前言: 再第 3 章中介绍了如何使用多用户的jwt认证,下面讲讲怎么实现 jwt 多用户鉴权
- 路由文件
路由接口文件应该充分分组,按照系统的业务逻辑分成:
所有模块->不需要登录(比如通用的分类、图片上传等)
用户模块->不需要登录 (登录、注册、找回密码等)
用户模块->需要登录
管理员模块->不需要登录(比如登录、注册、找回密码等)
管理员模块->需要登录
闲话少叙,下面是路由代码 api.php
| use Illuminate\Http\Request; | |
| use Illuminate\Support\Facades\Route; | |
| /* | |
| |-------------------------------------------------------------------------- | |
| | API Routes | |
| |-------------------------------------------------------------------------- | |
| | | |
| | Here is where you can register API routes for your application. These | |
| | routes are loaded by the RouteServiceProvider within a group which | |
| | is assigned the "api" middleware group. Enjoy building your API! | |
| | | |
| */ | |
| Route::get('/user', function (Request $request) {return ['asdf']; | |
| }); | |
| // 配置dingo路由 | |
| $api = app('Dingo\Api\Routing\Router'); | |
| // 默认Accept application/prs.hospital.v1+json | |
| $api->version('v1', ['namespace' => 'App\Http\Controllers\V1', 'middleware' => []], function ($api) { | |
| // 公共路由 | |
| $api->group(['as' => 'common', 'prefix' => 'common', 'namespace' => 'Common', 'middleware' => []], function ($api) {// 登录获取token | |
| $api->post('authorization', 'AuthorizationController@store')->name('.authorizations.store');// 刷新token | |
| $api->get('refresh_token', 'AuthorizationsController@refresh')->name('.authorizations.refresh');// 退出登录 | |
| $api->get('log_out', 'AuthorizationsController@logOut')->name('.authorizations.refresh');}); | |
| //管理员后台接口 | |
| $api->group(['as' => 'admin', 'prefix' => 'admin', 'namespace' => 'Admin', 'middleware' => []], function ($api) {//需要登录后的接口 | |
| $api->group(['middleware' => ['auth:admin']], function ($api) { | |
| $api->get('me','AdminsController@me');});}); | |
| // 用户员接口 | |
| $api->group(['as' => 'user', 'prefix' => 'user', 'namespace' => 'User', 'middleware' => []], function ($api) {//需要登录后的接口 | |
| $api->group(['middleware' => ['auth:user']], function ($api) { | |
| $api->get('me','UsersController@me');});}); | |
| }); |
补上对应的控制器
php artisan make:controller V1/Admin/AdminsController
php artisan make:controller V1/User/UsersController
UsersController代码都一样这里只写AdminsController
| namespace App\Http\Controllers\V1\Admin; | |
| use App\Http\Controllers\Controller; | |
| use Illuminate\Http\Request; | |
| class AdminsController extends Controller | |
| { | |
| public function me(){ | |
| return auth('admin')->user(); | |
| } | |
| } |
访问接口:get http://homestead.test/api/admin/me
header里面加上刚才生成的token
Authorization:Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJodHRwOlwvXC9ob21lc3RlYWQudGVzdFwvYXBpXC9jb21tb25cL2F1dGhvcml6YXRpb24iLCJpYXQiOjE2MTAzNTM5MjUsImV4cCI6MTYxODEyOTkyNSwibmJmIjoxNjEwMzUzOTI1LCJqdGkiOiJLNW1ZenZsOEY3N1A0azl0Iiwic3ViIjoxLCJwcnYiOiJkZjg4M2RiOTdiZDA1ZWY4ZmY4NTA4MmQ2ODZjNDVlODMyZTU5M2E5In0.NYZKW2wbfMPAjLF-d-oA88OMrCNo8WHy7wAM_zhxlzU
访问结果:
| {"id": 1,"name": "Helmer Graham","account": "38129","password": "$2y$10$rQ54Rh.FMPGWR8q9Oq8UUOCH4YYLurx2MPK/4aDgnh0yLh6Ow7sTa","created_at": "2021-01-08T09:33:56.000000Z","updated_at": "2021-01-08T09:33:56.000000Z" | |
| } |
别忘了要删除这一段(最新版本的laravel会默认走这里,旧版没这个跳转)
app\Http\Middleware\Authenticate.php
| /** | |
| * Get the path the user should be redirected to when they are not authenticated. | |
| * | |
| * @param \Illuminate\Http\Request $request | |
| * @return string|null | |
| */ | |
| protected function redirectTo($request){ | |
| // if (! $request->expectsJson()) { | |
| // return route('login'); | |
| // } | |
| } |
用户控制器也是一样控制器guard改一下就行了
| return auth('user')->user(); | |
| // 下面写法同样有效 | |
| dump($request->user()); | |
| dump(auth('admin')->user()); | |
| dump(\Illuminate\Support\Facades\Auth::user()); | |
| dump(\Illuminate\Support\Facades\Auth::guard('admin')->user()); |
至此完成!是不是很简单。