Backend Development
PHP Tutorial
PHP customizes the token class and puts the generated token in the Authorization of the http request header.
PHP customizes the token class and puts the generated token in the Authorization of the http request header.
The content of this article is about the code of php customizing the token class and placing the generated token in the Authorization of the http request header. It has certain reference value. Friends in need can refer to it. I hope It will help you.
When I was using laravel to write something today, I needed to interact with the front-end. I saw jwt (json web token), so I wanted to try to write a simple token class. The token stores member ids and members. Permissions, when interacting with the front end, put the generated token in the Authorization of the http request header, organized as follows:
<?php
namespace App\Http\Controllers\Auth;
use Illuminate\Http\Request;
use App\Http\Controllers\Controller;
class TokenController extends Controller{
/**
* header
* @var array
*/
private static $header = [
"type" => "token",
"alg" => "HS256"
]; /**
* create payload
* @param $memberId
* @param $permission
* @return array
*/
private static function payload($memberId, $permission)
{
return [
"iss" => "http://api.creatshare.com",
"iat" => $_SERVER['REQUEST_TIME'],
"exp" => $_SERVER['REQUEST_TIME'] + 7200,
"GivenName" => "CreatShare",
"memberId" => $memberId,
"permission"=> $permission
];
} /**
* encode data
* @param $data
* @return string
*/
private static function encode($data)
{
return base64_encode(json_encode($data));
} /**
* generate a signature
* @param $header
* @param $payload
* @param string $secret
* @return string
*/
private static function signature($header, $payload, $secret = 'secret')
{
return hash_hmac('sha256', $header.$payload, $secret);
} /**
* generate a token
* @param $memberId
* @param $permission
* @return string
*/
public static function createToken($memberId, $permission)
{
$header = self::encode(self::$header);
$payload = self::encode(self::payload($memberId, $permission));
$signature = self::signature($header, $payload);
return $header . '.' .$payload . '.' . $signature;
} /**
* check a token
* @param $jwt
* @param string $key
* @return array|string
*/
public static function checkToken($jwt, $key = 'secret')
{
$token = explode('.', $jwt);
if (count($token) != 3)
return 'token invalid';
list($header64, $payload64, $sign) = $token;
if (self::signature($header64 , $payload64) !== $sign)
return 'token invalid';
$header = json_decode(base64_decode($header64), JSON_OBJECT_AS_ARRAY);
$payload = json_decode(base64_decode($payload64), JSON_OBJECT_AS_ARRAY);
if ($header['type'] != 'token' || $header['alg'] != 'HS256')
return 'token invalid';
if ($payload['iss'] != 'http://api.creatshare.com' || $payload['GivenName'] != 'CreatShare')
return 'token invalid';
if (isset($payload['exp']) && $payload['exp'] < time())
return 'timeout';
return [
'memberId' => $payload['memberId'],
'permission' =>$payload['permission']
];
} /**
* get a token
* @return null
*/
public static function getToken()
{
$token = null;
if (isset($_SERVER['HTTP_AUTHORIZATION']))
$token = $_SERVER['HTTP_AUTHORIZATION'];
return $token;
}
}$token = Token::createToken($member_id, $member_permission); //创建一个 token$token = Token::getToken(); //从http请求头获取 token$result = Token::checkToken(); //解析token
Related recommendations:
php xml operation class (customized)
PHP implements customizable style paging classes, php custom style paging
Custom classes in php Automatic file loading
The above is the detailed content of PHP customizes the token class and puts the generated token in the Authorization of the http request header.. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
1390
52
How to get the return code when email sending fails in Laravel?
Apr 01, 2025 pm 02:45 PM
Method for obtaining the return code when Laravel email sending fails. When using Laravel to develop applications, you often encounter situations where you need to send verification codes. And in reality...
Laravel schedule task is not executed: What should I do if the task is not running after schedule: run command?
Mar 31, 2025 pm 11:24 PM
Laravel schedule task run unresponsive troubleshooting When using Laravel's schedule task scheduling, many developers will encounter this problem: schedule:run...
In Laravel, how to deal with the situation where verification codes are failed to be sent by email?
Mar 31, 2025 pm 11:48 PM
The method of handling Laravel's email failure to send verification code is to use Laravel...
How to implement the custom table function of clicking to add data in dcat admin?
Apr 01, 2025 am 07:09 AM
How to implement the table function of custom click to add data in dcatadmin (laravel-admin) When using dcat...
Laravel Redis connection sharing: Why does the select method affect other connections?
Apr 01, 2025 am 07:45 AM
The impact of sharing of Redis connections in Laravel framework and select methods When using Laravel framework and Redis, developers may encounter a problem: through configuration...
Laravel multi-tenant extension stancl/tenancy: How to customize the host address of a tenant database connection?
Apr 01, 2025 am 09:09 AM
Custom tenant database connection in Laravel multi-tenant extension package stancl/tenancy When building multi-tenant applications using Laravel multi-tenant extension package stancl/tenancy,...
Laravel Eloquent ORM in Bangla partial model search)
Apr 08, 2025 pm 02:06 PM
LaravelEloquent Model Retrieval: Easily obtaining database data EloquentORM provides a concise and easy-to-understand way to operate the database. This article will introduce various Eloquent model search techniques in detail to help you obtain data from the database efficiently. 1. Get all records. Use the all() method to get all records in the database table: useApp\Models\Post;$posts=Post::all(); This will return a collection. You can access data using foreach loop or other collection methods: foreach($postsas$post){echo$post->
Which is better, Django or Laravel?
Mar 28, 2025 am 10:41 AM
Both Django and Laravel are full-stack frameworks. Django is suitable for Python developers and complex business logic, while Laravel is suitable for PHP developers and elegant syntax. 1.Django is based on Python and follows the "battery-complete" philosophy, suitable for rapid development and high concurrency. 2.Laravel is based on PHP, emphasizing the developer experience, and is suitable for small to medium-sized projects.
