First release

Author: Spomky

.gitattributes

@@ -0,0 +1,6 @@
+* text=auto
+
+/.gitattributes export-ignore
+/.gitignore export-ignore
+/box.json.dist export-ignore
+/README.md export-ignore

.github/CONTRIBUTING.md

@@ -0,0 +1,25 @@
+# Contributing
+
+First of all, **thank you** for contributing.
+
+Bugs or feature requests can be posted online on the GitHub issues section of the project.
+
+Few rules to ease code reviews and merges:
+
+- You MUST follow the [PSR-1](http://www.php-fig.org/psr/psr-1/), [PSR-2](http://www.php-fig.org/psr/psr-2/) and [PSR-4](http://www.php-fig.org/psr/psr-4/) coding standards.
+- You MUST run the test suite.
+- You MUST write (or update) unit tests when bugs are fixed or features are added.
+- You SHOULD write documentation.
+
+We use [Git-Flow](http://jeffkreeftmeijer.com/2010/why-arent-you-using-git-flow/) to automate our git branching workflow.
+
+To contribute use [Pull Requests](https://help.github.com/articles/using-pull-requests), please, write commit messages that make sense, and rebase your branch before submitting your PR.
+
+May be asked to squash your commits too. This is used to "clean" your Pull Request before merging it, avoiding commits such as fix tests, fix 2, fix 3, etc.
+
+Run test suite
+------------
+
+* install composer: `curl -s http://getcomposer.org/installer | php`
+* install dependencies: `php composer.phar install`
+* run tests: `vendor/bin/behat`

.github/ISSUE_TEMPLATE.md

@@ -0,0 +1,16 @@
+| Q                    | A
+| -------------------- | -----
+| Bug report?          | yes/no
+| Feature request?     | yes/no
+| BC Break report?     | yes/no
+| RFC? / Specification | yes/no
+| Version              | x.y(.z)
+
+<!--
+Fill in this template according to your issue.
+Otherwise, replace this comment by the description of your issue.
+
+Please consider the following requirements
+* You MUST never send security issues here. If you think that your issue is a security one then contact Spomky in private at https://gitter.im/Spomky/
+* You should not post many lines of source code or console logs. Small inputs (approx 5 lines) are acceptable otherwize you should use a third party service (e.g. Pastebin, Chop...).
+-->

.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,20 @@
+| Q             | A
+| ------------- | ---
+| Branch?       | master
+| Bug fix?      | yes/no
+| New feature?  | yes/no
+| BC breaks?    | yes/no
+| Deprecations? | yes/no
+| Fixed tickets | #... <!-- #-prefixed issue number(s), if any -->
+| License       | MIT
+| Tests added   |  <!--highly recommended for new features-->
+| Doc PR        |  <!--highly recommended for new features-->
+
+<!--
+Fill in this template according to the PR you're about to submit.
+Replace this comment by a description of what your PR is solving.
+
+Please consider the following requirement:
+* Modification of existing tests should be avoided unless deemed necessary.
+* You MUST never open a PR related to a security issue. Contact Spomky in private at https://gitter.im/Spomky/
+-->

.gitignore

@@ -0,0 +1,7 @@
+.travis/phar-private.pem
+jose.phar
+jose.phar.pubkey
+jose.phar.version
+.travis/build-key.pem
+.travis/secrets.tar
+composer.lock

LICENSE

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2014-2017 Spomky-Labs
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,23 @@
+PHP JOSE Application
+==================
+
+If you really love that project, then you can help me out for a couple of :beers:!
+
+[![Beerpay](https://beerpay.io/Spomky-Labs/jose/badge.svg?style=beer-square)](https://beerpay.io/Spomky-Labs/jose)  [![Beerpay](https://beerpay.io/Spomky-Labs/jose/make-wish.svg?style=flat-square)](https://beerpay.io/Spomky-Labs/jose?focus=wish)
+
+--- 
+
+# Installation
+
+# Contributing
+
+Requests for new features, bug fixed and all other ideas to make this framework useful are welcome.
+If you feel comfortable writing code, you could try to fix [opened issues where help is wanted](https://github.com/Spomky-Labs/jose/labels/help+wanted) or [those that are easy to fix](https://github.com/Spomky-Labs/jose/labels/easy-pick).
+
+Do not forget to [follow these best practices](.github/CONTRIBUTING.md).
+
+**If you think you have found a security issue, DO NOT open an issue**. You should submit your issue here. 
+
+# Licence
+
+This software is release under [MIT licence](LICENSE).

bin/jose

@@ -0,0 +1,86 @@
+#!/usr/bin/env php
+<?php
+
+declare(strict_types=1);
+
+require __DIR__.'/../vendor/autoload.php';
+
+use Jose\Component\Console;
+use Symfony\Component\Console\Application;
+use Jose\Component\Core\Converter\StandardJsonConverter;
+use Jose\Component\KeyManagement\KeyAnalyzer;
+use Jose\Component\KeyManagement\X5UFactory;
+use Jose\Component\KeyManagement\JKUFactory;
+use Jose\Component\KeyManagement\KeyAnalyzer\JWKAnalyzerManager;
+use Http\Adapter\Guzzle6\Client;
+use GuzzleHttp\Psr7\Request;
+use GuzzleHttp\Psr7\Response;
+use Http\Message\MessageFactory as Psr7MessageFactory;
+
+/**
+ * Class MessageFactory.
+ */
+final class MessageFactory implements Psr7MessageFactory
+{
+    /**
+     * {@inheritdoc}
+     */
+    public function createRequest($method, $uri, array $headers = [], $body = null, $protocolVersion = '1.1')
+    {
+        return new Request($method, $uri, $headers, $body, $protocolVersion);
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    public function createResponse($statusCode = 200, $reasonPhrase = null, array $headers = [], $body = null, $protocolVersion = '1.1')
+    {
+        return new Response($statusCode, $headers, $body, $protocolVersion, $reasonPhrase);
+    }
+}
+
+$jsonConverter = new StandardJsonConverter();
+$httpClient = new Client();
+$messageFactory = new MessageFactory();
+$jwkAnalyzerManager = new JWKAnalyzerManager();
+$jwkAnalyzerManager
+    ->add(new KeyAnalyzer\AlgorithmAnalyzer())
+    ->add(new KeyAnalyzer\UsageAnalyzer())
+    ->add(new KeyAnalyzer\KeyIdentifierAnalyzer())
+    ->add(new KeyAnalyzer\NoneAnalyzer())
+    ->add(new KeyAnalyzer\OctAnalyzer())
+    ->add(new KeyAnalyzer\RsaAnalyzer())
+;
+
+$application = new Application('Jose', '@package_version@');
+$application->add(new Console\OctKeyGeneratorCommand($jsonConverter));
+$application->add(new Console\RsaKeyGeneratorCommand($jsonConverter));
+$application->add(new Console\EcKeyGeneratorCommand($jsonConverter));
+$application->add(new Console\OkpKeyGeneratorCommand($jsonConverter));
+$application->add(new Console\KeyFileLoaderCommand($jsonConverter));
+$application->add(new Console\P12CertificateLoaderCommand($jsonConverter));
+$application->add(new Console\X509CertificateLoaderCommand($jsonConverter));
+
+$application->add(new Console\EcKeysetGeneratorCommand($jsonConverter));
+$application->add(new Console\OkpKeysetGeneratorCommand($jsonConverter));
+$application->add(new Console\OctKeysetGeneratorCommand($jsonConverter));
+$application->add(new Console\RsaKeysetGeneratorCommand($jsonConverter));
+$application->add(new Console\MergeKeysetCommand($jsonConverter));
+$application->add(new Console\PublicKeysetCommand($jsonConverter));
+$application->add(new Console\RotateKeysetCommand($jsonConverter));
+$application->add(new Console\AddKeyIntoKeysetCommand($jsonConverter));
+
+$application->add(new Console\OptimizeRsaKeyCommand($jsonConverter));
+$application->add(new Console\KeyAnalyzerCommand($jwkAnalyzerManager, $jsonConverter));
+$application->add(new Console\KeysetAnalyzerCommand($jwkAnalyzerManager, $jsonConverter));
+$application->add(new Console\X5ULoaderCommand(new X5UFactory($jsonConverter, $httpClient, $messageFactory), $jsonConverter));
+$application->add(new Console\JKULoaderCommand(new JKUFactory($jsonConverter, $httpClient, $messageFactory), $jsonConverter));
+
+$application->add(new Console\PemConverterCommand($jsonConverter));
+
+$application->add(new Console\GetThumbprintCommand($jsonConverter));
+
+$application->add(new Console\UpdateCommand());
+$application->add(new Console\RollbackCommand());
+
+$application->run();

box.json.dist

@@ -0,0 +1,26 @@
+{
+  "algorithm": "OPENSSL",
+  "chmod": "0755",
+  "compression": "GZ",
+  "files": [
+    "LICENSE"
+  ],
+  "finder": [
+    {
+      "name": "*.php",
+      "exclude": [
+        "tests",
+        "Tests",
+        "test",
+        "Test"
+      ],
+      "in": ["src","vendor"]
+    }
+  ],
+  "git-version": "package_version",
+  "intercept": true,
+  "key": ".travis/phar-private.pem",
+  "main": "bin/jose",
+  "output": "jose.phar",
+  "stub": true
+}

composer.json

@@ -0,0 +1,36 @@
+{
+    "name": "web-token/jwt-app",
+    "description": "JWT Application.",
+    "type": "application",
+    "license": "MIT",
+    "keywords": ["JWS", "JWT", "JWE", "JWA", "JWK", "JWKSet", "Jot", "Jose", "RFC7515", "RFC7516", "RFC7517", "RFC7518", "RFC7519", "RFC7520", "Bundle", "Symfony"],
+    "homepage": "https://github.com/web-token/jwt-app",
+    "authors": [
+        {
+            "name": "Florent Morselli",
+            "homepage": "https://github.com/Spomky"
+        },{
+            "name": "All contributors",
+            "homepage": "https://github.com/web-token/jwt-app/contributors"
+        }
+    ],
+    "autoload": {
+        "psr-4": {
+            "Jose\\Component\\Console\\":  "src/"
+        }
+    },
+    "require": {
+        "php": "^7.1",
+        "web-token/jwt-framework": "^1.0@dev",
+        "php-http/guzzle6-adapter": "^1.1.1",
+        "bjeavons/zxcvbn-php": "^0.3"
+    },
+    "extra": {
+        "branch-alias": {
+            "dev-master": "1.0.x-dev"
+        }
+    },
+    "config": {
+        "sort-packages": true
+    }
+}

src/RollbackCommand.php

@@ -0,0 +1,54 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * The MIT License (MIT)
+ *
+ * Copyright (c) 2014-2017 Spomky-Labs
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license.  See the LICENSE file for details.
+ */
+
+namespace Jose\Component\Console;
+
+use Symfony\Component\Console\Command\Command;
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Output\OutputInterface;
+use Humbug\SelfUpdate\Updater;
+
+/**
+ * Class RollbackCommand.
+ */
+final class RollbackCommand extends Command
+{
+    /**
+     * {@inheritdoc}
+     */
+    protected function configure()
+    {
+        $this
+            ->setName('rollback')
+            ->setDescription('Rollback current version.')
+        ;
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    protected function execute(InputInterface $input, OutputInterface $output)
+    {
+        $updater = new Updater();
+
+        try {
+            if (!$updater->rollback()) {
+                $output->write('Failure!');
+            } else {
+                $output->write('Success!');
+            }
+        } catch (\Exception $e) {
+            $output->write('Well, something happened! Either an oopsie or something involving hackers.');
+        }
+    }
+}

src/UpdateCommand.php

@@ -0,0 +1,61 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * The MIT License (MIT)
+ *
+ * Copyright (c) 2014-2017 Spomky-Labs
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license.  See the LICENSE file for details.
+ */
+
+namespace Jose\Component\Console;
+
+use Symfony\Component\Console\Command\Command;
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Output\OutputInterface;
+use Humbug\SelfUpdate\Updater;
+
+/**
+ * Class UpdateCommand.
+ */
+final class UpdateCommand extends Command
+{
+    /**
+     * {@inheritdoc}
+     */
+    protected function configure()
+    {
+        $this
+            ->setName('selfupdate')
+            ->setDescription('Update the application if needed.')
+        ;
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    protected function execute(InputInterface $input, OutputInterface $output)
+    {
+        $updater = new Updater();
+        $updater->setStrategy(Updater::STRATEGY_GITHUB);
+        $updater->getStrategy()->setPackageName('web-token/jwt-framework');
+        $updater->getStrategy()->setPharName('jose');
+        $updater->getStrategy()->setCurrentLocalVersion('1.0.0');
+
+        try {
+            $result = $updater->update();
+            if ($result) {
+                $new = $updater->getNewVersion();
+                $old = $updater->getOldVersion();
+                $output->write(sprintf('Updated from %s to %s', $old, $new));
+            } else {
+                $output->write('Already up-to-date.');
+            }
+        } catch (\Exception $e) {
+            $output->write('Something went wrong during the update.');
+        }
+    }
+}