UserPrincipal
A user-shaped Principal. Built from a validated access-token’s claims.
Claim mapping (auth-server/internal/auth/jwt/claims.go TokenClaims): uid → $id email → $email first_name → $firstName last_name → $lastName display_name → $displayName org_id → $orgId org_slug → $orgSlug org_name → $orgName app_id → $appId app_code → $appCode roles → $roles (string[]) permissions → $permissions (string[]) session_id → $sessionId auth_provider → $authProvider namespace → $namespace (home user pool; null = default pool) imp_uid → $impersonatorUserId imp_email → $impersonatorEmail tv → $tokenVersion
Methods
__construct()
function __construct( string $id, ?string $jti, ?int $expiresAt, public readonly string $email, public readonly ?string $firstName, public readonly ?string $lastName, public readonly ?string $displayName, public readonly ?string $orgId, public readonly ?string $orgSlug, public readonly ?string $orgName, public readonly ?string $appId, public readonly ?string $appCode, public readonly ?string $namespace, public readonly array $roles, public readonly array $permissions, public readonly ?string $sessionId, public readonly ?string $authProvider, public readonly ?string $impersonatorUserId, public readonly ?string $impersonatorEmail, public readonly int $tokenVersion,)Parameters
$roles—list<string>$permissions—list<string>
fromClaims()
function fromClaims(object $c): selfBuild from a decoded JWT claims object (stdClass from firebase/php-jwt).