laravel dingo/api添加jwt-auth认证

前面我们学了laravel dingo/api创建简单的api，这样api是开放给所有人的，如何查看和限制api的调用呢？可以用jwt-auth来验证，JSON Web Token Authentication

　　1,首先安装jwt-auth插件，在命令行中用composer安装

1	`composer require tymon/jwt-auth` `'0.5.*'`

　　2,然后发布

1	`php artisan vendor:publish --provider="Tymon\JWTAuth\Providers\JWTAuthServiceProvider"`

　　在/config/生成了一个jwt.php文件

　　3,生成key

1	`php artisan jwt:generate`

　　如果命令无法运行，可以在/config/jwt.php文件中修改changeme为自己设置的密匙

1	`'secret'` `=>` `env('JWT_SECRET',` `'changeme'),`

　　4,修改/app/Api/Controllers/HelloController.php为

<?php
 
namespace App\Api\Controllers;
 
use Illuminate\Http\Request;
use App\Http\Controllers\Controller;
//添加jwt-auth认证
use JWTAuth;
use Tymon\JWTAuth\Exceptions\JWTException;
 
class HelloController extends Controller
{
    public function index()
    {
        return '{content:Helloworld!}';
    }
//添加jwt-auth认证
    public function authenticate(Request $request)
    {
        // grab credentials from the request
        $credentials = $request->only('email', 'password');
 
        try {
            // attempt to verify the credentials and create a token for the user
            if (! $token = JWTAuth::attempt($credentials)) {
                return response()->json(['error' => 'invalid_credentials'], 401);
            }
        } catch (JWTException $e) {
            // something went wrong whilst attempting to encode the token
            return response()->json(['error' => 'could_not_create_token'], 500);
        }
 
        // all good so return the token
        return response()->json(compact('token'));
    }
}

　　5,添加路由（/routes/web.php）

1	`$api->post('auth',` `'App\Api\Controllers\HelloController@authenticate');`

　　6,测试路由：php artisan api:routes，如果出现如下提示表示正确

　　访问url：***.com/api/auth显示错误，因为没加token

重新修改hellocontrol和loutes

<?php
 
namespace App\Api\Controllers;
 
use Illuminate\Http\Request;
use App\Http\Controllers\Controller;
use JWTAuth;
use Tymon\JWTAuth\Exceptions\JWTException;
 
class HelloController extends Controller
{
    /**
     * Create a new controller instance.
     *
     * @return void
     */
 
 
    /**
     * Show the application dashboard.
     *
     * @return \Illuminate\Http\Response
     */
    public function index()
    {
        return '{content:Helloworld!}';
    }
    public function authenticate(Request $request)
    {
        // grab credentials from the request
        $credentials = $request->only('email', 'password');
 
        try {
            // attempt to verify the credentials and create a token for the user
            if (! $token = JWTAuth::attempt($credentials)) {
                return response()->json(['error' => 'invalid_credentials'], 401);
            }
        } catch (JWTException $e) {
            // something went wrong whilst attempting to encode the token
            return response()->json(['error' => 'could_not_create_token'], 500);
        }
 
        // all good so return the token
        return response()->json(compact('token'));
    }
  //添加user
    public function user()
    {
      JWTAuth::parseToken();
      $user = JWTAuth::parseToken()->authenticate();
      return $user;
    }
}

<?php
 
Route::get('/', function () {
    return view('welcome');
});
 
Auth::routes();
 
Route::get('/home', 'HomeController@index')->name('home');
 
$api = app('Dingo\Api\Routing\Router');
$api->version('v1', function ($api) {
    $api->get('helloworld', 'App\Api\Controllers\HelloController@index');
  $api->post('auth', 'App\Api\Controllers\HelloController@authenticate');
  $api->get('auth', 'App\Api\Controllers\HelloController@user');
});