摘要:在下新建無效無效然后在的下添加自定義的跨域中間鍵在路由和下的構(gòu)造函數(shù)調(diào)用���。免責(zé)由于時間關(guān)系,沒有在截圖了���,參考此文章的小伙伴自行進(jìn)行測試下面例子源用了很多文檔代碼
安裝
composer create-project --prefer-dist laravel/laravel sample "5.5.*"
安裝依賴
composer install
安裝jwt-auth
composer require tymon/jwt-auth
or
在composer.json中添加 `"tymon/jwt-auth": "^1.0.0-rc.2",`
終端:composer update
在config/app.php的providers中
"providers" => [
...
TymonJWTAuthProvidersLaravelServiceProvider::class,
]
終端運(yùn)行:php artisan vendor:publish --provider="TymonJWTAuthProvidersLaravelServiceProvider"會產(chǎn)生config/jwt.php的配置文件
再運(yùn)行:php artisan jwt:secret生成key
建Model
運(yùn)行:
php artisan make:model Models/Admin -m
php artisan make:model Models/User -m
database/migrations下
遷移文件中
**admins:**
Schema::create("admins", function (Blueprint $table) {
$table->increments("id");
$table->string("name");
$table->string("email")->unique();
$table->string("password");
$table->string("avatar")->nullable();
$table->timestamps();
});
**users:**
Schema::create("users", function (Blueprint $table) {
$table->increments("id");
$table->string("name");
$table->string("email")->unique();
$table->string("password");
$table->string("avatar")->nullable();
$table->timestamps();
});
修改Model(USer和Admin是一樣的)
getKey();
}
/**
* Return a key value array, containing any custom claims to be added to the JWT.
*
* @return array
*/
public function getJWTCustomClaims()
{
return [];
}
}
在config/auth.php中配置�,找到對應(yīng)的修改成自己的
"guards" => [
"web" => [
"driver" => "session",
"provider" => "users",
],
"api" => [
"driver" => "jwt",
"provider" => "users",
],
"admin" => [
"driver" => "jwt",
"provider" => "admins",
],
],
"providers" => [
"users" => [
"driver" => "eloquent",
"model" => AppModelsUser::class,
"table" => "users",
],
"admins" => [
"driver" => "eloquent",
"model" => AppModelsAdmin::class,
"table" => "admin_users"
],
],
路由
在routes/api.php
Route::group([
"middleware" => "api",
"prefix" => "auth"
], function ($router) {
Route::post("login", "AuthController@login");
Route::post("logout", "AuthController@logout");
Route::post("refresh", "AuthController@refresh");
Route::post("me", "AuthController@me");
});
控制器(關(guān)鍵)
運(yùn)行:php artisan make:controller AdminController創(chuàng)建控制器
注:此處主要是用了guard("admin")來區(qū)分要調(diào)用的表和Model這里是在auth.php中配置的
middleware("myauth", ["except" => ["login"]]);
}
/**
* Get a JWT via given credentials.
*
* @return IlluminateHttpJsonResponse
*/
public function login()
{
$credentials = request(["email", "password"]);
if (! $token = auth()->guard("admin")->attempt($credentials)) {
return response()->json(["error" => "Unauthorized"], 401);
}
return $this->respondWithToken($token);
}
/**
* Get the authenticated User.
*
* @return IlluminateHttpJsonResponse
*/
public function me()
{
return response()->guard("admin")->json(auth()->user());
}
/**
* Log the user out (Invalidate the token).
*
* @return IlluminateHttpJsonResponse
*/
public function logout()
{
auth()->guard("admin")->logout();
return response()->json(["message" => "Successfully logged out"]);
}
/**
* Refresh a token.
*
* @return IlluminateHttpJsonResponse
*/
public function refresh()
{
return $this->respondWithToken(auth()->guard("admin")->refresh());
}
/**
* Get the token array structure.
*
* @param string $token
*
* @return IlluminateHttpJsonResponse
*/
protected function respondWithToken($token)
{
return response()->json([
"access_token" => $token,
"token_type" => "bearer",
"expires_in" => auth()->factory()->getTTL() * 60
]);
}
}
中間鍵
由于使用了多表認(rèn)證�����,所以不能使用jwt自帶的中間鍵auth:api or jwt.auth,我自己建了一個中間鍵[myauth]來做路由驗證����。
在app/Http/Middleware下新建
namespace AppHttpMiddleware;
use Closure;
use IlluminateSupportFacadesAuth;
class AuthMiddleware {
public function handle($request, Closure $next)
{
try {
$user = auth()->guard("admin")->userOrFail();
if(!$user) {
return response()->json(["message" => "jwt 無效"], 401);
}
} catch (TymonJWTAuthExceptionsUserNotDefinedException $e) {
return response()->json(["message" => "jwt 無效"], 401);
}
return $next($request);
}
}
然后在app/Http/Kernel的$routeMiddleware下添加
protected $routeMiddleware = [
...
"cors" => AppHttpMiddlewareClientRequestCors::class, //自定義的跨域中間鍵
"myauth" => AppHttpMiddlewareAuthMiddleware::class,
...
];
在路由和Controller下的構(gòu)造函數(shù)調(diào)用。
免責(zé)
由于時間關(guān)系����,沒有在PostMan截圖了,參考此文章的小伙伴自行進(jìn)行測試
下面例子源用了很多jwt-auth文檔代碼
文章版權(quán)歸作者所有��,未經(jīng)允許請勿轉(zhuǎn)載,若此文章存在違規(guī)行為����,您可以聯(lián)系管理員刪除。
轉(zhuǎn)載請注明本文地址:http://systransis.cn/yun/30738.html
