stackoom
  简体   繁体   中英

ZF2 redirect to login page on every page if user is not logged in

 原文  2015-03-25 09:35:54       php/ zend-framework2

Question

Is there an efficient way to do this? Options I've looked into:

  • Checking the session container in the layout
  • Checking the session container in the module onBootstrap functions()
  • Handling the session container individually in each Controller/Action

Ideally I'd have this check once, is there any correct way to do this?

Something along the lines of... 

$session = new Container('username');
    if($session->offsetExists('username')) {
        //check im not already at my login route
        //else redirect to login route
    }
}

2 answers

solution1
 4 ACCPTED  2015-03-25 12:02:05

You can use below code inside each controller 

public function onDispatch(\Zend\Mvc\MvcEvent $e)
{
        if (! $this->authservice->hasIdentity()) {
            return $this->redirect()->toRoute('login');
        }

        return parent::onDispatch($e);
}

You can also check session on module's onBootstrap function(), you need to match the route using zf2 events: 

$auth = $sm->get('AuthService');
$em->attach(MvcEvent::EVENT_ROUTE, function ($e) use($list, $auth)
{
    $match = $e->getRouteMatch();

    // No route match, this is a 404
    if (! $match instanceof RouteMatch) {
        return;
    }

    // Route is whitelisted
    $name = $match->getMatchedRouteName();

    if (in_array($name, $list)) {
        return;
    }

    // User is authenticated
    if ($auth->hasIdentity()) {
        return;
    }

    // Redirect to the user login page, as an example
    $router = $e->getRouter();
    $url = $router->assemble(array(), array(
        'name' => 'login'
    ));

    $response = $e->getResponse();
    $response->getHeaders()
        ->addHeaderLine('Location', $url);
    $response->setStatusCode(302);

    return $response;
}, - 100);

where $list will contain the list of routes not to be processed: 

$list = array('login', 'login/authenticate');

solution2
 0  2015-03-25 10:59:00

As checkout in ZFcAuth plugin in following urls, I found some code for check & redirect. 

if (!$auth->hasIdentity() && $routeMatch->getMatchedRouteName() != 'user/login') {
    $response = $e->getResponse();
    $response->getHeaders()->addHeaderLine(
        'Location',
        $e->getRouter()->assemble(
            array(),
            array('name' => 'zfcuser/login')
        )
    );
    $response->setStatusCode(302);
    return $response;
}

This code chunk show the way to validate/redirect. However they are not in-build way as ZF2 only provide components. You can also use other plugins like ZfcUser, ZfcAcl, ZfcRABC which provide all functionality.

link : https://github.com/ZF-Commons/ZfcUser/issues/187#issuecomment-12088823 .

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question redirect to login page if user is not logged in? Redirect to login page if user is not logged in How to run a function on every page in ZF2 Redirect to login page unless a user is logged in Unable to redirect to login page if user is not logged in ZF2 - update user profile page Joomla login page, if user is already logged redirect to home page ZF2 redirect if ACL does not allow access to page PHP: How to check if user is already logged in and otherwise redirect to login page Laravel redirect to user dashboard when visiting login page if logged in
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM