stackoom
  简体   繁体   中英

Allow login only for active users

 原文  2021-05-28 23:30:46       php/ laravel/ authentication/ laravel-8

Question

I need to allow login only for allowed users, this is my controller:

class LoginController extends Controller
{
    public function index()
    {
        return view('login');
    }

    public function login(Request $request)
    {
        $credentials = $request->only('user', 'password');

        if (!Auth::attempt($credentials)) {
            return back()->with('error', 'Usuario o Contraseña Invalidos!');
        } else if (Auth::user()->status != 1) {
            return back()->with('error', 'Usuario no autorizado');
        }

        $request->session()->regenerate();

        return redirect('home');
    }

    public function logout(Request $request)
    {
        Auth::logout();
        $request->session()->regenerate();
        return redirect('/login');
    }
}

it works but it is allowing all the users, even those with status = 0, what am i doing wrong?

thanks for your help...

2 answers

solution1
 3 ACCPTED  2021-05-29 02:17:53

Auth::attempt accept extra query conditions to the authentication query in addition to the user's email and password. 

if (Auth::attempt(['email' => $email, 'password' => $password, 'status' => 1])) {
    // Authentication was successful...
}

solution2
 0  2021-05-29 07:09:36

In your LoginControllere add this:

protected function credentials(\Illuminate\Http\Request $request)
{
    //return $request->only($this->username(), 'password');
    return [$this->username() => $request->{$this->username()}, 'password' => $request->password, 'status' => 1];
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Laravel 5 allow login to only specific users based on user type htaccess to only allow 1 ip and forward external users to websites login Allow different users to login with laravel How can I allow that android users only can action to login into site and not another Operating systems Symfony: Authenticate users against LDAP server, but allow login only if their username is in custom db table how to use openid for login system in website that allow only authorized users to access site Allow users to download ONLY images Only allow file download with active session Only allow file download to logged in users Allow users only certain information from database
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM