在 Laravel 4 中重定向更改 Auth::check() 的状态
Posted
技术标签:
【中文标题】在 Laravel 4 中重定向更改 Auth::check() 的状态【英文标题】:Redirect change the state of Auth::check() in Laravel 4 【发布时间】:2017-03-14 03:19:47 【问题描述】:说明
我只想能够登录到我的应用程序。
路线
// Home Page
Route::get('/','HomeController@showHome');
// Authentication
Route::get('/login',array('as' => 'login', 'uses' =>'AuthController@showLogin'));
Route::post('/login','AuthController@postLogin');
AuthController > postLogin()
public function postLogin()
$input = array(
'username' => Input::get('username'),
'password' => Input::get('password')
);
$rules = array(
'username' => 'Required',
'password' => 'Required'
);
$validator = Validator::make($input, $rules);
if ($validator->passes())
// Try to log the user in.
if (Auth::attempt($input))
$input['status'] = 1;
//if account is disabled
if (!Auth::attempt($input))
Auth::logout();
return Redirect::to('/')->withErrors(array('username' => 'Account disabled'))->withInput(Input::except('password'));
return Redirect::to('/')->with('success', 'You have logged in successfully');
else
return Redirect::to('/')->withErrors(array('password' => 'Password invalid'))->withInput(Input::except('password'));
return Redirect::to('/')->withErrors($validator)->withInput(Input::except('password'));
// dd(Auth::user());
但由于某些原因,重定向后,我的Auth user 不再经过身份验证。我的Auth::check() 开始返回false
HomeController > showHome()
public function showHome()
if (Auth::check())
return View::make('dashboard');
else
// This block of code kept executing
return View::make('home');
问题
我还应该检查或调查什么?
这是由 Laravel 还是 Apache 造成的?
如何调试?
更新 1
app/session.php
<?php
return array(
/*
|--------------------------------------------------------------------------
| Default Session Driver
|--------------------------------------------------------------------------
|
| This option controls the default session "driver" that will be used on
| requests. By default, we will use the lightweight native driver but
| you may specify any of the other wonderful drivers provided here.
|
| Supported: "file", "cookie", "database", "apc",
| "memcached", "redis", "array"
|
*/
'driver' => 'file',
/*
|--------------------------------------------------------------------------
| Session Lifetime
|--------------------------------------------------------------------------
|
| Here you may specify the number of minutes that you wish the session
| to be allowed to remain idle before it expires. If you want them
| to immediately expire on the browser closing, set that option.
|
*/
'lifetime' => 10080,
'expire_on_close' => false,
/*
|--------------------------------------------------------------------------
| Session File Location
|--------------------------------------------------------------------------
|
| When using the native session driver, we need a location where session
| files may be stored. A default has been set for you but a different
| location may be specified. This is only needed for file sessions.
|
*/
'files' => storage_path().'/sessions',
/*
|--------------------------------------------------------------------------
| Session Database Connection
|--------------------------------------------------------------------------
|
| When using the "database" or "redis" session drivers, you may specify a
| connection that should be used to manage these sessions. This should
| correspond to a connection in your database configuration options.
|
*/
'connection' => null,
/*
|--------------------------------------------------------------------------
| Session Database Table
|--------------------------------------------------------------------------
|
| When using the "database" session driver, you may specify the table we
| should use to manage the sessions. Of course, a sensible default is
| provided for you; however, you are free to change this as needed.
|
*/
'table' => 'sessions',
/*
|--------------------------------------------------------------------------
| Session Sweeping Lottery
|--------------------------------------------------------------------------
|
| Some session drivers must manually sweep their storage location to get
| rid of old sessions from storage. Here are the chances that it will
| happen on a given request. By default, the odds are 2 out of 100.
|
*/
'lottery' => array(2, 100),
/*
|--------------------------------------------------------------------------
| Session Cookie Name
|--------------------------------------------------------------------------
|
| Here you may change the name of the cookie used to identify a session
| instance by ID. The name specified here will get used every time a
| new session cookie is created by the framework for every driver.
|
*/
'cookie' => 'laravel_session',
/*
|--------------------------------------------------------------------------
| Session Cookie Path
|--------------------------------------------------------------------------
|
| The session cookie path determines the path for which the cookie will
| be regarded as available. Typically, this will be the root path of
| your application but you are free to change this when necessary.
|
*/
'path' => '/',
/*
|--------------------------------------------------------------------------
| Session Cookie Domain
|--------------------------------------------------------------------------
|
| Here you may change the domain of the cookie used to identify a session
| in your application. This will determine which domains the cookie is
| available to in your application. A sensible default has been set.
|
*/
'domain' => null,
/*
|--------------------------------------------------------------------------
| HTTPS Only Cookies
|--------------------------------------------------------------------------
|
| By setting this option to true, session cookies will only be sent back
| to the server if the browser has a HTTPS connection. This will keep
| the cookie from being sent to you if it can not be done securely.
|
*/
'secure' => false,
);
更新 2
我将会话驱动程序更新为数据库
现在我的 Session 数据库有了这些数据
然后,一旦我重定向 - 我得到了这个
【问题讨论】:
您编辑了答案。哪个代码有问题?? 我已经添加了我的会话设置 【参考方案1】:所以你说你可以看到用户打印出来,那是因为用户登录所以它在第一个 if 语句 (if (Auth::attempt($input))) 中并打印用户。
然后是这段代码$input['status'] = 1;,这使得 $input 成为一个包含 3 个字段的数组。一个有密码,一个用户名和状态。
Auth::attemp() 只需要 2 个参数用户名和密码,因此通过传递 $input 作为参数,您实际上将传递用户名、密码和状态,因此不会发生登录尝试,因此您将输入 if (!Auth::attempt($input)) 和将被注销。
现在修复这个删除
$input['status'] = 1;
//if account is disabled
并改变
if (!Auth::attempt($input))
到
if (Auth::user()->status == 1)
完整的postLogin函数:
public function postLogin()
$input = array(
'username' => Input::get('username'),
'password' => Input::get('password')
);
$rules = array(
'username' => 'Required',
'password' => 'Required'
);
$validator = Validator::make($input, $rules);
if ($validator->passes())
// Try to log the user in.
if (Auth::attempt($input))
//if account is disabled
if (Auth::user()->status!=1)
Auth::logout();
return Redirect::to('/')->withErrors(array('username' => 'Account disabled'))->withInput(Input::except('password'));
return Redirect::to('/')->with('success', 'You have logged in successfully');
else
return Redirect::to('/')->withErrors(array('password' => 'Password invalid'))->withInput(Input::except('password'));
return Redirect::to('/')->withErrors($validator)->withInput(Input::except('password'));
如果还有问题就改
'driver' => 'file' 到'driver' => 'database' 在 session.php
并在 .env 文件更改
SESSION_DRIVER=file 到 SESSION_DRIVER=database
【讨论】:
1) 我的回答是正确的,因为在编辑之前有 2 个 auth::attemp。您可以检查编辑。 2)问题在于登录并且 $input['status'] = 1 添加在第二个 auth::attemp 使得它不是第二个 if(!Auth::attemp($input)) 所以如果你apss更多它需要的参数然后它会返回false,因为它在它变为true之前有一个NOT并输入if where is a Auth::logout() 你应该在评论之前检查更多 我很抱歉造成这种混乱。我试图为读者清理不必要的代码。 您已删除有问题的代码,因此请编辑您的答案,因为您所拥有的没有任何问题。我的意思是编辑后的代码 我从postLogIn()放回了整个代码。
为了展示完整的解决方案,您能告诉我状态是什么意思吗?您是否将其保存在您的用户表中???以上是关于在 Laravel 4 中重定向更改 Auth::check() 的状态的主要内容,如果未能解决你的问题,请参考以下文章