<?php
declare(strict_types=1);
/*
* The MIT License (MIT)
*
* Copyright (c) 2014-2018 Spomky-Labs
*
* This software may be modified and distributed under the terms
* of the MIT license. See the LICENSE file for details.
*/
namespace Jose\Component\Core;
use Base64Url\Base64Url;
class JWK implements \JsonSerializable
{
/**
* @var array
*/
private $values = [];
/**
* JWK constructor.
*/
public function __construct(array $values)
{
if (!\array_key_exists('kty', $values)) {
throw new \InvalidArgumentException('The parameter "kty" is mandatory.');
}
$this->values = $values;
}
/**
* Creates a JWK object using the given values.
* The member "kty" is mandatory. Other members are NOT checked.
*
* @deprecated Will be removed in v2.0. Please use constructor instead
*
* @return JWK
*/
public static function create(array $values): self
{
return new self($values);
}
/**
* Creates a JWK object using the given Json string.
*
* @return JWK
*/
public static function createFromJson(string $json): self
{
$data = \json_decode($json, true);
if (!\is_array($data)) {
throw new \InvalidArgumentException('Invalid argument.');
}
return self::create($data);
}
/**
* Returns the values to be serialized.
*/
public function jsonSerialize()
{
return $this->values;
}
/**
* Get the value with a specific key.
*
* @param string $key The key
*
* @throws \InvalidArgumentException
*
* @return mixed|null
*/
public function get(string $key)
{
if (!$this->has($key)) {
throw new \InvalidArgumentException(\sprintf('The value identified by "%s" does not exist.', $key));
}
return $this->values[$key];
}
/**
* Returns true if the JWK has the value identified by.
*
* @param string $key The key
*/
public function has(string $key): bool
{
return \array_key_exists($key, $this->values);
}
/**
* Get all values stored in the JWK object.
*
* @return array Values of the JWK object
*/
public function all(): array
{
return $this->values;
}
/**
* Returns the thumbprint of the key.
*
* @see https://tools.ietf.org/html/rfc7638
*
* @throws \InvalidArgumentException
*/
public function thumbprint(string $hash_algorithm): string
{
if (!\in_array($hash_algorithm, \hash_algos(), true)) {
throw new \InvalidArgumentException(\sprintf('The hash algorithm "%s" is not supported.', $hash_algorithm));
}
$values = \array_intersect_key($this->values, \array_flip(['kty', 'n', 'e', 'crv', 'x', 'y', 'k']));
\ksort($values);
$input = \json_encode($values, JSON_UNESCAPED_SLASHES | JSON_UNESCAPED_UNICODE);
return Base64Url::encode(\hash($hash_algorithm, $input, true));
}
/**
* Returns the associated public key.
* This method has no effect for:
* - public keys
* - shared keys
* - unknown keys.
*
* Known keys are "oct", "RSA", "EC" and "OKP".
*
* @return JWK
*/
public function toPublic(): self
{
$values = \array_diff_key($this->values, \array_flip(['p', 'd', 'q', 'dp', 'dq', 'qi']));
return new self($values);
}
}
