[13.x] Allow firebase/php-jwt v7 (#1879)

* Allow firebase/php-jwt 7 too

* fix tests

---------

Co-authored-by: ziming <[email protected]>

Author: hafezdivandari

composer.json

@@ -17,7 +17,7 @@
         "php": "^8.2",
         "ext-json": "*",
         "ext-openssl": "*",
-        "firebase/php-jwt": "^6.4",
+        "firebase/php-jwt": "^6.4|^7.0",
         "illuminate/auth": "^11.35|^12.0",
         "illuminate/console": "^11.35|^12.0",
         "illuminate/container": "^11.35|^12.0",

tests/Unit/ApiTokenCookieFactoryTest.php

@@ -26,7 +26,7 @@ public function test_cookie_can_be_successfully_created()
             'secure' => true,
             'same_site' => 'lax',
         ]);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter(str_repeat('a', 32), 'aes-256-cbc');
         $factory = new ApiTokenCookieFactory($config, $encrypter);
 
         $cookie = $factory->make(1, 'token');
@@ -48,7 +48,7 @@ public function test_cookie_can_be_successfully_created_when_using_a_custom_encr
             'secure' => true,
             'same_site' => 'lax',
         ]);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter(str_repeat('a', 32), 'aes-256-cbc');
         $factory = new ApiTokenCookieFactory($config, $encrypter);
 
         $cookie = $factory->make(1, 'token');

tests/Unit/TokenGuardTest.php

@@ -159,7 +159,7 @@ public function test_users_may_be_retrieved_from_cookies_with_csrf_token_header(
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $clients->shouldReceive('findActive')
             ->with(1)
@@ -173,7 +173,7 @@ public function test_users_may_be_retrieved_from_cookies_with_csrf_token_header(
                 'aud' => 1,
                 'csrf' => 'token',
                 'exp' => Carbon::now()->addMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'), false)
+            ], $key, 'HS256'), false)
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);
@@ -191,7 +191,7 @@ public function test_users_may_be_retrieved_from_cookies_with_xsrf_token_header(
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $clients->shouldReceive('findActive')
             ->with(1)
@@ -205,7 +205,7 @@ public function test_users_may_be_retrieved_from_cookies_with_xsrf_token_header(
                 'aud' => 1,
                 'csrf' => 'token',
                 'exp' => Carbon::now()->addMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'), false)
+            ], $key, 'HS256'), false)
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);
@@ -223,7 +223,7 @@ public function test_cookie_xsrf_is_verified_against_csrf_token_header()
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $request = Request::create('/');
         $request->headers->set('X-CSRF-TOKEN', 'wrong_token');
@@ -233,7 +233,7 @@ public function test_cookie_xsrf_is_verified_against_csrf_token_header()
                 'aud' => 1,
                 'csrf' => 'token',
                 'exp' => Carbon::now()->addMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'))
+            ], $key, 'HS256'))
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);
@@ -248,7 +248,7 @@ public function test_cookie_xsrf_is_verified_against_xsrf_token_header()
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $request = Request::create('/');
         $request->headers->set('X-XSRF-TOKEN', $encrypter->encrypt('wrong_token', false));
@@ -258,7 +258,7 @@ public function test_cookie_xsrf_is_verified_against_xsrf_token_header()
                 'aud' => 1,
                 'csrf' => 'token',
                 'exp' => Carbon::now()->addMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'))
+            ], $key, 'HS256'))
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);
@@ -277,7 +277,7 @@ public function test_users_may_be_retrieved_from_cookies_with_xsrf_token_header_
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $clients->shouldReceive('findActive')
             ->with(1)
@@ -317,7 +317,7 @@ public function test_users_may_be_retrieved_from_cookies_without_encryption()
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $clients->shouldReceive('findActive')
             ->with(1)
@@ -353,7 +353,7 @@ public function test_xsrf_token_cookie_without_a_token_header_is_not_accepted()
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $request = Request::create('/');
         $request->cookies->set('XSRF-TOKEN', $encrypter->encrypt('token', false));
@@ -363,7 +363,7 @@ public function test_xsrf_token_cookie_without_a_token_header_is_not_accepted()
                 'aud' => 1,
                 'csrf' => 'token',
                 'exp' => Carbon::now()->addMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'))
+            ], $key, 'HS256'))
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);
@@ -378,7 +378,7 @@ public function test_expired_cookies_may_not_be_used()
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $request = Request::create('/');
         $request->headers->set('X-CSRF-TOKEN', 'token');
@@ -388,7 +388,7 @@ public function test_expired_cookies_may_not_be_used()
                 'aud' => 1,
                 'csrf' => 'token',
                 'exp' => Carbon::now()->subMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'))
+            ], $key, 'HS256'))
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);
@@ -403,7 +403,7 @@ public function test_csrf_check_can_be_disabled()
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $clients->shouldReceive('findActive')
             ->with(1)
@@ -417,7 +417,7 @@ public function test_csrf_check_can_be_disabled()
                 'sub' => 1,
                 'aud' => 1,
                 'exp' => Carbon::now()->addMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'), false)
+            ], $key, 'HS256'), false)
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);
@@ -528,7 +528,7 @@ public function test_clients_may_be_retrieved_from_cookies()
         $resourceServer = m::mock(ResourceServer::class);
         $userProvider = m::mock(PassportUserProvider::class);
         $clients = m::mock(ClientRepository::class);
-        $encrypter = new Encrypter(str_repeat('a', 16));
+        $encrypter = new Encrypter($key = str_repeat('a', 32), 'aes-256-cbc');
 
         $request = Request::create('/');
         $request->headers->set('X-CSRF-TOKEN', 'token');
@@ -538,7 +538,7 @@ public function test_clients_may_be_retrieved_from_cookies()
                 'aud' => 1,
                 'csrf' => 'token',
                 'exp' => Carbon::now()->addMinutes(10)->getTimestamp(),
-            ], str_repeat('a', 16), 'HS256'), false)
+            ], $key, 'HS256'), false)
         );
 
         $guard = new TokenGuard($resourceServer, $userProvider, $clients, $encrypter, $request);