定制 aliirfaan/laravel-simple-otp 二次开发

按需修改功能、优化性能、对接业务系统,提供一站式技术支持

邮箱:yvsm@zunyunkeji.com | QQ:316430983 | 微信:yvsm316

aliirfaan/laravel-simple-otp

Composer 安装命令:

composer require aliirfaan/laravel-simple-otp

包简介

Generate and verify OTP in Laravel for any model type and intent

README 文档

README

This package allows you to generate OTP (One time password). You can then verify the OTP code and grant access based on its validity.

Flexibility

This package is not tied to Laravel Auth and you can use it to send OTP to any model in your project. For example you can send OTP to a Merchant or Customer model. It does not matter if you are coding a REST API or view based backend, I have tried to code the methods to be used independently.

OTP profiles allows you to define different parameters for different OTP scenarios.

Features

  • Generate random OTP based on length
  • Generate random OTP based on type (Numeric, alphanumeric)
  • Associate OTP code with a model object using the object id and object type
  • Associate OTP code with recipient in senarios where model is not applicable
  • Supports OTP per device using device_id column
  • OTP code is hashed for better security
  • Validate OTP code based on presence, equality and expiry
  • Throws custom exceptions that you can catch and show your custom messages and dispatch your custom events
  • Model implements prunable for housekeeping
  • Supports profiles for different otp settings

Requirements

Installation

You can install this package on an existing Laravel project with using composer:

 $ composer require aliirfaan/laravel-simple-otp

Register the ServiceProvider by editing config/app.php file and adding to providers array:

  aliirfaan\LaravelSimpleOtp\SimpleOtpServiceProvider::class,

Note: use the following for Laravel <5.1 versions:

 'aliirfaan\LaravelSimpleOtp\SimpleOtpServiceProvider',

Publish files with:

 $ php artisan vendor:publish --tag=laravel-simple-otp-config"

or by using only php artisan vendor:publish and select the aliirfaan\LaravelSimpleOtp\SimpleOtpServiceProvider from the outputted list.

Apply the migrations:

 $ php artisan migrate

Configuration

This package publishes an laravel-simple-otp file inside your applications's config folder which contains the settings for this package. Most of the variables are bound to environment variables, but you are free to directly edit this file, or add the configuration keys to the .env file.

    'default_profile' => env('OTP_DEFAULT_PROFILE', 'default'),

    'otp_profiles' => [
        'default' => [
            'otp_type' => env('OTP_TYPE', 'numeric'),
            'otp_length' => (int) env('OTP_LENGTH', 6),
            'otp_timeout_seconds' => (int) env('OTP_TIMEOUT_SECONDS', 180),
            'otp_should_simulate' => env('OTP_SHOULD_SIMULATE', false),
            'otp_simulated_code' => env('OTP_SIMULATED_CODE'),
            'otp_retention_days' => (int) env('OTP_RETENTION_DAYS', 0),
        ],
        'password_reset' => [
            'otp_type' => 'alphanumeric',
            'otp_length' => 8,
            'otp_timeout_seconds' => 600,
        ],
    ],

Each profile supports otp_type, otp_length, otp_timeout_seconds, otp_should_simulate, otp_simulated_code, and otp_retention_days. Omitted keys on a named profile fall back to default_profile values. When no profile is passed at runtime, default_profile is used. The resolved profile name is stored on the profile column when persisting.

Usage

<?php

namespace App\Http\Controllers;

use Illuminate\Http\Request;
use aliirfaan\LaravelSimpleOtp\Models\SimpleOtp; // otp model
use aliirfaan\LaravelSimpleOtp\Services\OtpHelperService; // otp helper service
use aliirfaan\LaravelSimpleOtp\Exceptions\ExpiredException;
use aliirfaan\LaravelSimpleOtp\Exceptions\NotFoundException;
use aliirfaan\LaravelSimpleOtp\Exceptions\NotMatchException;

class TestController extends Controller
{
    protected $otpModel;

    /**
     * Load model in constructor using dependency injection
     */
    public function __construct(SimpleOtp $otpModel)
    {
        $this->otpModel = $otpModel;
    }

    /**
     * Include our service using dependency injection
     */
    public function test_send_otp(Request $request, OtpHelperService $otpHelperService)
    {
        // after an action like login, get yout model from the database
        // for recipient, persist otp code directly
        $modelId = 1;
        $yourExampleModelObj = App\ExampleModel::find($modelId);

        // generate OTP using default profile (or pass profile name, e.g. 'password_reset')
        $otpCode = $otpHelperService->generateOtpCode();

        // model type can be anything but it must be unique if you want to send OTP to multiple model classes
        // it can also be the class name of the object. You get it using new \ReflectionClass($yourExampleModelObj))->getShortName()
        $modelType = 'exampleModel'; 
        $phoneNumber = $yourExampleModelObj->phone;

        // pass 'recipient' key to persist for recipient
        // optionally pass 'profile' for a named profile (expiry comes from profile otp_timeout_seconds)
        $otpData = [
            'actor_id' => $modelId,
            'actor_type' => $modelType,
            'otp_intent' => 'OTP_LOGIN',
            // 'profile' => 'password_reset',
        ];

        $persistResult = $otpHelperService->persistOtpCode($otpCode, $otpData);

        // send otp using your own code
        $message = 'Your OTP is: '. $otpCode;
        
    }

    /**
     * Include our service using dependency injection
     */
    public function test_verify_otp(Request $request, OtpHelperService $otpHelperService)
    {
        // normally you will get this via $request
        $modelId = 1;
        $modelType = 'exampleModel';
        $otpIntent = 'OTP_LOGIN',
        $otpCode = '123456';

        // pass 'recipient' key to validate otp code
        $validateOtpData = [
            'actor_id' => $modelId,
            'actor_type' => $modelType,
            'otp_intent' => $otpIntent,
            'device_id' => null,
            'otp_code' => $otpCode,
        ];

        // verify otp
        try {
            $otpCodeIsValid = $otpHelperService->validateOtpCode($validateOtpData);
        } catch (\aliirfaan\LaravelSimpleOtp\Exceptions\NotFoundException $e) {
            //
        } catch (\aliirfaan\LaravelSimpleOtp\Exceptions\NotMatchException $e) {
            //
        } catch (\aliirfaan\LaravelSimpleOtp\Exceptions\ExpiredException $e) {
            //
        } catch (\Exception $e) {
            //
        }
    }
}

License

The MIT License (MIT)

Copyright (c) 2020

Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

aliirfaan/laravel-simple-otp 适用场景与选型建议

aliirfaan/laravel-simple-otp 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 3.75k 次下载、GitHub Stars 达 1, 最近一次更新时间为 2020 年 04 月 24 日, 在 PHP 生态内属于活跃度较高的组件。

它主要适用于以下技术方向: 「model」 「laravel」 「otp」 「One Time Password」 「intent」 等业务场景。在实际项目中,围绕这些方向常见需要落地的问题包括:接口对接、性能调优、并发安全、与既有框架(Laravel / ThinkPHP / Yii / Webman 等)的兼容适配,以及生产环境的日志埋点与稳定性保障。

我们在过去多个企业项目中使用过 aliirfaan/laravel-simple-otp 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。

围绕 aliirfaan/laravel-simple-otp 我们能提供哪些服务?
定制开发 / 二次开发

基于 aliirfaan/laravel-simple-otp 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。

BUG 修复 & 性能优化

线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。

项目外包 & 长期维护

承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。

yvsm@zunyunkeji.com QQ:316430983 微信:yvsm316 西安尊云信息科技 · 专注 PHP / Go / 分布式系统研发

统计信息

  • 总下载量: 3.75k
  • 月度下载量: 0
  • 日度下载量: 0
  • 收藏数: 1
  • 点击次数: 29
  • 依赖项目数: 0
  • 推荐数: 0

GitHub 信息

  • Stars: 1
  • Watchers: 1
  • Forks: 0
  • 开发语言: PHP

其他信息

  • 授权协议: MIT
  • 更新时间: 2020-04-24