duanbairan4235 2016-08-20 00:39
浏览 409
已采纳

如何允许任何用户使用Laravel JWT身份验证访问路由?

I'm using the Tymon/JWT-Auth package for my Laravel REST API. In my routes.php file I can add routes meant for unauthenticated users and routes for authenticated users.

Routes for unauthenticated users ignore the authorization header. However, I'd like a route group that can utilize the authorized users data if the header is valid and do something else if it isn't set or invalid.

Is there any way to implement such functionality, or maybe a solution in the JWTAuth package built-in middleware?

  • 写回答

1条回答 默认 最新

  • doushajian2018 2016-08-20 01:14
    关注

    To solve this dilemma , I made my own middleware based on the JWTAuth GetUserFromToken middleware, and I added it to the routeMiddleware array in the Kernel file.

    RouteMiddleware

    <?php
    
    namespace App\Http\Middleware;
    
    use Tymon\JWTAuth\Exceptions\JWTException;
    use Tymon\JWTAuth\Exceptions\TokenExpiredException;
    
    class NeutralRoute extends \Tymon\JWTAuth\Middleware\BaseMiddleware
    {
        /**
         * Handle an incoming request.
         *
         * @param  \Illuminate\Http\Request  $request
         * @param  \Closure  $next
         * @return mixed
         */
        public function handle($request, \Closure $next)
        {
            $token = $this->auth->setRequest($request)->getToken();
    
            if($token){
                try {
                    $user = $this->auth->authenticate($token);
                } catch (TokenExpiredException $e) {
                    return $this->respond('tymon.jwt.expired', 'token_expired', $e->getStatusCode(), [$e]);
                } catch (JWTException $e) {
                    return $this->respond('tymon.jwt.invalid', 'token_invalid', $e->getStatusCode(), [$e]);
                }
                if($user){
                    $this->events->fire('tymon.jwt.valid', $user);
                }
            }
    
            return $next($request);
        }
    }
    
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?