20180315これで簡単Laravelの認証処理をカスタマイズ

Transcript

1. ͜ΕͰ؆୯ʂ LaravelͷೝূॲཧΛΧελϚ Πζ 2018/03/15 LaraLab vol.2

2. ࣗݾ঺հ • ͸͡Ί·ͯ͠ • ෱ాେཌྷʢ;͍͚ͩͩ͘͢ʣ • @moyashidaisuke • ίϩϓϥ ->

   ΈΜΕͼ • αʔόαΠυΑΓͰ͕͢ϑϩϯτ΋ ΍Γ·͢ɻ • ڈ೥·Ͱ͸Ֆค঱͡Όͳ͔ͬͨ
3. None

4. https://www.yoriso.com/ 3/1 ϦϦʔεʂ ஫໨

5. ߏ੒

6. γϯϓϧͳ͓૴ࣜ ΑΓͦ͏ ͓๥͞Μศ "1* "1*Ͱ΍Γ ͱΓ 6TFS
   ৘ใ

7. γϯϓϧͳ͓૴ࣜ ΑΓͦ͏ ͓๥͞Μศ "1* "1*Ͱ΍Γ ͱΓ 6TFS
   ৘ใ

8. ؀ڥ΋Ζ΋Ζ • Laravel5.5 • AWS

9. Laravelͷೝূػߏ

10. ֓ཁ • https://readouble.com/laravel/5.5/ja/ authentication.html • ಈ͔͚ͩ͢ͳΒඪ४Ͱ͍ͭͯΔ • Eloquent࢖ͬͯΔͳΒɺσϑΥϧτͷΛվ଄ ͢Ε͹͍͚ͦ͏ʢະݕূʣ •

    ࠓճ͸ͦ΋ͦ΋DB࢖Θͳ͍ʢAPI͔Βऔಘʣ

11. ؆୯ʁ

12. ͋·Γ؆୯͡Όͳ͔ͬͨ

13. ཁҼ • υΩϡϝϯτ͕͏͍͢ • ݁ہίʔυΑ·ͳ͍ͱͦ΋ͦ΋ͷ࢓૊Έ͕Θ ͔Βͳ͍

14. ղઆ

15. ઃఆपΓ • ϚχϡΞϧ௨Γ • LTͳͷͰলུ

16. ೝূຊମ

17. ೝূຊମ

18. ͜ͷ5ͭͷfunctionΛ࣮૷͠ ͍ͯ͘

19. ղઆ

20. Θ͔Βͳ͍ɺɺɺ

21. σϑΥϧτͷ࣮૷ΛݟΑ͏ EloquentUserProvider

22. σϑΥϧτͷ࣮૷ΛݟΑ͏ retrieveById /** * Retrieve a user by their unique

    identifier. * * @param mixed $identifier * @return \Illuminate\Contracts\Auth\Authenticatable|null */ public function retrieveById($identifier) { $model = $this->createModel(); return $model->newQuery() ->where($model->getAuthIdentifierName(), $identifier) ->first(); } JEFOUJpFSʢJEతͳʣΛड͚ औͬͯ.PEFMΛฦ͢

23. σϑΥϧτͷ࣮૷ΛݟΑ͏ retrieveByToken /** * Retrieve a user by their unique

    identifier and "remember me" token. * * @param mixed $identifier * @param string $token * @return \Illuminate\Contracts\Auth\Authenticatable|null */ public function retrieveByToken($identifier, $token) { $model = $this->createModel(); $model = $model->where($model->getAuthIdentifierName(), $identifier)->first(); if (! $model) { return null; } $rememberToken = $model->getRememberToken(); return $rememberToken && hash_equals($rememberToken, $token) ? $model : null; } JEΛݩʹऔಘͯ͠UPLFOͱɺ Ҿ਺ͷUPLFOΛൺֱͯ͠ɺ Ұகͯͨ͠Β.PEFMΛฦ͢

24. σϑΥϧτͷ࣮૷ΛݟΑ͏ updateRememberToken /** * Update the "remember me" token for

    the given user in storage. * * @param \Illuminate\Contracts\Auth\Authenticatable $user * @param string $token * @return void */ public function updateRememberToken(UserContract $user, $token) { $user->setRememberToken($token); $timestamps = $user->timestamps; $user->timestamps = false; $user->save(); $user->timestamps = $timestamps; } UPLFOΛड͚औͬͯߋ৽͢ Δ

25. σϑΥϧτͷ࣮૷ΛݟΑ͏ retrieveByCredentials /** * Retrieve a user by the given

    credentials. * * @param array $credentials * @return \Illuminate\Contracts\Auth\Authenticatable|null */ public function retrieveByCredentials(array $credentials) { if (empty($credentials) || (count($credentials) === 1 && array_key_exists('password', $credentials))) { return; } // First we will add each credential element to the query as a where clause. // Then we can execute the query and, if we found a user, return it in a // Eloquent User "model" that will be utilized by the Guard instances. $query = $this->createModel()->newQuery(); foreach ($credentials as $key => $value) { if (! Str::contains($key, 'password')) { $query->where($key, $value); } } return $query->first(); } ͍ΘΏΔύεϫʔυೝূ͠ ͯ.PEFMΛฦ͢

26. σϑΥϧτͷ࣮૷ΛݟΑ͏ validateCredentials /** * Validate a user against the given

    credentials. * * @param \Illuminate\Contracts\Auth\Authenticatable $user * @param array $credentials * @return bool */ public function validateCredentials(UserContract $user, array $credentials) { $plain = $credentials['password']; return $this->hasher->check($plain, $user->getAuthPassword()); } .PEFMͷύεϫʔυͱҾ਺ ͷύεϫʔυΛνΣοΫ

27. ͜ΕͰ࣮૷Ͱ͖·͢Ͷʁ

28. σϑΥϧτͷ࣮૷ΛݟΑ͏ retrieveById /** * {@inheritdoc} */ public function retrieveById($identifier) {

    return $this->repository->getUser($identifier); } JEFOUJpFSʢJEతͳʣΛड͚औͬͯ.PEFMΛ ฦ͢ʢ"1*ܦ༝ʣ

29. σϑΥϧτͷ࣮૷ΛݟΑ͏ retrieveByToken /** * {@inheritdoc} */ public function retrieveByToken($identifier, $token)

    { return $this->repository->getUser($identifier, $token); } JEΛݩʹऔಘͯ͠UPLFOͱɺҾ਺ͷUPLFOΛൺ ֱͯ͠ɺҰகͯͨ͠Β.PEFMΛฦ͢
    ʢ"1*ܦ༝ʣ

30. σϑΥϧτͷ࣮૷ΛݟΑ͏ updateRememberToken /** * Update the "remember me" token for

    the given user in storage. * * @param \Illuminate\Contracts\Auth\Authenticatable $user * @param string $token * @return void */ public function updateRememberToken(UserContract $user, $token) { $user->setRememberToken($token); } ࠓճ͸5PLFOΛӬଓԽ͠ͳ ͍ʢSFNFNCFS
    NF͠ͳ ͍ʣ࢓༷ͳͷͰಛʹແ͠

31. σϑΥϧτͷ࣮૷ΛݟΑ͏ retrieveByCredentials /** * ೝূॲཧ * SessionGuard.attempt͔Βݺ͹ΕΔ * {@inheritdoc} */

    public function retrieveByCredentials(array $credentials) { return $this->userService->auth($credentials); } ͍ΘΏΔύεϫʔυೝূͯ͠.PEFMΛฦ͢ ʢ"1*ܦ༝ʣ
    ࠓճ͸ࣄલʹൃߦ͞Εͨ0OFUJNFͰೝূ

32. σϑΥϧτͷ࣮૷ΛݟΑ͏ validateCredentials /** * ೝূॲཧ * SessionGuard.attempt͔Βݺ͹ΕΔ * retrieveByCredentialsͷޙʹݺ͹ΕΔ *

    ύεϫʔυೝূ͠ͳ͍ͷͰԿ΋͠ͳ͍ * {@inheritdoc} */ public function validateCredentials(Authenticatable $user, array $credentials): bool { return true; } .PEFMͷύεϫʔυͱҾ਺ͷύε ϫʔυΛνΣοΫ
    ࠓճ͸ύεϫʔυͳ͍ͷͰෆཁ

33. ޙ͸APIଆͰྑ͍ײ͡ʹ࡞Ε ͹OKʂ

34. ؆୯ʂ

35. ·ͱΊ

36. ·ͱΊ • ϚχϡΞϧ͕Θ͔Γʹ͍͘ • ࣮૷తʹ΋ඪ४Ͱఏڙ͞Ε͍ͯΔ΋ͷ͕ີ݁ ߹ʹͳ͍ͬͯͯಡΈղ͘ͷʹ͕͔͔࣌ؒΔ • ࢓૊Έ͕Θ͚Ε͹ͦΜͳʹෳࡶ͡Όͳ͍

37. QA