Laravel: Using multiple columns for authentication

和自甴很熟 提交于 2020-08-26 10:36:15

问题


I have a Laravel 6 application.

In a typical application, the user would just specify their email, where the email is unique.

However, in my application, I have 2 columns in the User model that is used to authenticate users.

  • app_id
  • email
  • unique(app_id, email)

So in order to login, we need to pass both an app_id and an email, along with the password. The same email could be used across different app_ids.

How would I achieve this?


回答1:


The default login actions provided by Auth::routes() are the following:

Route::get('login', 'Auth\LoginController@showLoginForm')->name('login');
Route::post('login', 'Auth\LoginController@login');

This is the default login function, part of the AuthenticatesUsers trait used by the LoginController:

    /**
     * Handle a login request to the application.
     *
     * @param  \Illuminate\Http\Request  $request
     * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response|\Illuminate\Http\JsonResponse
     *
     * @throws \Illuminate\Validation\ValidationException
     */
    public function login(Request $request)
    {
        $this->validateLogin($request);

        // If the class is using the ThrottlesLogins trait, we can automatically throttle
        // the login attempts for this application. We'll key this by the username and
        // the IP address of the client making these requests into this application.
        if (method_exists($this, 'hasTooManyLoginAttempts') &&
            $this->hasTooManyLoginAttempts($request)) {
            $this->fireLockoutEvent($request);

            return $this->sendLockoutResponse($request);
        }

        if ($this->attemptLogin($request)) {
            return $this->sendLoginResponse($request);
        }

        // If the login attempt was unsuccessful we will increment the number of attempts
        // to login and redirect the user back to the login form. Of course, when this
        // user surpasses their maximum number of attempts they will get locked out.
        $this->incrementLoginAttempts($request);

        return $this->sendFailedLoginResponse($request);
    }

There are a few ways to approach this.

Option 1: Override login function in LoginController

# app/Http/Controllers/Auth/LoginController.php

    public function login(Request $request)
    {
        // add more stuff like validation, return the view you want, etc.
        // This is barebones
        auth()->attempt($request->only(['app_id', 'login', 'password']);
    }

Option 2: Override both the validateLogin and the credentials functions in LoginController

# app/Http/Controllers/Auth/LoginController.php

    protected function validateLogin(Request $request)
    {
        $request->validate([
            'app_id' => 'required|string',
            'email' => 'required|string',
            'password' => 'required|string',
        ]);
    }

    /**
     * Get the needed authorization credentials from the request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @return array
     */
    protected function credentials(Request $request)
    {
        return $request->only('app_id', 'email', 'password');
    }


来源:https://stackoverflow.com/questions/63077680/laravel-using-multiple-columns-for-authentication

易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!