#symfony

Auth0 PHP - manually authenticating JWT idTokens

A practical guide to manually validating Auth0 JWT idTokens in PHP using the Auth0 PHP SDK. Covers setting up the Auth0 client, decoding the idToken, and extracting user claims like nickname and sub. Includes a note that cookieSecret must be set even when not using cookies, and that tokenType must be specified correctly. The author criticizes Auth0's documentation and shares the solution found by reading source code.