JSON Web Token\uff08JWT\uff09\u306f\u3001Web\u30b5\u30fc\u30d3\u30b9\u9593\u3067\u5b89\u5168\u306b\u60c5\u5831\u3092\u3084\u308a\u53d6\u308a\u3059\u308b\u305f\u3081\u306e\u4ed5\u7d44\u307f\u3067\u3059\u3002<\/p>\n\n\n\n
\u30c7\u30fc\u30bf\u306fJSON\u5f62\u5f0f\u3067\u8868\u73fe\u3055\u308c\u3001\u30d8\u30c3\u30c0\u30fc\u3001\u30af\u30ec\u30fc\u30e0\u3001\u7f72\u540d\u3068\u3044\u3046\u30ab\u30c6\u30b4\u30ea\u3067\u69cb\u6210\u3055\u308c\u307e\u3059\u3002
\u4e2d\u8eab\u306f\u6697\u53f7\u5316\u3055\u308c\u308b\u3053\u3068\u3067\u3001\u5b89\u5168\u306b\u60c5\u5831\u3092\u9001\u53d7\u4fe1\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n
\u30af\u30ec\u30fc\u30e0\u306f\u3001JSON Web Signature\uff08JWS\uff09\u3084JSON Web Encryption\uff08JWE\uff09\u306e\u30da\u30a4\u30ed\u30fc\u30c9\u306b\u542b\u307e\u308c\u3066\u304a\u308a\u3001Base64\u3067\u30a8\u30f3\u30b3\u30fc\u30c9\u3055\u308c\u305fJSON\u6587\u5b57\u5217\u3068\u3057\u3066\u8868\u73fe\u3055\u308c\u307e\u3059\u3002<\/p>\n\n\n\n
JWT\u306f\u4e00\u5ea6\u767a\u884c\u3055\u308c\u308b\u3068\u3001\u53d6\u308a\u6d88\u3057\u304c\u52b9\u304b\u306a\u3044\u3053\u3068\u306b\u3088\u308a\u3001<\/p>\n\n\n\n
API\u306a\u3069\u3092\u4f7f\u3063\u305f\u3001\u8a8d\u8a3c\u306e\u5834\u9762\u306b\u304a\u3044\u3066\u4f7f\u308f\u308c\u308b\u3053\u3068\u304c\u591a\u3044\u3067\u3059\u3002<\/p>\n\n\n\n
\u307b\u304b\u3067\u3082\u3044\u308d\u3093\u306a\u30b5\u30f3\u30d7\u30eb\u306f\u305f\u304f\u3042\u3093\u3042\u308a\u307e\u3059\u304c\u3001\u8aad\u307f\u306b\u304f\u3044\u3053\u3068\u304c\u591a\u304f\u56f0\u3063\u305f\u306e\u3067\u3001<\/p>\n\n\n\n
\u3053\u3053\u3067\u306f\u30e9\u30a4\u30d6\u30e9\u30ea\u3092\u4f7f\u3063\u305f\u30b7\u30f3\u30d7\u30eb\u306a\u5b9f\u88c5\u4f8b\u306e\u30e1\u30e2\u3067\u3059\u3002<\/p>\n\n\n\n
\u30e9\u30a4\u30d6\u30e9\u30ea\u306f firebase\/php-jwt \u3068 acodercat\/php-jwk-to-pem \u3092\u4f7f\u3044\u307e\u3059\u3002<\/p>\n\n\n\n
<?php\n\n\/\/ JWT\u8a8d\u8a3c\n\nrequire_once(.\/autoload.php);\n\nuse Firebase\\JWT\\JWT;\nuse Firebase\\JWT\\Key;\nuse CoderCat\\JWKToPEM\\JWKConverter;\n\nprint(auth()); \/\/ \u30c7\u30d0\u30c3\u30b0\u7528\n\nfunction auth() {\n\n \/\/ \u30ea\u30af\u30a8\u30b9\u30c8\u30d8\u30c3\u30c0\u53d6\u5f97\n $headers = getallheaders();\n $jwt = '';\n foreach ($headers as $name => $value) {\n if ($name == 'Authorization') {\n $jwt = $value;\n break;\n }\n }\n \n if ($jwt) {\n $url = 'https:\/\/...'; \/\/ \u6307\u5b9a\u306e\u516c\u958b\u9375\n \n \/\/ kid\u3092\u898b\u3064\u3051\u308b\n $tks = explode('.', $jwt);\n if (count($tks) != 3) {\n \/\/ \u30d5\u30a9\u30fc\u30de\u30c3\u30c8\u4e0d\u826f\n return false;\n }\n list($headb64, $bodyb64, $cryptob64) = $tks;\n \n $jwtHeader = json_decode(JWT::urlsafeB64Decode($headb64), true);\n if (empty($jwtHeader['kid'])) {\n \/\/ kid\u304c\u306a\u3044\n return false;\n }\n \n \/\/ jwk\u304b\u3089\u516c\u958b\u9375\u53d6\u5f97\n $publicKey = '';\n $jwks = file_get_contents($url);\n $jwkData = json_decode($jwks, true);\n foreach ($jwkData['keys'] as $jwk) {\n if ($jwk['kid'] == $jwtHeader['kid']) {\n $jwkConverter = new JWKConverter();\n $publicKey = $jwkConverter->toPEM($jwk);\n break;\n }\n }\n if (!$publicKey) {\n \/\/ \u53d6\u5f97\u5931\u6557\n return false;\n }\n \n \/\/ \u691c\u8a3c\n $decoded = JWT::decode($jwt, new Key($publicKey, 'RS256'));\n \n if (!decoded) {\n \/\/ \u691c\u8a3c\u5931\u6557\n return false;\n }\n \n \/\/ \u8a8d\u8a3cOK\n return true;\n }\n else {\n \/\/ \u53d6\u5f97\u5931\u6557\n return false;\n }\n\n}\n\n?><\/code><\/pre>\n\n\n\n<\/p>\n","protected":false},"excerpt":{"rendered":"
JWT\u3068\u306f JSON Web Token\uff08JWT\uff09\u306f\u3001Web\u30b5\u30fc\u30d3\u30b9\u9593\u3067\u5b89\u5168\u306b\u60c5\u5831\u3092\u3084\u308a\u53d6\u308a\u3059\u308b\u305f\u3081\u306e\u4ed5\u7d44\u307f\u3067\u3059\u3002 \u30c7\u30fc\u30bf\u306fJSON\u5f62\u5f0f\u3067\u8868…\u7d9a\u304d\u3092\u8aad\u3080<\/a><\/p>\n","protected":false},"author":1,"featured_media":4439,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[402],"tags":[399,400,390,401,68],"class_list":["post-4433","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-php","tag-firebase","tag-jwt","tag-php","tag-401","tag-68"],"_links":{"self":[{"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/posts\/4433","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/comments?post=4433"}],"version-history":[{"count":5,"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/posts\/4433\/revisions"}],"predecessor-version":[{"id":4438,"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/posts\/4433\/revisions\/4438"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/media\/4439"}],"wp:attachment":[{"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/media?parent=4433"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/categories?post=4433"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kuratch.jp\/wp\/wp-json\/wp\/v2\/tags?post=4433"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}