Php Codeigniter Rest摘要问题
我正在使用这个库(以前由Phil Sturgeon开发)创建一个API,使许多站点能够从我的中央库存系统读取和更新库存水平。我可以让它在没有身份验证的情况下工作,但是,这需要经过身份验证。但是,我无法使摘要身份验证工作,而且我似乎无法从浏览器或通过浏览器接收响应。有人能给我指一下正确的方向吗?这是我的配置文件:Php Codeigniter Rest摘要问题,php,codeigniter,rest,digest-authentication,codeigniter-restserver,Php,Codeigniter,Rest,Digest Authentication,Codeigniter Restserver,我正在使用这个库(以前由Phil Sturgeon开发)创建一个API,使许多站点能够从我的中央库存系统读取和更新库存水平。我可以让它在没有身份验证的情况下工作,但是,这需要经过身份验证。但是,我无法使摘要身份验证工作,而且我似乎无法从浏览器或通过浏览器接收响应。有人能给我指一下正确的方向吗?这是我的配置文件: <?php defined('BASEPATH') OR exit('No direct script access allowed'); /*
<?php defined('BASEPATH') OR exit('No direct script access allowed');
/*
|--------------------------------------------------------------------------
| HTTP protocol
|--------------------------------------------------------------------------
|
| Should the service accept only HTTPS requests or not?
|
| Default: FALSE
|
*/
$config['force_https'] = FALSE;
/*
|--------------------------------------------------------------------------
| REST Format
|--------------------------------------------------------------------------
|
| What format should the data be returned in by default?
|
| Default: xml
|
*/
$config['rest_default_format'] = 'json';
/*
|--------------------------------------------------------------------------
| REST Status field name
|--------------------------------------------------------------------------
|
| The field name for the status of the response
|
| 'status'
|
*/
$config['rest_status_field_name'] = 'status';
/*
|--------------------------------------------------------------------------
| REST message field name
|--------------------------------------------------------------------------
|
| The field name for the message inside the response
|
| 'error'
|
*/
$config['rest_message_field_name'] = 'error';
/*
|--------------------------------------------------------------------------
| Enable emulate request
|--------------------------------------------------------------------------
|
| Should we enable emulation of the request (e.g. used in Mootools request)?
|
| Default: TRUE
|
*/
$config['enable_emulate_request'] = TRUE;
/*
|--------------------------------------------------------------------------
| REST Realm
|--------------------------------------------------------------------------
|
| Name for the password protected REST API displayed on login dialogs
|
| E.g: My Secret REST API
|
*/
$config['rest_realm'] = 'TPStock API';
/*
|--------------------------------------------------------------------------
| REST Login
|--------------------------------------------------------------------------
|
| Is login required and if so, which type of login?
|
| '' = no login required, 'basic' = unsecure login, 'digest' = more secure login,
| 'session' = check for PHP session variable. Set variable name below.
|
*/
$config['rest_auth'] = "basic";
/*
|--------------------------------------------------------------------------
| REST Login
|--------------------------------------------------------------------------
|
| Is login required and if so, which user store do we use?
|
| '' = use config based users, 'ldap' = use LDAP authencation, 'library' = use a authentication library
| If 'rest_auth' is 'session' then set 'auth_source' to the name of the session variable to check for.
|
*/
//change this to '' for wildcard unit test
$config['auth_source'] = 'ldap';
/*
|--------------------------------------------------------------------------
| REST Login
|--------------------------------------------------------------------------
|
| If library authentication is used define the class and function name here
|
| The function should accept two parameters: class->function($username, $password)
| In other cases override the function _perform_library_auth in your controller
|
| For digest authentication the library function should return already stored md5(username:restrealm:password) for that username
| E.g: md5('admin:REST API:1234') = '1e957ebc35631ab22d5bd6526bd14ea2'
|
*/
$config['auth_library_class'] = '';
$config['auth_library_function'] = '';
/*
|--------------------------------------------------------------------------
| Override auth types for specific class/method
|--------------------------------------------------------------------------
|
| Set specific authentication types for methods within a class (controller)
|
| Set as many config entries as needed. Any methods not set will use the default 'rest_auth' config value.
|
| example:
|
| $config['auth_override_class_method']['deals']['view'] = 'none';
| $config['auth_override_class_method']['deals']['insert'] = 'digest';
| $config['auth_override_class_method']['accounts']['user'] = 'basic';
| $config['auth_override_class_method']['dashboard']['*'] = 'none|digest|basic';
|
| Here 'deals', 'accounts' and 'dashboard' are controller names, 'view', 'insert' and 'user' are methods within. An asterisk may also be used to specify an authentication method for an entire classes methods. Ex: $config['auth_override_class_method']['dashboard']['*'] = 'basic'; (NOTE: leave off the '_get' or '_post' from the end of the method name)
| Acceptable values are; 'none', 'digest' and 'basic'.
|
*/
// $config['auth_override_class_method']['deals']['view'] = 'none';
// $config['auth_override_class_method']['deals']['insert'] = 'digest';
// $config['auth_override_class_method']['accounts']['user'] = 'basic';
// $config['auth_override_class_method']['dashboard']['*'] = 'basic';
//---Uncomment list line for the wildard unit test
//$config['auth_override_class_method']['wildcard_test_cases']['*'] = 'basic';
/*
|--------------------------------------------------------------------------
| REST Login usernames
|--------------------------------------------------------------------------
|
| Array of usernames and passwords for login, if ldap is configured this is ignored
|
| array('admin' => '1234')
|
*/
$config['rest_valid_logins'] = array('admin' => '1234');
/*
|--------------------------------------------------------------------------
| Global IP Whitelisting
|--------------------------------------------------------------------------
|
| Limit connections to your REST server to whitelisted IP addresses.
|
| Usage:
| 1. Set to true *and* select an auth option for extreme security (client's IP
| address must be in whitelist and they must also log in)
| 2. Set to true with auth set to false to allow whitelisted IPs access with no login.
| 3. Set to false here but set 'auth_override_class_method' to 'whitelist' to
| restrict certain methods to IPs in your whitelist
|
*/
$config['rest_ip_whitelist_enabled'] = false;
/*
|--------------------------------------------------------------------------
| REST IP Whitelist
|--------------------------------------------------------------------------
|
| Limit connections to your REST server to a comma separated
| list of IP addresses
|
| Example: $config['rest_ip_whitelist'] = '123.456.789.0, 987.654.32.1';
|
| 127.0.0.1 and 0.0.0.0 are allowed by default.
|
*/
$config['rest_ip_whitelist'] = '';
/*
|--------------------------------------------------------------------------
| Global IP Blacklisting
|--------------------------------------------------------------------------
|
| Prevent connections to your REST server from blacklisted IP addresses.
|
| Usage:
| 1. Set to true *and* add any IP address to "rest_ip_blacklist" option
|
*/
$config['rest_ip_blacklist_enabled'] = false;
/*
|--------------------------------------------------------------------------
| REST IP Blacklist
|--------------------------------------------------------------------------
|
| Block connections from these IP addresses.
|
| Example: $config['rest_ip_blacklist'] = '123.456.789.0, 987.654.32.1';
|
|
*/
$config['rest_ip_blacklist'] = '';
/*
|--------------------------------------------------------------------------
| REST Database Group
|--------------------------------------------------------------------------
|
| Connect to a database group for keys, logging, etc. It will only connect
| if you have any of these features enabled.
|
| 'default'
|
*/
$config['rest_database_group'] = 'default';
/*
|--------------------------------------------------------------------------
| REST API Keys Table Name
|--------------------------------------------------------------------------
|
| The table name in your database that stores API Keys.
|
| 'keys'
|
*/
$config['rest_keys_table'] = 'tbl_clients';
/*
|--------------------------------------------------------------------------
| REST Enable Keys
|--------------------------------------------------------------------------
|
| When set to true REST_Controller will look for a key and match it to the DB.
| If no key is provided, the request will return an error.
|
| FALSE
CREATE TABLE `keys` (
`id` int(11) NOT NULL AUTO_INCREMENT,
`key` varchar(40) NOT NULL,
`level` int(2) NOT NULL,
`ignore_limits` tinyint(1) NOT NULL DEFAULT '0',
`is_private_key` tinyint(1) NOT NULL DEFAULT '0',
`ip_addresses` TEXT NULL DEFAULT NULL,
`date_created` int(11) NOT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
|
*/
$config['rest_enable_keys'] = FALSE;
/*
|--------------------------------------------------------------------------
| REST Table Key Column Name
|--------------------------------------------------------------------------
|
| If you are not using the default table schema as shown above, what is the
| name of the db column that holds the api key value?
|
*/
$config['rest_key_column'] = 'client_api_key';
/*
|--------------------------------------------------------------------------
| REST Key Length
|--------------------------------------------------------------------------
|
| How long should created keys be? Double check this in your db schema.
|
| Default: 32
| Max: 40
|
*/
$config['rest_key_length'] = 40;
/*
|--------------------------------------------------------------------------
| REST API Key Variable
|--------------------------------------------------------------------------
|
| Which variable will provide us the API Key
|
| Default: X-API-KEY
|
*/
$config['rest_key_name'] = 'X-API-KEY';
/*
|--------------------------------------------------------------------------
| REST API Logs Table Name
|--------------------------------------------------------------------------
|
| The table name in your database that stores logs.
|
| 'logs'
|
*/
$config['rest_logs_table'] = 'logs';
/*
|--------------------------------------------------------------------------
| REST Enable Logging
|--------------------------------------------------------------------------
|
| When set to true REST_Controller will log actions based on key, date,
| time and IP address. This is a general rule that can be overridden in the
| $this->method array in each controller.
|
| FALSE
|
CREATE TABLE `logs` (
`id` int(11) NOT NULL AUTO_INCREMENT,
`uri` varchar(255) NOT NULL,
`method` varchar(6) NOT NULL,
`params` text DEFAULT NULL,
`api_key` varchar(40) NOT NULL,
`ip_address` varchar(45) NOT NULL,
`time` int(11) NOT NULL,
`rtime` float DEFAULT NULL,
`authorized` tinyint(1) NOT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
|
*/
$config['rest_enable_logging'] = FALSE;
/*
|--------------------------------------------------------------------------
| REST API Access Table Name
|--------------------------------------------------------------------------
|
| The table name in your database that stores the access controls.
|
| 'access'
|
*/
$config['rest_access_table'] = 'access';
/*
|--------------------------------------------------------------------------
| REST Method Access Control
|--------------------------------------------------------------------------
|
| When set to true REST_Controller will check the access table to see if
| the API KEY can access that controller. rest_enable_keys *must* be enabled
| to use this.
|
| FALSE
|
CREATE TABLE `access` (
`id` int(11) unsigned NOT NULL AUTO_INCREMENT,
`key` varchar(40) NOT NULL DEFAULT '',
`controller` varchar(50) NOT NULL DEFAULT '',
`date_created` datetime DEFAULT NULL,
`date_modified` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
|
*/
$config['rest_enable_access'] = FALSE;
/*
|--------------------------------------------------------------------------
| REST API Param Log Format
|--------------------------------------------------------------------------
|
| When set to true API log params will be stored in the database as JSON,
| when false they will be php serialized.
|
*/
$config['rest_logs_json_params'] = FALSE;
/*
|--------------------------------------------------------------------------
| REST API Limits Table Name
|--------------------------------------------------------------------------
|
| The table name in your database that stores limits.
|
| 'limits'
|
*/
$config['rest_limits_table'] = 'limits';
/*
|--------------------------------------------------------------------------
| REST Enable Limits
|--------------------------------------------------------------------------
|
| When set to true REST_Controller will count the number of uses of each method
| by an API key each hour. This is a general rule that can be overridden in the
| $this->method array in each controller.
|
| FALSE
|
CREATE TABLE `limits` (
`id` int(11) NOT NULL AUTO_INCREMENT,
`uri` varchar(255) NOT NULL,
`count` int(10) NOT NULL,
`hour_started` int(11) NOT NULL,
`api_key` varchar(40) NOT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
|
| To specify limits, within your Controller __construct() method add per-method
| limits with:
$this->method['METHOD_NAME']['limit'] = [NUM_REQUESTS_PER_HOUR];
| See application/controllers/api/example.php for examples.
*/
$config['rest_enable_limits'] = FALSE;
/*
|--------------------------------------------------------------------------
| REST Ignore HTTP Accept
|--------------------------------------------------------------------------
|
| Set to TRUE to ignore the HTTP Accept and speed up each request a little.
| Only do this if you are using the $this->rest_format or /format/xml in URLs
|
| FALSE
|
*/
$config['rest_ignore_http_accept'] = FALSE;
/*
|--------------------------------------------------------------------------
| REST AJAX Only
|--------------------------------------------------------------------------
|
| Set to TRUE to only allow AJAX requests. If TRUE and the request is not
| coming from AJAX, a 505 response with the error message "Only AJAX
| requests are accepted." will be returned. This is good for production
| environments. Set to FALSE to also accept HTTP requests.
|
| FALSE
|
*/
$config['rest_ajax_only'] = FALSE;
/* End of file config.php */
/* Location: ./system/application/config/rest.php */
函数($username,$password)
|在其他情况下,覆盖控制器中的函数_perform_library_auth
|
|对于摘要身份验证,库函数应该为该用户名返回已存储的md5(用户名:restrealm:password)
|例如:md5('admin:restapi:1234')='1e957ebc35631ab22d5bd6526bd14ea2'
|
*/
$config['auth\u library\u class']='';
$config['auth_library_function']='';
/*
|--------------------------------------------------------------------------
|重写特定类/方法的身份验证类型
|--------------------------------------------------------------------------
|
|为类(控制器)中的方法设置特定的身份验证类型
|
|根据需要设置尽可能多的配置条目。任何未设置的方法都将使用默认的“rest\u auth”配置值。
|
|例如:
|
|$config['auth_override_class_method']['deals']['view']='none';
|$config['auth\u override\u class\u method']['deals']['insert']='digest';
|$config['auth\u override\u class\u method']['accounts']['user']='basic';
|$config['auth_override_class_method']['dashboard']['*']='none | digest | basic';
|
|这里“交易”、“账户”和“仪表板”是控制器名称,“视图”、“插入”和“用户”是其中的方法。星号也可用于指定整个类方法的身份验证方法。例如:$config['auth_override_class_method']['dashboard']['*']='basic';(注意:在方法名称的末尾省略“\u get”或“\u post”)
|可接受的值为;'“无”、“摘要”和“基本”。
|
*/
//$config['auth_override_class_method']['deals']['view']='none';
//$config['auth\u override\u class\u method']['deals']['insert']='digest';
//$config['auth\u override\u class\u method']['accounts']['user']='basic';
//$config['auth\u override\u class\u method']['dashboard']['*']='basic';
//---取消对wildard单元测试的注释列表行
//$config['auth_override_class_method']['wildcard_test_cases']['*']='basic';
/*
|--------------------------------------------------------------------------
|REST登录用户名
|--------------------------------------------------------------------------
|
|用于登录的用户名和密码数组,如果配置了ldap,则将忽略该数组
|
|数组('admin'=>'1234')
|
*/
$config['rest\u valid\u logins']=array('admin'=>'1234');
/*
|--------------------------------------------------------------------------
|全球IP白名单
|--------------------------------------------------------------------------
|
|将到REST服务器的连接限制为白名单中的IP地址。
|
|用法:
| 1. 设置为true*并*选择用于极端安全性(客户端IP)的身份验证选项
|地址必须在白名单中,并且他们还必须登录)
| 2. 将auth设置为false,将其设置为true,以允许在不登录的情况下访问列入白名单的IPs。
| 3. 此处设置为false,但将“auth\u override\u class\u method”设置为“whitelist”设置为
|将某些方法限制为白名单中的IP
|
*/
$config['rest\u ip\u白名单\u enabled']=false;
/*
|--------------------------------------------------------------------------
|REST IP白名单
|--------------------------------------------------------------------------
|
|将与REST服务器的连接限制为逗号分隔
|IP地址列表
|
|示例:$config['rest_ip_whitelist']='123.456.789.0987.654.32.1';
|
|默认情况下允许127.0.0.1和0.0.0.0。
|
*/
$config['rest\u ip\u白名单']='';
/*
|--------------------------------------------------------------------------
|全球IP黑名单
|--------------------------------------------------------------------------
|
|阻止从列入黑名单的IP地址连接到REST服务器。
|
|用法:
| 1. 设置为true*并*将任何IP地址添加到“rest\u IP\u黑名单”选项
|
*/
$config['rest\u ip\u blacklist\u enabled']=false;
/*
|--------------------------------------------------------------------------
|REST IP黑名单
|--------------------------------------------------------------------------
|
|阻止来自这些IP地址的连接。
|
|示例:$config['rest_ip_blacklist']='123.456.789.0987.654.32.1';
|
|
*/
$config['rest\u ip\u blacklist']='';
/*
|--------------------------------------------------------------------------
|REST数据库组
|--------------------------------------------------------------------------
|
|连接到数据库组以获取密钥、日志记录等。它将仅连接
|如果您启用了这些功能中的任何一项。
|
|“默认”
|
*/
$config['rest_database_group']='default';
/*
|--------------------------------------------------------------------------
|RESTAPI键表名
|--------------------------------------------------------------------------
|
|数据库中存储API键的表名。
|
|“钥匙”
|
*/
$config['rest_keys_table']='tbl_clients';
/*
|--------------------------------------------------------------------------
|REST启用键
|--------------------------------------------------------------