keukenmagazijn/passport-authenticator
Composer 安装命令:
composer require keukenmagazijn/passport-authenticator
包简介
A superclass package that you can extend upon that will handle the authentication and refreshing of your access (bearer) tokens
README 文档
README
Introduction
This package is a self-refreshing Laravel Passport authenticator. There are superclasses available with which you can make quick custom connectors for all your (micro)services and you will never have to worry about having to maintain, refresh or create your bearer tokens yourself.
IMPORTANT! This is for usage with password clients only: https://laravel.com/docs/5.8/passport#creating-a-password-grant-client.
How to install
- You can install the package by requiring the
keukenmagazijn/passport-authenticatorpackage, or runcomposer require keukenmagazijn/passport-authenticatorin your project root directory. - When your package is included, you should run
php artisan migrateto create theexternal_oauth2_credentialstable, which the package requires to maintain your tokens.
How to use the package.
The setup
The configuration
The first recommended step is to create a config file for your passport, you don't have to but it's the clean thing to do. So let's say we have this config file available:
config/external_application.php
return [ 'passport' => [ 'endpoints' => [ 'base_uri' => env('APP_BASE_URI', null), // https://external.app 'authorize' => '/oauth/authorize', // Authorize our client and user route to retrieve a code. 'token' => '/oauth/token' // Route we give our code to and get our tokens from. ], 'user' => [ 'email' => env('APP_USER_EMAIL', null), // username of external app. 'password' => env('APP_USER_PASSWORD', null), // password of external app. ], 'secret' => env('APP_SECRET', null), // API client secret used to connect. 'client_id' => env('APP_CLIENT_ID', null), // API client id used to connect . 'redirect_uri' => env('APP_REDIRECT_URI', null), // API redirect uri. ] ];
Extending the Library superclasses
This library offers two superclasses, these need to be extended and available in order for the library to do its work properly.
The Authenticator
The Keukenmagazijn\PassportAuthenticator\Abstracts\ConcretePassportAuthenticator code handles all the magic for your credentials. Let's make our own custom authenticator.
app/Components/PassportAuthenticators/Instances/ExampleAuthenticator.php:
<?php namespace App\Components\PassportAuthenticators\Instances; use App\Components\PassportAuthenticators\Factories\ExampleFactory; use Keukenmagazijn\PassportAuthenticator\Abstracts\ConcretePassportAuthenticator; use Keukenmagazijn\PassportAuthenticator\Instances\Authenticator; class ExampleAuthenticator extends ConcretePassportAuthenticator { /** * We refer to the our factory here. * @return Authenticator */ protected function getAuthenticatorInstance(): Authenticator { /** @var ExampleFactory $_factory */ $_factory = \App::make(ExampleFactory::class); return $_factory->build(); } /** * @return string */ protected function getBaseUri(): string { return config('external_application.passport.endpoints.base_uri'); } }
Now we need to create a factory as the ConcretePassportAuthenticator depends on this to create a configured authenticator.
The Factory
Keukenmagazijn\PassportAuthenticator\Factories\ConcretePassportAuthenticatorFactory\This is the "superfactory" that we need to make an extension to. It contains a method which configures our Authenticator - which we will make after the factory - easily for us:
This is what the method looks like:
public function buildAuthenticator( string $appName, string $clientId, string $clientSecret, string $redirectUri, string $userEmail, string $userPassword, string $authorizeUri, string $tokenUri ): Authenticator;
So, knowing the method we need to use, let's create our first custom authenticator:
Components\PassportAuthenticators\Factories\ExampleFactory.php:
<?php namespace App\Components\PassportAuthenticators\Factories; use Keukenmagazijn\PassportAuthenticator\Factories\ConcretePassportAuthenticatorFactory; use Keukenmagazijn\PassportAuthenticator\Instances\Authenticator; class ExampleFactory extends ConcretePassportAuthenticatorFactory { /** * @return Authenticator */ public function build(): Authenticator { return $this->buildAuthenticator( 'external_example_app', config('external_application.passport.client_id'), config('external_application.passport.secret'), config('external_application.passport.redirect_uri'), config('external_application.passport.user.email'), config('external_application.passport.user.password'), sprintf("%s%s", config('external_application.passport.endpoints.base_uri'), config('external_application.passport.endpoints.authorize')), sprintf("%s%s", config('external_application.passport.endpoints.base_uri'), config('external_application.passport.endpoints.token')) ); } }
A production use-case example
So now the set-up is done, you might wonder how you can actually use the package, so I'll show you an example of it!
It's really simple, all you have to do it instantiate the authenticator and use the get/post methods available in the superclasses of this library:
/** @var \App\Components\PassportAuthenticators\Instances\ExampleAuthenticator $_authenticator */ $_authenticator = \App::make(\App\Components\PassportAuthenticators\Instances\ExampleAuthenticator::class); return $_authenticator->get("/api/v2/products"); // returns the body.
This code will be all you need after the initial set-up!
keukenmagazijn/passport-authenticator 适用场景与选型建议
keukenmagazijn/passport-authenticator 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 3k 次下载、GitHub Stars 达 1, 最近一次更新时间为 2020 年 01 月 07 日, 在 PHP 生态内属于活跃度较高的组件。
它主要适用于以下技术方向: 「Authentication」 「oauth2」 「laravel」 「passport」 「tokens」 「keukenmagazijn」 等业务场景。在实际项目中,围绕这些方向常见需要落地的问题包括:接口对接、性能调优、并发安全、与既有框架(Laravel / ThinkPHP / Yii / Webman 等)的兼容适配,以及生产环境的日志埋点与稳定性保障。
我们在过去多个企业项目中使用过 keukenmagazijn/passport-authenticator 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 keukenmagazijn/passport-authenticator 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
与 keukenmagazijn/passport-authenticator 相关的其它包
同方向 / 同关键字的高下载量 PHP Composer 包推荐,方便对比选型:
Automatically logs-in users if they are already authenticated by a remote source. (e.g. environment variable REMOTE_USER)
GraphQL authentication for your headless Craft CMS applications.
A lightweight and powerful OAuth 2.0 authorization and resource server library with support for all the core specification grants. This library will allow you to secure your API with OAuth and allow your applications users to approve apps that want to access their data from your API.
Laravel middleware to restrict a site or specific routes using HTTP basic authentication
Email Toolkit Plugin for CakePHP
The missing social authentication for thephpleague/oauth2-server, adapted from schedula/league-oauth2-social
统计信息
- 总下载量: 3k
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 1
- 点击次数: 10
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2020-01-07