[英]Laravel multiauth md5 and primary key string
目前我有1個項目需要使用具有大量數據的擴展mysql數據庫,並且密碼是md5加密的,而MEMBER_ID(primary key)是這樣的字符串
5e3bb0bdb70e4f139c132cc32daace0e
密碼字段名稱PASSWORD和主鍵名稱MEMBER_ID
所以我這樣設定雄辯的模型
<?php
namespace App\Models;
use Auth;
use Illuminate\Auth\Authenticatable;
use Illuminate\Foundation\Auth\Access\Authorizable;
use Illuminate\Contracts\Auth\Authenticatable as AuthenticatableContract;
use Illuminate\Contracts\Auth\Access\Authorizable as AuthorizableContract;
class Member extends BaseModels implements AuthenticatableContract, AuthorizableContract
{
use Authenticatable, Authorizable;
protected $connection = 'mysql_db2';
protected $table = 'tb_member';
protected $primaryKey = 'MEMBER_ID';
protected $fillable = [];
public $incrementing = false;
protected $hidden = ['PASSWORD'];
public function getAuthIdentifier() {
return $this->MEMBER_ID;
}
public function setPASSWORDAttribute($value) {
$this->attributes['PASSWORD'] = static::encryptPassword($value);
}
public function setPassword($password) {dd('set');
$this->PASSWORD = static::encryptPassword($password);
}
public function getAuthPassword() {dd('get');
return $this->PASSWORD;
}
public static function encryptPassword($password) {
return md5($password);
}
public function checkLogin($username, $password) {
if ($this->USERNAME == $username && $this->PASSWORD == static::encryptPassword($password)) {
return true;
} else {
return false;
}
}
}
我四處搜索,發現一些帖子提到要添加getAuthPassword()和setPassword()方法,但是我在那里通過了轉儲,所以我認為在laravel 5.2中已棄用了嗎?
這是我的控制器
<?php
namespace App\Http\Controllers\Auth;
use App\Models\Member;
use Validator;
use App\Http\Controllers\Controller;
use Illuminate\Foundation\Auth\ThrottlesLogins;
use Illuminate\Foundation\Auth\AuthenticatesAndRegistersUsers;
use Illuminate\Http\Request;
use Auth;
class MemberController extends Controller {
use AuthenticatesAndRegistersUsers, ThrottlesLogins;
public function login(Request $request) {
$username = $request->get('username');
$password = $request->get('password');
try {
$member = Member::where('USERNAME', '=', $username)->first();
dd(Auth::guard('member')->attempt([
'USERNAME' => $username,
'PASSWORD' => $password
]));
if ($member) {
if ($member->checkLogin($username, $password)) {
Auth::guard('member')->login($member);
if (Auth::guard('member')->check()) {
// dd(Auth::guard('member')->check());
return redirect()->route('frontend.index');
} else {
return redirect()->route('frontend.index')->withErrors();
}
} else {
return 'Incorrect password';
}
} else {
return 'Username not found';
}
$d = new Member();
$d->PASSWORD = 123456;
$credentials = [
'USERNAME' => $username,
'PASSWORD' => $password
];
if (Auth::guard('member')->attempt($credentials)) {
return 'successfully login';
} else {
return 'unable to login';
}
return 'hehe';
// dd($username, $password);
} catch (\Exception $e) {
dd('FILE: ' . $e->getfile() . 'LINE: ' . $e->getLine() . '<br />' . $e->getMessage());
}
}
}
Auth :: guard('member')-> attempt()始終返回false
Auth :: guard('member')-> login($ member)始終返回null
當頁面未刷新時, Auth :: guard('member')-> check()返回true,但是一旦刷新(或走另一條路線/頁面),則Auth :: guard('member')-> check()就會返回假
我無法更改密碼加密方法,無法添加自動遞增字段或編輯成員表的主鍵,因為另一個網站維護人員說這可能會導致其JAVA應用程序錯誤,因此在不更改任何表結構的情況下有什么想法?
更新:
我發現了一些文章http://laravel.io/forum/11-04-2014-laravel-5-how-do-i-create-a-custom-auth-in-laravel-5
我做了自定義身份驗證,最后是Auth :: guard('member')-> attempt返回true
但是一旦頁面刷新或轉到其他頁面/路由,則Auth :: guard('member')-> check()再次返回false
更新2:
我嘗試在索引處轉儲dd(\\ Session :: all()) ,發現會話已清除,但是當我在Auth :: guard('member')->之后嘗試轉儲dd(\\ Session :: all())時 嘗試 ,會話顯示
array:1 [▼
"login_member_59ba36addc2b2f9401580f014c7f58ea4e30989d" => "5e3bb0bdb70e4f139c132cc32daace0e"
]
為什么要清除會話?
我找到了解決方案,是因為會話未開始
https://laracasts.com/discuss/channels/laravel/auth-session-killed-after-redirect-laravel-52
app / Http / routes.php
//Frontend route
Route::group(array('namespace' => 'Frontend', 'middleware' => ['web']), function() {
Route::get('/', ['as' => 'frontend.index', 'uses' => 'IndexController@index']);
});
app / Http / kernel.php
<?php
namespace App\Http;
use Illuminate\Foundation\Http\Kernel as HttpKernel;
class Kernel extends HttpKernel
{
/**
* The application's global HTTP middleware stack.
*
* These middleware are run during every request to your application.
*
* @var array
*/
protected $middleware = [
\Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode::class,
];
/**
* The application's route middleware groups.
*
* @var array
*/
protected $middlewareGroups = [
'member' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\VerifyCsrfToken::class,
],
'web' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
],
'api' => [
'throttle:60,1',
],
];
/**
* The application's route middleware.
*
* These middleware may be assigned to groups or used individually.
*
* @var array
*/
protected $routeMiddleware = [
'auth' => \App\Http\Middleware\Authenticate::class,
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
'web' => \App\Http\Middleware\Web::class,
];
}
app / Http /中間件/Web.php
<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Support\Facades\Auth;
class Web
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @param string|null $guard
* @return mixed
*/
public function handle($request, Closure $next, $guard = null)
{
return $next($request);
}
}
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.