs usually use. I really like https://github.com/Nyholm/psr7 for that reason, it has a table in it's readme.md that is pretty much enough to know why I like it. If something specific is needed it can be decorated or extended on project level.
What are some alternatives?
Hawk - Hawk — A PHP Implementation
Laminas Diactoros - PSR HTTP Message implementations
HybridAuth - Open source social sign on PHP Library. HybridAuth goal is to act as an abstract api between your application and various social apis and identities providers such as Facebook, Twitter and Google.
psr17 - Provides a PSR17 synthetic implementation.
Sign in with Apple for PHP - PHP library to verify and validate Apple IdentityToken and authenticate a user with Apple ID.
swagger-php - A php swagger annotation and parsing library
OAuth 1.0 Client - OAuth 1 Client
fluentpdo - A PHP SQL query builder using PDO
PHP oAuthLib - PHP 5.3+ oAuth 1/2 Client Library
Packagist - Package Repository Website - try https://packagist.com if you need your own -
PHP OAuth 2.0 Server - A spec compliant, secure by default PHP OAuth 2.0 Server
Laravel - Laravel is a web application framework with expressive, elegant syntax. We’ve already laid the foundation for your next big idea — freeing you to create without sweating the small things.