douxunwei8259 2017-06-26 10:37
浏览 71
已采纳

验证登录PHP和Angular

Sorry for php newbie question. I have authentication.service.js in my application, where I encode user's password and send it to the web api (which is php using lumen framework). I have do it like this:

function Login(credentials, callback) {debugger;
   $http.post('http://localhost/credentials/' + credentials, {cache: false})
    .then(function (response) {
        callback(response.data);
    });
}

so actually it looks like: http://localhost/credentials/somesecretpassword

How should I work with it from php side? Currently I have call this: $app->post('/credentials/{password}', 'AdminController@getCredentials'); But I'm not sure how it should work!, how do I check if password exists! Is it possible to do it that way or I shouldn't return credentials like this??

Thanks

  • 写回答

1条回答 默认 最新

  • douxianliu6756 2017-06-26 10:49
    关注

    First of all, you should never send credentials in the URL (query string) because any proxy servers or cache servers might store the URL.

    If you want to, you should change it to $http.post('http://localhost/credentials?credentials=' + credentials, {cache: false})

    And then get it out in php with $_GET['credentials'];...

    What you should do

    Send the credentials with post: $http.post('http://localhost/credentials', {credentials: credentials}, {cache: false});

    and in PHP:

    $data = json_decode(file_get_contents('php://input'), true);
$credentials = $data['credentials'];

    Good luck!

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 #MATLAB仿真#车辆换道路径规划
  • ¥15 java 操作 elasticsearch 8.1 实现 索引的重建
  • ¥15 数据可视化Python
  • ¥15 要给毕业设计添加扫码登录的功能!!有偿
  • ¥15 kafka 分区副本增加会导致消息丢失或者不可用吗?
  • ¥15 微信公众号自制会员卡没有收款渠道啊
  • ¥100 Jenkins自动化部署—悬赏100元
  • ¥15 关于#python#的问题:求帮写python代码
  • ¥20 MATLAB画图图形出现上下震荡的线条
  • ¥15 关于#windows#的问题:怎么用WIN 11系统的电脑 克隆WIN NT3.51-4.0系统的硬盘