我正在构建一个Laravel 5.8应用程序,使其成为用Go编写的外部API的前端。我将用户/密码发布到API,然后使用HTTP / 200和JSON令牌(JWT)或HTTP / 401响应以表明凭据无效。
我想使用Laravel的内置身份验证机制(或任何能够真正实现此目的的机制)来创建仅用于登录用户的页面和路由。重新发明轮子似乎有很多工作。
[TLDR]基本上,我需要一些代码来检查API是否返回HTTP / 200,将令牌存储在某个地方(会话/ Cookie(但不包含数据库)),然后提供一些方法来轻松地(虚拟)将用户登录到Laravel应用。这样,我只能为登录用户创建页面。
到目前为止,我已经做到了:
APIUser类:
protected $attributes = [];
public function __construct($attributes)
{
$this->attributes = $attributes;
}
public function __get($attribute)
{
return $this->attributes[$attribute];
}
public function getKey()
{
return $this->attributes['userId'];
}
/**
* Get the name of the unique identifier for the user.
*
* @return string
*/
public function getAuthIdentifierName()
{
return 'userId';
}
/**
* Get the unique identifier for the user.
*
* @return mixed
*/
public function getAuthIdentifier()
{
return $this->attributes['userId'];
}
/**
* Get the password for the user.
*
* @return string
*/
public function getAuthPassword()
{
return null;
}
public function getAuthIdentifierEmail()
{
return $this->attributes['email'];
}
/**
* Get the token value for the "remember me" session.
*
* @return string
*/
public function getRememberToken()
{
return $this->attributes[$this->getRememberTokenName()];
}
/**
* Set the token value for the "remember me" session.
*
* @param string $value
* @return void
*/
public function setRememberToken($value)
{
$this->attributes[$this->getRememberTokenName()] = $value;
}
/**
* Get the column name for the "remember me" token.
*
* @return string
*/
public function getRememberTokenName()
{
}
public function getAttributes()
{
return $this->attributes;
}
ApiUserProvider:
protected $model;
protected $modelUser;
public function __construct(Request $request)
{
$this->model = APIUser::class;
}
public function fetchUser($credentials) {
if ($credentials['email'] and $credentials['password']) {
$email = $credentials['email'];
$password = $credentials['password'];
$client = new \GuzzleHttp\Client([
'headers' => ['Content-Type' => 'application/json'],
]);
$url = config('apilist.login');
try {
$response = $client->request('POST', $url, [
'json' => [
'email' => $email,
'password' => sha1($password),
],
]);
} catch (GuzzleException $e) {
print_r($e->getResponse());
}
$array = json_decode($response->getBody()->getContents(), true);
if($array["responseMessage"]["code"] == 200){
$userInfo = $array["responseMessage"]["object"];
return new $this->model($userInfo);
} else {
return $array["responseMessage"]["message"] ?: "Something went wrong. Please try again";
}
}
}
public function retrieveById($identifier) {
return $this->modelUser;
}
/**
* Retrieve a user by their unique identifier and "remember me" token.
*
* @param mixed $identifier
* @param string $token
* @return \Illuminate\Contracts\Auth\Authenticatable|null
*/
public function retrieveByToken($identifier, $token) {}
/**
* Update the "remember me" token for the given user in storage.
*
* @param \Illuminate\Contracts\Auth\Authenticatable $user
* @param string $token
* @return void
*/
public function updateRememberToken(Authenticatable $user, $token){}
/**
* Retrieve a user by the given credentials.
*
* @param array $credentials
* @return \Illuminate\Contracts\Auth\Authenticatable|null
*/
public function retrieveByCredentials(array $credentials){
$user = $this->fetchUser($credentials);
return $user;
}
/**
* Validate a user against the given credentials.
*
* @param \Illuminate\Contracts\Auth\Authenticatable $user
* @param array $credentials
* @return bool
*/
public function validateCredentials(Authenticatable $user, array $credentials){
//return ($credentials['email'] == $user->getAuthIdentifierEmail());
return true;
}
config / auth.php:
'providers' => [
'users' => [
'driver' => 'apiuserprovider',
],
LoginController:
public function login(Request $request){
$credentials = $request->only('email', 'password');
if (Auth::attempt($credentials)) {
// Authentication passed...
return redirect()->intended('/');
}
}
在登录功能中,当我这样做时:
dd($this->guard()->user());
它提供了我用户的信息。一切正常,但是,它不能使用户登录到系统。有什么问题吗?
答案 0 :(得分:1)
更改内部的公共函数retrieveById($ identifier)函数并从API中检索所有用户信息