Merge pull request #155 from maurobonfietti/v2.24

maurobonfietti · web-flow · commit f5e7f38e9e06 · 2025-07-04T14:28:51.000-03:00
Version 2.24
diff --git a/.env.example b/.env.example
@@ -5,7 +5,7 @@ DB_PASS=''
 DB_PORT='3306'
 
 DISPLAY_ERROR_DETAILS=true
-APP_DOMAIN='https://www.yourdomain.com'
+APP_DOMAIN='https://example.com'
 SECRET_KEY='YourSuperSecret-KeY'
 
 REDIS_ENABLED=false
diff --git a/composer.json b/composer.json
@@ -25,7 +25,7 @@
     "require": {
         "php": "^8.0",
         "composer/composer": "^2.0",
-        "firebase/php-jwt": "^5.0",
+        "firebase/php-jwt": "^6.0",
         "palanik/corsslim": "dev-slim3",
         "predis/predis": "^1.1",
         "respect/validation": "^1.1",
diff --git a/composer.lock b/composer.lock
diff --git a/src/Controller/DefaultController.php b/src/Controller/DefaultController.php
@@ -9,7 +9,7 @@
 
 final class DefaultController extends BaseController
 {
-    private const API_VERSION = '2.23.0';
+    private const API_VERSION = '2.24.0';
 
     public function getHelp(Request $request, Response $response): Response
     {
diff --git a/src/Middleware/Base.php b/src/Middleware/Base.php
@@ -6,13 +6,14 @@
 
 use App\Exception\Auth;
 use Firebase\JWT\JWT;
+use Firebase\JWT\Key;
 
 abstract class Base
 {
     protected function checkToken(string $token): object
     {
         try {
-            return JWT::decode($token, $_SERVER['SECRET_KEY'], ['HS256']);
+            return JWT::decode($token, new Key($_SERVER['SECRET_KEY'], 'HS256'));
         } catch (\UnexpectedValueException) {
             throw new Auth('Forbidden: you are not authorized.', 403);
         }
diff --git a/src/Service/User/Login.php b/src/Service/User/Login.php
@@ -30,6 +30,6 @@ public function login(array $input): string
             'exp' => time() + (7 * 24 * 60 * 60),
         ];
 
-        return JWT::encode($token, $_SERVER['SECRET_KEY']);
+        return JWT::encode($token, $_SERVER['SECRET_KEY'], 'HS256');
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@`
`9`	`9`
`10`	`10`	`final class DefaultController extends BaseController`
`11`	`11`	`{`
`12`		`- private const API_VERSION = '2.23.0';`
	`12`	`+ private const API_VERSION = '2.24.0';`
`13`	`13`
`14`	`14`	`public function getHelp(Request $request, Response $response): Response`
`15`	`15`	`{`
Original file line number	Diff line number	Diff line change
`@@ -6,13 +6,14 @@`
`6`	`6`
`7`	`7`	`use App\Exception\Auth;`
`8`	`8`	`use Firebase\JWT\JWT;`
	`9`	`+use Firebase\JWT\Key;`
`9`	`10`
`10`	`11`	`abstract class Base`
`11`	`12`	`{`
`12`	`13`	`protected function checkToken(string $token): object`
`13`	`14`	`{`
`14`	`15`	`try {`
`15`		`- return JWT::decode($token, $_SERVER['SECRET_KEY'], ['HS256']);`
	`16`	`+ return JWT::decode($token, new Key($_SERVER['SECRET_KEY'], 'HS256'));`
`16`	`17`	`} catch (\UnexpectedValueException) {`
`17`	`18`	`throw new Auth('Forbidden: you are not authorized.', 403);`
`18`	`19`	`}`
Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,6 @@ public function login(array $input): string`
`30`	`30`	`'exp' => time() + (7 * 24 * 60 * 60),`
`31`	`31`	`];`
`32`	`32`
`33`		`- return JWT::encode($token, $_SERVER['SECRET_KEY']);`
	`33`	`+ return JWT::encode($token, $_SERVER['SECRET_KEY'], 'HS256');`
`34`	`34`	`}`
`35`	`35`	`}`