Laravel 自带 Auth 密码重置源码解析及扩展实现手机号密码找回

最新推荐文章于 2021-03-27 19:42:16 发布
最新推荐文章于 2021-03-27 19:42:16 发布
阅读量286 收藏
点赞数
文章标签: php 数据库 python
原文链接:https://my.oschina.net/yuansir/blog/665661
版权

2019独角兽企业重金招聘Python工程师标准>>> hot3.png

本文最早于发表本人博客: Laravel 自带 Auth 密码重置源码解析及扩展实现手机号密码找回

Larval 自带 Auth 密码重置源码解析及扩展实现手机号密码找回

Larval技术群小伙伴问密码重置时PasswordController中需要设置的$broker是干嘛用的,正好来写一下Laravel 中Auth的ResetsPasswords,以及实践一下扩展,所以大体这篇博客写写:

  • 密码重置源码分析

  • 实现自定义邮件发送方式进行密码重置,比如使用第三方或者自己发送邮件方式找回

  • 实现手机号密码重置

首先来看一下PasswordController 中的 ResetsPasswords trait 

trait ResetsPasswords
{ use RedirectsUsers; public function getEmail() { return $this->showLinkRequestForm();
    } /**
     * 这里就是设置密码重置邮件内容的
     *
     * @return \Illuminate\Http\Response
     */ public function showLinkRequestForm() { //所以我们可以在PoasswrodController 中设置 protected $linkRequestView 来定义密码重置邮件模板 if (property_exists($this, 'linkRequestView')) { return view($this->linkRequestView);
        } if (view()->exists('auth.passwords.email')) { return view('auth.passwords.email');
        } return view('auth.password');
    } /**
     * 发送密码重置邮件
     *
     * @param \Illuminate\Http\Request  $request
     * @return \Illuminate\Http\Response
     */ public function postEmail(Request $request) { return $this->sendResetLinkEmail($request);
    } /**
     * 给重置密码的用户发送邮件
     *
     * @param \Illuminate\Http\Request  $request
     * @return \Illuminate\Http\Response
     */ public function sendResetLinkEmail(Request $request) { $this->validate($request, ['email' => 'required|email']); $broker = $this->getBroker(); //获取broker,下面会讲 $response = Password::broker($broker)->sendResetLink($request->only('email'), function (Message $message) { $message->subject($this->getEmailSubject());
        }); //根据 broker 来发送密码重置邮件,下面会详细讲 switch ($response) { case Password::RESET_LINK_SENT: //状态,下面会讲 return $this->getSendResetLinkEmailSuccessResponse($response); case Password::INVALID_USER: default: return $this->getSendResetLinkEmailFailureResponse($response);
        }
    } /**
     * 邮件标题
     *
     * @return string
     */ protected function getEmailSubject() { return property_exists($this, 'subject') ? $this->subject : 'Your Password Reset Link';
    } /**
     * 邮件成功发送过以后返回
     *
     * @param string  $response
     * @return \Symfony\Component\HttpFoundation\Response
     */ protected function getSendResetLinkEmailSuccessResponse($response) { return redirect()->back()->with('status', trans($response));
    } /**
     * 邮件发送时候返回
     *
     * @param string  $response
     * @return \Symfony\Component\HttpFoundation\Response
     */ protected function getSendResetLinkEmailFailureResponse($response) { return redirect()->back()->withErrors(['email' => trans($response)]);
    } /**
     * 用户点击邮箱里面重置连接后跳转的页面,就是重置密码页面
     * @param \Illuminate\Http\Request  $request
     * @param string|null  $token
     * @return \Illuminate\Http\Response
     */ public function getReset(Request $request, $token = null) { return $this->showResetForm($request, $token);
    } /**
     * 用户点击邮箱里面重置连接后跳转的页面,就是重置密码页面
     *
     * @param \Illuminate\Http\Request  $request
     * @param string|null  $token
     * @return \Illuminate\Http\Response
     */ public function showResetForm(Request $request, $token = null) { if (is_null($token)) { return $this->getEmail();
        } $email = $request->input('email'); //所以我们可以在PoasswrodController 中设置 protected $resetView 来定义密码重置的页面 if (property_exists($this, 'resetView')) { return view($this->resetView)->with(compact('token', 'email'));
        } if (view()->exists('auth.passwords.reset')) { return view('auth.passwords.reset')->with(compact('token', 'email'));
        } return view('auth.reset')->with(compact('token', 'email'));
    } /**
     * 重置密码
     *
     * @param \Illuminate\Http\Request  $request
     * @return \Illuminate\Http\Response
     */ public function postReset(Request $request) { return $this->reset($request);
    } /**
     * 重置密码实现
     *
     * @param \Illuminate\Http\Request  $request
     * @return \Illuminate\Http\Response
     */ public function reset(Request $request) { $this->validate($request, [ 'token' => 'required', 'email' => 'required|email', 'password' => 'required|confirmed|min:6',
        ]); $credentials = $request->only( 'email', 'password', 'password_confirmation', 'token' ); $broker = $this->getBroker(); $response = Password::broker($broker)->reset($credentials, function ($user, $password) { //注意这个回调 $this->resetPassword($user, $password);
        }); //根据 broker重置密码,下面会详细讲 switch ($response) { case Password::PASSWORD_RESET: return $this->getResetSuccessResponse($response); default: return $this->getResetFailureResponse($request, $response);
        }
    } /**
     * 重置密码,并且重新登陆
     *
     * @param \Illuminate\Contracts\Auth\CanResetPassword  $user
     * @param string  $password
     * @return void
     */ protected function resetPassword($user, $password) { $user->password = bcrypt($password); $user->save();

        Auth::guard($this->getGuard())->login($user);
    } //下面的代码略 }

上面其实就是路由的实现方法,主要路由如下:

Method URI Action
POST password/email AppHttpControllersAuthPasswordController@sendResetLinkEmail
POST password/reset AppHttpControllersAuthPasswordController@reset
GET HEAD password/reset/{token?}

首先来主要看下sendResetLinkEmail方法,这个方法主要实现根据用户填入的邮箱地址来发送重置邮件的 

$response = Password::broker($broker)->sendResetLink($request->only('email'), function (Message $message) { $message->subject($this->getEmailSubject());
        }); //根据 broker 来发送密码重置邮件,下面会详细讲 switch ($response) { case Password::RESET_LINK_SENT: //状态,下面会讲 return $this->getSendResetLinkEmailSuccessResponse($response); case Password::INVALID_USER: default: return $this->getSendResetLinkEmailFailureResponse($response);
        }

上面的Password 就是Facade,我们看一下这个Facade:

Illuminate/Support/Facades/Password.php 

<?php namespace Illuminate\Support\Facades; /**
 * @see \Illuminate\Auth\Passwords\PasswordBroker
 */ class Password extends Facade { /**
     * Constant representing a successfully sent reminder.
     *
     * @var string
     */ const RESET_LINK_SENT = 'passwords.sent'; /**
     * Constant representing a successfully reset password.
     *
     * @var string
     */ const PASSWORD_RESET = 'passwords.reset'; /**
     * Constant representing the user not found response.
     *
     * @var string
     */ const INVALID_USER = 'passwords.user'; /**
     * Constant representing an invalid password.
     *
     * @var string
     */ const INVALID_PASSWORD = 'passwords.password'; /**
     * Constant representing an invalid token.
     *
     * @var string
     */ const INVALID_TOKEN = 'passwords.token'; protected static function getFacadeAccessor() { return 'auth.password';
    }
}

可以看到上面邮件发送后等状态的判断也是在这个Facade中定义的,那么auth.password 的这个是绑定到哪个类中实现的?继续查看对应的ServiceProvider的register

Illuminate/Auth/Passwords/PasswordResetServiceProvider.php 

<?php namespace Illuminate\Auth\Passwords; use Illuminate\Support\ServiceProvider; class PasswordResetServiceProvider extends ServiceProvider { protected $defer = true; public function register() { $this->registerPasswordBroker();
    } protected function registerPasswordBroker() { $this->app->singleton('auth.password', function ($app) { return new PasswordBrokerManager($app);
        }); $this->app->bind('auth.password.broker', function ($app) { return $app->make('auth.password')->broker();
        });
    } public function provides() { return ['auth.password', 'auth.password.broker'];
    }
}

看到了PasswordBrokerManager($app);,那么我们就知道了上面Passwrod::broker 的实现在PasswordBrokerManager中,那我们先来看下是如何发送这个重置密码邮件的

Illuminate/Auth/Passwords/PasswordBrokerManager.php 

<?php namespace Illuminate\Auth\Passwords; use InvalidArgumentException; use Illuminate\Contracts\Auth\PasswordBrokerFactory as FactoryContract; class PasswordBrokerManager implements FactoryContract { // 略 /**
     * 获取broker
     *
     * @param string  $name
     * @return \Illuminate\Contracts\Auth\PasswordBroker
     */ public function broker($name = null) { $name = $name ?: $this->getDefaultDriver(); return isset($this->brokers[$name])
                    ? $this->brokers[$name]
                    : $this->brokers[$name] = $this->resolve($name);
    } /**
     * Resolve the given broker.
     *
     * @param string  $name
     * @return \Illuminate\Contracts\Auth\PasswordBroker
     *
     * @throws \InvalidArgumentException
     */ protected function resolve($name) { $config = $this->getConfig($name); //获取auth.php配置中的passwords broker if (is_null($config)) { throw new InvalidArgumentException("Password resetter [{$name}] is not defined.");
        } //这里很重要,就是实例一个PasswordBroker return new PasswordBroker( $this->createTokenRepository($config), $this->app['auth']->createUserProvider($config['provider']), $this->app['mailer'], $config['email']
        );
    } /**
     * 根据配置创建一个token实例
     *
     * @param array  $config
     * @return \Illuminate\Auth\Passwords\TokenRepositoryInterface
     */ protected function createTokenRepository(array $config) { return new DatabaseTokenRepository( $this->app['db']->connection(), $config['table'], $this->app['config']['app.key'], $config['expire']
        );
    } //下面略 public function __call($method, $parameters) { return call_user_func_array([$this->broker(), $method], $parameters);
    }
}

上面的resolve返回了new PasswordBroker,这里的PasswordBroker其实才是密码重置的核心实现,里面主要做了实现一下几件事情:

  • 创建邮件验证的token,并发送重置密码邮件

  • 用户点击重置连接以后根据token进行验证

  • 重置旧的密码成用户提交的新密码

Illuminate/Auth/Passwords/PasswordBroker.php 

<?php namespace Illuminate\Auth\Passwords; use Closure; use Illuminate\Support\Arr; use UnexpectedValueException; use Illuminate\Contracts\Auth\UserProvider; use Illuminate\Contracts\Mail\Mailer as MailerContract; use Illuminate\Contracts\Auth\PasswordBroker as PasswordBrokerContract; use Illuminate\Contracts\Auth\CanResetPassword as CanResetPasswordContract; class PasswordBroker implements PasswordBrokerContract { //上面的略 public function __construct(TokenRepositoryInterface $tokens,
                                UserProvider $users,
                                MailerContract $mailer, $emailView) { $this->users = $users; $this->mailer = $mailer; $this->tokens = $tokens; $this->emailView = $emailView;
    } /**
     * 给用户发送包含重置链接的邮件
     *
     * @param array  $credentials
     * @param \Closure|null  $callback
     * @return string
     */ public function sendResetLink(array $credentials, Closure $callback = null) { // 验证用户 $user = $this->getUser($credentials); if (is_null($user)) { return PasswordBrokerContract::INVALID_USER;
        } // 生成token $token = $this->tokens->create($user); //发送邮件 $this->emailResetLink($user, $token, $callback); return PasswordBrokerContract::RESET_LINK_SENT;
    } /**
     * 发送邮件的实现
     *
     * @param \Illuminate\Contracts\Auth\CanResetPassword  $user
     * @param string  $token
     * @param \Closure|null  $callback
     * @return int
     */ public function emailResetLink(CanResetPasswordContract $user, $token, Closure $callback = null) { //把token和user变量传递到邮件模板中,并发送邮件 $view = $this->emailView; return $this->mailer->send($view, compact('token', 'user'), function ($m) use ($user, $token, $callback) { $m->to($user->getEmailForPasswordReset()); if (! is_null($callback)) {
                call_user_func($callback, $m, $user, $token);
            }
        });
    } /**
     * 根据token重置密码
     *
     * @param array  $credentials
     * @param \Closure  $callback
     * @return mixed
     */ public function reset(array $credentials, Closure $callback) { //实现根据$credentials来验证用户是否可以更改更改密码 $user = $this->validateReset($credentials); if (! $user instanceof CanResetPasswordContract) { return $user;
        } $pass = $credentials['password']; // 下面这个就是产生新的密码的实现 call_user_func($callback, $user, $pass); $this->tokens->delete($credentials['token']); return PasswordBrokerContract::PASSWORD_RESET;
    } //下面的是一些验证的方法,略 }

上面的reset 中的call_user_func就是调用了重置新密码的逻辑,$callback其实就是最上面的trait ResetsPasswords 中的resetPassword($user, $password)来保存新密码。

到这里Laravel 自带Auth的密码重置的源码解读部分就完成了,下面我们就通过扩展一下实现手机号密码找回和自定义邮件发送方式找回密码,根据上面的代码解析如果你看懂的话应该了解,其实我们只要扩展PasswordBroker.php和PasswordBrokerManager.php就可以了。

自定义邮件发送和手机号发送验证码逻辑类请自行实现,以下代码的EmailService和SmsService分别表示发送邮件和发送短信的类,自己按照需求进行封装,比如SendCloud发送邮件,云通讯发送手机短信验证码的具体实现

自定义邮件重置密码的逻辑基本都一样的,不变,手机号重置密码的过程应该是这样的:

  • 用户填入手机号,点击“发送验证码”按钮,收到验证码

  • 将验证码填入,点击“密码找回”

  • 后台进行验证码校验,没有问题跳转到新密码设置页面

  • 新密码设置

路由如下: 

Route::post('password/email', 'Auth\PasswordController@sendResetLinkEmail'); //通过邮件重置密码 Route::post('password/reset-mail', 'Auth\PasswordController@resetBymail'); //发送手机短信验证码 Route::post('password/phone', 'Auth\PasswordController@sendResetCodePhone'); //通过手机验证码找回密码 Route::post('password/reset-phone', 'Auth\PasswordController@resetByPhone');

在app目录下建立入如下目录和文件(根据个人习惯): 

Foundation/
├── Auth
   ├── Passwords
      ├── RyanPasswordBroker.php
      ├── RyanPasswordBrokerManager.php
      └── Facade
          └── RyanPassword.php

新建ServiceProvider,将auth.password绑定到我们自己的RyanPasswordBroker

app/Providers/RyanPasswordResetServiceProvider.php 

<?php namespace App\Providers; use App\Foundation\Auth\Passwords\RyanPasswordBrokerManager; use Illuminate\Support\ServiceProvider; class RyanPasswordResetServiceProvider extends ServiceProvider { protected $defer = true; public function register() { $this->registerPasswordBroker();
    } protected function registerPasswordBroker() { $this->app->singleton('auth.password', function ($app) { return new RyanPasswordBrokerManager($app);
        }); $this->app->bind('auth.password.broker', function ($app) { return $app->make('auth.password')->broker();
        });
    } public function provides() { return ['auth.password', 'auth.password.broker'];
    }
}

修改config/app.php 

'providers' => [
        ......
        App\Providers\RyanPasswordResetServiceProvider::class,
    ],

    'aliases' => [
        ......
        'RyanPassword' => App\Foundation\Auth\Passwords\Facade\RyanPassword::class,
    ],

app/Foundation/Auth/Passwords/Facade/RyanPassword.php 

<?php namespace App\Foundation\Auth\Passwords\Facade; use Illuminate\Support\Facades\Password; /**
 * @see \Illuminate\Auth\Passwords\PasswordBroker
 */ class RyanPassword extends Password {
}

app/Foundation/Auth/Passwords/RyanPasswordBroker.php 

<?php namespace App\Foundation\Auth\Passwords; use App\Services\SmsService; use Closure; use Illuminate\Auth\Passwords\PasswordBroker; use Illuminate\Support\Arr; use UnexpectedValueException; use Illuminate\Contracts\Auth\UserProvider; use Illuminate\Contracts\Mail\Mailer as MailerContract; use Illuminate\Contracts\Auth\PasswordBroker as PasswordBrokerContract; use Illuminate\Contracts\Auth\CanResetPassword as CanResetPasswordContract; use Illuminate\Auth\Passwords\TokenRepositoryInterface; use App\Services\EmailService; use Illuminate\Contracts\View\Factory as ViewFactory; use Illuminate\Support\Facades\Redis; class RyanPasswordBroker extends PasswordBroker { //这里注意下,EmailService是自定义发送邮件的方式,自己实现 public function __construct(TokenRepositoryInterface $tokens, UserProvider $users, EmailService $mailer, $emailView) { $this->users = $users; $this->mailer = $mailer; $this->tokens = $tokens; $this->emailView = $emailView;
    } public function emailResetLink(CanResetPasswordContract $user, $token, Closure $callback = null) { $body = app('view')->make($this->emailView, compact('token', 'user'))->render(); return $this->mailer->send($user->getEmailForPasswordReset(), 'xxx账号密码重置', $body, $fromName = 'xxxx');
    } protected function validateReset(array $credentials) { if (is_null($user = $this->getUser($credentials))) { return PasswordBrokerContract::INVALID_USER;
        } if (!$this->validateNewPassword($credentials)) { return PasswordBrokerContract::INVALID_PASSWORD;
        } if (isset($credentials['verify_code'])) { //如果提交的字段含有verify_code表示是手机验证码方式重置密码,需要验证用户提交的验证码是不是刚才发送给他手机号的,验证码发送以后可以保持在缓存中 if (Redis::get('password:telephone:' . $credentials['telephone']) != $credentials['verify_code']) { return PasswordBrokerContract::INVALID_TOKEN;
            }
        } elseif (!$this->tokens->exists($user, $credentials['token'])) { //邮件重置方式 return PasswordBrokerContract::INVALID_TOKEN;
        } return $user;
    } /**
     * Get the user for the given credentials.
     *
     * @param array $credentials
     * @return \Illuminate\Contracts\Auth\CanResetPassword
     *
     * @throws \UnexpectedValueException
     */ public function getUser(array $credentials) { $credentials = Arr::except($credentials, ['token', 'verify_code']);//这里注意,如果是手机验证码方式找回密码需要吧verify_code字段排除,以免users表中没有verify_code字段查不到用户 $user = $this->users->retrieveByCredentials($credentials); if ($user && !$user instanceof CanResetPasswordContract) { throw new UnexpectedValueException('User must implement CanResetPassword interface.');
        } return $user;
    } /**
     * 发送重置密码手机验证码
     *
     * @param array $credentials
     * @param \Closure|null $callback
     * @return string
     */ public function sendResetCode(array $credentials, Closure $callback = null) { $user = $this->getUser($credentials); if (is_null($user)) { return PasswordBrokerContract::INVALID_USER;
        } //我是将手机验证码发送后保持在Redis中,验证的时候也是去redis取 $telephone = $credentials['telephone']; $code = random_int(100000, 999999); $result = with(new SmsService())->sendTemplateSms($telephone, config('sms.template_ids.password_verify_code'), [$code]); $result = json_decode($result, true); if ($result['status']) {
            Redis::setEx('password:telephone:' . $telephone, 3000, $code); return PasswordBrokerContract::RESET_LINK_SENT;
        }
    } /**
     * 通过手机验证码重置密码
     * @param array $credentials
     * @param Closure $callback
     * @return CanResetPasswordContract|string
     */ public function resetByPhone(array $credentials, Closure $callback) { $user = $this->validateReset($credentials); if (!$user instanceof CanResetPasswordContract) { return $user;
        } $pass = $credentials['password'];

        call_user_func($callback, $user, $pass); //如果是手机号重置密码的话新密码保存后需要删除缓存的验证码 Redis::del('password:telephone:' . $credentials['telephone']); return PasswordBrokerContract::PASSWORD_RESET;
    }

}

app/Foundation/Auth/Passwords/RyanPasswordBrokerManager.php 

<?php namespace App\Foundation\Auth\Passwords; use App\Services\EmailService; use InvalidArgumentException; use Illuminate\Contracts\Auth\PasswordBrokerFactory as FactoryContract; use Illuminate\Auth\Passwords\PasswordBrokerManager as PasswordBrokerManager; use Illuminate\Auth\Passwords\DatabaseTokenRepository; class RyanPasswordBrokerManager extends PasswordBrokerManager { /**
     * The application instance.
     *
     * @var \Illuminate\Foundation\Application
     */ protected $app; /**
     * The array of created "drivers".
     *
     * @var array
     */ protected $brokers = []; protected $mailer; /**
     * Create a new PasswordBroker manager instance.
     *
     * @param \Illuminate\Foundation\Application $app
     * @return void
     */ public function __construct($app) { parent::__construct($app); $this->mailer = new EmailService();
    } /**
     * Attempt to get the broker from the local cache.
     *
     * @param string $name
     * @return \Illuminate\Contracts\Auth\PasswordBroker
     */ public function broker($name = null) { $name = $name ?: $this->getDefaultDriver(); return isset($this->brokers[$name]) ? $this->brokers[$name] : $this->brokers[$name] = $this->resolve($name);
    } /**
     * Resolve the given broker.
     *
     * @param string $name
     * @return \Illuminate\Contracts\Auth\PasswordBroker
     *
     * @throws \InvalidArgumentException
     */ protected function resolve($name) { $config = $this->getConfig($name); if(is_null($config)) { throw new InvalidArgumentException("Password resetter [{$name}] is not defined.");
        } //这里实例化我们自定义的RyanPasswordBroker来完成密码重置逻辑 return new RyanPasswordBroker($this->createTokenRepository($config), $this->app['auth']->createUserProvider($config['provider']), $this->mailer, $config['email']);
    }
}

修改PasswordController.php 

<?php namespace App\Controllers\Auth; use App\Controllers\Controller; use App\Requests\Auth\EmailResetPasswordRequest; use App\Requests\Auth\EmailResetPasswordSendRequest; use App\Requests\Auth\PhoneResetPasswordRequest; use App\Requests\Auth\PhoneResetPasswordSendRequest; use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException; use Illuminate\Foundation\Auth\ResetsPasswords; use RyanPassword, Auth; class PasswordController extends Controller { use ResetsPasswords; protected $broker = 'users'; public function __construct() { $this->middleware('guest');
    } /**
     * 发送重置密码邮件
     *
     * @param \Illuminate\Http\Request $request
     * @return \Illuminate\Http\Response
     */ public function sendResetLinkEmail(EmailResetPasswordSendRequest $request) { $broker = $this->getBroker(); $response = RyanPassword::broker($broker)->sendResetLink($request->only('email')); switch ($response) { case RyanPassword::RESET_LINK_SENT: return ['status_code' => '200', 'message' => '密码重置邮件已发送']; case RyanPassword::INVALID_USER: default: throw new \UnauthorizedHttpException(401, '该邮箱未注册');
        }
    } /**
     * 通过邮件重置密码
     *
     * @param \Illuminate\Http\Request $request
     * @return \Illuminate\Http\Response
     */ public function resetBymail(EmailResetPasswordRequest $request) { $credentials = $request->only('email', 'password', 'password_confirmation', 'token'); $broker = $this->getBroker(); $response = RyanPassword::broker($broker)->reset($credentials, function ($user, $password) { $this->resetPassword($user, $password);
        }); switch ($response) { case RyanPassword::PASSWORD_RESET: unset($credentials['token']); unset($credentials['password_confirmation']); return [ 'status_code' => '200', 'message' => '密码重置成功' ]; case RyanPassword::INVALID_TOKEN: //返回'Token 已经失效' default: //返回'密码重置失败' }
    } /**
     *  发送重置密码短信验证码
     *
     * @param \Illuminate\Http\Request $request
     * @return \Illuminate\Http\Response
     */ public function sendResetCodePhone(PhoneResetPasswordSendRequest $request) { $broker = $this->getBroker(); $response = RyanPassword::broker($broker)->sendResetCode($request->only('telephone')); switch ($response) { case RyanPassword::RESET_LINK_SENT: return ['status_code' => '200', 'message' => '密码重置验证码已发送']; case RyanPassword::INVALID_USER: default: //返回'该手机号未注册' }
    } /**
     * 通过短信验证码重置密码
     * @param PhoneResetPasswordRequest $request
     * @return array
     */ public function resetByPhone(PhoneResetPasswordRequest $request) { $credentials = $request->only('telephone', 'password', 'password_confirmation', 'verify_code'); $broker = $this->getBroker(); $response = RyanPassword::broker($broker)->resetByPhone($credentials, function ($user, $password) { $this->resetPassword($user, $password);
        }); switch ($response) { case RyanPassword::PASSWORD_RESET: unset($credentials['verify_code']); unset($credentials['password_confirmation']); return [ 'status_code' => '200', 'message' => '密码重置成功',
                ]; case RyanPassword::INVALID_TOKEN: //返回'手机验证码已失效' default: //返回'密码重置失败' }
    }

}

结束!!

转载于:https://my.oschina.net/yuansir/blog/665661

weixin_33736048
关注
Laravel安全之密码重置
蛐蛐的博客
11-15 449
1.简介 大多数Web应用程序为用户提供了一种重置其忘记密码的方法。 Laravel提供了发送密码提示和执行密码重置的便捷方法,而不是强迫您在每个应用程序上重新实现此功能。 1.1 模型准备 在使用Laravel密码重置功能之前,您的App \ Models \ User模型必须使用Illuminate \ Notifications \ Notifiable特征。 通常,此特征会自动包含在Laravel随附的默认App \ Models \ User模型中。 接下来,验证...
小程序-laravel5.5发短信验证码找回密码功能
qq_34118393的博客
10-08 316
前端样式 .wxml文件 <view class="body"> <form bindsubmit="formSubmit"> <view class="password"> <view class="one">手机号码</view> <view class="two">{{mobile}}</vi...
Laravel5.1中加入手机号重置密码模块----------ICO容器,Facade,服务提供者。
u012228510的博客
10-08 570
laravel5.1已经包含了邮箱找回密码功能,现在加入手机号加入密码的功能,顺便介绍一下我在实际使用laravel的情况。欢迎大家指正。 先看一下原来的逻辑,先看一下PasswordController.php的内容: 发送邮件的方法,此方法没有特别的,其过程为验证email地址是否合法,如果合法的话,就执行Password::sendResetLink方法,此方法中有一个闭包,用于生成em
php laravel 忘记密码,Laravel实现找回密码密码重置,详细操作
weixin_29625619的博客
03-27 457
忘记密码是应用中常见的场景之一,Laravel5也提供了对密码重置的支持,我们只需稍微做一下配置即可轻松实现重置密码。通过给用户注册邮箱发送包含特定令牌的重置密码链接,然后用户登录邮箱通过访问该重置密码链接实现密码重置实现CanResetPasswordContract契约并使用CanResetPasswordtrait的User模型(Laravel自带)用于存放重置密码令牌的表passwor...
Laravel技巧集锦(24):密码重置功能
03-22 381
准备: 密码重置功能如果无法使用laravel自带的,就可以用sendcloud代替 SendCloud使用https://blog.csdn.net/sinat_37390744/article/details/88738359 1、找到ForgerPasswordController.php 发现使用了 use SendsPasswordResetEmails; 2、定位找到ven...
laravel 5.6 修改auth 重置密码邮件
大海技术博客
09-17 466
1.输入php artisan make:notification RestPassword ,在app\notification下创建 RestPassword.php 然后修改 App\User: namespace App; use Illuminate\Notifications\Notifiable; use Illuminate\Foundation\Auth\User ...
Laravel 自带Auth验证登录方法
12-19
laravel自带的登录验证。只要建立对应的表和配置一些文件就能够使用,无需开发者自己去实现登录逻辑。 第一步:配置方面 在config下的auth.php配置guards 和 providers 。 之后新建文件和数据库名称要和这里的...
laravel自带登录注册和找回密码功能
那记忆搁浅的博客
08-01 1701
laravel框架自带用户登录注册功能。 首先,使用下面命令生成登录注册功能,前面的vue是我的artisan的别名,你自己是啥自己看着办哈! vue make:auth 生成之后就会在首页右上角出现login 和register两个链接,分别就是登录和注册了。 生成后还是不能用的,因为什么呢。。因为你还没有数据表嘛!laravel自带了两个迁移文件,一个是users表的迁移文件,一个...
10分钟弄懂Laravel重置密码重构
qq_32506555的博客
08-07 2571
如果要使用laravel搭建一个后台内容管理系统,但是laravel默认的登陆注册不能满足目前的需求。重置密码的话因为是用在后台,并且不需要发送邮件进行重置,所以默认的重置密码肯定是不行的。我们接下来就来学习Laravel,关于重置密码重构。   1. 首先确定重置密码的路由 我们在安装好laravel的时候默认生成的重置密码是在用户未登录的情况下进行的。所以使用原来的控制器是不
laravel修改密码
m0_37971044的博客
10-31 1884
引用Hash类 use Hash; /**  * 重置密码方法  * @param Request $request  */ public function set_password(Request $request){     $id = Auth::user()-&gt;id;     $oldpassword = $request-&gt;input('oldpassword');   ...
Laravel自带Auth 密码重置源码解析扩展实现手机号密码找回
weixin_34255055的博客
04-25 491
本文最早于发表本人博客: Laravel 自带 Auth 密码重置源码解析扩展实现手机号密码找回 Larval 自带 Auth 密码重置源码解析扩展实现手机号密码找回 Larval技术群小伙伴问密码重置时PasswordController中需要设置的$broker是干嘛用的,正好来写一下LaravelAuth的ResetsPas...
Laravel Auth 模拟用户登录,修改登陆方式
阳水平的博客
03-16 3477
//强制用户id位100的人登录 Auth::loginUsingId(100); //获取这个登录用户的id; dd(auth()-&gt;user()-&gt;id); 在测试的时候,我需要测试某一个登录用户的相关信息,我们是可以在auth provider里面进行强制登陆的,这样的话据不用在某一个具体的方法里面又写一段loginUsingId. app\Providers\AuthS...
修改LaravelAuth::attempt () 密码默认加密方式
戈文文的博客
11-28 2570
以下方法在laravel5.6测试成功 一、背景 如果你在使用Laravel的话,用户验证的代码只需要一行代码就可以搞定 if (auth('admin')->attempt(['email' => $email, 'password' => $password, 'active' => 1])) { // 验证成功的逻辑 } 但是,如果你想切换为自定义的加密验证...
laravel auth.php,Laravel中的Auth
weixin_34310322的博客
03-20 250
Laravel中的Authlaravel中有一个组件叫authauth组件提供了整个框架的认证功能,这里想简单追踪一下它的实现逻辑。首先从 php artisan make:auth开始# Illuminate\Auth\Console\AuthMakeCommand.phppublic function handle(){// 创建存放auth前端界面的目录和文件// 模版存放在Auth\C...
laravel中自定义邮件发送重置密码
ye594008702的博客
04-20 1352
供自己或有需要的朋友查询参考。如有错误请帮忙指明,谢谢 作为一个laravel新人,想做一个重置密码邮件发送,然而官方文档中是使用php artisan make:auth 生成的模板,网上众多博客我这个小白又看得似懂非懂的,因此还是自己写一篇自己看得懂的吧。 laravel已经将重置密码、跟邮件发送逻辑封装好了(就是app\Http\Controller\Auth下的ForgotPas...
Laravel 快速实现密码重置教程
"Laravel 实现密码重置功能" 在Laravel框架中,密码重置功能是常见的用户管理组件,它允许用户在忘记密码时通过邮箱接收重置链接,然后设置新的密码。以下是对这一功能的详细说明: 1. **初始化步骤** - 首先,...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值