我正在尝试在某些api调用上检查并刷新我的令牌,所以我创建了自己的中间件并将其添加到我的Kernel.php $ routeMiddleware中 . 然后我将其添加到我要检查的中间件组中 - 如有必要 - 刷新令牌 . 但是,当我登录时,它也会调用此中间件,尽管登录调用不在中间件组内,因此我收到500错误:“无法从请求中解析令牌” . 我还注意到,即使从组中间件中删除'cors',中间件也会被调用...任何帮助都将非常感谢!
这是中间件的代码:
class Cors
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
$response = $next($request);
try
{
if (! $user = JWTAuth::parseToken()->authenticate() )
{
return response()->json(['user_not_found'], 404);
}
}
catch (TokenExpiredException $e)
{
try
{
$refreshed = JWTAuth::refresh(JWTAuth::getToken());
$response->header('Authorization', 'Bearer ' . $refreshed);
}
catch (JWTException $e)
{
return response()->json(['couldnt refresh token'], 404);
}
$user = JWTAuth::setToken($refreshed)->toUser();
}
catch (JWTException $e)
{
return response()->json(['error trying to parse token'], 404);
}
Auth::login($user, false);
return $response;
}
}
这些是我的路线:
Route::group(['middleware' => ['api','jwt.auth', 'cors']], function() {
Route::get('logout', 'AuthController@logout');
Route::get('user', 'AuthController@getUser');
Route::get('movies/{page}', 'MovieController@index');
Route::get('movie/{id}', 'MovieController@getMovieByID');
Route::get('movies/search/{string}', 'MovieController@getMovieByTitleGenreDirector');
Route::get('movie/{id}/recommendations', 'MovieController@getMovieRecommendations');
});
1 回答
哎呀,似乎我忘了从我的RouteServiceProvider.php中删除“cors”
它现在按预期工作 .