How to use Hyperf framework for JWT authentication
How to use the Hyperf framework for JWT authentication
Introduction:
Hyperf is a high-performance coroutine framework based on Swoole, providing rich functions and flexibility scalability. JWT (JSON Web Token) is an open standard for authenticating and transmitting information. In this article, we will introduce how to use JWT authentication in the Hyperf framework and provide specific code examples.
1. Install dependency packages
First, we need to install hyperf/jwt and lcobucci/jwt dependency packages. It can be installed through Composer, open the terminal and run the following command:
composer require hyperf/jwt lcobucci/jwt
2. Configure authentication information
In the Hyperf framework, we need to configure the relevant information required for JWT authentication. Open the config/autoload/jwt.php file and add the following configuration items:
<?php
return [
'default' => [
'valid_seconds' => env('JWT_VALID_SECONDS', 3600), // Token有效期
'secret' => env('JWT_SECRET', 'your-secret-key'), // 对称加密密钥
'refresh_ttl' => env('JWT_REFRESH_TTL', 20160), // Token刷新有效期
'password_key' => env('JWT_PASSWORD_KEY', 'password'), // 密码字段名称
'blacklist_enabled' => env('JWT_BLACKLIST_ENABLED', true), // Token黑名单启用
'blacklist_grace_period' => env('JWT_BLACKLIST_GRACE_PERIOD', 60), // Token宽限期
'claim' => [], // 自定义Claims
],
];3. Generate and parse JWT Token
First, we need to generate a JWT Token. Introduce the HyperfJwtJwt class into the controller and generate Token through the make() method. The sample code is as follows:
<?php
declare(strict_types=1);
namespace AppController;
use HyperfDiAnnotationInject;
use PsrHttpMessageResponseInterface;
class AuthController extends AbstractController
{
/**
* @Inject
* @var HyperfJwtJwt
*/
private $jwt;
public function login(): ResponseInterface
{
// 对用户进行验证,验证通过后生成Token
$userId = 1;
$token = $this->jwt->make(['user_id' => $userId]);
return $this->response->json([
'token' => $token->toString(),
'expires_at' => $token->getClaim('exp'),
]);
}
}Next, we need to verify the JWT Token in the middleware and parse out the user information. Introduce the HyperfJwtMiddlewareJwtMiddleware class into the middleware, and use the handle() method for verification and parsing. The sample code is as follows:
<?php
declare(strict_types=1);
namespace AppMiddleware;
use HyperfDiAnnotationInject;
use HyperfHttpServerContractRequestInterface;
use HyperfHttpServerContractResponseInterface as HttpResponse;
use HyperfUtilsContext;
use HyperfUtilsStr;
use HyperfJwtExceptionTokenValidException;
use HyperfJwtJwtInterface;
use PsrContainerContainerInterface;
class JwtMiddleware
{
/**
* @Inject
* @var HyperfJwtJwt
*/
private $jwt;
/**
* @var JwtInterface
*/
private $jwtFactory;
/**
* @var RequestInterface
*/
private $request;
/**
* @var HttpResponse
*/
private $response;
public function __construct(ContainerInterface $container, JwtInterface $jwt, RequestInterface $request, HttpResponse $response)
{
$this->jwtFactory = $jwt;
$this->request = $request;
$this->response = $response;
}
public function handle($request, Closure $next)
{
$token = Str::replaceFirst('Bearer ', '', $this->request->header('Authorization')); // 从Header中获取Token
if (empty($token)) {
throw new TokenValidException('Token not provided');
}
try {
$token = $this->jwtFactory->parse($token); // 解析Token
$claims = $token->claims(); // 获取Token中的声明
Context::set('user_id', $claims->get('user_id')); // 设置用户ID到上下文
} catch (TokenValidException $e) {
throw new TokenValidException('Invalid token', $e->getCode(), $e);
}
return $next($request);
}
}4. Use middleware for authentication
Use middleware in routing for JWT authentication. Open the config/routes.php file and add the following routing and middleware configuration items:
<?php
use AppMiddlewareJwtMiddleware;
Router::addGroup('/api', function () {
Router::post('/login', 'AppControllerAuthController@login');
// 需要认证的路由
Router::addGroup('/auth', function () {
Router::get('/info', 'AppControllerAuthController@info');
}, ['middleware' => [JwtMiddleware::class]]);
});In the above example, AppControllerAuthController@info requires authentication interface. This interface can only be successfully accessed when carrying a valid JWT Token.
Conclusion:
This article introduces how to use the Hyperf framework for JWT authentication and provides relevant configuration and code examples. Through JWT authentication, we can achieve higher security and user verification functions in the Hyperf framework. I hope this article will be helpful to you when using the Hyperf framework for JWT authentication.
The above is the detailed content of How to use Hyperf framework for JWT authentication. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
1378
52
How to use magnet links
Feb 18, 2024 am 10:02 AM
Magnet link is a link method for downloading resources, which is more convenient and efficient than traditional download methods. Magnet links allow you to download resources in a peer-to-peer manner without relying on an intermediary server. This article will introduce how to use magnet links and what to pay attention to. 1. What is a magnet link? A magnet link is a download method based on the P2P (Peer-to-Peer) protocol. Through magnet links, users can directly connect to the publisher of the resource to complete resource sharing and downloading. Compared with traditional downloading methods, magnetic
How to use mdf and mds files
Feb 19, 2024 pm 05:36 PM
How to use mdf files and mds files With the continuous advancement of computer technology, we can store and share data in a variety of ways. In the field of digital media, we often encounter some special file formats. In this article, we will discuss a common file format - mdf and mds files, and introduce how to use them. First, we need to understand the meaning of mdf files and mds files. mdf is the extension of the CD/DVD image file, and the mds file is the metadata file of the mdf file.
What software is crystaldiskmark? -How to use crystaldiskmark?
Mar 18, 2024 pm 02:58 PM
CrystalDiskMark is a small HDD benchmark tool for hard drives that quickly measures sequential and random read/write speeds. Next, let the editor introduce CrystalDiskMark to you and how to use crystaldiskmark~ 1. Introduction to CrystalDiskMark CrystalDiskMark is a widely used disk performance testing tool used to evaluate the read and write speed and performance of mechanical hard drives and solid-state drives (SSD). Random I/O performance. It is a free Windows application and provides a user-friendly interface and various test modes to evaluate different aspects of hard drive performance and is widely used in hardware reviews
How to download foobar2000? -How to use foobar2000
Mar 18, 2024 am 10:58 AM
foobar2000 is a software that can listen to music resources at any time. It brings you all kinds of music with lossless sound quality. The enhanced version of the music player allows you to get a more comprehensive and comfortable music experience. Its design concept is to play the advanced audio on the computer The device is transplanted to mobile phones to provide a more convenient and efficient music playback experience. The interface design is simple, clear and easy to use. It adopts a minimalist design style without too many decorations and cumbersome operations to get started quickly. It also supports a variety of skins and Theme, personalize settings according to your own preferences, and create an exclusive music player that supports the playback of multiple audio formats. It also supports the audio gain function to adjust the volume according to your own hearing conditions to avoid hearing damage caused by excessive volume. Next, let me help you
How to use NetEase Mailbox Master
Mar 27, 2024 pm 05:32 PM
NetEase Mailbox, as an email address widely used by Chinese netizens, has always won the trust of users with its stable and efficient services. NetEase Mailbox Master is an email software specially created for mobile phone users. It greatly simplifies the process of sending and receiving emails and makes our email processing more convenient. So how to use NetEase Mailbox Master, and what specific functions it has. Below, the editor of this site will give you a detailed introduction, hoping to help you! First, you can search and download the NetEase Mailbox Master app in the mobile app store. Search for "NetEase Mailbox Master" in App Store or Baidu Mobile Assistant, and then follow the prompts to install it. After the download and installation is completed, we open the NetEase email account and log in. The login interface is as shown below
How to use Baidu Netdisk app
Mar 27, 2024 pm 06:46 PM
Cloud storage has become an indispensable part of our daily life and work nowadays. As one of the leading cloud storage services in China, Baidu Netdisk has won the favor of a large number of users with its powerful storage functions, efficient transmission speed and convenient operation experience. And whether you want to back up important files, share information, watch videos online, or listen to music, Baidu Cloud Disk can meet your needs. However, many users may not understand the specific use method of Baidu Netdisk app, so this tutorial will introduce in detail how to use Baidu Netdisk app. Users who are still confused can follow this article to learn more. ! How to use Baidu Cloud Network Disk: 1. Installation First, when downloading and installing Baidu Cloud software, please select the custom installation option.
BTCC tutorial: How to bind and use MetaMask wallet on BTCC exchange?
Apr 26, 2024 am 09:40 AM
MetaMask (also called Little Fox Wallet in Chinese) is a free and well-received encryption wallet software. Currently, BTCC supports binding to the MetaMask wallet. After binding, you can use the MetaMask wallet to quickly log in, store value, buy coins, etc., and you can also get 20 USDT trial bonus for the first time binding. In the BTCCMetaMask wallet tutorial, we will introduce in detail how to register and use MetaMask, and how to bind and use the Little Fox wallet in BTCC. What is MetaMask wallet? With over 30 million users, MetaMask Little Fox Wallet is one of the most popular cryptocurrency wallets today. It is free to use and can be installed on the network as an extension
How to use Xiaoai Speaker How to connect Xiaoai Speaker to mobile phone
Feb 22, 2024 pm 05:19 PM
After long pressing the play button of the speaker, connect to wifi in the software and you can use it. Tutorial Applicable Model: Xiaomi 12 System: EMUI11.0 Version: Xiaoai Classmate 2.4.21 Analysis 1 First find the play button of the speaker, and press and hold to enter the network distribution mode. 2 Log in to your Xiaomi account in the Xiaoai Speaker software on your phone and click to add a new Xiaoai Speaker. 3. After entering the name and password of the wifi, you can call Xiao Ai to use it. Supplement: What functions does Xiaoai Speaker have? 1 Xiaoai Speaker has system functions, social functions, entertainment functions, knowledge functions, life functions, smart home, and training plans. Summary/Notes: The Xiao Ai App must be installed on your mobile phone in advance for easy connection and use.
