claims = $claims; return $this; } /** * Attaches a user to the JWT being created and will automatically inject the * "user_uuid" key into the final claims array with the user's UUID. */ public function setUser(User $user): self { $this->user = $user; return $this; } public function setExpiresAt(\DateTimeImmutable $date): self { $this->expiresAt = $date; return $this; } public function setSubject(string $subject): self { $this->subject = $subject; return $this; } /** * Generate a new JWT for a given node. */ public function handle(Node $node, ?string $identifiedBy, string $algo = 'md5'): Plain { $identifier = hash($algo, $identifiedBy); $config = Configuration::forSymmetricSigner(new Sha256(), InMemory::plainText($node->getDecryptedKey())); $builder = $config->builder(new TimestampDates()) ->issuedBy(config('app.url')) ->permittedFor($node->getConnectionAddress()) ->identifiedBy($identifier) ->withHeader('jti', $identifier) ->issuedAt(CarbonImmutable::now()) ->canOnlyBeUsedAfter(CarbonImmutable::now()->subMinutes(5)); if ($this->expiresAt) { $builder = $builder->expiresAt($this->expiresAt); } if (!empty($this->subject)) { $builder = $builder->relatedTo($this->subject)->withHeader('sub', $this->subject); } foreach ($this->claims as $key => $value) { $builder = $builder->withClaim($key, $value); } if (!is_null($this->user)) { $builder = $builder ->withClaim('user_uuid', $this->user->uuid) // The "user_id" claim is deprecated and should not be referenced — it remains // here solely to ensure older versions of Wings are unaffected when the Panel // is updated. // // This claim will be removed in Panel@1.11 or later. ->withClaim('user_id', $this->user->id); } return $builder ->withClaim('unique_id', Str::random()) ->getToken($config->signer(), $config->signingKey()); } }