Jwt issue on Authentication

juliangorge · March 4, 2020, 2:31am

Hello there!
I’m very confused since long days trying to implement Login User System with oAuth2 (no social), so I apologize for disturbing you but I see a little lost.

I’ve read and read every page on web to how use the access_token and I’ve got no clear: Have I need an access_token always in the Authorization header?.

When I use this, always I get “guest” user from $this->getIdentity()->getName()

On module.php

public function onAuthentication(MvcAuthEvent $e)
{
    $guest = new GuestIdentity();
    $header = $e->getMvcEvent()->getRequest()->getHeader('Authorization');

    if(!$header) return $guest;

    $token = $header->getFieldValue();
    $jwt = new Jwt();
    $key = $this->serviceManager->get('config')['cryptoKey'];
    $tokenData = $jwt->decode($token, $key);

tokenData is false, cryptoKey is like auth-doc so return to guess identity.

<?php
return [
    //Social login
    'cryptoKey' => 'SOME SUPER SECRET PASSPHRASE HERE THAT YOU JUST MADE UP',

I’m assumming that AuthenticatedIdentity() storage the session data, is it right?
Thank you a lot.

Leafar_Avlis · March 5, 2020, 12:02am

can you put all your code, include GuestIdentity. Whats package is this Jwt from?

juliangorge · March 5, 2020, 1:57am

Thank you a lot for your answer.

Topic		Replies	Views
JWT and Api Tool Social Login API Tools	0	460	October 12, 2020
OpenID connect authentication using the authorization code flow API Tools	7	89	March 15, 2024
Zf-oauth2: I've got access_token. What's next? API Tools apigility	3	1183	September 5, 2019
OAuth2Adapter uses the token's 'user_id' as AuthenticatedIdentity's name property API Tools authentication	0	317	June 8, 2022
Zf3, apigility and oauth2 together don't works API Tools	8	923	September 7, 2019

Jwt issue on Authentication

Related Topics