[英]Laravel middlewares always return false
我創建了4種中間件:1用於檢查用戶是否是管理員之一(role_id!='4'),1用於超級管理員(role_id == 1),1用於普通管理員(role_id == 2),1用於編輯者admin (role_id == 3)
我的用戶表有一個role_id
列。
檢查用戶的中間件是工作的管理員之一。 但是其他中間件總是返回false。
我的路線
Route::group(['middleware'=>'admin'],function(){
Route::get('/backlogout','backend\BackloginController@getLogout')->name('back-logout');
Route::get('/dashboard','BackendController@index')->name('backend');
Route::group(['prefix' => 'categories', 'middleware' => ['superadmin', 'ad','editor']], function () {
Route::get('/index', ['as' => 'back.categories.index', 'uses' => 'backend\CategoriesController@index']);
Route::any('/store', ['as' => 'back.categories.store', 'uses' => 'backend\CategoriesController@store']);
Route::any('/create', ['as' => 'back.categories.create', 'uses' => 'backend\CategoriesController@create']);
Route::any('/edit/{id}', ['as' => 'back.categories.edit', 'uses' => 'backend\CategoriesController@edit']);
Route::any('/update/{id}', ['as' => 'back.categories.update', 'uses' => 'backend\CategoriesController@update']);
Route::any('/destroy/{id}', ['as' => 'back.categories.destroy', 'uses' => 'backend\CategoriesController@destroy']);
});
Route::group(['prefix' => 'products','middleware' => ['superadmin','editor']], function () {
Route::get('/index', ['as' => 'back.products.index', 'uses' => 'backend\ProductsController@index']);
Route::any('/store', ['as' => 'back.products.store', 'uses' => 'backend\ProductsController@store']);
Route::any('/create', ['as' => 'back.products.create', 'uses' => 'backend\ProductsController@create']);
Route::any('/edit/{id}', ['as' => 'back.products.edit', 'uses' => 'backend\ProductsController@edit']);
Route::any('/update/{id}', ['as' => 'back.products.update', 'uses' => 'backend\ProductsController@update']);
Route::any('/imgview/{id}', ['as' => 'back.products.imgview', 'uses' => 'backend\ProductsController@imgview']);
Route::any('/updateimg/{id}', ['as' => 'back.products.updateimg', 'uses' => 'backend\ProductsController@updateImg']);
Route::any('/destroy/{id}', ['as' => 'back.products.destroy', 'uses' => 'backend\ProductsController@destroy']);
});
Route::group(['prefix' => 'users','middleware' => ['superadmin', 'ad']], function () {
Route::get('/index', ['as' => 'back.users.index', 'uses' => 'backend\UsersController@index']);
Route::any('/store', ['as' => 'back.users.store', 'uses' => 'backend\UsersController@store']);
Route::any('/create', ['as' => 'back.users.create', 'uses' => 'backend\UsersController@create']);
Route::any('/edit/{id}', ['as' => 'back.users.edit', 'uses' => 'backend\UsersController@edit']);
Route::any('/update/{id}', ['as' => 'back.users.update', 'uses' => 'backend\UsersController@update']);
Route::any('/destroy/{id}', ['as' => 'back.users.destroy', 'uses' => 'backend\UsersController@destroy']);
});
});
我的kernel.php
protected $routeMiddleware = [
'auth' => \Illuminate\Auth\Middleware\Authenticate::class,
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
'can' => \Illuminate\Auth\Middleware\Authorize::class,
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
'admin'=>\App\Http\Middleware\CheckAdmin::class,
'superadmin'=>\App\Http\Middleware\CheckSuperAdmin::class,
'ad'=>\App\Http\Middleware\CheckAd::class,
'editor'=>\App\Http\Middleware\CheckEditor::class,
];
我的checkadmin(檢查用戶是否是管理員之一)中間件軟件這一方法有效
class CheckAdmin
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if(Auth::check() && Auth::user()->role_id !='4'){
return $next($request);
}
return redirect()->route('backend-login');
}
}
我的checksuperadmin中間件
class CheckSuperAdmin
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if(Auth::check() && Auth::user()->role_id =='1'){
return $next($request);
}
Session::flash('notsuper','only super admin can access this page');
return redirect()->route('backend');
}
}
我的checkad(檢查普通管理員)中間件
class CheckAd
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if(Auth::check() && Auth::user()->role_id =='2'){
return $next($request);
}
Session::flash('notadmin','only admin can access this page');
return redirect()->route('backend');
}
}
我的Checkitor中間件
class CheckEditor
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if(Auth::check() && Auth::user()->role_id =='3'){
return $next($request);
}
Session::flash('noteditor','only editor can access this page');
return redirect()->route('backend');
}
}
我不知道為什么,但是所有checksuperadmin,checkadm,checkitor總是返回false
從第一組中刪除中間件。
Route::group(['prefix' => 'categories', 'middleware' => ['superadmin', 'ad','editor']], function () {
Route::get('/index', ['as' => 'back.categories.index', 'uses' => 'backend\CategoriesController@index']);
Route::any('/store', ['as' => 'back.categories.store', 'uses' => 'backend\CategoriesController@store']);
Route::any('/create', ['as' => 'back.categories.create', 'uses' => 'backend\CategoriesController@create']);
Route::any('/edit/{id}', ['as' => 'back.categories.edit', 'uses' => 'backend\CategoriesController@edit']);
Route::any('/update/{id}', ['as' => 'back.categories.update', 'uses' => 'backend\CategoriesController@update']);
Route::any('/destroy/{id}', ['as' => 'back.categories.destroy', 'uses' => 'backend\CategoriesController@destroy']);
});
Route::group(['prefix' => 'products','middleware' => ['superadmin','editor']], function () {
Route::get('/index', ['as' => 'back.products.index', 'uses' => 'backend\ProductsController@index']);
Route::any('/store', ['as' => 'back.products.store', 'uses' => 'backend\ProductsController@store']);
Route::any('/create', ['as' => 'back.products.create', 'uses' => 'backend\ProductsController@create']);
Route::any('/edit/{id}', ['as' => 'back.products.edit', 'uses' => 'backend\ProductsController@edit']);
Route::any('/update/{id}', ['as' => 'back.products.update', 'uses' => 'backend\ProductsController@update']);
Route::any('/imgview/{id}', ['as' => 'back.products.imgview', 'uses' => 'backend\ProductsController@imgview']);
Route::any('/updateimg/{id}', ['as' => 'back.products.updateimg', 'uses' => 'backend\ProductsController@updateImg']);
Route::any('/destroy/{id}', ['as' => 'back.products.destroy', 'uses' => 'backend\ProductsController@destroy']);
});
Route::group(['prefix' => 'users','middleware' => ['superadmin', 'ad']], function () {
Route::get('/index', ['as' => 'back.users.index', 'uses' => 'backend\UsersController@index']);
Route::any('/store', ['as' => 'back.users.store', 'uses' => 'backend\UsersController@store']);
Route::any('/create', ['as' => 'back.users.create', 'uses' => 'backend\UsersController@create']);
Route::any('/edit/{id}', ['as' => 'back.users.edit', 'uses' => 'backend\UsersController@edit']);
Route::any('/update/{id}', ['as' => 'back.users.update', 'uses' => 'backend\UsersController@update']);
Route::any('/destroy/{id}', ['as' => 'back.users.destroy', 'uses' => 'backend\UsersController@destroy']);
});
您正在將多個中間件應用於所有路由組。 在這種情況下,Laravel僅在用戶滿足所有條件時才授予您訪問權限。 嘗試做這樣的事情:
class CheckEditor {
public function handle($request, Closure $next)
{
if(Auth::check() && Auth::user()->role_id <='3')
//do something
}
}
class CheckAd {
public function handle($request, Closure $next)
{
if(Auth::check() && Auth::user()->role_id <='2')
//do something
}
}
並且在您的路由組中使用單個中間件:對於“編輯器”和更高的訪問級別:
Route::group(['middleware' => 'editor'], function () {
//place your routes here
});
...等等,以獲得另一個訪問級別。 僅當您希望僅授予該角色訪問權限時,才在角色中間件上使用==
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.