如何在 Laravel 护照中实现多重身份验证

Question

我有两个用户 admin/user 我想验证这两个用户的 api，它适用于一个用户，但它不适用于 admin

看看我在管理控制器中尝试了什么

public function login(Request $request){

//        $res=;
   // dd ($res);
     if(Auth::guard('admin')->attempt(['email' =>  $request->email, 'password' =>  $request->password]))
    {

  // if successful, then redirect to their intended location


        $user = auth()->guard('admin')->user();
        $success['token'] =  $user->createToken('admin')->accessToken;
        return response()->json(['success' => $success], $this->successStatus);
    }
    else{
        return response()->json(['error'=>'Unauthorised','email'=> $request->email,'password'=> $request->password], 401);
    }
}

并在 api.php

Route::prefix('admin')->group(function () {

Route::post('login', 'API\Admin\AdminController@login')->name('admin.login');
Route::post('register', 'API\Admin\AdminController@register')->name('admin.register');

Route::group(['middleware' => 'auth:admin-api'], function(){
 Route::post('get-details', 'API\Admin\AdminController@getDetails');
});


});

当我尝试为管理员调用尝试功能时，它给了我错误

BadMethodCallException 方法 Illuminate\Auth\RequestGuard::attempt 不存在。

你能分享你对如何在 laravel/passport 中进行多重身份验证的想法吗？

Answer 1

您可以在 Laravel 护照中实施多重身份验证，您必须遵循以下步骤

1）在我创建的情况下创建4个守卫

 'guards' => [
    'web' => [
        'driver' => 'session',
        'provider' => 'users',
    ],

    'api' => [
        'driver' => 'passport',
        'provider' => 'users',
     ],
     'admin-api' => [
        'driver' => 'passport',
        'provider' => 'admin',
    ],
     'admin' => [
        'driver' => 'session',
        'provider' => 'admin',
    ],
],

然后在控制器中记录该类型的用户时，请确保您使用的是 sessio 驱动程序防护，例如

用户控制器.php

 public function login(){
    if(Auth::attempt(['email' => request('email'), 'password' => request('password')])){
        $user = Auth::user();
        $success['token'] =  $user->createToken('MyApp')->accessToken;
        return response()->json(['success' => $success], $this->successStatus);
    }
    else{
        return response()->json(['error'=>'Unauthorised'], 401);
    }
}

在 admincontroller.php 中

 public function login(){
    if(Auth::guard('admin')->attempt(['email' => request('email'), 'password' => request('password')])){
        $user = Auth::guard('admin')->user();
        $success['token'] =  $user->createToken('admin')->accessToken;
        return response()->json(['success' => $success], $this->successStatus);
    }
    else{
        return response()->json(['error'=>'Unauthorised'], 401);
    }
}

并在检查令牌时使用护照司机守卫

public function getDetails()
{
    $user = Auth::guard('admin-api')->user();
    return response()->json(['success' => $user], $this->successStatus);
}

并在中间件中

Route::group(['middleware' => 'auth:api'], function(){
 Route::post('admin/get-details', 'API\Admin\AdminController@getDetails');
});