2.3.1

Ensure (PHPStan) compatibility with lcobucci/jwt ^4.2

1.17.0

Dropped support for lcobucci/jwt 3.x

1.16.3

Ensure compatibility with lcobucci/jwt ^4.2

1.16.2

Ensure compatibility with lcobucci/jwt ^4.2

3.0.2

Raised minimum version of Guzzle to address CVE-2022-31090 and CVE-2022-31091

3.0.1

Raise minimum version of Guzzle to address CVE-2022-31042

3.0

Implemented forward-compatible Clock-Interface

The stella-maris/clock package provides an interface based on the currently proposed status of PSR-20. Due to the inactivity of the PSR20 working group this is a way to already provide interoperability while still maintaining forward compatibility. When the current status of PSR20 will be released at one point in time the stella-maris/clock package will extend the PSR-20 interface so that this package becomes immeadiately PSR20 compatible without any further work necessary.

2.3.0

• Removed firebase/php-jwt dev dependency and simplified test token generation.
• Added support for verifying tokens returned from the Auth Emulator.

---

If you or your team rely on this project and me maintaining it, please consider becoming a Sponsor 🙏

2.2.0

Added tenant support to Session Cookie Verification. It doesn't seem to be supported at the moment (executing it with a tenant-enabled Firebase project yields an UNSUPPORTED_TENANT_OPERATION) error, but once it is supported, this library will need no or just minimal updates.

The Firebase Admin SDK for PHP has integration tests checking for this error so that we know early on when it starts working.

2.1.1

Fixed method name Kreait\Firebase\JWT\SessionCookieVerifier::sessionCookieWithLeeway to Kreait\Firebase\JWT\SessionCookieVerifier::verifySessionCookieWithLeeway 🤦‍. This is technically a breaking change, but since 2.1.0 was released just a few minutes ago, it was most certainly not used yet.