dongliu6848 2015-03-10 20:00
浏览 23
已采纳

Laravel 4 - 改进代码以检查身份验证

I have a Laravel 4 application with a resource Poll

// routes.php
Route::resource('polls', 'PollController');

I do not want anyone to be able to list all the polls, except if the user is authenticated and if (s)he is an admin. This was my solution:

// PollController.php
public function index() {

    if (Auth::check() && Auth::user()->admin) {
        return View::make('polls.index', Poll::all());
    }

    return View::make('polls.create', []);
}

This code works just fine, but it is not very clean code. For once, I make this the "admin check" in a few places. Also it does not feel like it follows the practice of "A function should be doing just 1 thing".

I was wondering if there is a cleaner way to handle cases where the response changes depending on whether the user is logged in and is an admin?

  • 写回答

1条回答 默认 最新

  • doubi1910 2015-03-10 20:05
    关注

    Use Route Groups and Auth Filters.

    http://laravel.com/docs/4.2/routing#route-groups

    http://laravel.com/docs/4.2/security#protecting-routes

    Example

    Route::group(array('before' => 'auth'), function()
{
  // Route::resource('poll', 'PollController');
  // Additional routes
}

    Here is a great tutorial series on Laravel in general (and your topic); http://culttt.com/2013/09/16/use-laravel-4-filters/

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 ogg dd trandata 报错
  • ¥15 高缺失率数据如何选择填充方式
  • ¥50 potsgresql15备份问题
  • ¥15 Mac系统vs code使用phpstudy如何配置debug来调试php
  • ¥15 目前主流的音乐软件,像网易云音乐,QQ音乐他们的前端和后台部分是用的什么技术实现的?求解!
  • ¥60 pb数据库修改与连接
  • ¥15 spss统计中二分类变量和有序变量的相关性分析可以用kendall相关分析吗?
  • ¥15 拟通过pc下指令到安卓系统,如果追求响应速度,尽可能无延迟,是不是用安卓模拟器会优于实体的安卓手机?如果是,可以快多少毫秒?
  • ¥20 神经网络Sequential name=sequential, built=False
  • ¥16 Qphython 用xlrd读取excel报错