环境配置
安装 dingo/api 和 JWT
通过 composer require 或者在项目 composer.json 添加 required 安装即可。
环境配置
-
dingo/api
在 config/app.php 中的 providers 数组中添加 Dingo\Api\Provider\LaravelServiceProvider::class
运行 php artisan vendor:publish --provider=“Dingo\Api\Provider\LaravelServiceProvider” 发布配置
在.env 文件中添加 dingo/api 的相关配置。
API_STANDARDS_TREE=vnd API_SUBTYPE=myapp API_PREFIX=api #路由前缀 API_VERSION=v1 API_DEFAULT_FORMAT=json #返回数据格式 API_DEBUG=true #开启调试 -
JWT
将 JWT 的认证类加至 config/api.php 的 auth 数组中。
config/app.php 中 providers 数组中添加 Tymon\JWTAuth\Providers\LaravelServiceProvider::class,在 aliases 数组中添加’JWTAuth’ => Tymon\JWTAuth\Facades\JWTAuth::class。
运行 php artisan vendor:publish --provider=“Tymon\JWTAuth\Providers\LaravelServiceProvider” 发布。
运行 php artisan jwt:secret 生成 JWT 的密钥。
运行 php artisan make:auth 生成 User
路由配置
- RegisterController
namespace App\Http\Api\Auth;
use App\Http\Controllers\Controller;
use App\User;
use Dingo\Api\Exception\StoreResourceFailedException;
use Dingo\Api\Routing\Helpers;
use Illuminate\Foundation\Auth\RegistersUsers;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Validator;
use Tymon\JWTAuth\Facades\JWTAuth;
class RegisterController extends Controller
{
use RegistersUsers;
use Helpers;
public function register(Request $request)
{
$valid=$this->valid($request->all()); //验证表单
if($valid->fails()){
$this->sendFailResponse($valid->errors());
}
else{
$user=User::create([
'name'=>$request->name,
'email'=>$request->email,
'password'=>bcrypt($request->password)
]);
if($user){
$token=JWTAuth::fromuser($user); //获取token
return $this->response->array([
"token" => $token,
"message" => "Registration Success",
"status_code" => 201
]);
}
else{
$this->sendFailResponse("Register Error");
}
}
}
public function valid($data)
{
return Validator::make($data,[
'name'=>'required|unique:users|max:10',
'email'=>'required|unique:users|email',
'password'=>'required|min:6']);
}
public function sendFailResponse($message)
{
return $this->response->error($message,400);
}
}
- LoginController
namespace App\Http\Api\Auth;
use Illuminate\Http\Request;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Hash;
use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
use Tymon\JWTAuth\Facades\JWTAuth;
use App\User;
use Dingo\Api\Routing\Helpers;
use Illuminate\Foundation\Auth\AuthenticatesUsers;
class LoginController extends Controller
{
use AuthenticatesUsers;
use Helpers;
public function login(Request $request)
{
$user=User::where('name',$request->email)->orwhere('email',$request->email)->firstOrFail();
if($user && Hash::check($request->password,$user->password)){
$token=JWTAuth::fromuser($user); //获取token
$this->clearLoginAttempts($request); //清除登录次数
return $this->response->array([
'token'=>$token,
'message'=>"Login Success",
'status_code'=>200
]);
}
else{
throw new UnauthorizedHttpException("Login Failed");
}
}
public function logout(){
JWTAuth::invalidate(JWTAuth::getToken()); //token加入黑名单(注销)
$this->guard()->logout();
}
}