Laravel redirect()->intended() 在自定义登录控制器中不起作用

Question

I have a custom login controller and its using return redirect()->intended(route('home')) , as per the documentation this should send the user redirect the user to the URL they were attempting to access before being intercepted by the authentication middleware.

But for my case every time it is redirecting to home route .I am sure i have done correctly or at least i think i have done correctly. Can anyone please tell me where i am doing this wrong ??

My logincontroller is like this:

public function __construct()
    {
        $this->middleware('guest');
    }

 public function login(Request $request)
    {
        $validatedData = $request->validate([
            'email' => 'required|email|max:255',
            'password' => 'required|max:255',
        ]);
        try {
            $response = HelperFunctions::fetchData('post', 'login/login', [
                'loginId' => $request->get('email'),
                'password' => md5($request->get('password'))
            ]);
            if ($response['code'] == 200 && $response['success']) {
                session([
                    'api_token' => $response['sessionId'],
                    'user_data' => $response['data']['profile']
                ]);

                return redirect()->intended(route('home'));
            } else {
                return redirect()->back()->with('error', 'Please provide valid credentials');
            }
        } catch (\Exception $e) {
            return redirect()->back()->with('error', 'Opps!! Something is wrong. We are trying to fix it');
        }

My authentication checking middleware

class checkAuthentication
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle($request, Closure $next)
    {
        //check if user is logged in
        if(Session::has('api_token') && Session::has('user_data')) {
            return $next($request);
        }

        return redirect(route('login'));

    }
}

I also tried to dd() Session::get('url.intended') but it returns empty .

I did tried looking for reference on google, laracast & stackoverflow i found some reference , but those did not help me. Can anyone please help me thank you.

Some of the reference i have checked & tried:

1. https://laracasts.com/discuss/channels/laravel/redirect-intended-not-working-after-login?page=1
2. Laravel 5 - redirect()->intended() after authentication not going to intended
3. https://laravel.io/forum/11-24-2014-problems-with-redirectintended-and-auth

Answer 1

The simplest way would be to redirect()->guest() in your Auth middleware instead of the redirect you currently have:

return redirect()->guest(route('login'));

Using the guest() method on the redirector is what adds the url.intended value to the session.

---

Alternatively, instead of returning from the middleware if they're not authenticated you could throw an AuthenticationException :

public function handle($request, Closure $next)
{
    //check if user is logged in
    if(Session::has('api_token') && Session::has('user_data')) {
        return $next($request);
    }

    throw new AuthenticationException('Unauthenticated.');
}

This will allow you to take advantage of Laravel's ExceptionHandler if you need to. You will also need to add use Illuminate\\Auth\\AuthenticationException; to the top of your class.

Answer 2

I also tried to dd() Session::get('url.intended') but it returns empty .

In my case, this key existed in my session, but for some weird reason, something funny happens after redirect()->intended() returns the redirect response. Maybe the response is discarded in transit, or intercepted by some other caller on the stack.

What I did to work around it was to manually obtain the intended url from the session and hand it over to the redirect (instead of relying on the underlying protocols of intended() ).

By adding this

redirect(Session::get('url.intended', $this->redirectPath()));

at the bottom of LoginController@showLoginResponse , once user is authenticated, Laravel is able to remember intended url and redirect to it

Answer 3

I have also faced this problem and the best way I come up with is using the authenticated method.

So Override the authenticated method in your controller and use the intended route there.

 /**
 * The user has been authenticated.
 *
 * @param  \Illuminate\Http\Request  $request
 * @param  mixed  $user
 * @return mixed
 */
protected function authenticated(Request $request, $user)
{
    if ($user->role == 'admin') {
        return redirect()->intended('/admin');
    } elseif ($user->role == 'user') {
        return redirect()->intended('/');
    }
}

also sometimes changing the RedirectIfAuthenticated middleware also helps. so go to App\\Http\\Middleware\\RedirectIfAuthenticated.php and edit it as well.

    <?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Support\Facades\Auth;

class RedirectIfAuthenticated
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @param  string|null  $guard
     * @return mixed
     */
    public function handle($request, Closure $next, $guard = null)
    {
        if (Auth::guard($guard)->check()) {

            if ($request->user()->role == 'admin') {
                return redirect()->intended('/admin');
            } elseif ($request->user()->role == 'user') {
                return redirect()->intended('/');
            }
            // return redirect('/home');
        }

        return $next($request);
    }
}

Answer 4

Do this:

return redirect()->intended('home');

Instead of this:

return redirect()->intended(route('home'));