基于 Laravel5.5 部署一套 RESTful API 高效开发模板
composer create-project --prefer-dist laravel/laravel laravel5_5 "5.5.*"- dingo/api
一个 RESTful API 包. - tymon/jwt-auth
JSON Web Token 身份验证包. - zizaco/entrust
角色权限包.
自造
- wxm/ddoc
提供接口文档, 数据库字典文档, 网页呈现.
-
截止更新日期, 修复 bug 及兼容 laravel5.5,
composer.json需要添加自定义repositories地址."repositories": [ { "type": "vcs", "url": "https://github.com/qq15725/api" }, { "type": "vcs", "url": "https://github.com/qq15725/blueprint" }, { "type": "vcs", "url": "https://github.com/qq15725/entrust" } ]
-
composer.json添加require, 执行composer update."require": { "wxm/ddoc": "1.0.*@dev", "zizaco/entrust": "v0.5.0beta", "dingo/api": "v1.0.0-beta11", "tymon/jwt-auth": "1.0.*@dev" }
composer update 途中可能需要提供 github 个人私钥.
-
发布资源
发布
Zizaco\Entrust配置php artisan vendor:publish --provider="Zizaco\Entrust\EntrustServiceProvider"发布
Dingo\Api配置php artisan vendor:publish --provider="Dingo\Api\Provider\LaravelServiceProvider"发布
Wxm\DDoc配置php artisan vendor:publish --provider="Wxm\DDoc\DDocServiceProvider" -
执行数据库迁移
获得
Zizaco\Entrust需要的迁移文件php artisan entrust:migration
执行数据库迁移
php artisan migration
-
生成 JWT 所需要的密钥
php artisan jwt:secret
-
为 dingo/api 添加
.env配置例子:
API_STANDARDS_TREE=vnd API_SUBTYPE=emall API_PREFIX=api API_VERSION=v1 -
config/api.php下找到并添加'auth' => [ 'jwt' => 'Dingo\Api\Auth\Provider\JWT', ],
-
Role
<?php namespace App; use Zizaco\Entrust\EntrustRole; class Role extends EntrustRole { }
-
Permission
<?php namespace App; use Zizaco\Entrust\EntrustPermission; class Permission extends EntrustPermission { }
-
User
结合 JWT 验证和角色权限的用户模型例子:
<?php namespace App; use Illuminate\Notifications\Notifiable; use Illuminate\Foundation\Auth\User as Authenticatable; use Tymon\JWTAuth\Contracts\JWTSubject; use Zizaco\Entrust\Traits\EntrustUserTrait; class User extends Authenticatable implements JWTSubject { use Notifiable; use EntrustUserTrait; // add this trait to your user model /** * The attributes that are mass assignable. * * @var array */ protected $fillable = [ 'name', 'email', 'password', ]; /** * The attributes that should be hidden for arrays. * * @var array */ protected $hidden = [ 'password', 'remember_token', ]; /** * Get the identifier that will be stored in the subject claim of the JWT. * * @return mixed */ public function getJWTIdentifier() { return $this->getKey(); } /** * Return a key value array, containing any custom claims to be added to the JWT. * * @return array */ public function getJWTCustomClaims() { return []; } }
-
zizaco/entrust
创建角色
$owner = new Role(); $owner->name = 'owner'; $owner->display_name = 'Project Owner'; // optional $owner->description = 'User is the owner of a given project'; // optional $owner->save(); $admin = new Role(); $admin->name = 'admin'; $admin->display_name = 'User Administrator'; // optional $admin->description = 'User is allowed to manage and edit other users'; // optional $admin->save();
分配角色给用户
$user = User::where('username', '=', 'michele')->first(); // role attach alias $user->attachRole($admin); // parameter can be an Role object, array, or id // or eloquent's original technique $user->roles()->attach($admin->id); // id only
创建权限
$createPost = new Permission(); $createPost->name = 'create-post'; $createPost->display_name = 'Create Posts'; // optional // Allow a user to... $createPost->description = 'create new blog posts'; // optional $createPost->save(); $editUser = new Permission(); $editUser->name = 'edit-user'; $editUser->display_name = 'Edit Users'; // optional // Allow a user to... $editUser->description = 'edit existing users'; // optional $editUser->save(); $admin->attachPermission($createPost); // equivalent to $admin->perms()->sync(array($createPost->id)); $owner->attachPermissions(array($createPost, $editUser)); // equivalent to $owner->perms()->sync(array($createPost->id, $editUser->id));
检查角色及权限
$user->hasRole('owner'); // false $user->hasRole('admin'); // true $user->can('edit-user'); // false $user->can('create-post'); // true
具体使用详情查看 https://github.com/Zizaco/entrust
-
JWT 验证登录注册例子:
父控制器位于:
app/Http/ApiControllers/Controller.php<?php namespace App\Http\ApiControllers; use Dingo\Api\Routing\Helpers; use Illuminate\Foundation\Bus\DispatchesJobs; use Illuminate\Routing\Controller as BaseController; use Illuminate\Foundation\Validation\ValidatesRequests; use Illuminate\Foundation\Auth\Access\AuthorizesRequests; class Controller extends BaseController { use AuthorizesRequests, DispatchesJobs, ValidatesRequests, Helpers; }
登录控制器位于:
app/Http/ApiControllers/Auth/LoginController.php<?php namespace App\Http\ApiControllers\Auth; use App\Http\ApiControllers\Controller; use Illuminate\Foundation\Auth\AuthenticatesUsers; use Illuminate\Http\Request; use Illuminate\Support\Facades\Hash; use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException; use Tymon\JWTAuth\Facades\JWTAuth; use App\User; class LoginController extends Controller { use AuthenticatesUsers; public function login(Request $request) { $user = User::where('email', $request->email)->orWhere('name', $request->email)->first(); if($user && Hash::check($request->get('password'), $user->password)) { $token = JWTAuth::fromUser($user); return $this->sendLoginResponse($request, $token); } return $this->sendFailedLoginResponse(); } public function sendLoginResponse(Request $request, $token) { $this->clearLoginAttempts($request); return $this->authenticated($token); } public function authenticated($token) { return $this->response->array([ 'token' => $token, 'status_code' => 200, 'message' => 'User Authenticated' ]); } public function sendFailedLoginResponse() { throw new UnauthorizedHttpException("Bad Credentials"); } public function logout() { $this->guard()->logout(); } }
注册控制器位于:
app/Http/ApiControllers/Auth/RegisterController.php<?php namespace App\Http\ApiControllers\Auth; use App\Http\ApiControllers\Controller; use Illuminate\Foundation\Auth\RegistersUsers; use Illuminate\Http\Request; use Illuminate\Support\Facades\Validator; use Dingo\Api\Exception\StoreResourceFailedException; use Tymon\JWTAuth\Facades\JWTAuth; use App\User; class RegisterController extends Controller { use RegistersUsers; public function register(Request $request) { $validator = $this->validator($request->all()); if($validator->fails()) { throw new StoreResourceFailedException("Validation Error", $validator->errors()); } if($user = $this->create($request->all())) { $result = [ "token" => JWTAuth::fromUser($user), "message" => "User created", "status_code" => 201 ]; return $this->response()->array($result); } else { return $this->response()->error("User Not Found...", 404); } } /** * 字段验证 * @param array $data * @return mixed */ protected function validator(array $data) { return Validator::make($data, [ 'name' => 'required|unique:users', 'email' => 'required|email|max:255|unique:users', 'password' => 'required|min:6', ]); } /** * 用户创建 * @param array $data * @return $this|\Illuminate\Database\Eloquent\Model */ protected function create(array $data) { return User::create([ 'name' => $data['name'], 'email' => $data['email'], 'password' => bcrypt($data['password']) ]); } }
-
dingo/api
routes/api.php下/** @var Dingo\Api\Routing\Router $api */ $api = app(Dingo\Api\Routing\Router::class); $api->version('v1', function (Dingo\Api\Routing\Router $api) { $api->post('login', 'App\Http\ApiControllers\Auth\LoginController@login'); $api->post('register', 'App\Http\ApiControllers\Auth\RegisterController@register'); $api->post('auth/refresh-token', ['middleware' => 'jwt.refresh', function() {}]); });
具体使用详情查看 https://github.com/dingo/api/wiki
The MIT License (MIT). Please see License File for more information.