composer require laravel\/passport<\/code><\/pre>\n\u00dclaltoodud k\u00e4sk t\u00f6\u00f6tab Laraveli uusima versiooniga. Kui kasutate vanemat versiooni, on k\u00e4sk veidi erinev, s\u00f5ltuvalt teie Laraveli versioonist. N\u00e4iteks kui Laravel 5.5 on installitud, peaks teie k\u00e4sk olema:<\/p>\n
composer require laravel\/passport=~4.0<\/code><\/pre>\nSee k\u00e4sk loob oma andmebaaside migreerimise kataloogi. Need migreerimised loovad tabeleid, kuhu salvestatakse kliendid ja juurdep\u00e4\u00e4suload.<\/p>\n
config\/app.php<\/code>Registreerige oma failis Passsi teenuse pakkuja pakkujate massiivi.<\/p>\nconfig \/ app.php<\/p>\n
'providers' =>[\n\u00a0\u00a0....\n\u00a0\u00a0LaravelPassportPassportServiceProvider::class,\n],<\/code><\/pre>\nK\u00e4ivitame migreerimise, mis loob Passportsi andmebaasitabelid.<\/p>\n
php artisan migrate<\/code><\/pre>\nN\u00fc\u00fcd, kui l\u00e4hete oma andmebaasi kliendi juurde, m\u00e4rkate oma andmebaasis loodud uusi tabeleid.<\/p>\n
![\"Laraveli](\"https:\/\/themewp.inform.click\/wp-content\/uploads\/2021\/04\/post-20656-608215f24e4c0.png\")
<\/a><\/p>\nJ\u00e4rgmisena k\u00e4ivitage j\u00e4rgmine k\u00e4sk, mis loob turvaliste juurdep\u00e4\u00e4sulubade loomiseks kr\u00fcptov\u00f5tmed. Allpool olev k\u00e4sk loob "isikliku juurdep\u00e4\u00e4su" ja "parooli andmise" kliendid, kes on tabelisse salvestatud oauth_clients<\/code>.<\/p>\nphp artisan passport:install<\/code><\/pre>\n![\"Laraveli](\"https:\/\/themewp.inform.click\/wp-content\/uploads\/2021\/04\/post-20656-608215f2ddc78.png\")
<\/a><\/p>\nJ\u00e4rgmiste toimingute jaoks saab kasutaja need m\u00e4rgid kopeerida. Tegelikult n\u00e4eme kahte viisi p\u00e4\u00e4sum\u00e4rkide loomiseks. \u00dcks on selle parooli andmise klientide kaudu ja teine \u200b\u200bsisselogimise autentimine.<\/p>\n
Passi seadistamine<\/h3>\n
Minge Laraveli kataloogidesse ja avage mudelifail AppUser<\/code>. Selles failis peame lisama LaravelPassportHasApiTokens<\/code>tunnuse.<\/p>\napp \/ User.php<\/strong>.<\/p>\n<?php\n\u00a0\nnamespace App;\n\u00a0\nuse LaravelPassportHasApiTokens;\nuse IlluminateNotificationsNotifiable;\nuse IlluminateFoundationAuthUser as Authenticatable;\n\u00a0\nclass User extends Authenticatable\n{\n\u00a0\u00a0\u00a0\u00a0use HasApiTokens, Notifiable;\n\u00a0\u00a0\u00a0\u00a0....\n}<\/code><\/pre>\nP\u00e4rast seda on meil helistada Passport::routes<\/code>meetodi boot<\/code>meetod AuthServiceProvider<\/code>.<\/p>\napp \/ Providers \/ AuthServiceProvider.php<\/strong><\/p>\n<?php\n\u00a0\nnamespace AppProviders;\n\u00a0\nuse LaravelPassportPassport;\nuse IlluminateSupportFacadesGate;\nuse IlluminateFoundationSupportProvidersAuthServiceProvider as ServiceProvider;\n\u00a0\nclass AuthServiceProvider extends ServiceProvider\n{\n\u00a0\u00a0\u00a0\u00a0\/**\n\u00a0\u00a0\u00a0\u00a0\u00a0* The policy mappings for the application.\n\u00a0\u00a0\u00a0\u00a0\u00a0*\n\u00a0\u00a0\u00a0\u00a0\u00a0* @var array\n\u00a0\u00a0\u00a0\u00a0\u00a0*\/\n\u00a0\u00a0\u00a0\u00a0protected $policies = [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'AppModel' => 'AppPoliciesModelPolicy',\n\u00a0\u00a0\u00a0\u00a0];\n\u00a0\n\u00a0\u00a0\u00a0\u00a0\/**\n\u00a0\u00a0\u00a0\u00a0\u00a0* Register any authentication \/ authorization services.\n\u00a0\u00a0\u00a0\u00a0\u00a0*\n\u00a0\u00a0\u00a0\u00a0\u00a0* @return void\n\u00a0\u00a0\u00a0\u00a0\u00a0*\/\n\u00a0\u00a0\u00a0\u00a0public function boot()\n\u00a0\u00a0\u00a0\u00a0{\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0$this->registerPolicies();\n\u00a0\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0Passport::routes();\n\u00a0\u00a0\u00a0\u00a0}\n}<\/code><\/pre>\nL\u00f5puks config\/auth.php<\/code>seadistage failis \u201eapi" autentimisvalvuri \u201edraiveri” v\u00e4\u00e4rtuseks \u201epass” j\u00e4rgmiselt:<\/p>\nconfig \/ auth.php<\/strong><\/p>\n'guards' => [\n\u00a0\u00a0\u00a0\u00a0'web' => [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'driver' => 'session',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'provider' => 'users',\n\u00a0\u00a0\u00a0\u00a0],\n\u00a0\n\u00a0\u00a0\u00a0\u00a0'api' => [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'driver' => 'passport',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'provider' => 'users',\n\u00a0\u00a0\u00a0\u00a0],\n],<\/code><\/pre>\nLooge REST API ja kaitske seda Laraveli passiga<\/h3>\n
Laravel loob faili, routes\/api.php<\/code>kus peaksime deklareerima oma REST API-de l\u00f5pp-punkti. Saame kaitsta oma API-d, lisades sellele vahevara auth:api<\/code>.<\/p>\nmarsruudid \/ api.php<\/strong><\/p>\nRoute::get('\/api\/categories', 'ApiController@categories')->middleware('auth:api');<\/code><\/pre>\nMitme l\u00f5pp-punkti jaoks ei pea me iga kord vahevara lisama. Selle asemel saame seda teha j\u00e4rgmiselt:<\/p>\n
Route::group(['middleware' => 'auth:api'], function(){\n\u00a0\u00a0\u00a0\u00a0Route::get('products', 'ApiController@products');\n\u00a0\u00a0\u00a0\u00a0Route::get('categories', 'ApiController@categories');\n});<\/code><\/pre>\nKuna meie l\u00f5pp-punkt \u201etooted” on kaitstud, kui me nimetame seda otse ilma autoriseerimiseta, saame vastuse \u201eAutentimata”.<\/p>\n
<\/a><\/p>\nSee t\u00e4hendab, et API-le helistamise ajal on h\u00e4davajalik, et igas taotluses edastataks autoriseerimisluba. Niisiis, Passport kontrollib loa ja tagastab vastuse.<\/p>\n
Looge API-le juurdep\u00e4\u00e4suluba<\/h3>\n
Rakenduse juurdep\u00e4\u00e4suloa loomiseks on mitu v\u00f5imalust. N\u00e4eme selle \u00f5petuse jaoks neist kahte.<\/p>\n
Esimene v\u00f5imalus<\/h4>\n
Esmalt peate helistama n\u00f5utavate parameetritega \/ oauth \/ tokenile ja saate vastuseks m\u00e4rgi.<\/p>\n
Eeldame, et kasutate API-p\u00e4ringu tegemiseks Guzzle’i HTTP-teeki<\/a>. Oletame, et teil on veel \u00fcks projekt, kust teete API-p\u00e4ringut.<\/p>\n<?php\nrequire_once \"vendor\/autoload.php\";\n\u00a0\nuse GuzzleHttpClient;\n\u00a0\n$client = new Client([\n\u00a0\u00a0\u00a0\u00a0\/\/ Base URI is used with relative requests\n\u00a0\u00a0\u00a0\u00a0'base_uri' => 'http:\/\/laravel.dev',\n]);\n\u00a0\n$response = $client->post('\/oauth\/token', [\n\u00a0\u00a0\u00a0\u00a0'form_params' => [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'grant_type' => 'password',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'client_id' => '2',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'client_secret' => '8qyKG7WKb3O3FZh2hUyEOZ3dAj5l9S5ljn2bdeJf',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'username' => 'sajid@test.com',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'password' => 'my_password',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'scope' => '*',\n\u00a0\u00a0\u00a0\u00a0],\n]);\n\u00a0\n$arr_result = json_decode((string) $response->getBody(), true);<\/code><\/pre>\nKoodi kohal tagastatakse massiiv, mis sisaldab v\u00f5tit ‘access_token’. Parameetrid klient_id ja kliendi saladus, mille saime k\u00e4ivitamisel passport:install<\/code>. Need \u00fcksikasjad saate ka oma andmebaasitabelist ‘oauth_clients’.<\/p>\nProovige uuesti postiljonilt, edastades p\u00e4\u00e4supunkti ‘tooted’ l\u00f5pp-punkti ja peaksime vastuse saama.<\/p>\n
<\/a><\/p>\nTegelikult peate sellele API-le helistama nagu allpool:<\/p>\n
$response = $client->get('\/products', [\n\u00a0\u00a0\u00a0\u00a0'headers' => [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'Authorization' => 'Bearer '.$access_token,\n\u00a0\u00a0\u00a0\u00a0]\n]);\n\u00a0\n$arr_result = json_decode((string) $response->getBody(), true);<\/code><\/pre>\nTeine v\u00f5imalus<\/h4>\n
Esimese valiku korral peaksite oma loa genereerimiseks teadma client_id ja client_secret. M\u00f5nes stsenaariumis ei pruugi see olla mugav viis. Pass annab veel \u00fche v\u00f5imaluse juurdep\u00e4\u00e4suloa loomiseks ainult sisselogimismandaatide kaudu.<\/p>\n
Meie ApiController.php<\/code>lisage sisselogimismeetod koos postitaotlusega ja kirjutage sinna allolev kood.<\/p>\n<?php\n\u00a0\nnamespace AppHttpControllers;\n\u00a0\nuse IlluminateHttpRequest;\nuse IlluminateSupportFacadesStorage;\nuse IlluminateSupportFacadesAuth;\n\u00a0\nclass ApiController extends Controller\n{\n\u00a0\u00a0\u00a0\u00a0public function login(){ \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0if(Auth::attempt(['email' => request('email'), 'password' => request('password')])){ \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0$user = Auth::user(); \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0$success['token'] =\u00a0 $user->createToken('MyApp')-> accessToken; \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0return response()->json(['success' => $success], 200); \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0} \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0else{ \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0return response()->json(['error'=>'Unauthorised'], 401); \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0} \n\u00a0\u00a0\u00a0\u00a0}<\/code><\/pre>\nSelle API k\u00f5ne tegemiseks peame selle jaoks marsruudi registreerima.<\/p>\n
marsruudid \/ api.php<\/strong><\/p>\nRoute::post('login', 'ApiController@login');<\/code><\/pre>\nKasutaja saab sellele API-le HTTP-postitaotluse esitada, kirjutades alloleva koodi:<\/p>\n
$response = $client->post('\/api\/login', [\n\u00a0\u00a0\u00a0\u00a0'form_params' => [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'email' => 'sajid@test.com',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'password' => 'my_password'\n\u00a0\u00a0\u00a0\u00a0],\n]);\n\u00a0\n$arr_result = json_decode((string) $response->getBody(), true);<\/code><\/pre>\n<\/a><\/p>\nLoodame, et m\u00f5istate Laraveli passi kasutamist REST API autentimiseks. Soovime teie m\u00f5tteid kuulda allpool olevas kommentaaride jaotises. Samuti soovitame l\u00e4bi lugeda artikli Laraveli API \u00f5petus: kuidas ehitada ja testida RESTful API-d,<\/a> mis meie arvates oli lugejatele kasulik.<\/p>\n