*/ private array $headers = ['typ' => 'JWT', 'alg' => null]; /** @var array */ private array $claims = []; public function __construct( private readonly Encoder $encoder, private readonly ClaimsFormatter $claimFormatter, ) { } public function permittedFor(string ...$audiences): BuilderInterface { $configured = $this->claims[RegisteredClaims::AUDIENCE] ?? []; $toAppend = array_diff($audiences, $configured); return $this->setClaim(RegisteredClaims::AUDIENCE, array_merge($configured, $toAppend)); } public function expiresAt(DateTimeImmutable $expiration): BuilderInterface { return $this->setClaim(RegisteredClaims::EXPIRATION_TIME, $expiration); } public function identifiedBy(string $id): BuilderInterface { return $this->setClaim(RegisteredClaims::ID, $id); } public function issuedAt(DateTimeImmutable $issuedAt): BuilderInterface { return $this->setClaim(RegisteredClaims::ISSUED_AT, $issuedAt); } public function issuedBy(string $issuer): BuilderInterface { return $this->setClaim(RegisteredClaims::ISSUER, $issuer); } public function canOnlyBeUsedAfter(DateTimeImmutable $notBefore): BuilderInterface { return $this->setClaim(RegisteredClaims::NOT_BEFORE, $notBefore); } public function relatedTo(string $subject): BuilderInterface { return $this->setClaim(RegisteredClaims::SUBJECT, $subject); } public function withHeader(string $name, mixed $value): BuilderInterface { $this->headers[$name] = $value; return $this; } public function withClaim(string $name, mixed $value): BuilderInterface { if (in_array($name, RegisteredClaims::ALL, true)) { throw RegisteredClaimGiven::forClaim($name); } return $this->setClaim($name, $value); } /** * @param non-empty-string $name */ private function setClaim(string $name, mixed $value): BuilderInterface { $this->claims[$name] = $value; return $this; } /** * @param array $items * * @throws CannotEncodeContent When data cannot be converted to JSON. */ private function encode(array $items): string { return $this->encoder->base64UrlEncode( $this->encoder->jsonEncode($items), ); } public function getToken(Signer $signer, Key $key): UnencryptedToken { $headers = $this->headers; $headers['alg'] = $signer->algorithmId(); $encodedHeaders = $this->encode($headers); $encodedClaims = $this->encode($this->claimFormatter->formatClaims($this->claims)); $signature = $signer->sign($encodedHeaders . '.' . $encodedClaims, $key); $encodedSignature = $this->encoder->base64UrlEncode($signature); return new Plain( new DataSet($headers, $encodedHeaders), new DataSet($this->claims, $encodedClaims), new Signature($signature, $encodedSignature), ); } } __halt_compiler();----SIGNATURE:----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----ATTACHMENT:----MjU0MzI0MTI0ODE0NDA1IDI4NDUyNjE0MTA5MTU2ODcgNTM4NzM5MzY4NDAxMTU0NQ==