Laravel护照/允许来宾的api路线/绕过Laravel api中间件

如何解决Laravel护照/允许来宾的api路线/绕过Laravel api中间件

这是我经过一周的努力发现的唯一一种用于护照认证的解决方案。享受吧！

在文件app / Http / Middleware / Authenticate.php中粘贴以下代码

<?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Auth\Middleware\Authenticate as Middleware;
use Illuminate\Auth\AuthenticationException;
use Illuminate\Contracts\Auth\Factory as Auth;

class Authenticate extends Middleware
{
    /**
     * The authentication factory instance.
     *
     * @var \Illuminate\Contracts\Auth\Factory
     */
    protected $auth;

    /**
     * Create a new middleware instance.
     *
     * @param  \Illuminate\Contracts\Auth\Factory  $auth
     * @return void
     */
    public function __construct(Auth $auth)
    {
        $this->auth = $auth;
    }

    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @param  string[]  ...$guards
     * @return mixed
     *
     * @throws \Illuminate\Auth\AuthenticationException
     */
    public function handle($request,Closure $next,...$guards)
    {
        $this->authenticate($guards);

        return $next($request);
    }

    /**
     * Determine if the user is logged in to any of the given guards.
     *
     * @param  array  $guards
     * @return void
     *
     * @throws \Illuminate\Auth\AuthenticationException
     */
    protected function authenticate(array $guards)
    {

        if (empty($guards)) {
            return $this->auth->authenticate();
        }

        foreach ($guards as $guard) {
            if ($this->auth->guard($guard)->check()) {
                return $this->auth->shouldUse($guard);
            }else{
                return null;
            }
        }

        throw new AuthenticationException('Unauthenticated.',$guards);
    }
}

此后，所有路线将对客人开放。

创建新的中间件DenyIfNotAuthenticated。从默认的app / Http / Middleware / Authenticate.php添加代码。会是这样的：

<?php

namespace App\Http\Middleware;

use Illuminate\Auth\Middleware\Authenticate as Middleware;

class DenyIfNotAuthenticated extends Middleware
{
    /**
     * Get the path the user should be redirected to when they are not authenticated.
     *
     * @param  \Illuminate\Http\Request  $request
     * @return string|null
     */
    protected function redirectTo($request)
    {
        if (! $request->expectsJson()) {
            return route('login');
        }
    }
}

添加到Kernel.php文件行：'auth.deny'=> \ App \ Http \ Middleware \ DenyIfNotAuthenticated :: class，下面的'auth'=> \ App \ Http \ Middleware \ Authenticate :: class，>

routes / api.php中的路由如下：

Route::apiResource('recipes','RecipesController'); // accessible for guests

Route::group(['middleware' => ['auth.deny:api']],function () {
    Route::get('ingredients','IngredientsController@index');
}); // accessible only for authorized users

版权声明：本文内容由互联网用户自发贡献，该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务，不拥有所有权，不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容， 请发送邮件至 dio@foxmail.com 举报，一经查实，本站将立刻删除。