站長資訊網(wǎng)
中間件有:1、Authenticate;2、CheckForMaintenanceMode;3、EncryptCookies;4、RedirectIfAuthenticated;5、TrimStrings;6、TrustProxies等等。
本教程操作環(huán)境:windows7系統(tǒng)、Laravel6版、Dell G3電腦。
Laravel自帶的中間件
Laravel 自帶了一些中間件,包括身份驗證、CSRF 保護等。Laravel 具體啟用了哪些中間件,可通過 appHttpKernel.php 文件查看。對于以 AppHttpMiddleware 開頭的中間件(位于 app/Http/Middleware 目錄)是我們可以對其行為進行定制的中間件。
Authenticate 中間件
源文件:appHttpMiddlewareHttpMiddlewareAuthenticate.php
<?php namespace AppHttpMiddleware; use IlluminateAuthMiddlewareAuthenticate as Middleware; class Authenticate extends Middleware { /** * Get the path the user should be redirected to when they are not authenticated. * * @param IlluminateHttpRequest $request * @return string */ protected function redirectTo($request) { if (! $request->expectsJson()) { return route('login'); } } }
作用:
用戶身份驗證。可修改 redirectTo 方法,返回未經(jīng)身份驗證的用戶應該重定向到的路徑。
CheckForMaintenanceMode 中間件
源文件 :appHttpMiddlewareCheckForMaintenanceMode.php
<?php namespace AppHttpMiddleware; use IlluminateFoundationHttpMiddlewareCheckForMaintenanceMode as Middleware; class CheckForMaintenanceMode extends Middleware { /** * The URIs that should be reachable while maintenance mode is enabled. * * @var array */ protected $except = [ // ]; }
作用:
檢測項目是否處于 維護模式。可通過 $except 數(shù)組屬性設置在維護模式下仍能訪問的網(wǎng)址。
EncryptCookies 中間件
源文件:appHttpMiddlewareEncryptCookies.php
<?php namespace AppHttpMiddleware; use IlluminateCookieMiddlewareEncryptCookies as Middleware; class EncryptCookies extends Middleware { /** * The names of the cookies that should not be encrypted. * * @var array */ protected $except = [ // ]; }
作用
對 Cookie 進行加解密處理與驗證。可通過 $except 數(shù)組屬性設置不做加密處理的 cookie。
RedirectIfAuthenticated 中間件
源文件:appHttpMiddlewareRedirectIfAuthenticated.php
<?php namespace AppHttpMiddleware; use Closure; use IlluminateSupportFacadesAuth; class RedirectIfAuthenticated { /** * Handle an incoming request. * * @param IlluminateHttpRequest $request * @param Closure $next * @param string|null $guard * @return mixed */ public function handle($request, Closure $next, $guard = null) { if (Auth::guard($guard)->check()) { return redirect('/home'); } return $next($request); } }
作用:
當請求頁是 注冊、登錄、忘記密碼 時,檢測用戶是否已經(jīng)登錄,如果已經(jīng)登錄,那么就重定向到首頁,如果沒有就打開相應界面。可以在 handle 方法中定制重定向到的路徑。
TrimStrings 中間件
源文件:appHttpMiddlewareTrimStrings.php
<?php namespace AppHttpMiddleware; use IlluminateFoundationHttpMiddlewareTrimStrings as Middleware; class TrimStrings extends Middleware { /** * The names of the attributes that should not be trimmed. * * @var array */ protected $except = [ 'password', 'password_confirmation', ]; }
作用:
對請求參數(shù)內(nèi)容進行 前后空白字符清理。可通過 $except 數(shù)組屬性設置不做處理的參數(shù)。
TrustProxies 中間件
源文件:appHttpMiddlewareTrustProxies.php
<?php namespace AppHttpMiddleware; use IlluminateHttpRequest; use FideloperProxyTrustProxies as Middleware; class TrustProxies extends Middleware { /** * The trusted proxies for this application. * * @var array|string */ protected $proxies; /** * The headers that should be used to detect proxies. * * @var int */ protected $headers = Request::HEADER_X_FORWARDED_ALL; }
作用:
配置可信代理。可通過 $proxies 屬性設置可信代理列表,$headers 屬性設置用來檢測代理的 HTTP 頭字段。
VerifyCsrfToken 中間件
源文件:appHttpMiddlewareVerifyCsrfToken.php
<?php namespace AppHttpMiddleware; use IlluminateFoundationHttpMiddlewareVerifyCsrfToken as Middleware; class VerifyCsrfToken extends Middleware { /** * Indicates whether the XSRF-TOKEN cookie should be set on the response. * * @var bool */ protected $addHttpCookie = true; /** * The URIs that should be excluded from CSRF verification. * * @var array */ protected $except = [ // ]; }
作用:
驗證請求里的令牌是否與存儲在會話中令牌匹配。可通過 $except 數(shù)組屬性設置不做 CSRF 驗證的網(wǎng)址。
