stackoom
  简体   繁体   中英

Laravel token based User Authentication?

 原文  2015-11-26 13:47:31       php/ laravel/ authentication/ authorization/ laravel-5.1

Question

I have developed a web application using Laravel 5.1 and I am using Laravel Authentication for User Authorization and User Authentication.

And Now I want to Rest API for the same application with Token Based, stateless user Authorization.

Is there any way to do it directly with minimal modification in current code or using the same authorization for mobile applications but token based, if not then what is the quickest possible way to achieve this.

I have already checked oauth2-server-laravel But I don't think that, it will be useful in my case.

Thanks in advance!!!

2 answers

solution1
 1 ACCPTED  2015-11-26 14:12:54

You can use JWT-Auth for token based authentication on Laravel applications. Refer to the documentation on how to use it.

solution2
 1  2015-11-27 11:09:57

I am adding this answer just addition to above answer

First, I have added "tymon/jwt-auth": "0.5.*" to my composer.json file and ran composer update for pulling the JWT-Auth .

then, I have added check for Rest Request in my Authenticate Middleware and added JWT token validation for the request in authenticate Middleware 

public function handle($request, Closure $next)
    {
        if($request->has('token')){
            $this->auth = JWTAuth::parseToken()->authenticate();
            return $next($request);
        }
        else{
            if ($this->auth->guest()) {
                if ($request->ajax()) {
                    return response('Unauthorized.', 401);
                } else {
                    return redirect()->guest('auth/login');
                }
            }
            return $next($request);
        }
    }

Then I have Modified Login and added check for Rest Request and Returning Rest API token for Rest Requests 

if(isRestRequest){
            // grab credentials from the request
            $credentials = Input::only('email', 'password');

            try {
                // attempt to verify the credentials and create a token for the user
                if (! $token = JWTAuth::attempt($credentials)) {
                    return Response::json(['error' => 'invalid_credentials'], 401);
                }
            } catch (JWTException $e) {
                // something went wrong whilst attempting to encode the token
                return Response::json(['error' => 'could_not_create_token'], 500);
            }

            // all good so return the token
            return Response::json(compact('token'));


}

And rest everything is working as it was without much modification, even Auth::user() returns the User object with all the values.

Thumbs up for jwt-auth

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Token based authentication vs JWT or passport laravel? Laravel 5.6 shopping cart based on session token authentication issue NotFoundHttpException while using api_token based authentication in laravel 5.2 Rest API JWT token based authentication security | laravel/dingo/jwt Sessions in token based authentication Token based authentication for PHP token based authentication in php Laravel 5 - Redirecting a user to a specific page based on their role on authentication Laravel - How to restrict certain functionality based on user authentication? Clients authentication and user authentication with laravel
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM