PHPackages wannabe-pro/openid-connect - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. wannabe-pro/openid-connect ActiveLibrary wannabe-pro/openid-connect ========================== Bare-bones OpenID Connect client 0.0.4(6y ago)015.5kMITPHPPHP >=5.5CI failing Since Oct 2Pushed 6y ago1 watchersCompare [ Source](https://github.com/wannabe-pro/openid-connect)[ Packagist](https://packagist.org/packages/wannabe-pro/openid-connect)[ RSS](/packages/wannabe-pro-openid-connect/feed)WikiDiscussions master Synced today READMEChangelog (4)Dependencies (3)Versions (5)Used By (0) This is fork of [jumbojett/openid-connect-php](https://github.com/jumbojett/OpenID-Connect-PHP) PHP OpenID Connect Basic Client =============================== [](#php-openid-connect-basic-client) A simple library that allows an application to authenticate a user through the basic OpenID Connect flow. This library hopes to encourage OpenID Connect use by making it simple enough for a developer with little knowledge of the OpenID Connect protocol to setup authentication. A special thanks goes to Justin Richer and Amanda Anganes for their help and support of the protocol. Requirements ============ [](#requirements) 1. PHP 5.4 or greater 2. CURL extension 3. JSON extension Install ------- [](#install) 1. Install library using composer ``` composer require wannabe-pro/openid-connect ``` 2. Include composer autoloader ``` require __DIR__ . '/vendor/autoload.php'; ``` Example 1: Basic Client ----------------------- [](#example-1-basic-client) ``` use WannaBaPro\OpenIDConnect; $oidc = new CLient('https://id.provider.com', 'ClientIDHere', 'ClientSecretHere'); $oidc->setCertPath('/path/to/my.cert'); $oidc->authenticate(); $name = $oidc->requestUserInfo('given_name'); ``` [See openid spec for available user attributes](http://openid.net/specs/openid-connect-basic-1_0-15.html#id_res) Example 2: Dynamic Registration ------------------------------- [](#example-2-dynamic-registration) ``` use WannaBaPro\OpenIDConnect; $oidc = new Client("https://id.provider.com"); $oidc->register(); $client_id = $oidc->getClientID(); $client_secret = $oidc->getClientSecret(); // Be sure to add logic to store the client id and client secret ``` Example 3: Network and Security ------------------------------- [](#example-3-network-and-security) ``` // Configure a proxy $oidc->setHttpProxy("http://my.proxy.com:80/"); // Configure a cert $oidc->setCertPath("/path/to/my.cert"); ``` Example 4: Request Client Credentials Token ------------------------------------------- [](#example-4-request-client-credentials-token) ``` use WannaBaPro\OpenIDConnect; $oidc = new Client('https://id.provider.com', 'ClientIDHere', 'ClientSecretHere'); $oidc->providerConfigParam(array('token_endpoint'=>'https://id.provider.com/connect/token')); $oidc->addScope('my_scope'); // this assumes success (to validate check if the access_token property is there and a valid JWT) : $clientCredentialsToken = $oidc->requestClientCredentialsToken()->access_token; ``` Example 5: Request Resource Owners Token (with client auth) ----------------------------------------------------------- [](#example-5-request-resource-owners-token-with-client-auth) ``` use WannaBaPro\OpenIDConnect; $oidc = new Client('https://id.provider.com', 'ClientIDHere', 'ClientSecretHere'); $oidc->providerConfigParam(array('token_endpoint'=>'https://id.provider.com/connect/token')); $oidc->addScope('my_scope'); //Add username and password $oidc->addAuthParam(array('username'=>'')); $oidc->addAuthParam(array('password'=>'')); //Perform the auth and return the token (to validate check if the access_token property is there and a valid JWT) : $token = $oidc->requestResourceOwnerToken(TRUE)->access_token; ``` Example 6: Basic client for implicit flow e.g. with Azure AD B2C (see [http://openid.net/specs/openid-connect-core-1\_0.html#ImplicitFlowAuth](http://openid.net/specs/openid-connect-core-1_0.html#ImplicitFlowAuth)) ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- [](#example-6-basic-client-for-implicit-flow-eg-with-azure-ad-b2c-see-httpopenidnetspecsopenid-connect-core-1_0htmlimplicitflowauth) ``` use WannaBaPro\OpenIDConnect; $oidc = new Client('https://id.provider.com', 'ClientIDHere', 'ClientSecretHere'); $oidc->setResponseTypes(array('id_token')); $oidc->addScope(array('openid')); $oidc->setAllowImplicitFlow(true); $oidc->addAuthParam(array('response_mode' => 'form_post')); $oidc->setCertPath('/path/to/my.cert'); $oidc->authenticate(); $sub = $oidc->getVerifiedClaims('sub'); ``` Example 7: Introspection of an access token (see ) --------------------------------------------------------------------------------------- [](#example-7-introspection-of-an-access-token-see-httpstoolsietforghtmlrfc7662) ``` use WannaBaPro\OpenIDConnect; $oidc = new Client('https://id.provider.com', 'ClientIDHere', 'ClientSecretHere'); $data = $oidc->introspectToken('an.access-token.as.given'); if (!$data->active) { // the token is no longer usable } ``` Development Environments ------------------------ [](#development-environments) In some cases you may need to disable SSL security on on your development systems. Note: This is not recommended on production systems. ``` $oidc->setVerifyHost(false); $oidc->setVerifyPeer(false); ``` ### Todo [](#todo) - Dynamic registration does not support registration auth tokens and endpoints Contributing ------------ [](#contributing) - All pull requests, once merged, should be added to the changelog.md file. ### Health Score 26 — LowBetter than 43% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity19 Limited adoption so far Community7 Small or concentrated contributor base Maturity46 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~12 days Total 4 Last Release 2376d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/a65625dd6c39c967b7ba30f0ec54c67c13fe5d0a6af9008c440b90f25f1689dd?d=identicon)[lar-dragon](/maintainers/lar-dragon) --- Top Contributors [![lar-dragon](https://avatars.githubusercontent.com/u/7447335?v=4)](https://github.com/lar-dragon "lar-dragon (8 commits)") --- Tags OpenId ### Code Quality TestsPHPUnit ### Embed Badge ![Health badge](/badges/wannabe-pro-openid-connect/health.svg) ``` [![Health](https://phpackages.com/badges/wannabe-pro-openid-connect/health.svg)](https://phpackages.com/packages/wannabe-pro-openid-connect) ``` ### Alternatives [hybridauth/hybridauth PHP Social Authentication Library 3.4k8.5M93](/packages/hybridauth-hybridauth)[auth0/auth0-php PHP SDK for Auth0 Authentication and Management APIs. 40820.2M67](/packages/auth0-auth0-php)[opauth/opauth Multi-provider authentication framework for PHP 1.6k783.4k58](/packages/opauth-opauth)[yiisoft/yii2-authclient External authentication via OAuth and OpenID for the Yii framework 4676.2M179](/packages/yiisoft-yii2-authclient)[auth0/login Auth0 Laravel SDK. Straight-forward and tested methods for implementing authentication, and accessing Auth0's Management API endpoints. 2745.0M3](/packages/auth0-login)[auth0/symfony Symfony SDK for Auth0 Authentication and Management APIs. 128738.1k](/packages/auth0-symfony) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)