Add Support of EC (Elliptic Curve) for JWKS

[istvan-szerletics]

Hello together,

first of all I wanted to say thank you for developing this great library. I used the library very very much.

Our company has a problem at the moment, we have "ES256" tokens with EC method, and as I saw it in JWK.PHP "kty"="EC" is not supported, but only RSA. It would be super important to us because we have a very important customer, and for security reasons we need to validate the tokens that send us.

Could you please implement it? How big would be the effort? If you do it, then how long do you think it would take? If you don't implement it, then maybe you have a tip how I can validate these tokens?

Thanks a lot in advance!

With kind regards
Istvan

[istvan-szerletics]

Hey, can you help me and answer my question?

[istvan-szerletics]

HEYY BRO, WHATS UPP? can you at least answer???

[pwolanin]

Looks to be the same as #327 ?

[istvan-szerletics]

Yes, I think it is same problem. Can you help us?

[pwolanin]

Sorry, don't have any availability to do consulting. I'm only using the JWT part anyhow, not JWK. Seems like the maintainers here are not too active, but yelling at them is not going to help.

You should at least fork and try adding the feature in a PR - I just made a start on Ed25519 keys for JWT: #343

[bshaffer]

This is now available to try out as a dev branch. Please see #399 for more details and to help with testing.

[bshaffer]

support for ed25519 was added in #343

We had a PR to add this support in JWKs as well here: #414