JWT-Auth Documentation

JWT-Auth is a simple middleware which implements JSON Web Token Authentication that is PSR-15 compliant.

JWT-Auth does not implement an OAuth 2.0 authorization server nor does it provide ways to generate, issue or store authentication tokens. It only parses and authenticates a token when passed via header or cookie. This is useful for example when you want to use JSON Web Tokens as API keys.

User Guide

• Overview
  • Install
  • Usage
  • Rules
  • Security
  • Authorization
  • Testing
  • Contributing
  • Security Issues
  • License
• Quickstart
  • Basic Useage
  • Custom Rules
    • RequestMethodRule
    • RequestPathRule
  • Multiple Tokens
• Options
  • isSecure
  • relaxed
  • header
  • cookie
  • regexp
  • attribute
  • before
  • after
• Decoder
  • Secret
    • secret
    • algorithm
    • kid
  • Excptions
    • InvalidArgumentException
    • DomainException
    • SignatureInvalidException
    • BeforeValidException
    • ExpiredException
    • UnexpectedValueException
  • Customr Decoder