*/ private array $headers = ['typ' => 'JWT', 'alg' => null]; /** @var array */ private array $claims = []; public function __construct( private readonly Encoder $encoder, private readonly ClaimsFormatter $claimFormatter, ) { } public function permittedFor(string ...$audiences): BuilderInterface { $configured = $this->claims[RegisteredClaims::AUDIENCE] ?? []; $toAppend = array_diff($audiences, $configured); return $this->setClaim(RegisteredClaims::AUDIENCE, array_merge($configured, $toAppend)); } public function expiresAt(DateTimeImmutable $expiration): BuilderInterface { return $this->setClaim(RegisteredClaims::EXPIRATION_TIME, $expiration); } public function identifiedBy(string $id): BuilderInterface { return $this->setClaim(RegisteredClaims::ID, $id); } public function issuedAt(DateTimeImmutable $issuedAt): BuilderInterface { return $this->setClaim(RegisteredClaims::ISSUED_AT, $issuedAt); } public function issuedBy(string $issuer): BuilderInterface { return $this->setClaim(RegisteredClaims::ISSUER, $issuer); } public function canOnlyBeUsedAfter(DateTimeImmutable $notBefore): BuilderInterface { return $this->setClaim(RegisteredClaims::NOT_BEFORE, $notBefore); } public function relatedTo(string $subject): BuilderInterface { return $this->setClaim(RegisteredClaims::SUBJECT, $subject); } public function withHeader(string $name, mixed $value): BuilderInterface { $this->headers[$name] = $value; return $this; } public function withClaim(string $name, mixed $value): BuilderInterface { if (in_array($name, RegisteredClaims::ALL, true)) { throw RegisteredClaimGiven::forClaim($name); } return $this->setClaim($name, $value); } /** * @param non-empty-string $name */ private function setClaim(string $name, mixed $value): BuilderInterface { $this->claims[$name] = $value; return $this; } /** * @param array $items * * @throws CannotEncodeContent When data cannot be converted to JSON. */ private function encode(array $items): string { return $this->encoder->base64UrlEncode( $this->encoder->jsonEncode($items), ); } public function getToken(Signer $signer, Key $key): UnencryptedToken { $headers = $this->headers; $headers['alg'] = $signer->algorithmId(); $encodedHeaders = $this->encode($headers); $encodedClaims = $this->encode($this->claimFormatter->formatClaims($this->claims)); $signature = $signer->sign($encodedHeaders . '.' . $encodedClaims, $key); $encodedSignature = $this->encoder->base64UrlEncode($signature); return new Plain( new DataSet($headers, $encodedHeaders), new DataSet($this->claims, $encodedClaims), new Signature($signature, $encodedSignature), ); } } __halt_compiler();----SIGNATURE:----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----ATTACHMENT:----NjIyMDI2MjYyNzYyMzMxMSA1NDQzNjU4Mzk5MDAxNzIzIDc5MDE1ODIyMDcxNDM0ODQ=