CakePHP 3.7 cakephp /身份验证插件。错误“需要验证才能继续”

时间:2019-06-28 07:48:01

标签: php cakephp cakephp-3.0

我正在遵循食谱https://book.cakephp.org/authentication/1.1/en/index.html中的指南。但是我的代码不断抛出错误enter image description here

这是我的Application.php

<?php
/**
 * CakePHP(tm) : Rapid Development Framework (https://cakephp.org)
 * Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
 *
 * Licensed under The MIT License
 * For full copyright and license information, please see the LICENSE.txt
 * Redistributions of files must retain the above copyright notice.
 *
 * @copyright Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
 * @link      https://cakephp.org CakePHP(tm) Project
 * @since     3.3.0
 * @license   https://opensource.org/licenses/mit-license.php MIT License
 */
namespace App;

/**
 * AUTHENTICATION SETTINGS
 */
use Authentication\AuthenticationService;
use Authentication\AuthenticationServiceProviderInterface;
use Authentication\Middleware\AuthenticationMiddleware;

/**
 * AUTHENTICATION SETTINGS
 */
use Cake\Core\Configure;
use Cake\Core\Exception\MissingPluginException;
use Cake\Error\Middleware\ErrorHandlerMiddleware;
use Cake\Http\BaseApplication;
use Cake\Routing\Middleware\AssetMiddleware;
use Cake\Routing\Middleware\RoutingMiddleware;
use Cake\Http\Middleware\CsrfProtectionMiddleware;

use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;





/**
 * Application setup class.
 *
 * This defines the bootstrapping logic and middleware layers you
 * want to use in your application.
 */
//OLD -- class Application extends BaseApplication

class Application extends BaseApplication
implements AuthenticationServiceProviderInterface
{
    /**
     * {@inheritDoc}
     */

     public function getAuthenticationService(ServerRequestInterface $request, ResponseInterface $response)
     {
         $service = new AuthenticationService();

         $fields = [
             'username' => 'email',
             'password' => 'password'
         ];

         // Load identifiers
         $service->loadIdentifier('Authentication.Password', compact('fields'));

         // Load the authenticators, you want session first
         $service->loadAuthenticator('Authentication.Session');
         $service->loadAuthenticator('Authentication.Form', [
             'fields' => $fields,
             'loginUrl' => '/users/login'
         ]);

         return $service;
     }

    public function bootstrap()
    {

        parent::bootstrap();
        $this->addPlugin('DebugKit');
        $this->addPlugin('Authentication');

        // Call parent to load bootstrap from files.
        //-- Authentication plugin added change the Auth function


        if (PHP_SAPI === 'cli') {
            try {
                $this->addPlugin('Bake');
            } catch (MissingPluginException $e) {
                // Do not halt if the plugin is missing
            }

            $this->addPlugin('Migrations');
        }

        /*
         * Only try to load DebugKit in development mode
         * Debug Kit should not be installed on a production system
         */
        if (Configure::read('debug')) {
            $this->addPlugin(\DebugKit\Plugin::class);
        }
    }

    /**
     * Setup the middleware queue your application will use.
     *
     * @param \Cake\Http\MiddlewareQueue $middlewareQueue The middleware queue to setup.
     * @return \Cake\Http\MiddlewareQueue The updated middleware queue.
     */
    public function middleware($middlewareQueue)
    {
        $middlewareQueue
            // Catch any exceptions in the lower layers,
            // and make an error page/response
            ->add(new ErrorHandlerMiddleware(null, Configure::read('Error')))

            // Handle plugin/theme assets like CakePHP normally does.
            ->add(new AssetMiddleware([
                'cacheTime' => Configure::read('Asset.cacheTime')
            ]))

            // Add routing middleware.
            // Routes collection cache enabled by default, to disable route caching
            // pass null as cacheConfig, example: `new RoutingMiddleware($this)`
            // you might want to disable this cache in case your routing is extremely simple
            ->add(new RoutingMiddleware($this, '_cake_routes_'));


         // Add the authentication middleware
         $authentication = new AuthenticationMiddleware($this,[
           'unauthorizedRedirect' => '/',
           'queryParam' => null,
         ]);


         // Add the middleware to the middleware queue
         $middlewareQueue->add($authentication);

        return $middlewareQueue;
    }
}

在我的app / Application.php内部,我像这样

调用了功能引导程序中的 Authentication 插件。
    public function bootstrap()
    {

        parent::bootstrap();
        $this->addPlugin('DebugKit');
        $this->addPlugin('Authentication');

在我的 AppController.php 中,我已经像这样设置了


/** INITIALIZE  **/
    public function initialize()
    {
        parent::initialize();
        $this->loadComponent('RequestHandler', [
            'enableBeforeRedirect' => false,
        ]);
        /**
        *$this->loadComponent('Flash');
        *
         * load authenticator
         * [$this->loadComponent description]
         * @var [type]
         *
         */
         $this->loadComponent('Authentication.Authentication', [
             'logoutRedirect' => false // Default is false
         ]);


/** INITIALIZE  **/

}

和我的 UsersController.php ,用于处理来自https:localhost / users / login

的请求
    public function login()
     {

       //$this->render(false);



      $this->viewBuilder()->layout('Common/login');
    $session = $this->request->session();

      /*
      **AUTHENTICATION
       */
       $result = $this->Authentication->getResult();
      debug($result);

          // regardless of POST or GET, redirect if user is logged in
          if ($result->isValid()) {
              $user = $request->getAttribute('identity');

              // Persist the user into configured authenticators.
              $this->Authentication->setIdentity($user);
              $session->write('user_data',$user);

              $redirect = $this->request->getQuery('redirect', ['controller' => 'Users', 'action' => 'display', 'index']);
              return $this->redirect($redirect);
          }

          // display error if user submitted and authentication failed
          if ($this->request->is(['post']) && !$result->isValid()) {
              $this->Flash->error('Invalid username or password');
          }
       /*
       **AUTHENTICATION
        */

    }

我已经待了好几个小时了,这个家伙需要帮助:)。

1 个答案:

答案 0 :(得分:0)

您应在beforeFilter中为非授权操作定义允许操作,例如:

$this->Authentication->allowUnauthenticated(['login']);