Signature Algorithms

This framework comes with several signature algorithms. These algorithms are in the following namespace: Jose\Component\Signature\Algorithm.

Algorithm

Description

HS256

HS384

HS512

HMAC with SHA-2 Functions

ES256

ES384

ES512

Elliptic Curve Digital Signature Algorithm (ECDSA)

RS256

RS384

RS512

RSASSA-PKCS1 v1_5

PS256

PS384

PS512

RSASSA-PSS

EdDSA (only with the Ed25519 curve)

Edwards-curve Digital Signature Algorithm (EdDSA)

none

Not a secure algorithm. Please use with caution

Experimental Algorithms

The following signature algorithms are experimental and must not be used in production unless you know what you are doing. They are proposed for testing purpose only.

They are provided through the package web-token/jwt-experimental.

Algorithm

Description

RS1

RSASSA-PKCS1 v1_5 with SHA-1 hashing function

HS1

HMAC with SHA-1 hashing function

HS256/64

HMAC with SHA-256 truncated to 64 bits

ES256K

Elliptic curve secp256k1 support

Blake2b

Blake2b MAC algorithm. Sodium extension required

How To Use

These algorithms have to be used with the Algorithm Manager. They do not need any arguments.

Example:

<?php

use Jose\Component\Core\AlgorithmManager;
use Jose\Component\Signature\Algorithm\PS256;
use Jose\Component\Signature\Algorithm\ES512;
use Jose\Component\Signature\Algorithm\None;

$algorithm_manager = new AlgorithmManager([
    new PS256(),
    new ES512(),
    new None(),
]);

PreviousSigned Tokens (JWS)NextJWS Creation

Last updated 13 days ago

Was this helpful?

hashtagExperimental Algorithms

hashtagHow To Use

Experimental Algorithms

How To Use