php-cpm / http-basic-auth-guard
HTTP Basic Auth Guard for Lumen 5.2
Requires
- php: >=5.6.0
- illuminate/database: ^5.2
- illuminate/support: ^5.2
Requires (Dev)
- graham-campbell/testbench: ^3.0
- mockery/mockery: dev-master
- phpunit/phpunit: ^4.1
This package is auto-updated.
Last update: 2024-12-06 10:53:06 UTC
README
[![Latest Version on Packagist][ico-version]][link-packagist] ![Software License][ico-license] [![Total Downloads][ico-downloads]][link-downloads]
This is a modified version of HTTP Basic Auth Guard, provided for api auth.
when I readed Pingxx's documents, They tell me the APIs should be authed by basic auth and leave password empty,then I found their php SDK use bearer Token way
so I make my own version middleware to sovle this problem.
As stateless APIs, each time request, we need to verify a token called API Secret
.
so parse the request Header to get a token, verify it through Model and get Info from db.
Installation
Pull in package
$ composer require php-cpm/http-basic-auth-guard
Read & Follow Documentation
Important:
Before using Lumen's authentication features, you should uncomment the call to register the
AuthServiceProvider
service provider in yourbootstrap/app.php
file.
If you would like to useAuth::user()
to access the currently authenticated user, you should uncomment the$app->withFacades()
method in yourbootstrap/app.php
file.
Add the Service Provider
Open bootstrap/app.php
and register the service provider:
$app->register(Phpcpm\BasicAuth\BasicGuardServiceProvider::class);
Setup Guard Driver
Note: In Lumen you first have to copy the config file from the directory
vendor/laravel/lumen-framework/config/auth.php
, create aconfig
folder in your root folder and finally paste the copied file there.
Open your config/auth.php
config file.
In guards
add a new key of your choice (api
in this example).
Add basic
as the driver.
Make sure you also set provider
for the guard to communicate with your database.
// config/auth.php 'guards' => [ 'api' => [ 'driver' => 'basic', 'provider' => 'users' ], // ... ], 'providers' => [ 'users' => [ 'driver' => 'eloquent', 'model' => App\User::class, ], ],
Middleware Usage
Middleware protecting the route:
Route::get('api/whatever', ['middleware' => 'auth:api', 'uses' => 'NiceController@awesome']);
Middleware protecting the controller:
<?php namespace App\Http\Controllers; class NiceController extends Controller { public function __construct() { $this->middleware('auth:api'); } }
Change log
Please see CHANGELOG for more information what has changed recently.
Contributing
Please see CONTRIBUTING for details.
Any issues, feedback, suggestions or questions please use issue tracker here.
Security
If you discover any security related issues, please email zouyi@leying365.com instead of using the issue tracker.
License
The MIT License (MIT).