[英]SOLVED - Laravel Passport - CreateFreshApiToken is not being recognized by auth:api middleware
首先,我已經在 StackOverflow 和其他網站上閱讀過其他類似的問題。 在將我重定向到其他已解決的問題之前,請閱讀我要說的內容:)
I was using passport as detailed in the official documentation of Laravel so that my js app could use my Laravel API using the access token set in the cookie created by the CreateFreshApiToken class. 我沒有問題,即使使用它來訪問 GraphQL 查詢(我必須將 apollo-client 更改為 Axios 來實現這一點。出於我不明白的原因,apollo 沒有發送 cookie)。
問題是我運行了 composer install 和 Laravel 從 6.x 更新到 8,所以一切都壞了。 經過多次嘗試解決它,我決定回滾到 Laravel 6.x 並且一切都恢復正常,除了 CreateFreshApiToken class ...
現在,Axios 繼續使用 cookie,但后端沒有按預期響應,因為它的行為就像它沒有收到任何 cookie,因此中間件響應是“未經身份驗證”。
如果某些依賴項沒有很好地回滾到原來的 state,我可以很明顯地猜測它們與此有關。 不管這個假設是否正確,我仍然認為解決方案是對我的依賴項的當前 state 采用一些代碼。
該問題與 Passport 本身無關,因為如果我使用獲得的 access_token 顯式測試請求,則它運行良好。
編輯:我成功地在服務器端檢查了 cookie 是否包含在請求中。
項目信息
Laravel 框架 6.20.27 php 7.3.4 節點 v14.17.0
相關代碼:
Kernel.php
protected $middleware = [
\App\Http\Middleware\TrustProxies::class,
\App\Http\Middleware\CheckForMaintenanceMode::class,
\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
\App\Http\Middleware\TrimStrings::class,
\Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
];
protected $middlewareGroups = [
'web' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
\Illuminate\Session\Middleware\AuthenticateSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\VerifyCsrfToken::class,
\Illuminate\Routing\Middleware\SubstituteBindings::class,
\Laravel\Passport\Http\Middleware\CreateFreshApiToken::class
],
'api' => [
'throttle:60,1',
'bindings',
]
];
protected $routeMiddleware = [
'auth' => \App\Http\Middleware\Authenticate::class,
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class,
'can' => \Illuminate\Auth\Middleware\Authorize::class,
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
'password.confirm' => \Illuminate\Auth\Middleware\RequirePassword::class,
'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
'checkRole' => \App\Http\Middleware\CheckRole::class //custom middleware
];
/**
* The priority-sorted list of middleware.
*
* This forces non-global middleware to always be in the given order.
*
* @var array
*/
protected $middlewarePriority = [
\Illuminate\Session\Middleware\StartSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\Authenticate::class,
\Illuminate\Routing\Middleware\ThrottleRequests::class,
\Illuminate\Session\Middleware\AuthenticateSession::class,
\Illuminate\Routing\Middleware\SubstituteBindings::class,
\Illuminate\Auth\Middleware\Authorize::class,
];
用戶.php
use SoftDeletes, SoftCascadeTrait, Notifiable, HasApiTokens;
Auth.php
'defaults' => [
'guard' => 'web',
'passwords' => 'users',
],
'guards' => [
'web' => [
'driver' => 'session',
'provider' => 'users',
],
'api' => [
'driver' => 'passport',
'provider' => 'users',
]
],
'providers' => [
'users' => [
'driver' => 'eloquent',
'model' => App\User::class,
],
],
身份驗證服務提供者
public function boot() {
$this->registerPolicies();
Passport::routes();
}
RouteServiceProvider
public function map() {
$this->mapApiRoutes();
$this->mapWebRoutes();
//
}
protected function mapWebRoutes() {
Route::middleware('web')
->namespace($this->namespace)
->group(base_path('routes/web.php'));
}
protected function mapApiRoutes() {
Route::prefix('api')
->middleware('api')
->namespace($this->namespace)
->group(base_path('routes/api.php'));
}
登錄控制器
public function handleFacebookCallback() {
try {
$user = Socialite::driver('facebook')->stateless()->fields(['first_name', 'last_name'])->user();
$attributes = [
'names' => $user->user['first_name'],
'lastname' => $user->user['last_name'],
'email' => $user->email,
'facebook_id' => $user->id,
'photo_uri' => $user->getAvatar()
];
$user = User::where('facebook_id', $user->id)->first();
if ($user) {
// do things
} else {
$user = User::create($attributes);
$user->roles()->attach(10);
}
foreach ($user->tokens as $token)
$token->revoke();
$this->guard()->login($user); //web login
$token = Auth::user()->createToken('API')->accessToken; //Passport access token creation
//shouldn't matter if token is sent or not to the view
return View::make('welcome')->with('token', $token);
}
catch(\GuzzleHttp\Exception\ClientException $e) {
return redirect('auth/facebook');
}
}
作曲家.json
"require": {
"php": "^7.2",
"askedio/laravel-soft-cascade": "^6.0",
"doctrine/dbal": "^2.10",
"fideloper/proxy": "^4.0",
"laravel/framework": "^6.2",
"laravel/passport": "^8.2",
"laravel/socialite": "^4.3",
"laravel/tinker": "^1.0",
"laravel/ui": "1.0",
"league/flysystem-aws-s3-v3": "^1.0",
"rebing/graphql-laravel": "^3.1",
"symfony/cache": "^4.2",
"symfony/config": "^4.2",
"symfony/console": "^4.2"
},
將非常感謝您的意見。 問候。
最后,將護照更新到 9.x 解決了這個問題
Laravel Passport“auth:api”中間件充當“web,auth”中間件
[英]Laravel Passport “auth:api” middleware acts as “web, auth” middleware
laravel 護照:請求 user() 在 auth:api 中間件之外返回 null,在返回用戶對象內部
[英]laravel passport: Request user() returning null outside auth:api middleware, and inside returning user object
Laravel 5.8 護照在本地工作但在 ['middleware' => 'auth:api'] 組中的路由時未經身份驗證返回
[英]Laravel 5.8 passport working in local but in sever return unauthenticated when routes in ['middleware' => 'auth:api'] group
Laravel Passport將中間件添加到默認的身份驗證/令牌路由
[英]Laravel Passport add a middleware to the default auth/token route
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.