zoukankan      html  css  js  c++  java
  • laravel dingo Api结合jwt 处理token校验

    声明:

    1.由于时间有限,本文有很多不足之处,望评论下方留言指正!

    2.本文中代码仅做参考使用,不做实际项目运用,主要是思路,红色部分的注意项要留意!

    3.篇幅较长,注意捡重点看,思路!思路!思路!


    开拔~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


    一、环境说明:

    采用laravel5.8框架,php版本7.2.1

    二、安装

    两种方式,依赖包版本可根据自己实际情况进行调整

    1.在项目目录下composer.json添加依赖包

    #composer.json中
    
    "require": {
          #.......
          "dingo/api": "^2.0",
          "tymon/jwt-auth": "~1.0.0-rc.1",
          #......
    }

    2.直接require 依赖包

    composer requiredingo/api 2.0
    composer require tymon/jwt-auth 1.0.0-rc.1

    三、发布配置文件

    1.发布dingo配置文件

    php artisan vendor:publish --provider="DingoApiProviderLaravelServiceProvider"

    此命令会在 config 目录下生成一个 api.php 配置文件,你可以在此进行自定义配置。

    <?php
    
    
    return [
    
        /*
        |--------------------------------------------------------------------------
        | Standards Tree
        |--------------------------------------------------------------------------
        |
        | Versioning an API with Dingo revolves around content negotiation and
        | custom MIME types. A custom type will belong to one of three
        | standards trees, the Vendor tree (vnd), the Personal tree
        | (prs), and the Unregistered tree (x).
        |
        | By default the Unregistered tree (x) is used, however, should you wish
        | to you can register your type with the IANA. For more details:
        | https://tools.ietf.org/html/rfc6838
        |
        */
    
        'standardsTree' => env('API_STANDARDS_TREE', 'x'),
    
        /*
        |--------------------------------------------------------------------------
        | API Subtype
        |--------------------------------------------------------------------------
        |
        | Your subtype will follow the standards tree you use when used in the
        | "Accept" header to negotiate the content type and version.
        |
        | For example: Accept: application/x.SUBTYPE.v1+json
        |
        */
    
        'subtype' => env('API_SUBTYPE', ''),
    
        /*
        |--------------------------------------------------------------------------
        | Default API Version
        |--------------------------------------------------------------------------
        |
        | This is the default version when strict mode is disabled and your API
        | is accessed via a web browser. It's also used as the default version
        | when generating your APIs documentation.
        |
        */
    
        'version' => env('API_VERSION', 'v1'),
    
        /*
        |--------------------------------------------------------------------------
        | Default API Prefix
        |--------------------------------------------------------------------------
        |
        | A default prefix to use for your API routes so you don't have to
        | specify it for each group.
        |
        */
    
        'prefix' => env('API_PREFIX', 'api'),
    
        'paginate' => [
            'limit' => 15,
        ],
    
        /*
        |--------------------------------------------------------------------------
        | Default API Domain
        |--------------------------------------------------------------------------
        |
        | A default domain to use for your API routes so you don't have to
        | specify it for each group.
        |
        */
    
        'domain' => env('API_DOMAIN', null),
    
        /*
        |--------------------------------------------------------------------------
        | Name
        |--------------------------------------------------------------------------
        |
        | When documenting your API using the API Blueprint syntax you can
        | configure a default name to avoid having to manually specify
        | one when using the command.
        |
        */
    
        'name' => env('API_NAME', null),
    
        /*
        |--------------------------------------------------------------------------
        | Conditional Requests
        |--------------------------------------------------------------------------
        |
        | Globally enable conditional requests so that an ETag header is added to
        | any successful response. Subsequent requests will perform a check and
        | will return a 304 Not Modified. This can also be enabled or disabled
        | on certain groups or routes.
        |
        */
    
        'conditionalRequest' => env('API_CONDITIONAL_REQUEST', true),
    
        /*
        |--------------------------------------------------------------------------
        | Strict Mode
        |--------------------------------------------------------------------------
        |
        | Enabling strict mode will require clients to send a valid Accept header
        | with every request. This also voids the default API version, meaning
        | your API will not be browsable via a web browser.
        |
        */
    
        'strict' => env('API_STRICT', false),
    
        /*
        |--------------------------------------------------------------------------
        | Debug Mode
        |--------------------------------------------------------------------------
        |
        | Enabling debug mode will result in error responses caused by thrown
        | exceptions to have a "debug" key that will be populated with
        | more detailed information on the exception.
        |
        */
    
        'debug' => env('API_DEBUG', false),
    
        /*
        |--------------------------------------------------------------------------
        | Generic Error Format
        |--------------------------------------------------------------------------
        |
        | When some HTTP exceptions are not caught and dealt with the API will
        | generate a generic error response in the format provided. Any
        | keys that aren't replaced with corresponding values will be
        | removed from the final response.
        |
        */
    
        'errorFormat' => [
            'message' => ':message',
            'errors' => ':errors',
            'code' => ':code',
            'status_code' => ':status_code',
            'debug' => ':debug',
        ],
    
        /*
        |--------------------------------------------------------------------------
        | API Middleware
        |--------------------------------------------------------------------------
        |
        | Middleware that will be applied globally to all API requests.
        |
        */
    
        'middleware' => [
    
        ],
    
        /*
        |--------------------------------------------------------------------------
        | Authentication Providers
        |--------------------------------------------------------------------------
        |
        | The authentication providers that should be used when attempting to
        | authenticate an incoming API request.
        |
        */
    
        'auth' => [
            'jwt' => 'DingoApiAuthProviderJWT',
        ],
    
        /*
        |--------------------------------------------------------------------------
        | Throttling / Rate Limiting
        |--------------------------------------------------------------------------
        |
        | Consumers of your API can be limited to the amount of requests they can
        | make. You can create your own throttles or simply change the default
        | throttles.
        |
        */
    
        'throttling' => [
    
        ],
    
        /*
        |--------------------------------------------------------------------------
        | Response Transformer
        |--------------------------------------------------------------------------
        |
        | Responses can be transformed so that they are easier to format. By
        | default a Fractal transformer will be used to transform any
        | responses prior to formatting. You can easily replace
        | this with your own transformer.
        |
        */
    
        'transformer' => env('API_TRANSFORMER', DingoApiTransformerAdapterFractal::class),
    
        /*
        |--------------------------------------------------------------------------
        | Response Formats
        |--------------------------------------------------------------------------
        |
        | Responses can be returned in multiple formats by registering different
        | response formatters. You can also customize an existing response
        | formatter with a number of options to configure its output.
        |
        */
    
        'defaultFormat' => env('API_DEFAULT_FORMAT', 'json'),
    
        'formats' => [
    
            //'json' => DingoApiHttpResponseFormatJson::class,
            #json 返回自定义
            'json' => AppComponentsResponseFormatJson::class,
        ],
    
        'formatsOptions' => [
    
            'json' => [
                'pretty_print' => env('API_JSON_FORMAT_PRETTY_PRINT_ENABLED', false),
                'indent_style' => env('API_JSON_FORMAT_INDENT_STYLE', 'space'),
                'indent_size' => env('API_JSON_FORMAT_INDENT_SIZE', 2),
            ],
    
        ],
    
        /*
         * 接口频率限制
         */
        'rate_limits' => [
            // 访问频率限制,次数/分钟
            'access' => [
                'expires' => env('RATE_LIMITS_EXPIRES', 1),
                'limit'  => env('RATE_LIMITS', 600),
            ],
            // 登录相关,次数/分钟
            'sign' => [
                'expires' => env('SIGN_RATE_LIMITS_EXPIRES', 1),
                'limit'  => env('SIGN_RATE_LIMITS', 10),
            ],
        ],
    
    ];

    2.发布jwt配置文件

    php artisan vendor:publish --provider="TymonJWTAuthProvidersLaravelServiceProvider"

    此命令会在 config 目录下生成一个 jwt.php 配置文件,你可以在此进行自定义配置。

    jwt.php文件

    <?php

    /*
    * This file is part of jwt-auth.
    *
    * (c) Sean Tymon <tymon148@gmail.com>
    *
    * For the full copyright and license information, please view the LICENSE
    * file that was distributed with this source code.
    */

    return [

    /*
    |--------------------------------------------------------------------------
    | JWT Authentication Secret
    |--------------------------------------------------------------------------
    |
    | Don't forget to set this in your .env file, as it will be used to sign
    | your tokens. A helper command is provided for this:
    | `php artisan jwt:secret`
    |
    | Note: This will be used for Symmetric algorithms only (HMAC),
    | since RSA and ECDSA use a private/public key combo (See below).
    |
    | 加密生成 token 的 secret
    */
    'secret' => env('JWT_SECRET'),

    /*
    |--------------------------------------------------------------------------
    | JWT Authentication Keys
    |--------------------------------------------------------------------------
    |
    | The algorithm you are using, will determine whether your tokens are
    | signed with a random string (defined in `JWT_SECRET`) or using the
    | following public & private keys.
    |
    | Symmetric Algorithms:
    | HS256, HS384 & HS512 will use `JWT_SECRET`.
    |
    | Asymmetric Algorithms:
    | RS256, RS384 & RS512 / ES256, ES384 & ES512 will use the keys below.
    |
    | 如果你在 .env 文件中定义了 JWT_SECRET 的随机字符串
    | 那么 jwt 将会使用 对称算法 来生成 token
    | 如果你没有定有,那么jwt 将会使用如下配置的公钥和私钥来生成 token
    */

    'keys' => [

    /*
    |--------------------------------------------------------------------------
    | Public Key
    |--------------------------------------------------------------------------
    |
    | A path or resource to your public key.
    |
    | E.g. 'file://path/to/public/key'
    |
    */

    'public' => env('JWT_PUBLIC_KEY'),

    /*
    |--------------------------------------------------------------------------
    | Private Key
    |--------------------------------------------------------------------------
    |
    | A path or resource to your private key.
    |
    | E.g. 'file://path/to/private/key'
    |
    */

    'private' => env('JWT_PRIVATE_KEY'),

    /*
    |--------------------------------------------------------------------------
    | Passphrase
    |--------------------------------------------------------------------------
    |
    | The passphrase for your private key. Can be null if none set.
    |
    */

    'passphrase' => env('JWT_PASSPHRASE'),

    ],

    /*
    |--------------------------------------------------------------------------
    | JWT time to live
    |--------------------------------------------------------------------------
    |
    | Specify the length of time (in minutes) that the token will be valid for.
    | Defaults to 1 hour.
    |
    | You can also set this to null, to yield a never expiring token.
    | Some people may want this behaviour for e.g. a mobile app.
    | This is not particularly recommended, so make sure you have appropriate
    | systems in place to revoke the token if necessary.
    | Notice: If you set this to null you should remove 'exp' element from 'required_claims' list.

    | 指定 access_token 有效的时间长度(以分钟为单位),默认为1小时,您也可以将其设置为空,以产生永不过期的标记
    */
    'ttl' => env('JWT_TTL', 60),

    /*
    |--------------------------------------------------------------------------
    | Refresh time to live
    |--------------------------------------------------------------------------
    |
    | Specify the length of time (in minutes) that the token can be refreshed
    | within. I.E. The user can refresh their token within a 2 week window of
    | the original token being created until they must re-authenticate.
    | Defaults to 2 weeks.
    |
    | You can also set this to null, to yield an infinite refresh time.
    | Some may want this instead of never expiring tokens for e.g. a mobile app.
    | This is not particularly recommended, so make sure you have appropriate
    | systems in place to revoke the token if necessary.
    |
    | access_token 可刷新的时间长度(以分钟为单位)。默认的时间为 2 周。
    | 用法:如果用户有一个 access_token,那么他可以带着他的 access_token
    | 过来领取新的 access_token,直到 2 周的时间后,他便无法继续刷新了,需要重新登录。
    */

    'refresh_ttl' => env('JWT_REFRESH_TTL', 20160),

    /*
    |--------------------------------------------------------------------------
    | JWT hashing algorithm
    |--------------------------------------------------------------------------
    |
    | Specify the hashing algorithm that will be used to sign the token.
    |
    | See here: https://github.com/namshi/jose/tree/master/src/Namshi/JOSE/Signer/OpenSSL
    | for possible values.
    | 指定将用于对令牌进行签名的散列算法。
    */

    'algo' => env('JWT_ALGO', 'HS256'),

    /*
    |--------------------------------------------------------------------------
    | Required Claims
    |--------------------------------------------------------------------------
    |
    | Specify the required claims that must exist in any token.
    | A TokenInvalidException will be thrown if any of these claims are not
    | present in the payload.
    |
    |指定必须存在于任何令牌中的声明。
    */

    'required_claims' => [
    'iss',
    'iat',
    'exp',
    'nbf',
    'sub',
    'jti',
    ],

    /*
    |--------------------------------------------------------------------------
    | Persistent Claims
    |--------------------------------------------------------------------------
    |
    | Specify the claim keys to be persisted when refreshing a token.
    | `sub` and `iat` will automatically be persisted, in
    | addition to the these claims.
    |
    | Note: If a claim does not exist then it will be ignored.
    |
    |指定在刷新令牌时要保留的声明密钥。
    */

    'persistent_claims' => [
    // 'foo',
    // 'bar',
    ],

    /*
    |--------------------------------------------------------------------------
    | Lock Subject
    |--------------------------------------------------------------------------
    |
    | This will determine whether a `prv` claim is automatically added to
    | the token. The purpose of this is to ensure that if you have multiple
    | authentication models e.g. `AppUser` & `AppOtherPerson`, then we
    | should prevent one authentication request from impersonating another,
    | if 2 tokens happen to have the same id across the 2 different models.
    |
    | Under specific circumstances, you may want to disable this behaviour
    | e.g. if you only have one authentication model, then you would save
    | a little on token size.
    |
    |
    */

    'lock_subject' => true,

    /*
    |--------------------------------------------------------------------------
    | Leeway
    |--------------------------------------------------------------------------
    |
    | This property gives the jwt timestamp claims some "leeway".
    | Meaning that if you have any unavoidable slight clock skew on
    | any of your servers then this will afford you some level of cushioning.
    |
    | This applies to the claims `iat`, `nbf` and `exp`.
    |
    | Specify in seconds - only if you know you need it.
    |
    */

    'leeway' => env('JWT_LEEWAY', 0),

    /*
    |--------------------------------------------------------------------------
    | Blacklist Enabled
    |--------------------------------------------------------------------------
    |
    | In order to invalidate tokens, you must have the blacklist enabled.
    | If you do not want or need this functionality, then set this to false.
    |
    | 为了使令牌无效,您必须启用黑名单。如果不想或不需要此功能,请将其设置为 false。
    */

    'blacklist_enabled' => env('JWT_BLACKLIST_ENABLED', true),

    /*
    | -------------------------------------------------------------------------
    | Blacklist Grace Period
    | -------------------------------------------------------------------------
    |
    | When multiple concurrent requests are made with the same JWT,
    | it is possible that some of them fail, due to token regeneration
    | on every request.
    |
    | Set grace period in seconds to prevent parallel request failure.
    |
    | 当多个并发请求使用相同的JWT进行时,由于 access_token 的刷新 ,其中一些可能会失败,以秒为单位设置请求时间以防止并发的请求失败。
    */

    'blacklist_grace_period' => env('JWT_BLACKLIST_GRACE_PERIOD', 0),

    /*
    |--------------------------------------------------------------------------
    | Cookies encryption
    |--------------------------------------------------------------------------
    |
    | By default Laravel encrypt cookies for security reason.
    | If you decide to not decrypt cookies, you will have to configure Laravel
    | to not encrypt your cookie token by adding its name into the $except
    | array available in the middleware "EncryptCookies" provided by Laravel.
    | see https://laravel.com/docs/master/responses#cookies-and-encryption
    | for details.
    |
    | Set it to true if you want to decrypt cookies.
    |
    */

    'decrypt_cookies' => false,

    /*
    |--------------------------------------------------------------------------
    | Providers
    |--------------------------------------------------------------------------
    |
    | Specify the various providers used throughout the package.
    |
    | 指定整个包中使用的各种提供程序。
    */

    'providers' => [

    /*
    |--------------------------------------------------------------------------
    | JWT Provider
    |--------------------------------------------------------------------------
    |
    | Specify the provider that is used to create and decode the tokens.
    |
    | 用于创建和解码令牌的提供程序。
    */

    'jwt' => TymonJWTAuthProvidersJWTLcobucci::class,

    /*
    |--------------------------------------------------------------------------
    | Authentication Provider
    |--------------------------------------------------------------------------
    |
    | Specify the provider that is used to authenticate users.
    |
    | 用于对用户进行身份验证的提供程序。
    */

    'auth' => TymonJWTAuthProvidersAuthIlluminate::class,

    /*
    |--------------------------------------------------------------------------
    | Storage Provider
    |--------------------------------------------------------------------------
    |
    | Specify the provider that is used to store tokens in the blacklist.
    |
    | 用于在黑名单中存储标记的提供程序。
    */

    'storage' => TymonJWTAuthProvidersStorageIlluminate::class,

    ],

    ];

    3.jwt生成秘钥

    jwt-auth已经预先定义好了一个 Artisan 命令方便你生成 Secret,通过下面命令生成

    php artisan jwt:secret

    该命令会在你的 .env 文件中新增一行 JWT_SECRET=secret,如下所示

    #.env
    JWT_SECRET=HSKxIUfwCdJj5ewdbqfQo5im9zj3r5g9

    4.注册中间件

    JWT 认证扩展包附带了允许我们使用的中间件。在 app/Http/Kernel.php 中注册 auth.jwt 中间件:

    protected $routeMiddleware = [
        ....
        'auth.jwt' => TymonJWTAuthHttpMiddlewareAuthenticate::class,
    ];

    5.设置路由,调整routes/api.php文件,和下方第“七、控制器创建” 对应

    <?php
    $api = app('DingoApiRoutingRouter');
    # 示例1
    $api->version('v1', function ($api) {
        $api->get('demo', function () {
            return 'hello world';
        });
    
    });
    # 示例2
    $api->version('v2', [
        'namespace' => 'AppHttpControllersApiV2',
        'middleware' => 'serializer:array',
    ], function($api) {
        $api->group([
            'middleware' => ['api.throttle','global.log'],
            'limit' => config('api.rate_limits.sign.limit'),#接口访问限制
            'expires' => config('api.rate_limits.sign.expires'),
        ], function($api){
            # 无需校验token的接口
            //......
             $api->post('login', 'AuthController@login')->name('api.auth.login');
            // 需要 token 验证的接口
            $api->group(['middleware' => ['auth.jwt']], function($api) {
                    $api->post('login', 'AuthController@login')->name('api.auth.login');
                    $api->post('logout', 'AuthController@logout')->name('api.auth.logout');
                    $api->post('refresh', 'AuthController@refresh')->name('api.auth.refresh');
                    $api->post('me', 'AuthController@me')->name('api.auth.me');
              //......
            });
        });
    
    });
    ?>

     

    四、配置调整

    1.添加配置(config/app.php)

    'providers' => [
           ......
           DingoApiProviderLaravelServiceProvider::class,
           TymonJWTAuthProvidersLaravelServiceProvider::class,
    ],
    'aliases' => [
    ......
          'JWTAuth' => TymonJWTAuthFacadesJWTAuth::class,
    'JWTFactory' => TymonJWTAuthFacadesJWTFactory::class,
    ]

    2.修改auth.php

    'guards' => [
            'web' => [
                'driver' => 'session',
                'provider' => 'users',
            ],
    
            'api' => [
                'driver' => 'jwt',#把此处驱动改为jwt,默认为laravel框架自带的驱动token
                'provider' => 'users',//注意此处根据自己的实际情况进行调整
    ],
    ]
    ,
    'providers' => [
    'users' => [
    'driver' => 'eloquent',
    'model' => AppModelsUser::class,//注意此处根据自己的实际情况进行调整
    ],

    // 'users' => [
    // 'driver' => 'database',
    // 'table' => 'users',
    // ],
    ],

    3 .env文件

    #Dingo
    # 公开的及商业项目用 vnd
    API_STANDARDS_TREE=prs
    #项目简称
    API_SUBTYPE=dingo-demo
    #域名
    API_DOMAIN=
    # 前缀
    API_PREFIX=api
    #不提供版本时使用的版本号
    API_VERSION=v3
    #开启 debug 模式
    API_DEBUG=true
    API_DEFAULT_FORMAT=json
    #Jwt
    #
    jwt秘钥 JWT_SECRET=HSKxIUfwCdJj5ewdbqfQo5im9zj3r5g9
    #jwt有效时间,单位:分钟 JWT_TTL=60

    五、更新 User 模型

    使用默认的 User 表来生成 token

    JWT 需要在 User 模型中实现 TymonJWTAuthContractsJWTSubject 接口。 此接口需要实现两个方法  getJWTIdentifier 和 getJWTCustomClaims。使用以下内容更新 app/User.php 。

    <?php
    
    namespace App;
    
    use IlluminateFoundationAuthUser as Authenticatable;
    use IlluminateNotificationsNotifiable;
    use TymonJWTAuthContractsJWTSubject;
    
    class User extends Authenticatable implements JWTSubject
    {
        use Notifiable;
    
        /**
         * The attributes that are mass assignable.
         *
         * @var array
         */
        protected $fillable = [
            'name', 'email', 'password',
        ];
    
        /**
         * The attributes that should be hidden for arrays.
         *
         * @var array
         */
        protected $hidden = [
            'password', 'remember_token',
        ];
    
        /**
         * Get the identifier that will be stored in the subject claim of the JWT.
         *
         * @return mixed
         */
        public function getJWTIdentifier()
        {
            return $this->getKey();
        }
    
        /**
         * Return a key value array, containing any custom claims to be added to the JWT.
         *
         * @return array
         */
        public function getJWTCustomClaims()
        {
            return [];
        }
    }

    六、JWT 身份验证逻辑

    使用 JWT 身份验证在 laravel 中写 Restful API 的逻辑。

    用户注册时需要姓名,邮箱和密码。那么,让我们创建一个表单请求来验证数据。通过运行以下命令创建名为AuthorizationRequest的表单请求:

    php artisan make:request  ApiAuthorizationRequest

    它将在 app/Http/Requests/Api 目录下创建 AuthorizationRequest文件。

    <?php
    
    namespace AppHttpRequestsApi;
    
    class AuthorizationRequest extends Request
    {
    
        /**
         * 确定是否授权用户发出此请求
         *
         * @return bool
         */
        public function authorize()
        {
            return true;
        }
    
        /**

    * 获取应用于请求的验证规则 * Get the validation rules that apply to the request. * * @return array
    */ public function rules() { return [ 'username' => 'required|string', 'password' => 'required|string|min:6', ]; } }

    七、控制器创建

    官方案例,稍作了修改: login登录,me获取用户信息,logout退出登录,refresh刷新token,respondWithToken返回token

    <?php
    namespace AppHttpControllers;
    
    use use AppHttpRequestsApiAuthorizationRequest;
    class AuthController extends Controller { /** * Create a new AuthController instance. * 要求附带email和password(数据来源users表) * @return void */ public function __construct() { // 这里额外注意了:官方文档样例中只除外了『login』 // 这样的结果是,token 只能在有效期以内进行刷新,过期无法刷新 // 如果把 refresh 也放进去,token 即使过期但仍在刷新期以内也可刷新 // 不过刷新一次作废 $this->middleware('auth:api', ['except' => ['login']]); // 另外关于上面的中间件,官方文档写的是『auth:api』 // 但是我推荐用 『jwt.auth』,效果是一样的,但是有更加丰富的报错信息返回 } /** * Get a JWT via given credentials. * @param AuthorizationRequest $request * @return IlluminateHttpJsonResponse */ public function login(AuthorizationRequest $request) { $credentials = request(['email', 'password']); if (! $token = auth('api')->attempt($credentials)) { return response()->json(['error' => 'Unauthorized'], 401); } return $this->respondWithToken($token); } /** * Get the authenticated User. * * @return IlluminateHttpJsonResponse */ public function me() { return response()->json(auth('api')->user()); } /** * Log the user out (Invalidate the token). * * @return IlluminateHttpJsonResponse */ public function logout() { auth('api')->logout(); return response()->json(['message' => 'Successfully logged out']); } /** * Refresh a token. * 刷新token,如果开启黑名单,以前的token便会失效。 * 值得注意的是用上面的getToken再获取一次Token并不算做刷新,两次获得的Token是并行的,即两个都可用。 * @return IlluminateHttpJsonResponse */ public function refresh() { return $this->respondWithToken(auth('api')->refresh()); } /** * Get the token array structure. * * @param string $token * * @return IlluminateHttpJsonResponse */ protected function respondWithToken($token) { return response()->json([ 'access_token' => $token, 'token_type' => 'bearer', 'expires_in' => auth('api')->factory()->getTTL() * 60 ]); } }

    注意:

    jwt使用

    jwt koken两种使用方式

    1.加到 url 中:?token=你的token

    2.加到 header 中,建议用这种,因为在 https 情况下更安全:Authorization:Bearer 你的token

    八、自定义Dingo Api 响应格式

    1.新建Json.php文件,AppComponentsResponseFormatJson.php, 代码示例如下:

    主要思路就是继承DingoApiHttpResponseFormatJson类,并进行重写

    <?php
    
    namespace AppComponentsResponseFormat;
    
    use AppComponentsResultsCodeSuccessCode;
    use DingoApiHttpResponseFormatJson as DingoJson;
    
    class Json extends DingoJson
    {
        /**
         * Encode the content to its JSON representation.
         *
         * @param mixed $content
         *
         * @return string
         */
        protected function encode($content)
        {
            $jsonEncodeOptions = [];
    
            // Here is a place, where any available JSON encoding options, that
            // deal with users' requirements to JSON response formatting and
            // structure, can be conveniently applied to tweak the output.
    
            if ($this->isJsonPrettyPrintEnabled()) {
                $jsonEncodeOptions[] = JSON_PRETTY_PRINT;
                $jsonEncodeOptions[] = JSON_UNESCAPED_UNICODE;
            }
    
    #主要在此处进行调整 $newContent = [ 'code' => $content['code'] ?? SuccessCode::SUCCESS, 'data' => $content['data'] ?? [], 'message' => $content['message'] ?? SuccessCode::SUCCESS_MSG, ]; $encodedString = $this->performJsonEncoding($newContent, $jsonEncodeOptions); if ($this->isCustomIndentStyleRequired()) { $encodedString = $this->indentPrettyPrintedJson( $encodedString, $this->options['indent_style'] ); } return $encodedString; } }

    注意:由于自定义了响应返回,所以"七、控制器创建"的示例代码中需要调整格式为,需要有data键

     /**
         * 响应 Token 结构体
         *
         * @param $token
         * @return mixed
         */
        protected function respondWithToken($token)
        {
            $res = [
                'data' => [
                    'token' => $token,
                    'token_type' => 'Bearer',
                    'expires_in' => Auth::guard('api')->factory()->getTTL()
                ]
            ];
    
            return $this->response->array($res);
        }

    2.在config/api.php文件中,调整json返回类

    #config/api.php
    'formats' => [
    
            //'json' => DingoApiHttpResponseFormatJson::class,
            #json 返回自定义
            'json' => AppComponentsResponseFormatJson::class,
        ],

    九、自定义Dingo 异常返回

    1.新建API异常处理文件AppExceptionsApiHandler,具体实现根据自己需要,此处代码仅做参考,注意:文件里面有自定义的code码,另外该文件只是示例,可根据自己需要进行调整

    <?php
    
    namespace AppExceptions;
    
    use AppComponentsResultsCodeAuthCode;
    use AppComponentsResultsCodeCommonCode;
    use AppComponentsResultsCodeErrorCode;
    use Exception;
    use IlluminateFoundationExceptionsHandler as ExceptionHandler;
    use InterventionImageExceptionNotFoundException;
    use SymfonyComponentHttpKernelExceptionUnauthorizedHttpException;
    use SymfonyComponentHttpKernelExceptionMethodNotAllowedHttpException;
    use AppComponentsResultsExceptionServiceErrorException;
    use AppComponentsResultsExceptionServiceException;
    use AppComponentsResultsExceptionServiceLogicException;
    use AppComponentsResultsExceptionServiceValidException;
    use TymonJWTAuthExceptionsJWTException;
    use TymonJWTAuthExceptionsTokenBlacklistedException;
    #该目录下面的几个文件,在下面有示例,可根据情况自行调整
    use AppComponentsResultsResults;
    
    class ApiHandler extends ExceptionHandler
    {
        /**
         * A list of the exception types that are not reported.
         *
         * @var array
         */
        protected $dontReport = [
            //
        ];
    
        /**
         * A list of the inputs that are never flashed for validation exceptions.
         *
         * @var array
         */
        protected $dontFlash = [
            'password',
            'password_confirmation',
        ];
    
        /**
         * Report or log an exception.
         *
         * @param  Exception  $exception
         * @return void
         */
        public function report(Exception $exception)
        {
            parent::report($exception);
        }
    
        /**
         * Render an exception into an HTTP response.
         *
         * @param  IlluminateHttpRequest  $request
         * @param  Exception  $exception
         * @return  AppComponentsResultsResult | IlluminateHttpResponse
         * @see https://learnku.com/docs/dingo-api/2.0.0/Errors-And-Error-Responses/1447
         */
        public function render($request, Exception $exception)
        {
            if ($request->isJson()) {
                $class = get_class($exception);
                switch ($class) {
                    case 'DingoApiExceptionValidationHttpException':
                        return Results::failure(AuthCode::MISSING_ACCESS_TOKEN_MSG, AuthCode::MISSING_ACCESS_TOKEN);
                    case 'SymfonyComponentHttpKernelExceptionUnauthorizedHttpException':
                    case 'TymonJWTAuthExceptionsJWTException'://Token could not be parsed from the request.
                    case 'TymonJWTAuthExceptionsTokenBlacklistedException'://The token has been blackliste
                        return Results::failure(AuthCode::MISSING_ACCESS_TOKEN_MSG, AuthCode::MISSING_ACCESS_TOKEN);
                    case 'SymfonyComponentHttpKernelExceptionNotFoundHttpException':
                        return Results::failure(CommonCode::URL_NOT_FOUND_MSG, CommonCode::URL_NOT_FOUND);
                    case 'AppComponentsResultsExceptionServiceValidException':
                    case 'AppComponentsResultsExceptionServiceLogicException':
                    case 'AppComponentsResultsExceptionServiceErrorException':
                    case 'AppComponentsResultsExceptionServiceException':
                        return Results::failure($exception->getMessage(), $exception->getErrorCode());
                    case 'SymfonyComponentHttpKernelExceptionMethodNotAllowedHttpException':
                        return Results::failure($exception->getMessage(), $exception->getCode());
                    case 'DingoApiExceptionRateLimitExceededException':
                        return Results::failure(CommonCode::IRATE_LIMIT_REQUEST_MSG, CommonCode::RATE_LIMIT_REQUEST);
                    default:
                        return Results::error(ErrorCode::UNKNOWN_ERROR_MSG, ErrorCode::UNKNOWN_ERROR);
                }
            }
    
            if(config('app.debug')){
                return parent::render($request, $exception);
            }
    
            if (method_exists($exception, 'getStatusCode')) {
                $statusCode = $exception->getStatusCode();
                switch ($statusCode) {
                    case 400:
                    case 403:
                    case 405:
                        return response()->view('errors.404', ['message'=>$exception->getMessage()], $exception->getStatusCode());
                        break;
                    case 500:
                    case 501:
                    case 502:
                        return response()->view('errors.500', ['message'=>$exception->getMessage()], $exception->getStatusCode());
                        break;
                    default:
                        return response()->view('errors.404', ['message'=>$exception->getMessage()], $exception->getStatusCode());
                        break;
                }
            }
    
            return parent::render($request, $exception);
        }
    
    }

    CommonCode.php代码示例:

    <?php
    
    namespace AppComponentsResultsCode;
    
    /**
     * 公共的业务异常错误码
     * Class CommonCode
     * @package AppComponentsResultsCode
     */
    class CommonCode
    {
        const INVALID_ARGS = "C_1";
        const INVALID_ARGS_MSG = "参数无效";
    
        const DATA_NOT_FOUND = "C_2";
        const DATA_NOT_FOUND_MSG = "无数据";
        //......
    }

    Results.php文件示例:

    <?php
    
    namespace AppComponentsResults;
    
    use AppComponentsResultsCodeCommonCode;
    use AppComponentsResultsCodeErrorCode;
    use AppComponentsResultsCodeSuccessCode;
    
    final class Results
    {
        /**
         * 成功
         * @param mixed data 并设置data参数
         * @param string $code 错误码
         * @return Result
         */
        public static function success($data = null,$code=SuccessCode::SUCCESS)
        {
            return new Result(SuccessCode::SUCCESS_MSG, $code, $data);
        }

       /**
    * 失败
    * @param string $message 失败信息
    * @param string $code 失败编码
    * @return Result 返回对象
    */
    public static function failure(string $message, string $code) {
    return new Result($message, $code);
    }
    }
    Result.php文件示例
    <?php
    
    namespace AppComponentsResults;
    
    use AppComponentsResultsCodeErrorCode;
    use AppComponentsResultsCodeSuccessCode;
    use AppComponentsResultsCodeErrorCode;
    
    /**
     * Class Result
     */
    class Result
    {
    
        public $code;
        public $message;
        public $data;
    
        public function __construct($message, $code, $data = null)
        {
            $this->message = $message;
            $this->code = $code;
            $this->data = $data;
        }
    
        /**
         * 获取错误码
         * @return string 错误码
         */
        function getCode(): string
        {
            return $this->code;
        }
    
        /**
         * 获取成功或错误的信息
         * @return string 成功或错误的信息
         */
        function getMessage(): string
        {
            return $this->message;
        }
    
        /**
         * 获取数据
         * @return object 数据
         */
        function getData()
        {
            return $this->data;
        }
    
        /**
         * 设置错误码
         * @param string code 错误码
         * @return Result Result对象
         */
        function setCode(string $code): Result
        {
            $this->code = $code;
            return $this;
        }
    
        /**
         * 设置成功或错误的信息
         * @param string message 成功或错误的信息
         * @return Result
         */
        function setMessage(string $message): Result
        {
            $this->message = $message;
            return $this;
        }
    
        /**
         * 设置数据
         * @param mixed data 数据
         * @return Result
         */
        function setData($data): Result
        {
            $this->data = $data;
            return $this;
        }
    
        function __toString()
        {
            return json_encode($this, Constants::DEFAULT_ENCODING_OPTIONS | JSON_UNESCAPED_UNICODE | JSON_PRETTY_PRINT | JSON_UNESCAPED_SLASHES);
        }
    
        function jsonSerialize()
        {
            return $this;
        }
    }

     2.在 App/Providers/AppServiceProvider中注册新的异常处理

    <?php
    
    namespace AppProviders;
    
    use IlluminateSupportServiceProvider;
    
    class AppServiceProvider extends ServiceProvider
    {
        /**
         * Bootstrap any application services.
         *
         * @return void
         */
        public function boot()
        {
            app('api.exception')->register(function (Exception $exception) {
                $request = IlluminateHttpRequest::capture();
                return app('AppExceptionsApiHandler')->render($request, $exception);
            });
        }
       
        /**
         * Register any application services.
         *
         * @return void
         */
        public function register()
        {
         //......
        }
    
    }

    参考文档:

    https://learnku.com/docs/dingo-api/2.0.0/Configuration/1444#6cdca8

    https://learnku.com/docs/laravel/5.8/api-authentication/3952

    https://learnku.com/laravel/t/27760

  • 相关阅读:
    自然语言处理1-1 算法时间复杂度
    tensorflow2.0(1):简介
    基于PKCS#11的应用架构
    数字证书应用改造需求调研-2015-10-19
    签名验证工具Aloaha Sign
    PDF签名应用研究小结
    用bcp导sql server数据到excel文件
    无线网卡和有线网卡的嗅探模式的区别
    Tomcat6源代码在Eclipse里调试简要说明
    OpenLDAP 主从复制配置
  • 原文地址:https://www.cnblogs.com/joshua317/p/14667978.html
Copyright © 2011-2022 走看看