Deprecated method for JWE decryption

gnongsie · gnongsie · commit 11347290a2db · 2025-02-28T14:34:39.000+05:30
Added new method using PrivateKey parameter Pull request #175
diff --git a/lib/Authentication/Jwt/JsonWebTokenGenerator.php b/lib/Authentication/Jwt/JsonWebTokenGenerator.php
@@ -28,7 +28,7 @@ public function __construct(\CyberSource\Logging\LogConfiguration $logConfig)
     //calling Signature
     public function generateToken($resourcePath, $payloadData, $method, $merchantConfig)
     {
-        $date = date("D, d M Y G:i:s ").GlobalParameter::GMT;
+        $date = gmdate("D, d M Y G:i:s ").GlobalParameter::GMT;
         if($method==GlobalParameter::GET || $method==GlobalParameter::DELETE)
         {
             $jwtBody = array("iat"=>$date);
diff --git a/lib/Authentication/Util/JWE/JWEUtility.php b/lib/Authentication/Util/JWE/JWEUtility.php
@@ -20,7 +20,11 @@
 class JWEUtility {
     private static $cache = null;
     
+    /**
+     * @deprecated This method has been marked as Deprecated and will be removed in coming releases.
+     */
     private static function loadKeyFromPEMFile($path) {
+        trigger_error("This method has been marked as Deprecated and will be removed in coming releases.", E_USER_DEPRECATED);
         return JWKFactory::createFromKeyFile(
             $path,
             '',                   // Secret if the key is encrypted
@@ -30,7 +34,11 @@ private static function loadKeyFromPEMFile($path) {
         );
     }
 
+    /**
+     * @deprecated This method has been marked as Deprecated and will be removed in coming releases. Use decryptJWEUsingPrivateKey(\$privateKey, \$encodedResponse) instead.
+     */
     public static function decryptJWEUsingPEM(MerchantConfiguration $merchantConfig, string $jweBase64Data) {
+        trigger_error("This method has been marked as Deprecated and will be removed in coming releases. Use decryptJWEUsingPrivateKey(\$privateKey, \$encodedResponse) instead.", E_USER_DEPRECATED);
         if (!isset(self::$cache)) {
             self::$cache = new Cache();
         }
@@ -77,6 +85,37 @@ public static function decryptJWEUsingPEM(MerchantConfiguration $merchantConfig,
             return null;
         }
     }
+
+    public static function decryptJWEUsingPrivateKey(string $privateKey, string $encodedResponse) {
+        $jwk = JWKFactory::createFromKey($privateKey);
+        // The key encryption algorithm manager with the A256KW algorithm.
+        $keyEncryptionAlgorithmManager = new AlgorithmManager([
+            new RSAOAEP256()
+        ]);
+
+        // The content encryption algorithm manager with the A256CBC-HS256 algorithm.
+        $contentEncryptionAlgorithmManager = new AlgorithmManager([
+            new A256GCM(),
+        ]);
+
+        // The serializer manager. We only use the JWE Compact Serialization Mode.
+        $serializerManager = new JWESerializerManager([
+            new CompactSerializer(),
+        ]);
+
+        $jweDecrypter = new JWEDecrypter(
+            $keyEncryptionAlgorithmManager,
+            $contentEncryptionAlgorithmManager,
+            new CompressionMethodManager([new Deflate()])
+        );
+
+        $jwe = $serializerManager->unserialize($encodedResponse);
+        if($jweDecrypter -> decryptUsingKey($jwe, $jwk, 0)) {
+            return $jwe ->getPayload();
+        } else {
+            return null;
+        }
+    }
 }
 
 ?>
diff --git a/lib/Utilities/JWEResponse/JWEUtility.php b/lib/Utilities/JWEResponse/JWEUtility.php
@@ -8,9 +8,14 @@
 class JWEUtility {
 
     /**
-     * @throws Exception
+     * @deprecated This method has been marked as Deprecated and will be removed in coming releases. Use decryptJWEResponseUsingPrivateKey(\$privateKey, \$encodedResponse) instead.
      */
     public static function decryptJWEResponse($encodedResponse, MerchantConfiguration $merchantConfig) {
+        trigger_error("This method has been marked as Deprecated and will be removed in coming releases. Use Use decryptJWEResponseUsingPrivateKey(\$privateKey, \$encodedResponse) instead.", E_USER_DEPRECATED);
         return AuthJWEUtility::decryptJWEUsingPEM($merchantConfig, $encodedResponse);
     }
+
+    public static function decryptJWEResponseUsingPrivateKey($privateKey, $encodedResponse) {
+        return AuthJWEUtility::decryptJWEUsingPrivateKey($privateKey, $encodedResponse);
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,7 @@ public function __construct(\CyberSource\Logging\LogConfiguration $logConfig)`
`28`	`28`	`//calling Signature`
`29`	`29`	`public function generateToken($resourcePath, $payloadData, $method, $merchantConfig)`
`30`	`30`	`{`
`31`		`- $date = date("D, d M Y G:i:s ").GlobalParameter::GMT;`
	`31`	`+ $date = gmdate("D, d M Y G:i:s ").GlobalParameter::GMT;`
`32`	`32`	`if($method==GlobalParameter::GET \|\| $method==GlobalParameter::DELETE)`
`33`	`33`	`{`
`34`	`34`	`$jwtBody = array("iat"=>$date);`