httpp886 2017-01-16 14:06:32 20055次浏览 10条评论 10 4 0

登陆接口access-token验证类 Controller下新建BaseActiveController.php

<?php
/**
 *接口登陆验证
 * @author 爱博
 * 1.0
 *
 */
namespace backend\controllers;

use yii\filters\auth\CompositeAuth;
use yii\filters\auth\HttpBasicAuth;
use yii\filters\auth\HttpBearerAuth;
use yii\filters\auth\QueryParamAuth;
use yii\filters\Cors;
use yii\filters\RateLimiter;
use yii\rest\Controller;
use Yii;

class BaseActiveController extends Controller
{
    public $modelClass = 'common\models\user';

    public $post = null;
    public $get = null;
    public $user = null;
    public $userId = null;

    public function init()
    {
        parent::init();

        Yii::$app->user->enableSession = false;
    }

    public function behaviors()
    {
        $behaviors = parent::behaviors();

        $behaviors['authenticator'] = [
            'class' => CompositeAuth::className(),
            'authMethods' => [
           //     HttpBasicAuth::className(),
           //     HttpBearerAuth::className(),
                QueryParamAuth::className(),
            ],
        ];

      
      //  数据返回类型设置
        //$behaviors['contentNegotiator']['formats']['application/json'] = 'json';
       //$behaviors['contentNegotiator']['formats']['application/xml'] = 'json';
    
        return $behaviors;
    }


    public function beforeAction($action)
    {
        parent::beforeAction($action);

        $this->post = yii::$app->request->post();
        $this->get = yii::$app->request->get();
        $this->user = yii::$app->user->identity;
        $this->userId = Yii::$app->user->id;

        return $action;
    }


} 

下边新建 UserController.php

<?php
namespace backend\controllers;
use Yii;
use yii\filters\auth\CompositeAuth;
use yii\filters\auth\QueryParamAuth;
use yii\data\ActiveDataProvider;
use \yii\helpers\Json;
use common\models\LoginForm;

class UserController extends BaseActiveController
{
    /**
     * 判断用户登录信息,并返回结果。
     * @author   <sang.jiyu>
     */
    public function actionIndex()
    {
        if(Yii::$app->user->isGuest){
            $data=array(
                'code'=>100,
                'message'=>'用户未登录',
                'data'=>'',
            );
        }else{
            $data=array(
                'code'=>200,
                'message'=>'用户已经登录',
                'data'=>array(
                    'user_id'=>Yii::$app->user->id,
                    'user_name'=>isset(\Yii::$app->user->identity->username) ? \Yii::$app->user->identity->username : '',
                ),
            );
        }
        echo json_encode($data);exit;
    }

}

目录common/models下新建 User.php

<?php
namespace common\models;

use Yii;
use yii\base\NotSupportedException;
use yii\behaviors\TimestampBehavior;
use yii\db\ActiveRecord;
use yii\web\IdentityInterface;

/**
 * User model
 *
 * @property integer $id
 * @property string $username
 * @property string $password_hash
 * @property string $password_reset_token
 * @property string $email
 * @property string $auth_key
 * @property integer $status
 * @property integer $created_at
 * @property integer $updated_at
* @property integer  $curr_login_ip
 * @property integer $curr_login_at
 * @property string $password write-only password
 */



class User extends ActiveRecord implements IdentityInterface
{

    public $curr_login_at;
    const STATUS_DELETED = 0;
    const STATUS_ACTIVE = 10;


    /**
     * @inheritdoc
     */
    public static function tableName()
    {
        return '{{%user}}';
    }

    /**
     * @inheritdoc
     */
    public function behaviors()
    {
        return [
            TimestampBehavior::className(),
        ];
    }

    # 生成access_token  
    public function generateAccessToken()  
    {  
        $this->access_token = Yii::$app->security->generateRandomString();  
    }  

    /**
     * @inheritdoc
     */
    public function rules()
    {
        return [
            ['status', 'default', 'value' => self::STATUS_ACTIVE],
            ['status', 'in', 'range' => [self::STATUS_ACTIVE, self::STATUS_DELETED]],
        ];
    }

    /**
     * @inheritdoc
     */
    public static function findIdentity($id)
    {
        return static::findOne(['id' => $id, 'status' => self::STATUS_ACTIVE]);
    }




    public static function findIdentityByAccessToken($token, $type = null)
    {

        return static::findOne(['access_token' => $token]);
    }

    /**
     * Finds user by username
     *
     * @param string $username
     * @return static|null
     */
    public static function findByUsername($username)
    {
        return static::findOne(['username' => $username, 'status' => self::STATUS_ACTIVE]);
    }

    /**
     * Finds user by password reset token
     *
     * @param string $token password reset token
     * @return static|null
     */
    public static function findByPasswordResetToken($token)
    {
        if (!static::isPasswordResetTokenValid($token)) {
            return null;
        }

        return static::findOne([
            'password_reset_token' => $token,
            'status' => self::STATUS_ACTIVE,
        ]);
    }

    /**
     * Finds out if password reset token is valid
     *
     * @param string $token password reset token
     * @return bool
     */
    public static function isPasswordResetTokenValid($token)
    {
        if (empty($token)) {
            return false;
        }

        $timestamp = (int) substr($token, strrpos($token, '_') + 1);
        $expire = Yii::$app->params['user.passwordResetTokenExpire'];
        return $timestamp + $expire >= time();
    }

    /**
     * @inheritdoc
     */
    public function getId()
    {
        return $this->getPrimaryKey();
    }

    /**
     * @inheritdoc
     */
    public function getAuthKey()
    {
        return $this->auth_key;
    }

    /**
     * @inheritdoc
     */
    public function validateAuthKey($authKey)
    {
        return $this->getAuthKey() === $authKey;
    }

    /**
     * Validates password
     *
     * @param string $password password to validate
     * @return bool if password provided is valid for current user
     */
    public function validatePassword($password)
    {
        

        return Yii::$app->security->validatePassword($password, $this->password_hash);
    }

    /**
     * Generates password hash from password and sets it to the model
     *
     * @param string $password
     */
    public function setPassword($password)
    {
        $this->password_hash = Yii::$app->security->generatePasswordHash($password);
    }

    /**
     * Generates "remember me" authentication key
     */
    public function generateAuthKey()
    {
        $this->auth_key = Yii::$app->security->generateRandomString();
    }

    /**
     * Generates new password reset token
     */
    public function generatePasswordResetToken()
    {
        $this->password_reset_token = Yii::$app->security->generateRandomString() . '_' . time();
    }

    /**
     * Removes password reset token
     */
    public function removePasswordResetToken()
    {
        $this->password_reset_token = null;
    }
}

在新建LoginForm.php

<?php
namespace common\models;

use Yii;
use yii\base\Model;

/**
 * Login form
 */
class LoginForm extends Model
{
    public $username;
    public $password;
    public $rememberMe = true;

    private $_user;


    /**
     * @inheritdoc
     */
    public function rules()
    {
        return [
            // username and password are both required
            [['username', 'password'], 'required'],
            // rememberMe must be a boolean value
            ['rememberMe', 'boolean'],
            // password is validated by validatePassword()
            ['password', 'validatePassword'],
        ];
    }

    /**
     * Validates the password.
     * This method serves as the inline validation for password.
     *
     * @param string $attribute the attribute currently being validated
     * @param array $params the additional name-value pairs given in the rule
     */
    public function validatePassword($attribute, $params)
    {
        if (!$this->hasErrors()) {
            $user = $this->getUser();
            if (!$user || !$user->validatePassword($this->password)) {
                $this->addError($attribute, 'Incorrect username or password.');
            }
        }
    }

    /**
     * Logs in a user using the provided username and password.
     *
     * @return bool whether the user is logged in successfully
     */
    public function login()
    {
        if ($this->validate()) {
            return Yii::$app->user->login($this->getUser(), $this->rememberMe ? 3600 * 24 * 30 : 0);
        } else {
            return false;
        }
    }

    /**
     * Finds user by [[username]]
     *
     * @return User|null
     */
    protected function getUser()
    {
        if ($this->_user === null) {
            $this->_user = User::findByUsername($this->username);
        }

        return $this->_user;
    }
}

http://localhost/yii2/backend/web/index.php?r=user/index&access-token=rMwh_EnqAc0qEPTfzb66BlGtSqoF15sg 没有作美化,大家自己处理一下吧,注意这个rMwh_EnqAc0qEPTfzb66BlGtSqoF15sg内容为数据库里的access-token这个内容里的值 返回内容为

{"code":200,"message":"\u7528\u6237\u5df2\u7ecf\u767b\u5f55","data":{"user_id":"1","user_name":"terry"}}

返回这个内容就成功了

下边完成登陆用户名和密码验证生成access-token的内容 在controllers这个目录下新建SiteController.php

<?php
/**
* 
*登陆接口access-token验证类
* @author 爱博
* 1.0
*
*
*/

namespace backend\controllers;

use Yii;
use backend\models\forms\LoginForm;
use common\lib\Helper;
use yii\base\Exception;
use yii\base\InvalidValueException;
use yii\base\UserException;
use yii\web\ErrorAction;
use yii\web\HttpException;
use yii\rest\Controller;

class SiteController extends Controller
{

    public $modelClass = 'common\models\user';
    public function behaviors()
    {
       $behaviors = parent::behaviors();
       // unset($behaviors['authenticator']);
        return $behaviors;
    }

    protected function verbs()
    {
        $verbs = parent::verbs();
      //  $verbs['index'] = ['POST'];
        return $verbs;
    }

    public function actionLogin()
    {

        $loginModel = new LoginForm();
        $loginModel->load([$loginModel->formName() => yii::$app->request->get()]);

         if ($loginModel->validate()) {
            $rs = $loginModel->login();
     
            return Helper::format_data($rs);
        } else {
            return Helper::format_data($loginModel->getErrors(), HTTP_STATUS_401);
        }
    }
}

运行http://localhost/yii2/backend/web/index.php?r=site/login&password=rasmuslerdorf&username=terry

Use of undefined constant HTTP_STATUS_200 - assumed 'HTTP_STATUS_200'

返回这个内容就成功了

觉得很赞
亿速云
  • 评论于 2017-01-16 14:22 举报

    刚看了YII2有一周多,就让我写这个功能,找文档很辛苦,所以给大家写出来,有问题在讨论。

  • 评论于 2017-01-20 17:04 举报

    /*
    Navicat MySQL Data Transfer

    Source Server : localhost
    Source Server Version : 50553
    Source Host : localhost:3306
    Source Database : oauth2

    Target Server Type : MYSQL
    Target Server Version : 50553
    File Encoding : 65001

    Date: 2017-01-16 13:57:48
    */

    SET FOREIGN_KEY_CHECKS=0;

    -- Table structure for mxq_guide

    DROP TABLE IF EXISTS mxq_guide;
    CREATE TABLE mxq_guide (
    id int(11) NOT NULL,
    imgurl varchar(255) DEFAULT NULL,
    status smallint(2) DEFAULT NULL,
    flag smallint(2) DEFAULT NULL,
    PRIMARY KEY (id)
    ) ENGINE=MyISAM DEFAULT CHARSET=utf8;

    -- Records of mxq_guide

    INSERT INTO mxq_guide VALUES ('0', 'ddd', '1', '1111');
    INSERT INTO mxq_guide VALUES ('2', 'ssss', '1', '2222');
    INSERT INTO mxq_guide VALUES ('3', '555', '4', '444');

    -- Table structure for user

    DROP TABLE IF EXISTS user;
    CREATE TABLE user (
    id int(20) unsigned NOT NULL AUTO_INCREMENT,
    username varchar(50) DEFAULT NULL COMMENT '用户名',
    password_hash varchar(80) DEFAULT NULL COMMENT '密码',
    password_reset_token varchar(60) DEFAULT NULL COMMENT '密码token',
    email varchar(60) DEFAULT NULL COMMENT '邮箱',
    auth_key varchar(60) DEFAULT NULL,
    status int(5) DEFAULT NULL COMMENT '状态',
    created_at int(18) DEFAULT NULL COMMENT '创建时间',
    updated_at int(18) DEFAULT NULL COMMENT '更新时间',
    password varchar(50) DEFAULT NULL COMMENT '密码',
    role varchar(50) DEFAULT NULL COMMENT 'role',
    curr_login_at varchar(50) DEFAULT NULL,
    curr_login_ip varchar(50) DEFAULT NULL,
    access_token varchar(60) DEFAULT NULL,
    login_count varchar(50) DEFAULT NULL,
    allowance int(20) NOT NULL,
    allowance_updated_at int(20) NOT NULL,
    PRIMARY KEY (id),
    UNIQUE KEY username (username),
    UNIQUE KEY access_token (access_token)
    ) ENGINE=InnoDB AUTO_INCREMENT=5 DEFAULT CHARSET=utf8;

    -- Records of user

    INSERT INTO user VALUES ('1', 'terry', '$2y$07$BCryptRequires22Chrcte/VlQH0piJtjXl.0t1XkA8pw9dMXTpOq', null, 'zqy234@126.com', 'pBJi3hyFsLsTuvUM9paFpWjYRatn3qwS', '10', '1441763620', '1484546128', null, null, '1484235121', '::1', 'qvuhh01lt4Q4GZnnLI2gdL1HwYR0nLWN', '17', '0', '1447318986');
    INSERT INTO user VALUES ('2', 'terry1', '$2y$07$BCryptRequires22Chrcte/VlQH0piJtjXl.0t1XkA8pw9dMXTpOq', null, 'zqy2341@126.com', 'wIvJk7dMm6PQ1dJFz8iUqJ1RfH6rsDTW', '10', '1441763906', '1484235959', null, null, '1484235121', '::1', '_ydI-L1lQQwKZzoOWzMOUjMZ-t1PcM4k', '2', '0', '0');
    INSERT INTO user VALUES ('3', 'zqy', '$2y$07$BCryptRequires22Chrcte/VlQH0piJtjXl.0t1XkA8pw9dMXTpOq', null, 'zqy23114@126.com', 'K-76pcy7gxceemxRI2IeN5g1EhLMaCj8', '10', '1442544183', '1442544183', null, 'moderator', null, null, null, null, '0', '0');
    INSERT INTO user VALUES ('4', 'admin', '$2y$07$BCryptRequires22Chrcte/VlQH0piJtjXl.0t1XkA8pw9dMXTpOq', null, 'zqy2342321@126.com', 'hZWOaamjHEsPtuJJVghFRdE2oTj7Qv8P', '10', '1446524232', '1446524232', null, null, null, null, null, null, '0', '0');

    数据库

  • 评论于 2017-01-25 09:05 举报

    可以用现成框架, yii2-starter-kit + OAuth 2.0 extension
    ssl 用let's encrypt

    觉得很赞
  • 评论于 2017-01-25 13:48 举报

    我上边发的就是呀,

  • 评论于 2017-03-28 13:20 举报

    自动生成access_token 代码在哪啊

    2 条回复
    评论于 2017-03-28 19:36 回复

    User 类里

    评论于 2017-03-28 19:38 回复

    # 生成access_token

    public function generateAccessToken()  
    {  
        $this->access_token = Yii::$app->security->generateRandomString();  
    }  
    
  • 评论于 2017-03-30 19:01 举报

    shuliangfu感谢这个高人,给的指点

  • 评论于 2017-10-08 16:38 举报

    我一直报错是401 是不是数据库表的时间需要修改

  • 评论于 2017-10-21 19:02 举报

    generateAccessToken 是什么时候生成的?

    2 条回复
    评论于 2017-11-09 14:20 回复

    注册用户的时候

    评论于 2017-11-09 23:19 回复

    嗯嗯,那這个token出去考虑安全问题,应该也是要有过期的吧!?

  • 评论于 2019-07-17 11:30 举报

    aaa.png
    token哪里来的都没说。
    流程也不对啊,流程应该是,
    第一次客服端拿用户名和密码(验证码)去换取token,以后的请求带着请求参数和token去访问服务器吧,首先你的用户名和密码换取token的步骤没看到?二,你的token哪里来的,为什么会带着token去登录,用户怎么可能记得住token。三,访问非登陆请求都要带着token,token要验证啊,没有看到token验证

您需要登录后才可以评论。登录 | 立即注册