我正在使用ollieread multiauth。我在尝试使用
的路线时遇到了问题Route::group(['before' => 'auth'], function()
{
Route::get('/onlinetest', array('as'=>'onlinetest', 'uses'=>'HomeController@onlinetest'));
Route::get('/quiz', array( 'as'=>'quiz', 'uses'=>'HomeController@quiz'));
Route::get('/number', array( 'as'=>'number', 'uses'=>'HomeController@number'));
Route::get('/word', array( 'as'=>'word', 'uses'=>'HomeController@word'));
});
这是我的usercontroller:
public function handlelogin()
{
$today = date("Y-m-d H:i:s");
$userdata = array(
'email' => Input::get('username'),
'password' => Input::get('password')
);
if (Auth::check())
{
return Redirect::to('/');
}
if(Auth::user()->attempt($userdata, true))
{
$user = User::find(Auth::user()->get()->id);
// check if user has use his account for test
if ($user->status == '0')
{
Auth::logout();
Session::flush();
return Redirect::to('/login')->with('message', FlashMessage::DisplayAlert('Your Account has been used for test', 'warning'));
}
$datebirth = Date($user->BirthDate);
$dob = Date("Y") - $datebirth;
Session::put('current_user', Input::get('username'));
Session::put('full_name', $user->FullName);
Session::put('gender', $user->Sex);
Session::put('dob', $dob);
Session::put('user_id', $user->id);
// set the user last login
$user->last_login = $today;
$user->save();
return Redirect::to('/onlinetest')->with('message', 'Login Successfully.');
}
else
{
return Redirect::to('/login')->with('message', FlashMessage::DisplayAlert('Incorrect Username / Password', 'danger'));
}
}
我的过滤器:
<?php
/*
|--------------------------------------------------------------------------
| Application & Route Filters
|--------------------------------------------------------------------------
|
| Below you will find the "before" and "after" events for the application
| which may be used to do any work before or after a request into your
| application. Here you may also register your custom route filters.
|
*/
App::before(function($request)
{
//
});
App::after(function($request, $response)
{
//
});
/*
|--------------------------------------------------------------------------
| Authentication Filters
|--------------------------------------------------------------------------
|
| The following filters are used to verify that the user of the current
| session is logged into this application. The "basic" filter easily
| integrates HTTP Basic authentication for quick, simple checking.
|
*/
Route::filter('auth', function()
{
if (Auth::guest())
{
if (Request::ajax())
{
return Response::make('Unauthorized', 401);
}
else
{
return Redirect::guest('login');
}
}
});
Route::filter('auth.basic', function()
{
return Auth::basic();
});
/*
|--------------------------------------------------------------------------
| Guest Filter
|--------------------------------------------------------------------------
|
| The "guest" filter is the counterpart of the authentication filters as
| it simply checks that the current user is not logged in. A redirect
| response will be issued if they are, which you may freely change.
|
*/
Route::filter('guest', function()
{
if (Auth::check()) return Redirect::to('/');
});
/*
|--------------------------------------------------------------------------
| CSRF Protection Filter
|--------------------------------------------------------------------------
|
| The CSRF filter is responsible for protecting your application against
| cross-site request forgery attacks. If this special token in a user
| session does not match the one given in this request, we'll bail.
|
*/
Route::filter('csrf', function()
{
if (Session::token() !== Input::get('_token'))
{
throw new Illuminate\Session\TokenMismatchException;
}
});
显然,如果我不使用olliread这条路线不起作用。我总是可以去网上测试,即使我没有登录。
这条路线有什么解决方案吗?或者我在控制器上弄错了?
感谢。
答案 0 :(得分:0)
您没有在Route组中指定的“用户”过滤器。尝试将路由组中的“user”换成“auth”:
<?php
Route::group(['before' => 'auth'], function()
{
// ...
});