59 lines
1.4 KiB
PHP
59 lines
1.4 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace Jose\Component\Checker;
|
|
|
|
use function in_array;
|
|
use function is_string;
|
|
|
|
/**
|
|
* This class is a header parameter and claim checker. When the "iss" header parameter or claim is present, it will
|
|
* check if the value is within the allowed ones.
|
|
*/
|
|
final class IssuerChecker implements ClaimChecker, HeaderChecker
|
|
{
|
|
private const CLAIM_NAME = 'iss';
|
|
|
|
public function __construct(
|
|
private readonly array $issuers,
|
|
private readonly bool $protectedHeader = false
|
|
) {
|
|
}
|
|
|
|
public function checkClaim(mixed $value): void
|
|
{
|
|
$this->checkValue($value, InvalidClaimException::class);
|
|
}
|
|
|
|
public function checkHeader(mixed $value): void
|
|
{
|
|
$this->checkValue($value, InvalidHeaderException::class);
|
|
}
|
|
|
|
public function supportedClaim(): string
|
|
{
|
|
return self::CLAIM_NAME;
|
|
}
|
|
|
|
public function supportedHeader(): string
|
|
{
|
|
return self::CLAIM_NAME;
|
|
}
|
|
|
|
public function protectedHeaderOnly(): bool
|
|
{
|
|
return $this->protectedHeader;
|
|
}
|
|
|
|
private function checkValue(mixed $value, string $class): void
|
|
{
|
|
if (! is_string($value)) {
|
|
throw new $class('Invalid value.', self::CLAIM_NAME, $value);
|
|
}
|
|
if (! in_array($value, $this->issuers, true)) {
|
|
throw new $class('Unknown issuer.', self::CLAIM_NAME, $value);
|
|
}
|
|
}
|
|
}
|