duandong1869 2016-06-25 08:30
浏览 24
已采纳

在Laravel中,哪个中间件首先启动CSRF或AUTH

According to the Laravel Website

Laravel will first authenticate the USER that is fire the

Auth middleware and then fire CSRF middleware.

But What if the Login page is a a fishing page and isn't it more natural to first check if the request is from our own website and then Check if the user authentication ??.

Can some one throw some light on the same .

Thanks

Any help would be appreciated

  • 写回答

2条回答 默认 最新

  • dtvq4978 2016-06-25 08:45
    关注

    From the Laravel Request Lifecycle page

    First the requests are passed to the middleware which are to be processed by each request defined in app/Http/kernel.php. CSRF middleware is applied at this point.

    The HTTP kernel also defines a list of HTTP middleware that all requests must pass through before being handled by the application. These middleware handle reading and writing the HTTP session, determine if the application is in maintenance mode, verifying the CSRF token, and more.

    Then the request will be passed to the router. The router will impose route specific middleware then. That means, auth is also applied at this point.

    Once the application has been bootstrapped and all service providers have been registered, the Request will be handed off to the router for dispatching. The router will dispatch the request to a route or controller, as well as run any route specific middleware.

    Hope you got the answer.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 cplex运行后参数报错是为什么
  • ¥15 之前不小心删了pycharm的文件,后面重新安装之后软件打不开了
  • ¥15 vue3获取动态宽度,刷新后动态宽度值为0
  • ¥15 升腾威讯云桌面V2.0.0摄像头问题
  • ¥15 关于Python的会计设计
  • ¥15 聚类分析 设计k-均值算法分类器,对一组二维模式向量进行分类。
  • ¥15 stm32c8t6工程,使用hal库
  • ¥15 找能接spark如图片的,可议价
  • ¥15 关于#单片机#的问题,请各位专家解答!
  • ¥15 博通raid 的写入速度很高也很低