laravel5.7安装tymon/jwt-auth并实现

Laravel的安装就不多说直接开始jwt教程 (此教程只针对于laravel5.7)

在laravel的根目录运行

composer require tymon/jwt-auth

安装执行完毕之后运行以下命令，会自动在config目录生成jwt的配置文件

php artisan vendor:publish --provider="Tymon\JWTAuth\Providers\LaravelServiceProvider"

然后生成密钥，执行完会在.env底部写入jwt密钥

php artisan jwt:secret

执行完上方代码以后没问题证明jwt已经安装完毕，下面开始配置

首先我们打开laravel根目录app下的User.php(laravel自动生成的文件)

实现JWTSubject的getJWTIdentifier()和getJWTCustomClaims()方法

<?php

namespace App;

use Tymon\JWTAuth\Contracts\JWTSubject;//这一行需要引入
use Illuminate\Notifications\Notifiable;
use Illuminate\Foundation\Auth\User as Authenticatable;

class User extends Authenticatable implements JWTSubject //这一行需要修改
{
    use Notifiable;

    // Rest omitted for brevity

    /**
     * Get the identifier that will be stored in the subject claim of the JWT.
     *
     * @return mixed
     */
    public function getJWTIdentifier() //实现方法1
    {
        return $this->getKey();
    }

    /**
     * Return a key value array, containing any custom claims to be added to the JWT.
     *
     * @return array
     */
    public function getJWTCustomClaims() //实现方法2
    {
        return [];
    }
}

然后去config目录找到auth.php修改default和guards

'defaults' => [
    'guard' => 'api',
    'passwords' => 'users',
],

...

'guards' => [
    'api' => [
        'driver' => 'jwt',
        'provider' => 'users',
    ],
],

修改完成以后就可以创建控制器了(运行代码或者手动创建都可以)

php artisan make:controller AuthController

创建成功以后复制以下代码到文件中

<?php

namespace App\Http\Controllers;

use Illuminate\Support\Facades\Auth;
use App\Http\Controllers\Controller;

class AuthController extends Controller
{
    /**
     * Create a new AuthController instance.
     *
     * @return void
     */
    public function __construct()
    {
        $this->middleware('auth:api', ['except' => ['login']]);
    }

    /**
     * Get a JWT via given credentials.
     *
     * @return \Illuminate\Http\JsonResponse
     */
    public function login()
    {
        $credentials = request(['email', 'password']);
        
        /*
        * auth()->attempt()必须要传入数组 会自动去数据库比对email和password是否正确，
        * 数据表中的password字段必须使用hash加密，否则返回false,对比成功以后返回token
        * 如不需要可以使用auth()->login()代替
        */
        if (! $token = auth()->attempt($credentials)) {
            return response()->json(['error' => 'Unauthorized'], 401);
        }

        return $this->respondWithToken($token);
    }

    /**
     * Get the authenticated User.
     *
     * @return \Illuminate\Http\JsonResponse
     */
    public function me()
    {
        return response()->json(auth()->user());
    }

    /**
     * Log the user out (Invalidate the token).
     *
     * @return \Illuminate\Http\JsonResponse
     */
    public function logout()
    {
        auth()->logout();

        return response()->json(['message' => 'Successfully logged out']);
    }

    /**
     * Refresh a token.
     *
     * @return \Illuminate\Http\JsonResponse
     */
    public function refresh()
    {
        return $this->respondWithToken(auth()->refresh());
    }

    /**
     * Get the token array structure.
     *
     * @param  string $token
     *
     * @return \Illuminate\Http\JsonResponse
     */
    protected function respondWithToken($token)
    {
        return response()->json([
            'access_token' => $token,
            'token_type' => 'bearer',
            'expires_in' => auth()->factory()->getTTL() * 60
        ]);
    }
}

然后定义路由

Route::group([

    'middleware' => 'api',
    'prefix' => 'auth'

], function ($router) {

    Route::post('login', 'AuthController@login');
    Route::post('logout', 'AuthController@logout');
    Route::post('refresh', 'AuthController@refresh');
    Route::post('me', 'AuthController@me');

});

登陆成功以后返回的access_token需要放到header头部中或者每次请求带一个token参数

Authorization: Bearer eyJhbGciOiJIUzI1NiI...

http://127.0.0.1/me?token=eyJhbGciOiJIUzI1NiI...