Check our docs page to get a complete guide on how to install it in an existing project or download a pre configured seedproject:
- Regular webapp: https://auth0.com/docs/quickstart/webapp/php/
- Web API: https://auth0.com/docs/quickstart/backend/php/
If you find something wrong in our docs, PR are welcome in our docs repo: https://github.com/auth0/docs
require __DIR__ . '/vendor/autoload.php';
use Auth0\SDK\Auth0;
$domain = 'YOUR_NAMESPACE';
$client_id = 'YOUR_CLIENT_ID';
$client_secret = 'YOUR_CLIENT_SECRET';
$redirect_uri = 'http://YOUR_APP/callback';
$auth0 = new Auth0(array(
'domain' => $domain,
'client_id' => $client_id,
'client_secret' => $client_secret,
'redirect_uri' => $redirect_uri
));
$profile = $auth0->getUser();
if (!$userInfo) {
$authorize_url = "https://$domain/authorize?response_type=code&scope=openid&client_id=$client_id&redirect_uri=http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'] ;
header("Location: $authorize_url");
exit;
}
var_dump($profile);
For more info, check the quickstart docs for Regular webapp and Web API.
require __DIR__ . '/vendor/autoload.php';
use Auth0\SDK\Auth0Api;
$token = "eyJhbGciO....eyJhdWQiOiI....1ZVDisdL...";
$domain = "account.auth0.com";
$auth0Api = new Auth0Api($token, $domain);
$usersList = $auth0Api->users->search([ "q" => "email@test.com" ]);
var_dump($usersList);
require __DIR__ . '/vendor/autoload.php';
use Auth0\SDK\Auth0AuthApi;
$domain = "account.auth0.com";
$client_id = '...';
$client_secret = '...'; // This is optional, only needed for impersonation or t fetch an access token
$auth0Api = new Auth0AuthApi($domain, $client_id, $client_secret);
$tokens = $auth0Api->authorize_with_ro('theemail@test.com','thepassword');
$access_token = $auth0Api->get_access_token();
I am getting
curl error 60: SSL certificate problem: self signed certificate in certificate chainon Windows
This is a common issue with latest PHP versions under windows (related to a incompatibility between windows and openssl CAs database).
- download this CAs database
https://curl.haxx.se/ca/cacert.pemtoc:/cacert.pem - you need to edit your php.ini and add
openssl.capath=c:/cacert.pem(it should point to the file you downloaded)
- The version 2.x of the PHP SDK was updated to work with Guzzle 6.1. For compatibility with Guzzle 5, you should use 1.x branch.
- The version 1.x of the PHP SDK now works with the Auth API v2 which adds lots of new features and changes.
- Now the SDK supports RS256 codes, it will decode using the
.well-known/jwks.jsonendpoint to fetch the public key
- SDK api changes, now the Auth0 API client is not build of static clases anymore. Usage example:
$token = "eyJhbGciO....eyJhdWQiOiI....1ZVDisdL...";
$domain = "account.auth0.com";
$guzzleOptions = [ ... ];
$auth0Api = new \Auth0\SDK\Auth0Api($token, $domain, $guzzleOptions); /* $guzzleOptions is optional */
$usersList = $auth0Api->users->search([ "q" => "email@test.com" ]);
- Now the SDK fetches the user using the
tokeninfoendpoint to be fully compliant with the openid spec - Now the SDK supports RS256 codes, it will decode using the
.well-known/jwks.jsonendpoint to fetch the public key
- Session storage now returns null (and null is expected by the sdk) if there is no info stored (this change was made since false is a valid value to be stored in session).
- Guzzle 6.1 required
- Now, all the SDK is under the namespace
\Auth0\SDK - The exceptions were moved to the namespace
\Auth0\SDK\Exceptions - The method
Auth0::getUserInfois deprecated and soon to be removed. We encourage to useAuth0::getUserto enforce the adoption of the API v2
- The Auth0 class, now provides two methods to access the user metadata,
getUserMetadataandgetAppMetadata. For more info, check the API v2 changes - The Auth0 class, now provides a way to update the UserMetadata with the method
updateUserMetadata. Internally, it uses the update user endpoint, check the method documentation for more info. - The new service
\Auth0\SDK\API\ApiUsersprovides an easy way to consume the API v2 Users endpoints. - A simple API client (
\Auth0\SDK\API\ApiClient) is also available to use. - A JWT generator and decoder is also available (
\Auth0\SDK\Auth0JWT) - Now provides an interface for the Authentication API.
Note: API V2 restrict the access to the endpoints via scopes. By default, the user token has granted certain scopes that let update the user metadata but not the root attributes nor app_metadata. To update this information and access another endpoints, you need an special token with this scopes granted. For more information about scopes, check the API v2 docs.
Check the basic-oauth example to see a quick demo on how the sdk works.
You just need to create a .env file with the following information:
AUTH0_CLIENT_SECRET=YOUR_APP_SECRET
AUTH0_CLIENT_ID=YOU_APP_CLIENT
AUTH0_DOMAIN=YOUR_DOMAIN.auth0.com
AUTH0_CALLBACK_URL=http://localhost:3000/index.php
AUTH0_APPTOKEN=A_VALID_APPTOKEN_WITH_CREATE_USER_SCOPE
You will get your app client and secret from your Auth0 app you had created.
The auth0 domain, is the one you pick when you created your auth0 account.
You need to set this callback url in your app allowed callbacks.
The app token is used in the 'create user' page and needs create:users scope. To create one, you need to use the token generator in the API V2 documentation page
To run the example, you need composer (the PHP package manager) installed (you can find more info about composer here) and run the following commands on the same folder than the code.
$ composer install
$ php -S localhost:3000
- If you use Guzzle (or some other dependency does), you will need to update it to work with Guzzle 6.1.
- First is important to read the API v2 changes document to catch up the latest changes to the API.
- Update your composer.json file.
- change the version "auth0/auth0-php": "~1.0"
- add the new dependency "firebase/php-jwt" : "dev-master"
- Now the SDK is PSR-4 compliant so you will need to change the namespaces (sorry :( ) to
\Auth0\SDK - The method
getUserInfois deprecated and candidate to be removed on the next release. UsergetUserinstead.getUserreturns an User object compliant with API v2 which is astdClass(check the schema here)
- GLOBAL_CLIENT_ID
- GLOBAL_CLIENT_SECRET
- DOMAIN
This SDK uses Composer to manage its dependencies.
- Install dependencies
- Start your web server on
examples/{example-name}folder. - Create an OpenID Connect Application on Auth0.
- Configure the callback url to point
{your-base-url}\callback.php. - Open
examples/{example-name}/config.phpand replace all placeholder parameters. - On your browser, open the Auth0 example project. Make sure
index.phpis being loaded.
Auth0 helps you to:
- Add authentication with multiple authentication sources, either social like Google, Facebook, Microsoft Account, LinkedIn, GitHub, Twitter, Box, Salesforce, amont others, or enterprise identity systems like Windows Azure AD, Google Apps, Active Directory, ADFS or any SAML Identity Provider.
- Add authentication through more traditional username/password databases.
- Add support for linking different user accounts with the same user.
- Support for generating signed Json Web Tokens to call your APIs and flow the user identity securely.
- Analytics of how, when and where users are logging in.
- Pull data from other sources and add it to the user profile, through JavaScript rules.
- Go to Auth0 and click Sign Up.
- Use Google, GitHub or Microsoft Account to login.
If you have found a bug or if you have a feature request, please report them at this repository issues section. Please do not report security vulnerabilities on the public GitHub issue tracker. The Responsible Disclosure Program details the procedure for disclosing security issues.
This project is licensed under the MIT license. See the LICENSE file for more info.