- Request / Response
- Performance
- Validator
- Forms
- Exception 1
- Logs 1
- Events
- Routing
- Cache
- Translation
- Security
- Twig
- HTTP Client
- Doctrine
- Migrations 1
- Debug
- Messages
- E-mails
- Notifications
-
JWT-Framework
- Configuration
Configuration Settings
Keys and Key Sets
Keys
This table lists all keys registered as service through the bundle configuration
or the Configuration Helper.
For each key, it shows the result of the analyze performed on the key.
| Service ID | Key | Analyze Result |
|---|---|---|
| No registered key | ||
Key Sets
This table lists all key sets registered as service through the bundle configuration
or the Configuration Helper.
For each key in the key sets, it shows the result of the analyze performed on that key.
| Service ID | keys | Analyze Result |
|---|---|---|
| No registered key set | ||
JWS
JWS Builders
The following table lists all JWS Builders declared as services in your application configuration
or using the Configuration Helper.
Builders directly created through the JWS Builder Factory cannot be listed.
| Service ID | Algorithms | |
|---|---|---|
| No builder | ||
Built Tokens
The following table list all tokens issued by the JWS Builders.
| Status | Built Token |
|---|
JWS Verifiers
The following table lists all JWS Verifiers declared as services in your application configuration
or using the Configuration Helper.
Verifiers directly created through the JWS Verifier Factory cannot be listed.
| Service ID | Algorithms |
|---|---|
| No verifier | |
Verified Tokens
The following tables list all tokens verified (or not) by the JWS Verifiers.
Failure reason is related to the key(s) used.
| Status | JWS | Key set | Detached Payload (optional) | Signature index / Exception | Key used for verification |
|---|
JWS Loaders
The following table lists all JWS Loaders declared as services in your application configuration
or using the Configuration Helper.
Loaders directly created through the JWS Loader Factory cannot be listed.
| Service ID | Serializers | Algorithms |
|---|---|---|
| No loader | ||
Available Signature Algorithms
The following table lists all signature algorithms available in this environment.
| Name | Alias | Message |
|---|---|---|
| ES256 | ES256 | |
| ES384 | ES384 | |
| ES512 | ES512 | |
| none | none | This algorithm is not secured. Please use with caution. |
| RS1 | RS1 | Experimental. Please use for testing purpose only. SHA-1 hashing function is not recommended. |
| ES256K | ES256K | |
| RS256 | RS256 | RSAES-PKCS1-v1_5 based algorithms are not recommended. |
| RS384 | RS384 | RSAES-PKCS1-v1_5 based algorithms are not recommended. |
| RS512 | RS512 | RSAES-PKCS1-v1_5 based algorithms are not recommended. |
| PS256 | PS256 | |
| PS384 | PS384 | |
| PS512 | PS512 | |
| EdDSA | EdDSA |
Available MAC Algorithms
The following table lists all MAC algorithms available in this environment.
| Name | Alias | Message |
|---|---|---|
| HS256 | HS256 | |
| HS384 | HS384 | |
| HS512 | HS512 | |
| HS1 | HS1 | This algorithm has known vulnerabilities. See https://tools.ietf.org/html/draft-irtf-cfrg-webcrypto-algorithms-00#section-17. SHA-1 hashing function is not recommended. |
| HS256/64 | HS256/64 | Experimental. Please use for testing purpose only. |
Serialization Modes
The serialization modes are used to convert a JWS object into a JSON object.
The JWS Compact serialization mode is the most common as it allows tokens to be used in a web context.
| Name | Alias |
|---|---|
| JWS Compact | jws_compact |
| JWS JSON Flattened | jws_json_flattened |
| JWS JSON General | jws_json_general |
JWE
JWE Builders
The following table lists all JWE Builders declared as services in your application configuration
or using the Configuration Helper.
Builders directly created through the JWE Builder Factory cannot be listed.
| Service ID | Key Encryption Algorithms | Content Encryption Algorithms | Compression Methods |
|---|---|---|---|
| There is no JWE Builder | |||
Built Tokens
The following table list all tokens issued by the JWE Builders.
| Status | Built Token |
|---|
JWE Decrypters
The following table lists all JWE Decrypters declared as services in your application configuration
or using the Configuration Helper.
Decrypters directly created through the JWE Decrypter Factory cannot be listed.
| Service ID | Key Encryption Algorithms | Content Encryption Algorithms | Compression Methods |
|---|---|---|---|
| There is no JWE Decrypter | |||
Decrypted Tokens
The following tables list all tokens decrypted (or not) by the JWE Decrypters.
Failure reason is related to the key(s) used.
| Status | JWE | Key set | Recipient index / Exception | Key used for decryption |
|---|
JWE Loaders
The following table lists all JWE Loaders declared as services in your application configuration
or using the Configuration Helper.
Loaders directly created through the JWE Loader Factory cannot be listed.
| Service ID | Serializers | Key Encryption Algorithms | Content Encryption Algorithms | Compression Methods | Header Checkers |
|---|---|---|---|---|---|
| There is no JWE Loader | |||||
Available Key Encryption Algorithms
The following table lists all key encryption algorithms available in this environment.
| Name | Alias | Message |
|---|---|---|
| A128GCMKW | A128GCMKW | |
| A192GCMKW | A192GCMKW | |
| A256GCMKW | A256GCMKW | |
| A128KW | A128KW | |
| A192KW | A192KW | |
| A256KW | A256KW | |
| dir | dir | |
| ECDH-ES | ECDH-ES | |
| ECDH-ES+A128KW | ECDH-ES+A128KW | |
| ECDH-ES+A192KW | ECDH-ES+A192KW | |
| ECDH-ES+A256KW | ECDH-ES+A256KW | |
| PBES2-HS256+A128KW | PBES2-HS256+A128KW | |
| PBES2-HS384+A192KW | PBES2-HS384+A192KW | |
| PBES2-HS512+A256KW | PBES2-HS512+A256KW | |
| RSA1_5 | RSA1_5 | This algorithm is not secured (known attacks). See https://tools.ietf.org/html/draft-irtf-cfrg-webcrypto-algorithms-00#section-5. |
| RSA-OAEP | RSA-OAEP | |
| RSA-OAEP-256 | RSA-OAEP-256 | |
| A128CTR | A128CTR | This algorithm is prohibited. For compatibility with old application only. See https://tools.ietf.org/html/draft-irtf-cfrg-webcrypto-algorithms-00#section-11. |
| A192CTR | A192CTR | This algorithm is prohibited. For compatibility with old application only. See https://tools.ietf.org/html/draft-irtf-cfrg-webcrypto-algorithms-00#section-11. |
| A256CTR | A256CTR | This algorithm is prohibited. For compatibility with old application only. See https://tools.ietf.org/html/draft-irtf-cfrg-webcrypto-algorithms-00#section-11. |
| RSA-OAEP-384 | RSA-OAEP-384 | Experimental. Please use for testing purpose only. |
| RSA-OAEP-512 | RSA-OAEP-512 | Experimental. Please use for testing purpose only. |
| chacha20-poly1305 | chacha20-poly1305 | Experimental. Please use for testing purpose only. |
Available Content Encryption Algorithms
The following table lists all content encryption algorithms available in this environment.
| Name | Alias | Message |
|---|---|---|
| A128CBC-HS256 | A128CBC-HS256 | |
| A192CBC-HS384 | A192CBC-HS384 | |
| A256CBC-HS512 | A256CBC-HS512 | |
| A128GCM | A128GCM | |
| A192GCM | A192GCM | |
| A256GCM | A256GCM | |
| A128CCM-16-64 | A128CCM-16-64 | Experimental and subject to changes. Please use for testing purpose only. |
| A128CCM-16-128 | A128CCM-16-128 | Experimental and subject to changes. Please use for testing purpose only. |
| A128CCM-64-64 | A128CCM-64-64 | Experimental and subject to changes. Please use for testing purpose only. |
| A128CCM-64-128 | A128CCM-64-128 | Experimental and subject to changes. Please use for testing purpose only. |
| A256CCM-16-64 | A256CCM-16-64 | Experimental and subject to changes. Please use for testing purpose only. |
| A256CCM-16-128 | A256CCM-16-128 | Experimental and subject to changes. Please use for testing purpose only. |
| A256CCM-16-64 | A256CCM-64-64 | Experimental and subject to changes. Please use for testing purpose only. |
| A256CCM-16-128 | A256CCM-64-128 | Experimental and subject to changes. Please use for testing purpose only. |
Compression Methods
The compression methods are used to shrink the size of the tokens.
Their use is optional, but may be needed in case of heavy payloads.
| Name | Alias |
|---|---|
| DEF | DEF |
Serialization Modes
The serialization modes are used to convert a JWE object into a JSON object.
The JWE Compact serialization mode is the most common as it allows tokens to be used in a web context.
| Name | Alias |
|---|---|
| JWE Compact | jwe_compact |
| JWE JSON Flattened | jwe_json_flattened |
| JWE JSON General | jwe_json_general |
Header Checkers
Header Checker Managers
The following table lists all Header Checker Managers declared as services in your application configuration
or using the Configuration Helper.
Managers directly created through the Header Checker Manager Factory cannot be listed.
| Service ID | Checked Header Parameters |
|---|---|
| There is no registered Header Checker Manager | |
Available Header Checkers
Each Header Checker will check a specific header parameter.
Please note that the header "crit" (critical) is always checked.
| Alias | Checked header | Is protected? |
|---|---|---|
| There is no registered header checker | ||
Checked Headers
The following table list all header parameters checked by the Header Checker Managers.
| Status | Token | Signature / Recipient Index | Mandatory Parameters | Error |
|---|---|---|---|---|
| No checked header parameters |
Claim Checkers
Claim Checker Managers
The following table lists all Claim Checker Managers declared as services in your application configuration
or using the Configuration Helper.
Managers directly created through the Claim Checker Manager Factory cannot be listed.
| Service ID | Checked Claims |
|---|---|
| There is no registered Claim Checker Manager | |
Available Claim Checkers
Each Claim Checker will check a specific header parameter.
| Alias | Checked claim |
|---|---|
| exp | exp |
| iat | iat |
| nbf | nbf |
Checked Claims
The following table list all claims parameters checked by the Claim Checker Managers.
| Status | Claims to check | Mandatory claims | Checked claims | Error |
|---|---|---|---|---|
| No checked claims |