如何防止两个Laravel中间件创建无休止的重定向?
我有两个不是路由中间件的中间件。它们专门用于确保为登录用户准备好两件事。付款和签署的文件 My kernel.php:如何防止两个Laravel中间件创建无休止的重定向?,laravel,middleware,Laravel,Middleware,我有两个不是路由中间件的中间件。它们专门用于确保为登录用户准备好两件事。付款和签署的文件 My kernel.php: protected $middleware = [ 'Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode', 'Illuminate\Cookie\Middleware\EncryptCookies', 'Illuminate\Cookie\Middleware\AddQue
protected $middleware = [
'Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode',
'Illuminate\Cookie\Middleware\EncryptCookies',
'Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse',
'Illuminate\Session\Middleware\StartSession',
'Illuminate\View\Middleware\ShareErrorsFromSession',
'App\Http\Middleware\VerifyCsrfToken',
'App\Http\Middleware\AuthenticateSigned',
'App\Http\Middleware\FeesOwed',
'App\Http\Middleware\DeniedAccess'
];
创建此问题的人已进行身份验证、签名和验证
第一个身份验证签名:
public function handle($request, Closure $next)
{
if ($this->auth->guest())
{
if ($request->ajax()){
return response('Unauthorized.', 401);
} else {
return redirect()->guest('login');
}
} else if(!$this->auth->user()->role->administrator){ // the users not an admin
if(!$this->auth->user()->agreement_id || $this->auth->user()->signed_current_membership_agmt == 0 ){
if ($request->ajax()){
return response('Unauthorized.', 401);
} else {
return redirect()->route('agreement');
}
}
return $next($request);
}
return $next($request);
}
然后我的感觉是:
public function handle($request, Closure $next)
{
$uri = $request->server()['REQUEST_URI'];
if($this->auth->user()
&& $this->auth->user()->role_id != 3
&& $this->auth->user()->unpaidFees() // Does the user have past due fees
&& $uri != '/profile/investment-fees' // view of form to pay fees
&& $uri != '/profile/charge-investment-fees' // post request to pay fees
&& $uri != '/profile/pay-payment'
&& $uri != '/logout'
//&& !$this->auth->user()->role->administrator // admins shouldn't be subject to this
){
\Session::flash('message','You must pay past due management fees before using the rest of the members platform.');
return redirect()->route('profile.investment-fees');
}
return $next($request);
}
我已经阅读了大量的SO帖子和Laracast,所有的注释要么是“你缺少一个$next($request);”
,要么是路由中间件
这些中间件一直在运行,因为有时用户需要知道他们需要签署新协议或支付费用
非常感谢您的帮助。
谢谢当来宾用户尝试访问
/login
时,AuthenticateSigned
中间件将其重定向到/login
,导致无限重定向循环
当请求的URL与您试图重定向到的URL相同时,请避免重定向。谢谢@camilo最后一句话才是关键。@TJSherrill谢谢您的反馈。更新了我的答案。