thinkphp5框架API token身份驗(yàn)證功能【示例】

4213

下面由thinkphp教程欄目給大家介紹【示例】thinkphp5框架api token身份驗(yàn)證功能,希望對需要的朋友有所幫助!

thinkphp5框架API token身份驗(yàn)證功能【示例】

使用說明:登陸時(shí)生成token和刷新用的refresh_token,返回給客戶端,客戶端收到保存本地localStorage等,每次訪問接口帶上token,后端驗(yàn)證token存在并且一致后方可執(zhí)行接下來的動(dòng)作,假如不存在就返回token過期,客戶端調(diào)用刷新接口傳入token和refresh_token,服務(wù)器端進(jìn)行驗(yàn)證,驗(yàn)證通過重新生成新的token保存數(shù)據(jù)庫,返回給客戶端客戶端刷新本地token訪問即可繼續(xù),當(dāng)refresh_token驗(yàn)證失敗就清除數(shù)據(jù)庫token,過期時(shí)間等信息

簡單的token生成函數(shù)(公共函數(shù)文件common)

function?create_token($id,$out_time){ ??return?substr(md5($id.$out_time),5,26); }

驗(yàn)證登陸方法(模型)

立即學(xué)習(xí)PHP免費(fèi)學(xué)習(xí)筆記(深入)”;

public?function?checkLogin($username,$passwd){ ????$driver?=?self::field('driver_id,passwd')->where('zhanghao',$username)->whereOr('phone',$username)->find(); ????if?(empty($driver)){ ??????$this->error?=?'賬號(hào)不存在'; ??????return?false; ????} ????if?($driver['passwd']?!=?md5($passwd)){ ??????$this->error?=?"密碼不正確"; ??????return?false; ????} ????//$out_time?=?strtotime('+?1?days'); ????$out_time?=?strtotime('+?1?minutes'); ????$token?=?create_token($driver['driver_id'],$out_time); ????if(false===self::save(['token'=>$token,'time_out'=>$out_time],['driver_id'=>$driver['driver_id']])){ ??????$this->error?=?'登陸失敗'; ??????return?false; ????} ????$refresh_token_out_time?=?strtotime('+?5?days'); ????$refresh_token?=?create_token($driver['driver_id'],$refresh_token_out_time); ????Cache::set("token",$token,60); ????Cache::set("driver_id",$driver['driver_id'],$refresh_token_out_time);//設(shè)置ID的過期時(shí)間和更新token的token時(shí)間一樣用于更新的時(shí)候獲取用戶信息 ????Cache::set('refresh_token',$refresh_token,$refresh_token_out_time); ????return?['token'=>$token,'refresh_token'=>$refresh_token,'in_expire'=>$out_time]; }

token刷新方法(模型)

public?function?refreshToken($refresh_token,$token){ ????if?(!isset(Cache::get('refresh_token'))?or?Cache::get('refresh_token')!=$refresh_token){ ??????$this->error?=?'刷新token失敗'; ??????return?false; ????} ????$cache_driver_id?=?Cache::get('driver_id'); ????$driver?=?self::field('driver_id,passwd')->where('driver_id',$cache_driver_id)->where('token',$token)->find(); ????if?(empty($driver)){ ??????$this->error?=?'參數(shù)錯(cuò)誤'; ??????return?false; ????} ????$out_time?=?strtotime('+?1?days');//新的過期時(shí)間 ????$token?=?create_token($driver['driver_id'],$out_time);//更新token ????if(false===self::save(['token'=>$token,'time_out'=>$out_time],['driver_id'=>$driver['driver_id']])){ ??????Cache::clear($token); ??????$this->error?=?'刷新失敗'; ??????return?false; ????} ????Cache::set("token",$token,864000); ????return?['token'=>$token,'in_expire'=>$out_time]; }

退出方法(模型)

public?function?logout($token,$refresh_token=''){ ????$driver?=?self::field('driver_id,passwd')->where('token',$token)->find(); ????self::save(['token'=>'','time_out'=>''],['token'=>$token]); ????Cache::clear('token'); ????Cache::clear('refresh_token'); }

? 版權(quán)聲明
THE END
PHP框架
# 數(shù)據(jù)庫
喜歡就支持一下吧
點(diǎn)贊13 分享