stackoom
  简体   繁体   中英

Laravel 5.1 page authentication using routes

 原文  2015-12-14 12:37:06       php/ laravel/ authentication/ laravel-5

Question

I'm working on a site that needs an admin panel. I am currently trying to set up the authentication of that panel, though I can not find a way to deny access from any guest users (non-admins). I have a login page, of course, and after login, it routes to the admin page, though you can also go to /admin when you're not logged in.

routes.php : 

Route::get('home', function(){
if (Auth::guest()) {
    return Redirect::to('/');
} else {
    return Redirect::to('admin');
}
});

Route::get('admin', function () {
    return view('pages.admin.start');
});

MainController.php : 

namespace App\Http\Controllers;

use App\Http\Controllers\Controller;

class MainController extends Controller {

 public function getIndex() {
    return view('pages.index');
 }

 public function getAbout() {
    return view('pages.about');
 }

 public function getPortfolio() {
    return view('pages.portfolio');
 }

 public function getShop() {
    return view('pages.shop');
 }

 public function getContact() {
    return view('pages.contact');
 }

 /*public function getAdmin() {
      return view('pages.admin.start');
 }*/
}

I could really use some help here, because I'm totaly stuck, and yes, I have read the documentation, though maybe I'm just missing something.

2 answers

solution1
 1  2015-12-14 12:44:04

You should use a Middleware to handle authentication of your users

1) First you have to create a middleware that will check if the user requiring the page is an admin, and if not you have to redirect; something like this: 

class AdminMiddleware
{
    public function handle(Request $request, Closure $next )
    {
        //if User is not admin
           //redirect to no permess

        return $next($request);
    }
}

2) Then you have to bind the middleware to the routes you want to be accessible only from an admin user: 

//bind the middleware to all the routes inside this group
Route::group( ['middleware' => 'adminmiddleware' ], function()
{
    Route::get('admin', function () {
       return view('pages.admin.start');
    });

    //other routes   
});

solution2
 1 ACCPTED  2015-12-14 12:59:59

Assuming you have a line like this: 

'auth' => 'App\Http\Middleware\Authenticate',

in your app/Http/Kernel.php file:

put all the routes you need "authenticated" inside the grouping, but keep the "guest" routes outside of them : 

Route::get('home', function(){
if (Auth::guest()) {
    return Redirect::to('/');
} else {
    return Redirect::to('admin');
}
});



Route::group( ['middleware' => 'auth' ], function(){
    Route::get('admin', function () {
        return view('pages.admin.start');
    });
    Route::just-another-route()...;
    Route::just-another-route()...;

});

Documentation: http://laravel.com/docs/5.1/routing#route-groups

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Using named routes in a laravel 5.1 config file Laravel 5.1 protecting routes with ownership using middleware Laravel 5.1 authentication - cannot redirect to login page laravel 5.1 says for all the other routes that except ('/') that 404 page not found on online Amazon Server using ec2 Protect routes in Laravel 5.1 Set routes in Laravel 5.1 Using different Table for Authentication in Laravel 5.1 [Laravel 5.1]Custom routes display a white (blank) page Laravel 5.1 authentication not working Laravel 5.1 Basic Authentication
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM