Php 在laravel 5.2中禁用特定路由的web中间件
我希望来宾用户可以访问主页,但内置的身份验证过程laravel会重定向到登录页面。如何让来宾用户访问主页 my routes.php:Php 在laravel 5.2中禁用特定路由的web中间件,php,laravel,authentication,middleware,laravel-5.2,Php,Laravel,Authentication,Middleware,Laravel 5.2,我希望来宾用户可以访问主页,但内置的身份验证过程laravel会重定向到登录页面。如何让来宾用户访问主页 my routes.php: Route::group(['middleware' => 'web'], function () { Route::auth(); Route::get('/', 'HomeController@index'); Route::get('/insert', 'HomeController@insertform'); Route::get('/job/
Route::group(['middleware' => 'web'], function () {
Route::auth();
Route::get('/', 'HomeController@index');
Route::get('/insert', 'HomeController@insertform');
Route::get('/job/{id}', 'JobsController@show');
Route::get('/city/{city}', 'JobsController@city');
Route::post('/insert', 'HomeController@insert');
Route::get('/cityinsert', 'HomeController@cityinsert');
Route::post('/cityinsert', 'HomeController@cityinsertpost');
});
和authenticate.php
class Authenticate
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @param string|null $guard
* @return mixed
*/
public function handle($request, Closure $next, $guard = null)
{
if (Auth::guard($guard)->guest()) {
if ($request->ajax()) {
return response('Unauthorized.', 401);
} else {
return redirect()->guest('login');
}
}
return $next($request);
}
}
这是我的kernel.php
class Kernel extends HttpKernel
{
/**
* The application's global HTTP middleware stack.
*
* These middleware are run during every request to your application.
*
* @var array
*/
protected $middleware = [
\Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode::class,
];
/**
* The application's route middleware groups.
*
* @var array
*/
protected $middlewareGroups = [
'web' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\VerifyCsrfToken::class,
],
'api' => [
'throttle:60,1',
],
];
/**
* The application's route middleware.
*
* These middleware may be assigned to groups or used individually.
*
* @var array
*/
protected $routeMiddleware = [
'auth' => \App\Http\Middleware\Authenticate::class,
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
];
}
从HomeController构造中删除中间件:
class HomeController extends Controller
{
/**
* Create a new controller instance.
*
* @return void
*/
public function __construct()
{
//$this->middleware('auth');
}
}
在构造中的中间件声明中添加异常
Route::get('/', 'HomeController@index');
要使上述路由免于进行身份验证,应将函数名传递给中间件,如下所示
class HomeController extends Controller
{
/**
* Create a new controller instance.
*
* @return void
*/
public function __construct()
{
$this->middleware('auth', ['except' => 'index']);
}
}
我可以添加到Sidharth answer中,通过将它们包含在数组中,您可以使用多种方法:
class HomeController extends Controller
{
/**
* Create a new controller instance.
*
* @return void
*/
public function __construct()
{
$this->middleware('auth', ['except' => ['index', 'show']]);
}
}
Laravel 5.5已测试。您还可以在
中间件
和之间进行分离,但
除外。试试这个:
/**
* Create a new controller instance.
*
* @return void
*/
public function __construct()
{
$this->middleware('guest')->except([
'submitLogout',
'showUserDetail'
]);
}
在Laravel 5.4上测试,我更喜欢通过路由排除中间件。您可以通过两种方式完成:
Route::post('login','LoginController@login')->没有中间件(['auth']);
Route::group([
'前缀'=>'忘记密码',
“已排除的_中间件”=>['auth'],
],函数(){
路线::post('发送电子邮件','ForgotPasswordController@sendEmail');
路由::post('save-new-password','ForgotPasswordController@saveNewPassword');
});
在Laravel 7.7上测试向VerifyCsrfToken添加URL以外的内容
app/http/middleware/VerifyCsrfToken.php
show your kernel.php我在Laravel 5.5上添加了内核文件OK,我相信这是最好的方法,这很好!现在我收到一条信息,上面写着“你已经登录了!”请帮我把头发拔出来。
<?php
namespace App\Http\Middleware;
use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as Middleware;
class VerifyCsrfToken extends Middleware
{
/**
* The URIs that should be excluded from CSRF verification.
*
* @var array
*/
protected $except = [
'stripe/*',
'http://example.com/foo/bar',
'http://example.com/foo/*',
];
}