{"id":26031,"date":"2021-06-08T18:13:00","date_gmt":"2021-06-08T15:13:00","guid":{"rendered":"https:\/\/themewp.inform.click\/?p=26031"},"modified":"2021-10-17T18:25:19","modified_gmt":"2021-10-17T15:25:19","slug":"mobiilirakenduste-autentimine-tokariga-laravelis","status":"publish","type":"post","link":"https:\/\/themewp.inform.click\/et\/mobiilirakenduste-autentimine-tokariga-laravelis\/","title":{"rendered":"Mobiilirakenduste autentimine Tokariga Laravelis"},"content":{"rendered":"

Kas kasutate Laraveli oma mobiilirakenduse tagatipuks? Kui jah, siis ilmselt otsite lihtsat lahendust oma mobiilirakenduse autentimiseks. Paljud kasutajad v\u00f5ivad teie mobiilirakendust kasutada ja soovite oma mobiilikasutajatele sisu esitamiseks autentida. Selles artiklis uurime, kuidas Laravelis s\u00fcmboolset autentimist teha. Sama l\u00e4henemist saate kasutada ka REST API autentimiseks.<\/p>\n

Integreerime Laraveli Sanctumi,<\/a> mis on kerge autentimiss\u00fcsteem. V\u00f5ite seda pidada OAuth-p\u00f5hise autentimise asendajaks.<\/p>\n

Sanctumi kasutamise ajal salvestatakse andmebaasi kasutaja API-m\u00e4rgid. See luba tuleb saata Bearer<\/code>loana Authorization<\/code>p\u00e4ise kaudu oma mobiilirakendusest Laraveli API l\u00f5pp-punktidesse. Nendel m\u00e4rkidel on tavaliselt v\u00e4ga pikk aegumisaeg (aastad).<\/p>\n

Sellest hoolimata vaatame, kuidas kasutada Sanctumit mobiilirakenduste autentimiseks.<\/p>\n

Installige ja konfigureerige Laraveli p\u00fchamu<\/h3>\n

Alustamiseks peate k\u00f5igepealt installima oma Laraveli rakendusse Sanctumi paketi. Installige see k\u00e4suga:<\/p>\n

composer require laravel\/sanctum<\/code><\/pre>\n
P\u00e4rast seda avaldage Sanctumi konfiguratsiooni- ja migreerimisfailid, k\u00e4ivitades alloleva k\u00e4su.<\/p>\n
php artisan vendor:publish --provider=\"LaravelSanctumSanctumServiceProvider\"<\/code><\/pre>\n
J\u00e4rgmisena k\u00e4ivitage migratsiooni k\u00e4sk, mis loob personal_access_tokens<\/code>teie andmebaasi tabeli. See on tabel, kuhu k\u00f5ik API-m\u00e4rgid salvestatakse.<\/p>\n
php artisan migrate<\/code><\/pre>\n
Vaikimisi n\u00f5uab iga Laraveli taotlus csrf-m\u00e4rki. Selle csrf-m\u00e4rgi puudumisel ei j\u00e4tka Laravel teie taotlust. Kui r\u00e4\u00e4kida Sanctumi abil API-m\u00e4rkide genereerimisest, peame csrf-m\u00e4rgi saatmise vahele j\u00e4tma. Selleks lisage muutujale sanctum\/token<\/code>marsruut. Selle marsruudi koostan j\u00e4rgmistes sammudes.$except``app\/Http\/Middleware\/VerifyCsrfToken.php``sanctum\/token<\/code><\/p>\n
<?php\n...\nclass VerifyCsrfToken extends Middleware\n{\n\u00a0\u00a0\u00a0\u00a0\/**\n\u00a0\u00a0\u00a0\u00a0\u00a0* The URIs that should be excluded from CSRF verification.\n\u00a0\u00a0\u00a0\u00a0\u00a0*\n\u00a0\u00a0\u00a0\u00a0\u00a0* @var array\n\u00a0\u00a0\u00a0\u00a0\u00a0*\/\n\u00a0\u00a0\u00a0\u00a0protected $except = [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'sanctum\/token'\n\u00a0\u00a0\u00a0\u00a0];\n}<\/code><\/pre>\n
Autentimise eesm\u00e4rgil peame kasutajatele v\u00e4ljastama m\u00e4rgi. Niisiis, peate kasutama kasutajamudeli HasApiTokens<\/code>omadust j\u00e4rgmiselt.<\/p>\n
<?php\n\u00a0\nnamespace AppModels;\n...\nuse LaravelSanctumHasApiTokens;\n\u00a0\nclass User extends Authenticatable\n{\n\u00a0\u00a0\u00a0\u00a0use HasApiTokens, HasFactory, Notifiable;\n\u00a0\u00a0\u00a0\u00a0...\n}<\/code><\/pre>\n
API-m\u00e4rkide v\u00e4ljastamine autentimiseks<\/h3>\n
Igas taotluses koos autoriseerimise p\u00e4isega kandja loa saatmiseks peab see esmalt v\u00e4lja andma API loa. Kavatsen luua meetodi, mis genereerib igale kasutajale API loa. Loa v\u00e4ljastamiseks peate saatma kasutaja e-posti aadressi, parooli ja seadme.<\/p>\n
Lisage allolev marsruut routes\/web.php<\/code><\/p>\n
Route::post('\/sanctum\/token', 'APITokenController@create_token');<\/code><\/pre>\n
J\u00e4rgmisena looge kontroller APITokenController<\/code>k\u00e4suga:<\/p>\n
php artisan make:controller APITokenController<\/code><\/pre>\n
M\u00e4\u00e4ratlege create_token()<\/code>meetod vastloodud kontrolleris j\u00e4rgmiselt.<\/p>\n
<?php\n\u00a0\nnamespace AppHttpControllers;\n\u00a0\nuse AppModelsUser;\nuse IlluminateHttpRequest;\nuse IlluminateSupportFacadesHash;\nuse IlluminateValidationValidationException;\n\u00a0\nclass APITokenController extends Controller\n{\n\u00a0\u00a0\u00a0\u00a0public function create_token(Request $request)\n\u00a0\u00a0\u00a0\u00a0{\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0$request->validate([\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'email' => 'required|email',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'password' => 'required',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'device_name' => 'required',\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0]);\n\u00a0\u00a0\u00a0\u00a0\u00a0\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0$user = User::where('email', $request->input('email'))->first();\n\u00a0\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0if (! $user ||! Hash::check($request->input('password'), $user->password)) {\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0return [\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0'error' => 'The provided credentials are incorrect.'\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0];\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0}\n\u00a0\u00a0\u00a0\u00a0\u00a0\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0return $user->createToken($request->input('device_name'))->plainTextToken;\n\u00a0\u00a0\u00a0\u00a0}\n}<\/code><\/pre>\n
\u00dclaltoodud kood kontrollib k\u00f5igepealt kasutaja mandaate. Kui mandaadid on \u00f5iged, saadab see vastuseks m\u00e4rgi lihttekstivormingus. Siin saan sisendv\u00e4\u00e4rtusi, arvestades, et need saadetakse JSON-i objektina.<\/p>\n
Proovige saata POST-taotlus koos kasutaja mandaatidega ja peaksite saama lihtteksti m\u00e4rgi. Seda API-m\u00e4rgist v\u00f5idakse salvestada mobiilseadmesse ja kasutada p\u00e4ises API-taotluste saatmise ajal.<\/p>\n
Minu puhul kasutan VS-koodi Rest Client laiendust<\/a> ja minu taotlus sanctum\/token<\/code>on selline, nagu allpool ekraanipildil n\u00e4idatud.<\/p>\n
Minge andmebaasi ja peaksite n\u00e4gema, et teie m\u00e4rk on personal_access_tokens<\/code>tabelisse salvestatud .<\/p>\n
Sanctum loob mitu m\u00e4rki alati, kui j\u00f5uate sanctum\/token<\/code>marsruudile \u00f5igete mandaatidega. Kui soovite eelmise loa t\u00fchistada, siis lisage allpool olev lause enne \u00fclaltoodud koodi viimast tagasilauset.<\/p>\n
\/\/ Revoke previous tokens...\n$user->tokens()->delete();\n\u00a0\nreturn $user->createToken($request->input('device_name'))->plainTextToken;<\/code><\/pre>\n
L\u00f5puks kaitske marsruute, lisades auth:sanctum<\/code>vahevara j\u00e4rgmiselt.<\/p>\n
Route::middleware('auth:sanctum')->get('\/products', function() {\n\u00a0\u00a0\u00a0\u00a0\/\/ write a code\n});<\/code><\/pre>\n
Vahevara kontrollib, kas luba saadakse loa p\u00e4ises. Kui API-luba on \u00f5ige, lubab marsruudi j\u00e4tkamist ainult see.<\/p>\n
N\u00e4iteks v\u00f5ite VS-koodis saata API-loa kandja m\u00e4rgina koos p\u00e4isega Authorization, nagu allpool n\u00e4idatud.<\/p>\n
Loodan, et saate aru, kuidas integreerida mobiilirakenduste autentimine Laraveli m\u00e4rgi abil. Tahaksin kuulda teie m\u00f5tteid ja ettepanekuid allpool olevas kommentaaride jaotises.<\/p>\n
seotud artiklid<\/h4>\n