Laravel Passport 建置 API 驗證和授權
第一步
執行下列指令:
composer require laravel/passport php artisan migrate php artisan passport:install
#修改config/auth.php 檔案中的Gurds:
... 'guards' => [ 'web' => [ 'driver' => 'session', 'provider' => 'users', ], 'api' => [ 'driver' => 'passport', 'provider' => 'users', ], ], ...
第三步驟
app/User.php
<?php namespace App; use Illuminate\Foundation\Auth\User as Authenticatable; use Illuminate\Notifications\Notifiable; use Laravel\Passport\HasApiTokens; class User extends Authenticatable { use Notifiable, HasApiTokens; /** * The attributes that are mass assignable. * * @var array */ protected $fillable = [ 'name', 'email', 'password', ]; /** * The attributes that should be hidden for arrays. * * @var array */ protected $hidden = [ 'password', 'remember_token', ]; /** * The attributes that should be cast to native types. * * @var array */ protected $casts = [ 'email_verified_at' => 'datetime', ]; }
第四步
app/Repositories/User/UserRepositoryInterface.php<?php namespace App\Repositories\User; use Illuminate\Http\Request; interface UserRepositoryInterface { public function register(Request $request); public function login(Request $request); public function refreshToken(Request $request); public function details(); public function logout(Request $request); public function response($data, int $statusCode); public function getTokenAndRefreshToken(string $email, string $password); public function sendRequest(string $route, array $formParams); public function getOClient(); }
第五步
建立app/Repositories/User /UserRepository.php 檔案<?php namespace App\Repositories\User; use App\User; use GuzzleHttp\Client; use Illuminate\Http\Request; use Illuminate\Support\Facades\Auth; use Laravel\Passport\Client as OClient; use GuzzleHttp\Exception\ClientException; use App\Repositories\User\UserRepositoryInterface; class UserRepository implements UserRepositoryInterface { const SUCCUSUS_STATUS_CODE = 200; const UNAUTHORISED_STATUS_CODE = 401; const BASE_URL = "http://mylemp-nginx"; public function __construct(Client $client) { $this->http = $client; } public function register(Request $request) { $email = $request->email; $password = $request->password; $input = $request->all(); $input['password'] = bcrypt($input['password']); User::create($input); $response = $this->getTokenAndRefreshToken($email, $password); return $this->response($response["data"], $response["statusCode"]); } public function login(Request $request) { $email = $request->email; $password = $request->password; if (Auth::attempt(['email' => $email, 'password' => $password])) { $response = $this->getTokenAndRefreshToken($email, $password); $data = $response["data"]; $statusCode = $response["statusCode"]; } else { $data = ['error'=>'Unauthorised']; $statusCode = self::UNAUTHORISED_STATUS_CODE; } return $this->response($data, $statusCode); } public function refreshToken(Request $request) { if (is_null($request->header('Refreshtoken'))) { return $this->response(['error'=>'Unauthorised'], self::UNAUTHORISED_STATUS_CODE); } $refresh_token = $request->header('Refreshtoken'); $Oclient = $this->getOClient(); $formParams = [ 'grant_type' => 'refresh_token', 'refresh_token' => $refresh_token, 'client_id' => $Oclient->id, 'client_secret' => $Oclient->secret, 'scope' => '*']; return $this->sendRequest("/oauth/token", $formParams); } public function details() { $user = Auth::user(); return $this->response($user, self::SUCCUSUS_STATUS_CODE); } public function logout(Request $request) { $request->user()->token()->revoke(); return $this->response(['message' => 'Successfully logged out'], self::SUCCUSUS_STATUS_CODE); } public function response($data, int $statusCode) { $response = ["data"=>$data, "statusCode"=>$statusCode]; return $response; } public function getTokenAndRefreshToken(string $email, string $password) { $Oclient = $this->getOClient(); $formParams = [ 'grant_type' => 'password', 'client_id' => $Oclient->id, 'client_secret' => $Oclient->secret, 'username' => $email, 'password' => $password, 'scope' => '*']; return $this->sendRequest("/oauth/token", $formParams); } public function sendRequest(string $route, array $formParams) { try { $url = self::BASE_URL.$route; $response = $this->http->request('POST', $url, ['form_params' => $formParams]); $statusCode = self::SUCCUSUS_STATUS_CODE; $data = json_decode((string) $response->getBody(), true); } catch (ClientException $e) { echo $e->getMessage(); $statusCode = $e->getCode(); $data = ['error'=>'OAuth client error']; } return ["data" => $data, "statusCode"=>$statusCode]; } public function getOClient() { return OClient::where('password_client', 1)->first(); } }
第六步
#app/Http/Requests/UserLoginRequest.php<?php namespace App\Http\Requests; use Illuminate\Foundation\Http\FormRequest; use Illuminate\Contracts\Validation\Validator; use Illuminate\Http\Exceptions\HttpResponseException; class UserLoginRequest extends FormRequest { const UNPROCESSABLE_ENTITY = 422; public function rules() { return [ 'email' => 'required|email', 'password' => 'required', ]; } protected function failedValidation(Validator $validator) { throw new HttpResponseException(response()->json($validator->errors(), self::UNPROCESSABLE_ENTITY)); } }
<?php namespace App\Http\Requests; use Illuminate\Foundation\Http\FormRequest; use Illuminate\Contracts\Validation\Validator; use Illuminate\Http\Exceptions\HttpResponseException; class UserRegisterRequest extends FormRequest { const UNPROCESSABLE_ENTITY = 422; public function rules() { return [ 'name' => 'required', 'email' => 'required|email|unique:users', 'password' => 'required', 'c_password' => 'required|same:password', ]; } protected function failedValidation(Validator $validator) { throw new HttpResponseException(response()->json($validator->errors(), self::UNPROCESSABLE_ENTITY)); } }
<?php namespace App\Providers; use App\Repositories\User\UserRepository; use App\Repositories\User\UserRepositoryInterface; use Illuminate\Support\ServiceProvider; class AppServiceProvider extends ServiceProvider { /** * Register any application services. * * @return void */ public function register() { $this->app->bind(UserRepositoryInterface::class, UserRepository::class); } /** * Bootstrap any application services. * * @return void */ public function boot() { // } }
<?php namespace App\Providers; use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider; use Laravel\Passport\Passport; class AuthServiceProvider extends ServiceProvider { /** * The policy mappings for the application. * * @var array */ protected $policies = [ // 'App\Model' => 'App\Policies\ModelPolicy', ]; /** * Register any authentication / authorization services. * * @return void */ public function boot() { $this->registerPolicies(); Passport::routes(); } }
<?php namespace App\Http\Controllers; use Illuminate\Http\Request; use App\Http\Requests\UserLoginRequest; use App\Http\Requests\UserRegisterRequest; use App\Repositories\User\UserRepositoryInterface; class UserController extends Controller { const SUCCUSUS_STATUS_CODE = 200; const UNAUTHORISED_STATUS_CODE = 401; public function __construct(UserRepositoryInterface $userRepository) { $this->userRepository = $userRepository; } public function login(UserLoginRequest $request) { $response = $this->userRepository->login($request); return response()->json($response["data"], $response["statusCode"]); } public function register(UserRegisterRequest $request) { $response = $this->userRepository->register($request); return response()->json($response["data"], $response["statusCode"]); } public function details() { $response = $this->userRepository->details(); return response()->json($response["data"], $response["statusCode"]); } public function logout(Request $request) { $response = $this->userRepository->logout($request); return response()->json($response["data"], $response["statusCode"]); } public function refreshToken(Request $request) { $response = $this->userRepository->refreshToken($request); return response()->json($response["data"], $response["statusCode"]); } }
<?php use Illuminate\Support\Facades\Route; Route::post('login', 'UserController@login'); Route::post('register', 'UserController@register'); Route::post('refreshtoken', 'UserController@refreshToken'); Route::group(['middleware' => ['auth:api']], function () { Route::post('logout', 'UserController@logout'); Route::post('details', 'UserController@details'); });
以上是Laravel Passport 建置 API 驗證和授權的詳細內容。更多資訊請關注PHP中文網其他相關文章!

熱AI工具

Undresser.AI Undress
人工智慧驅動的應用程序,用於創建逼真的裸體照片

AI Clothes Remover
用於從照片中去除衣服的線上人工智慧工具。

Undress AI Tool
免費脫衣圖片

Clothoff.io
AI脫衣器

Video Face Swap
使用我們完全免費的人工智慧換臉工具,輕鬆在任何影片中換臉!

熱門文章

熱工具

記事本++7.3.1
好用且免費的程式碼編輯器

SublimeText3漢化版
中文版,非常好用

禪工作室 13.0.1
強大的PHP整合開發環境

Dreamweaver CS6
視覺化網頁開發工具

SublimeText3 Mac版
神級程式碼編輯軟體(SublimeText3)

Laravel 是一款 PHP 框架,用於輕鬆構建 Web 應用程序。它提供一系列強大的功能,包括:安裝: 使用 Composer 全局安裝 Laravel CLI,並在項目目錄中創建應用程序。路由: 在 routes/web.php 中定義 URL 和處理函數之間的關係。視圖: 在 resources/views 中創建視圖以呈現應用程序的界面。數據庫集成: 提供與 MySQL 等數據庫的開箱即用集成,並使用遷移來創建和修改表。模型和控制器: 模型表示數據庫實體,控制器處理 HTTP 請求。

在使用CraftCMS開發網站時,常常會遇到資源文件緩存的問題,特別是當你頻繁更新CSS和JavaScript文件時,舊版本的文件可能仍然被瀏覽器緩存,導致用戶無法及時看到最新的更改。這個問題不僅影響用戶體驗,還會增加開發和調試的難度。最近,我在項目中遇到了類似的困擾,經過一番探索,我找到了wiejeben/craft-laravel-mix這個插件,它完美地解決了我的緩存問題。

想要學習 Laravel 框架,但苦於沒有資源或經濟壓力?本文為你提供了免費學習 Laravel 的途徑,教你如何利用網絡平台、文檔和社區論壇等資源,從入門到掌握,為你的 PHP 開發之旅奠定堅實基礎。

Laravel 提供了一個全面的 Auth 框架,用於實現用戶登錄功能,包括:定義用戶模型(Eloquent 模型)創建登錄表單(Blade 模板引擎)編寫登錄控制器(繼承 Auth\LoginController)驗證登錄請求(Auth::attempt)登錄成功後重定向(redirect)考慮安全因素:哈希密碼、防 CSRF 保護、速率限制和安全標頭。此外,Auth 框架還提供重置密碼、註冊和驗證電子郵件等功能。詳情請參閱 Laravel 文檔:https://laravel.com/doc

文章摘要:本文提供了詳細分步說明,指導讀者如何輕鬆安裝 Laravel 框架。 Laravel 是一個功能強大的 PHP 框架,它 упростил 和加快了 web 應用程序的開發過程。本教程涵蓋了從系統要求到配置數據庫和設置路由等各個方面的安裝過程。通過遵循這些步驟,讀者可以快速高效地為他們的 Laravel 項目打下堅實的基礎。

在面向初学者的 Laravel 框架版本选择指南中,本文深入探討了 Laravel 的版本差異,旨在協助初學者在眾多版本之間做出明智的選擇。我們將重點介紹每個版本的關鍵特徵、比較它們的優缺點,並提供有用的建議,幫助新手根據他們的技能水準和項目需求挑選最合適的 Laravel 版本。對於初學者來說,選擇一個合適的 Laravel 版本至關重要,因為它可以顯著影響他們的學習曲線和整體開發體驗。

Laravel框架內置了多種方法來方便地查看其版本號,滿足開發者的不同需求。本文將探討這些方法,包括使用Composer命令行工具、訪問.env文件或通過PHP代碼獲取版本信息。這些方法對於維護和管理Laravel應用程序的版本控制至關重要。

Laravel 和 ThinkPHP 都是流行的 PHP 框架,在開發中各有優缺點。本文將深入比較這兩者,重點介紹它們的架構、特性和性能差異,以幫助開發者根據其特定項目需求做出明智的選擇。
