Laravel 5.5 中间件不工作
Laravel 5.5 middleware does not work
我有一个名为 IsAdmin 的中间件,这是它的代码:
<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Session;
class IsAdmin
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
$user = Auth::user();
if ($user->role === 10)
{
Session::flash('error', 'Трябва да сте администратор за да видите тази страница.');
return redirect('/home');
}
return $next($request);
}
}
这里是在内核中注册它:
<?php
namespace App\Http;
use Illuminate\Foundation\Http\Kernel as HttpKernel;
class Kernel extends HttpKernel
{
/**
* The application's global HTTP middleware stack.
*
* These middleware are run during every request to your application.
*
* @var array
*/
protected $middleware = [
\Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode::class,
\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
\App\Http\Middleware\TrimStrings::class,
\Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
\App\Http\Middleware\TrustProxies::class,
];
/**
* The application's route middleware groups.
*
* @var array
*/
protected $middlewareGroups = [
'web' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
// \Illuminate\Session\Middleware\AuthenticateSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\VerifyCsrfToken::class,
\Illuminate\Routing\Middleware\SubstituteBindings::class,
],
'api' => [
'throttle:60,1',
'bindings',
],
];
/**
* The application's route middleware.
*
* These middleware may be assigned to groups or used individually.
*
* @var array
*/
protected $routeMiddleware = [
'auth' => \Illuminate\Auth\Middleware\Authenticate::class,
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
'can' => \Illuminate\Auth\Middleware\Authorize::class,
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
'isadmin' => \App\Http\Middleware\IsAdmin::class,
];
}
下面是我如何保护控制器中的路由:
public function __construct()
{
$this->middleware(['auth', 'isadmin']);
}
auth 中间件工作正常。
当我在用户模型上更改我在数据库中使用的权限字段时,isadmin 中间件停止工作。它曾经是“$user->is_admin”,我现在将其更改为“$user->role”,即使恢复到旧方式也无法解决问题。
这也是用户模型的迁移:
<?php
use Illuminate\Support\Facades\Schema;
use Illuminate\Database\Schema\Blueprint;
use Illuminate\Database\Migrations\Migration;
class CreateUsersTable extends Migration
{
/**
* Run the migrations.
*
* @return void
*/
public function up()
{
Schema::create('users', function (Blueprint $table) {
$table->increments('id');
$table->string('name');
$table->string('email')->unique();
$table->string('password');
$table->tinyInteger('role')->default(0);
$table->rememberToken();
$table->timestamps();
});
}
/**
* Reverse the migrations.
*
* @return void
*/
public function down()
{
Schema::dropIfExists('users');
}
}
这也是我的路线或web.php文件:
<?php
/*
|--------------------------------------------------------------------------
| Web Routes
|--------------------------------------------------------------------------
|
| Here is where you can register web routes for your application. These
| routes are loaded by the RouteServiceProvider within a group which
| contains the "web" middleware group. Now create something great!
|
*/
Route::get('/', function () {
return view('auth.login');
});
Auth::routes();
Route::get('/home', 'ReportController@home')->name('home');
Route::get('/dashboard', 'HomeController@dashboard')->name('dashboard');
Route::resource('/obekti', 'ObektiController');
Route::resource('/entrances', 'EntrancesController');
Route::resource('/apartments', 'ApartmentsController');
Route::resource('/people', 'PeopleController');
Route::resource('/boardmembers', 'BoardMembersController');
Route::resource('/companies', 'CompaniesController');
Route::get('/apartments/{id}/people', 'ApartmentsController@people');
Route::get('/entrances/{id}/apartments', 'EntrancesController@apartments');
Route::get('/obekti/{id}/entrances', 'ObektiController@entrances');
Route::get('/obekti/{id}/boardmembers', 'ObektiController@boardMembers');
Route::post('/search', 'HomeController@search');
如果您在 $routeMiddleware 属性 中包含中间件,那么您可以使用中间件方法将中间件分配给路由:
试试这个
Route::get('/dashboard', 'HomeController@dashboard')->name('dashboard')->middleware(['isadmin','auth']);
或者您可以使用分组方法
Route::group(['middleware' => ['isadmin', 'auth']], function () {
//
});
问题出在这一行:
if ($user->role === 10)
应该是这样的:
if ($user->role === 0)
我有一个名为 IsAdmin 的中间件,这是它的代码:
<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Session;
class IsAdmin
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
$user = Auth::user();
if ($user->role === 10)
{
Session::flash('error', 'Трябва да сте администратор за да видите тази страница.');
return redirect('/home');
}
return $next($request);
}
}
这里是在内核中注册它:
<?php
namespace App\Http;
use Illuminate\Foundation\Http\Kernel as HttpKernel;
class Kernel extends HttpKernel
{
/**
* The application's global HTTP middleware stack.
*
* These middleware are run during every request to your application.
*
* @var array
*/
protected $middleware = [
\Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode::class,
\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
\App\Http\Middleware\TrimStrings::class,
\Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
\App\Http\Middleware\TrustProxies::class,
];
/**
* The application's route middleware groups.
*
* @var array
*/
protected $middlewareGroups = [
'web' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
// \Illuminate\Session\Middleware\AuthenticateSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\VerifyCsrfToken::class,
\Illuminate\Routing\Middleware\SubstituteBindings::class,
],
'api' => [
'throttle:60,1',
'bindings',
],
];
/**
* The application's route middleware.
*
* These middleware may be assigned to groups or used individually.
*
* @var array
*/
protected $routeMiddleware = [
'auth' => \Illuminate\Auth\Middleware\Authenticate::class,
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
'can' => \Illuminate\Auth\Middleware\Authorize::class,
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
'isadmin' => \App\Http\Middleware\IsAdmin::class,
];
}
下面是我如何保护控制器中的路由:
public function __construct()
{
$this->middleware(['auth', 'isadmin']);
}
auth 中间件工作正常。
当我在用户模型上更改我在数据库中使用的权限字段时,isadmin 中间件停止工作。它曾经是“$user->is_admin”,我现在将其更改为“$user->role”,即使恢复到旧方式也无法解决问题。
这也是用户模型的迁移:
<?php
use Illuminate\Support\Facades\Schema;
use Illuminate\Database\Schema\Blueprint;
use Illuminate\Database\Migrations\Migration;
class CreateUsersTable extends Migration
{
/**
* Run the migrations.
*
* @return void
*/
public function up()
{
Schema::create('users', function (Blueprint $table) {
$table->increments('id');
$table->string('name');
$table->string('email')->unique();
$table->string('password');
$table->tinyInteger('role')->default(0);
$table->rememberToken();
$table->timestamps();
});
}
/**
* Reverse the migrations.
*
* @return void
*/
public function down()
{
Schema::dropIfExists('users');
}
}
这也是我的路线或web.php文件:
<?php
/*
|--------------------------------------------------------------------------
| Web Routes
|--------------------------------------------------------------------------
|
| Here is where you can register web routes for your application. These
| routes are loaded by the RouteServiceProvider within a group which
| contains the "web" middleware group. Now create something great!
|
*/
Route::get('/', function () {
return view('auth.login');
});
Auth::routes();
Route::get('/home', 'ReportController@home')->name('home');
Route::get('/dashboard', 'HomeController@dashboard')->name('dashboard');
Route::resource('/obekti', 'ObektiController');
Route::resource('/entrances', 'EntrancesController');
Route::resource('/apartments', 'ApartmentsController');
Route::resource('/people', 'PeopleController');
Route::resource('/boardmembers', 'BoardMembersController');
Route::resource('/companies', 'CompaniesController');
Route::get('/apartments/{id}/people', 'ApartmentsController@people');
Route::get('/entrances/{id}/apartments', 'EntrancesController@apartments');
Route::get('/obekti/{id}/entrances', 'ObektiController@entrances');
Route::get('/obekti/{id}/boardmembers', 'ObektiController@boardMembers');
Route::post('/search', 'HomeController@search');
如果您在 $routeMiddleware 属性 中包含中间件,那么您可以使用中间件方法将中间件分配给路由:
试试这个
Route::get('/dashboard', 'HomeController@dashboard')->name('dashboard')->middleware(['isadmin','auth']);
或者您可以使用分组方法
Route::group(['middleware' => ['isadmin', 'auth']], function () {
//
});
问题出在这一行:
if ($user->role === 10)
应该是这样的:
if ($user->role === 0)