Symfony Serializer wrapper (#157)

* Add Symfony serializer wrappers for JWE and JWS tokens
* Provide BC for NotEncodableValueException

Author: mdeboer

composer.json

@@ -79,6 +79,7 @@
         "symfony/browser-kit": "^3.4|^4.0",
         "symfony/finder": "^3.4|^4.0",
         "symfony/phpunit-bridge": "^3.4|^4.0",
+        "symfony/serializer": "^3.3|^4.0",
         "symfony/yaml": "^3.4|^4.0"
     },
     "replace": {
@@ -110,7 +111,8 @@
        "bjeavons/zxcvbn-php": "Adds key quality check for oct keys.",
        "php-http/httplug": "To enable JKU/X5U support.",
        "php-http/httplug-bundle": "To enable JKU/X5U support.",
-       "php-http/message-factory": "To enable JKU/X5U support."
+       "php-http/message-factory": "To enable JKU/X5U support.",
+       "symfony/serializer": "Use the Symfony serializer to serialize/unserialize JWS and JWE tokens."
    },
     "extra": {
         "branch-alias": {

src/Bundle/JoseFramework/DependencyInjection/Compiler/SymfonySerializerCompilerPass.php

@@ -0,0 +1,51 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * The MIT License (MIT)
+ *
+ * Copyright (c) 2014-2018 Spomky-Labs
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license.  See the LICENSE file for details.
+ */
+
+namespace Jose\Bundle\JoseFramework\DependencyInjection\Compiler;
+
+use Jose\Bundle\JoseFramework\Normalizer\JWENormalizer;
+use Jose\Bundle\JoseFramework\Normalizer\JWSNormalizer;
+use Jose\Bundle\JoseFramework\Serializer\JWEEncoder;
+use Jose\Bundle\JoseFramework\Serializer\JWSEncoder;
+use Jose\Component\Encryption\Serializer\JWESerializerManagerFactory;
+use Jose\Component\Signature\Serializer\JWSSerializerManagerFactory;
+use Symfony\Component\DependencyInjection\Compiler\CompilerPassInterface;
+use Symfony\Component\DependencyInjection\ContainerBuilder;
+
+class SymfonySerializerCompilerPass implements CompilerPassInterface
+{
+    public function process(ContainerBuilder $container)
+    {
+        if (!\class_exists('Symfony\Component\Serializer\Serializer')) {
+            return;
+        }
+
+        if ($container->hasDefinition(JWSSerializerManagerFactory::class)) {
+            $container->autowire(JWSEncoder::class, JWSEncoder::class)
+                ->setPrivate(true)
+                ->addTag('serializer.encoder');
+            $container->autowire(JWSNormalizer::class, JWSNormalizer::class)
+                ->setPrivate(true)
+                ->addTag('serializer.normalizer');
+        }
+
+        if ($container->hasDefinition(JWESerializerManagerFactory::class)) {
+            $container->autowire(JWEEncoder::class, JWEEncoder::class)
+                ->setPrivate(true)
+                ->addTag('serializer.encoder');
+            $container->autowire(JWENormalizer::class, JWENormalizer::class)
+                ->setPrivate(true)
+                ->addTag('serializer.normalizer');
+        }
+    }
+}

src/Bundle/JoseFramework/JoseFrameworkBundle.php

@@ -13,8 +13,10 @@
 
 namespace Jose\Bundle\JoseFramework;
 
+use Jose\Bundle\JoseFramework\DependencyInjection\Compiler\SymfonySerializerCompilerPass;
 use Jose\Bundle\JoseFramework\DependencyInjection\JoseFrameworkExtension;
 use Jose\Bundle\JoseFramework\DependencyInjection\Source;
+use Symfony\Component\DependencyInjection\Compiler\PassConfig;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\HttpKernel\Bundle\Bundle;
 
@@ -46,6 +48,7 @@ public function getContainerExtension()
     public function build(ContainerBuilder $container)
     {
         parent::build($container);
+
         foreach ($this->sources as $source) {
             if ($source instanceof Source\SourceWithCompilerPasses) {
                 $compilerPasses = $source->getCompilerPasses();
@@ -54,6 +57,8 @@ public function build(ContainerBuilder $container)
                 }
             }
         }
+
+        $container->addCompilerPass(new SymfonySerializerCompilerPass(), PassConfig::TYPE_BEFORE_OPTIMIZATION, 10);
     }
 
     /**

src/Bundle/JoseFramework/Normalizer/JWENormalizer.php

@@ -0,0 +1,53 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * The MIT License (MIT)
+ *
+ * Copyright (c) 2014-2018 Spomky-Labs
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license.  See the LICENSE file for details.
+ */
+
+namespace Jose\Bundle\JoseFramework\Normalizer;
+
+use Jose\Component\Encryption\JWE;
+use Jose\Component\Encryption\Serializer\JWESerializerManager;
+use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+/**
+ * JWE normalizer.
+ */
+class JWENormalizer implements NormalizerInterface, DenormalizerInterface
+{
+    public function supportsNormalization($data, $format = null)
+    {
+        return $data instanceof JWE && $this->componentInstalled();
+    }
+
+    public function supportsDenormalization($data, $type, $format = null)
+    {
+        return JWE::class === $type && $this->componentInstalled();
+    }
+
+    public function normalize($object, $format = null, array $context = [])
+    {
+        return $object;
+    }
+
+    public function denormalize($data, $class, $format = null, array $context = [])
+    {
+        return $data;
+    }
+
+    /**
+     * Check if encryption component is installed.
+     */
+    private function componentInstalled(): bool
+    {
+        return class_exists(JWESerializerManager::class);
+    }
+}

src/Bundle/JoseFramework/Normalizer/JWSNormalizer.php

@@ -0,0 +1,53 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * The MIT License (MIT)
+ *
+ * Copyright (c) 2014-2018 Spomky-Labs
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license.  See the LICENSE file for details.
+ */
+
+namespace Jose\Bundle\JoseFramework\Normalizer;
+
+use Jose\Component\Signature\JWS;
+use Jose\Component\Signature\Serializer\JWSSerializerManager;
+use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+/**
+ * JWS normalizer.
+ */
+class JWSNormalizer implements NormalizerInterface, DenormalizerInterface
+{
+    public function supportsNormalization($data, $format = null)
+    {
+        return $data instanceof JWS && $this->componentInstalled();
+    }
+
+    public function supportsDenormalization($data, $type, $format = null)
+    {
+        return JWS::class === $type && $this->componentInstalled();
+    }
+
+    public function normalize($object, $format = null, array $context = [])
+    {
+        return $object;
+    }
+
+    public function denormalize($data, $class, $format = null, array $context = [])
+    {
+        return $data;
+    }
+
+    /**
+     * Check if encryption component is installed.
+     */
+    private function componentInstalled(): bool
+    {
+        return class_exists(JWSSerializerManager::class);
+    }
+}

src/Bundle/JoseFramework/Serializer/JWEEncoder.php

@@ -0,0 +1,94 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * The MIT License (MIT)
+ *
+ * Copyright (c) 2014-2018 Spomky-Labs
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license.  See the LICENSE file for details.
+ */
+
+namespace Jose\Bundle\JoseFramework\Serializer;
+
+use Jose\Component\Encryption\Serializer\JWESerializerManager;
+use Jose\Component\Encryption\Serializer\JWESerializerManagerFactory;
+use Symfony\Component\Serializer\Encoder\DecoderInterface;
+use Symfony\Component\Serializer\Encoder\EncoderInterface;
+use Symfony\Component\Serializer\Exception\NotEncodableValueException;
+use Symfony\Component\Serializer\Exception\UnexpectedValueException;
+
+class JWEEncoder implements EncoderInterface, DecoderInterface
+{
+    /**
+     * @var JWESerializerManager
+     */
+    protected $serializerManager;
+
+    public function __construct(
+        JWESerializerManagerFactory $serializerManagerFactory,
+        ?JWESerializerManager $serializerManager = null
+    ) {
+        if (null === $serializerManager) {
+            $serializerManager = $serializerManagerFactory->create($serializerManagerFactory->names());
+        }
+
+        $this->serializerManager = $serializerManager;
+    }
+
+    public function supportsEncoding($format)
+    {
+        return \in_array(mb_strtolower($format), $this->serializerManager->list(), true);
+    }
+
+    public function supportsDecoding($format)
+    {
+        return $this->supportsEncoding($format);
+    }
+
+    public function encode($data, $format, array $context = [])
+    {
+        try {
+            return $this->serializerManager->serialize(mb_strtolower($format), $data, $this->getRecipientIndex($context));
+        } catch (\Exception $ex) {
+            $message = sprintf('Cannot encode JWE to %s format.', $format);
+            
+            if (\class_exists('Symfony\Component\Serializer\Exception\NotEncodableValueException')) {
+                throw new NotEncodableValueException($message, 0, $ex);
+            }
+            
+            throw new UnexpectedValueException($message, 0, $ex);
+        }
+    }
+
+    public function decode($data, $format, array $context = [])
+    {
+        try {
+            return $this->serializerManager->unserialize($data);
+        } catch (\Exception $ex) {            
+            $message = sprintf('Cannot decode JWE from %s format.', $format);
+            
+            if (\class_exists('Symfony\Component\Serializer\Exception\NotEncodableValueException')) {
+                throw new NotEncodableValueException($message, 0, $ex);
+            }
+            
+            throw new UnexpectedValueException($message, 0, $ex);
+        }
+    }
+
+    /**
+     * Get JWE recipient index from context.
+     */
+    protected function getRecipientIndex(array $context): int
+    {
+        $recipientIndex = 0;
+
+        if (isset($context['recipient_index']) && \is_int($context['recipient_index'])) {
+            $recipientIndex = $context['recipient_index'];
+        }
+
+        return $recipientIndex;
+    }
+}

src/Bundle/JoseFramework/Serializer/JWSEncoder.php

@@ -0,0 +1,94 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * The MIT License (MIT)
+ *
+ * Copyright (c) 2014-2018 Spomky-Labs
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license.  See the LICENSE file for details.
+ */
+
+namespace Jose\Bundle\JoseFramework\Serializer;
+
+use Jose\Component\Signature\Serializer\JWSSerializerManager;
+use Jose\Component\Signature\Serializer\JWSSerializerManagerFactory;
+use Symfony\Component\Serializer\Encoder\DecoderInterface;
+use Symfony\Component\Serializer\Encoder\EncoderInterface;
+use Symfony\Component\Serializer\Exception\NotEncodableValueException;
+use Symfony\Component\Serializer\Exception\UnexpectedValueException;
+
+class JWSEncoder implements EncoderInterface, DecoderInterface
+{
+    /**
+     * @var JWSSerializerManager
+     */
+    protected $serializerManager;
+
+    public function __construct(
+        JWSSerializerManagerFactory $serializerManagerFactory,
+        ?JWSSerializerManager $serializerManager = null
+    ) {
+        if (null === $serializerManager) {
+            $serializerManager = $serializerManagerFactory->create($serializerManagerFactory->names());
+        }
+
+        $this->serializerManager = $serializerManager;
+    }
+
+    public function supportsEncoding($format)
+    {
+        return \in_array(mb_strtolower($format), $this->serializerManager->list(), true);
+    }
+
+    public function supportsDecoding($format)
+    {
+        return $this->supportsEncoding($format);
+    }
+
+    public function encode($data, $format, array $context = [])
+    {
+        try {
+            return $this->serializerManager->serialize(mb_strtolower($format), $data, $this->getSignatureIndex($context));
+        } catch (\Exception $ex) {
+            $message = sprintf('Cannot encode JWS to %s format.', $format);
+
+            if (\class_exists('Symfony\Component\Serializer\Exception\NotEncodableValueException')) {
+                throw new NotEncodableValueException($message, 0, $ex);
+            }
+
+            throw new UnexpectedValueException($message, 0, $ex);
+        }
+    }
+
+    public function decode($data, $format, array $context = [])
+    {
+        try {
+            return $this->serializerManager->unserialize($data);
+        } catch (\Exception $ex) {
+            $message = sprintf('Cannot decode JWS from %s format.', $format);
+
+            if (\class_exists('Symfony\Component\Serializer\Exception\NotEncodableValueException')) {
+                throw new NotEncodableValueException($message, 0, $ex);
+            }
+
+            throw new UnexpectedValueException($message, 0, $ex);
+        }
+    }
+
+    /**
+     * Get JWS signature index from context.
+     */
+    protected function getSignatureIndex(array $context): int
+    {
+        $signatureIndex = 0;
+
+        if (isset($context['signature_index']) && \is_int($context['signature_index'])) {
+            $signatureIndex = $context['signature_index'];
+        }
+
+        return $signatureIndex;
+    }
+}