如何处理Slim API JWT身份验证

I already generated a token from my api login using this code:

    if ($isCorrect == 1) {
        $key = "example_key";
        $token = array(
            "iss" => "http://mywebsite.com",
            "iat" => 1356999524,
            "nbf" => 1357000000,
            'data' => [                  
                'userName' => $UserName,
            ]
        );

        $jwt = JWT::encode($token, $key);
        $decoded = JWT::decode($jwt, $key, array('HS256'));

        $unencodedArray = ['jwt' => $jwt];
        echo json_encode($unencodedArray);
    }

So I have a token now, how can I use the token to other api? What I mean is, i dont want anybody to perform this api without logging in.

This is my sample API method:

$app->get('/api/user/{UserId}', function($request){ 
//Select query here
});

This is the library i used: https://github.com/firebase/php-jwt

Thank you very much for your help.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

doufei4923 2017-04-12 16:44

关注

You Just need to add a middleware method for your API that will check the validation of the JWT token with that user name Then pass the request to the API

 $app->add( function ( $Req ,$Res ,$next ){
       //get token,username from the user 
    $token= $Req->getParsedBodyParam('token');
    $user_name=$Req->getParsedBodyParam('username');
    //check for empty of any of them
    if(empty ($token)|| empty($user_name)  ){
    $message=array("success"=>false,'message'=>'Some data is empty');
    return $Res->withStatus(401)
               -> withJson($message);
    }
    else{ 

    //Validation test for the taken for this user name 
                $decoded_token = $this->JWT::decode($token, 'YourSecret key', array('HS256'));
                if( isset($decoded_token->data->userName) && $decoded_token->data->userName == $user_Name ){
               $message=array('message'=>'the token is valid');
//pass through the next API 
                 $Res=$next($Req,$Res->withJson($message));
               return $Res;
                }
                else{
    $message=array("sccess"=>false,"message"=>"Token Validation Error",'code'=>201);
    return $Res->withStatus(401)
            ->withJson($message);
                }
    }
    });
    `

报告相同问题？

关注问题

如何使用jwt slim中间件进行身份验证？ php
2017-01-10 13:58

回答 2 已采纳 i used Authorization: Bearer Mykey , the key need to be encode in jwt mode
PHP怎么使用jwt生成 token并且验证 php
2021-12-01 13:06

回答 2 已采纳第一账号密码登录获取tokenJWT需要composer安装下，然后调用 $jwt_config = [ 'iss' => config('jwt.iss'), //签发者可选
如何允许任何用户使用Laravel JWT身份验证访问路由？ laravel php
2016-08-20 00:39

回答 1 已采纳 To solve this dilemma , I made my own middleware based on the JWTAuth GetUserFromToken middleware,
SLIM3API:PHP苗条的OAuth 2 API与JWT
2021-05-24 06:50

SLIM3API 为来宾簿输入前端创建了具有jwt身份验证的php slim 3 API
微服务架构中的JWT身份验证 node.js php
2016-02-25 22:41

回答 2 已采纳 It's not really clear why you would want to store tokens in Redis. The security token typically co
Go和JWT-简单身份验证
2016-03-26 13:56

回答 4 已采纳 To start, you need to import a JWT library in Golang (go get github.com/dgrijalva/jwt-go). You can
Laravel 5.2使用Dingo（JWT）Api验证请求 php
2017-01-18 04:49

回答 1 已采纳 Change request class App\Http\Requests\Request to Dingo\Api\Http\FormRequest
php slim 教程,Slim - 超轻量级PHP Restful API构建框架
2021-04-04 08:15

靳宸的博客下载源码包:http://www.slimframework.com/基于Slim的Restful API Sample:require '/darjuan/Slim/Slim.php';use \Slim\Slim as Slim;Slim::registerAutoloader();$app = new Slim(array('debug'=>true,'...
Firebase JWT：签名验证失败 php
2016-02-29 18:30

回答 1 已采纳 You don't need $secretKey or base64_decode the key for that matter, just do: $jwt = \Firebase\JWT
php Curl在标题中获取JWT php
2019-04-01 17:40

回答 2 已采纳 i need enable CURLOPT_HEADER => true in my array
使用laravel 5.1和jwt使用cookie进行身份验证 laravel php
2015-12-15 10:46

回答 1 已采纳 To apply it on all routes, you must put it in the $middleware, not the $routeMiddleware property o
Laravel 5.5+ 使用 Jwt-Auth 实现 API 用户认证以及无痛刷新访问令牌
2019-05-23 16:29

jack的博客 composer require tymon/jwt-auth:"^1.0@dev" 配置添加服务提供商将下面这行添加至 config/app.php 文件 providers 数组中： 'providers' => [ ... Tymon\JWTAuth\Providers\LaravelServiceProvider::...
PHP Laravel 5.7 Tymon / jwt-auth无法安装 laravel php
2018-12-23 02:08

回答 2 已采纳 It would be nice to get this released soon you can just using this "tymon/jwt-auth": "dev-develop
PHP-CRUD-API:将 REST API 添加到 MySQL/MariaDB、PostgreSQL、SQL Server 或 SQLite 数据库的单个文件 PHP 脚本
2022-02-19 13:08

allway2的博客 https://github.com/mevdschee/php-crud-api 将 REST API 添加到 MySQL/MariaDB、PostgreSQL、SQL Server 或 SQLite 数据库的单个文件... PHP-API-AUTH：单个文件 PHP 脚本，它是 PHP-CRUD-API 的身份验证提供程序 P.
常用的100个PHP类库资源和技巧
2021-12-17 22:58

沈恩华的博客收集整理一些常用的PHP类库, 资源以及技巧. 以便在工作中迅速的查找所需，本文主要和大家分享常用的100个PHP 类库资源和技巧，...Modern PHP - 作者是PHP 之道的发起人和Slim框架的作者依赖管理( Dependency Managem
没有解决我的问题, 去提问

悬赏问题

¥15 如何在scanpy上做差异基因和通路富集？
¥20 关于#硬件工程#的问题，请各位专家解答！
¥15 关于#matlab#的问题：期望的系统闭环传递函数为G(s)=wn^2/s^2+2¢wn+wn^2阻尼系数¢=0.707，使系统具有较小的超调量
¥15 FLUENT如何实现在堆积颗粒的上表面加载高斯热源
¥30 截图中的mathematics程序转换成matlab
¥15 动力学代码报错，维度不匹配
¥15 Power query添加列问题
¥50 Kubernetes&Fission&Eleasticsearch
¥15 報錯：Person is not mapped，如何解決？
¥15 c++头文件不能识别CDialog

码龄粉丝数原力等级 --

如何处理Slim API JWT身份验证

1条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

如何处理Slim API JWT身份验证

1条回答 默认 最新

悬赏问题

1条回答默认最新