Base64Url Laravel Package
spomky-labs/base64url
Fast RFC 4648 Base64 URL-safe encoder/decoder for PHP. Lightweight library to encode/decode URL-safe Base64 strings with high performance, compatible with PHP 7.1+. Ideal for JWT, web tokens, and URL parameters.
Getting Started
Minimal Setup
-
Installation
composer require spomky-labs/base64urlNo additional configuration is required—just autoload the package.
-
First Use Case Encode a string to Base64URL (e.g., for JWT tokens, API keys, or URL-safe data):
use SpomkyLabs\Base64Url\Base64Url; $encoder = new Base64Url(); $encoded = $encoder->encode('Hello, World!'); // Output: "SGVsbG8sIFdvcmxkIQ=="Decode it back:
$decoded = $encoder->decode($encoded); // Output: "Hello, World!" -
Where to Look First
- Class Documentation (if available; check GitHub for legacy projects).
- Focus on
Base64Url::encode()andBase64Url::decode()methods. - For edge cases, review the
Base64Urlconstructor (e.g., padding options).
Implementation Patterns
Core Workflows
-
JWT Token Handling Encode/decode payloads for JWTs (replace
base64_encode/base64_decode):$payload = json_encode(['user_id' => 123, 'role' => 'admin']); $encodedPayload = $encoder->encode($payload); // Use $encodedPayload in JWT generation (e.g., with `firebase/php-jwt`). -
URL-Safe API Keys Store or transmit API keys in URLs (e.g.,
/api/v1?key=ENCODED_KEY):$apiKey = 'sk_live_123abc'; $safeKey = $encoder->encode($apiKey); // URL-safe: `/api/v1?key=czsxX3xpdnFfMTIzYWJj` -
Database Storage Store binary data (e.g., hashes) in text fields:
$hash = hash('sha256', 'secret'); $dbValue = $encoder->encode($hash); // Later: $originalHash = $encoder->decode($dbValue);
Integration Tips
-
Laravel Facades (Optional) Create a facade for cleaner syntax:
// app/Providers/AppServiceProvider.php public function boot() { $this->app->bind('base64url', function () { return new Base64Url(); }); }Usage:
$encoded = app('base64url')->encode('data'); -
Service Layer Encapsulate encoding/decoding in a service:
class ApiKeyService { protected $encoder; public function __construct(Base64Url $encoder) { $this->encoder = $encoder; } public function generateSafeKey(string $key): string { return $this->encoder->encode($key); } } -
Validation Use with Laravel’s validation:
$request->validate([ 'encoded_key' => 'required|string', ]); $decodedKey = $encoder->decode($request->encoded_key);
Gotchas and Tips
Pitfalls
-
Padding Handling
- The package automatically strips padding (
=characters) during encoding. - Decoding requires padding if the input lacks it (e.g., from URLs). Use:
$decoded = $encoder->decode($encoded, false); // Skip padding check (not recommended). - Best Practice: Always ensure padding is present before decoding (e.g., add it manually or use
str_pad).
- The package automatically strips padding (
-
Non-String Inputs
- The encoder expects strings. Non-string inputs (e.g.,
null, objects) will throw errors. - Fix: Cast inputs explicitly:
$encoder->encode((string) $variable);
- The encoder expects strings. Non-string inputs (e.g.,
-
Binary Data
- For binary data (e.g., file contents), use
base64_encodefirst, then this library:$binaryData = file_get_contents('image.png'); $encoded = $encoder->encode(base64_encode($binaryData));
- For binary data (e.g., file contents), use
-
URL Safety Assumptions
- The library replaces
+with-and/with_, but does not URL-encode other special characters (e.g.,~,?). - For URLs, combine with
rawurlencode:$safeForUrl = rawurlencode($encoder->encode('key=value'));
- The library replaces
Debugging
-
Decoding Failures
- If decoding throws
InvalidArgumentException, check:- Input contains only
[A-Z0-9_-](Base64URL alphabet). - Input length is a multiple of 4 (add padding if needed).
- Input isn’t corrupted (e.g., truncated during transmission).
- Input contains only
- If decoding throws
-
Character Mismatches
- Compare encoded strings with
base64_encodeoutput to spot discrepancies:var_dump( base64_encode('test'), // "dGVzdA==" $encoder->encode('test') // "dGVzdA==" (should match) );
- Compare encoded strings with
Extension Points
-
Custom Alphabets
- Extend the class to support non-standard alphabets (e.g., for custom encoding schemes):
class CustomBase64Url extends Base64Url { protected $alphabet = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_'; public function __construct() { parent::__construct(); $this->setAlphabet($this->alphabet); } }
- Extend the class to support non-standard alphabets (e.g., for custom encoding schemes):
-
Padding Strategies
- Override padding behavior in the constructor:
$encoder = new Base64Url(); $encoder->setPadding(false); // Disable padding (not recommended for decoding).
- Override padding behavior in the constructor:
-
Performance
- For bulk operations, cache the encoder instance (it’s stateless but instantiation has overhead):
$encoder = new Base64Url(); // Reuse this instance.
- For bulk operations, cache the encoder instance (it’s stateless but instantiation has overhead):
Laravel-Specific Tips
-
Cached Config Store encoded values in config/cache (e.g., API keys):
config(['services.api.key' => $encoder->encode('secret_key')]); -
Encrypted Storage Combine with Laravel’s encryption for sensitive data:
$encoded = $encoder->encode('secret'); $encrypted = encrypt($encoded);
How can I help you explore Laravel packages today?