How to do PKCE challenge in PHP

joost · October 11, 2017, 11:12am

Getting ‘PKCE verification failed’ errors. How to generate a valid code challenge in PHP?

joost · October 11, 2017, 11:14am

Answering own question, couresy of this post

function base64url_encode($plainText)
{
    $base64 = base64_encode($plainText);
    $base64 = trim($base64, "=");
    $base64url = strtr($base64, '+/', '-_');
    return ($base64url);
}

$random = bin2hex(openssl_random_pseudo_bytes(32));
$verifier = base64url_encode(pack('H*', $random));
$challenge = base64url_encode(pack('H*', hash('sha256', $verifier)));

system · January 12, 2024, 7:31pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Post		Replies	Views
Base64 URL-encoded SHA-256 hash of the code verifier Questions	2	10785	August 22, 2020
Oidcdebugger & PKCE code verifier is required when the token endpoint authentication method is 'NONE' OAuth/OIDC	3	3351	May 9, 2022
What is Code Verifier and Why? Questions	3	2050	March 23, 2024
PKCE verification failed - Using 'code' after login Questions	7	6545	February 12, 2024
Code verifier and code challenge Questions	3	6568	June 22, 2020

How to do PKCE challenge in PHP

Related topics