我正在开发一个用于登录的 rest API,但我不是它的工作意味着我可以从服务器获取数据并将响应发送给用户。现在我想用它实现基本身份验证。我对Rest API开发和Slim非常陌生。所以请帮助我。
$app->get('/users', function() use($app, $db)
{
$app->response()->header("Content-Type", "application/json");
$req=$app->request();
$pass = $req->params('pass'); // Getting parameter with names
$email = $req->params('email'); // Getting parameter with names
$user=$db->Sign_Up()->where (array('email_id'=>$email, 'password'=> $pass));
$data=$user->fetch();
$status=$data['status'];
$user_pass=$data['password'];
$user_email=$data['email_id'];
$user_name=$data['user_name'];
$uesr_ip=$_SERVER['REMOTE_ADDR'];
if ($pass!=$user_pass || $email != $user_email)
{
echo json_encode(
array(
'status'=>false,
'Message'=>'Email or Password dose not match.'
));
}
else if($status=='active')
{
$user_os = getOS();
$user_browser = getBrowser();
$message = "
<div style='font-size:15px;text-align:center;border: 1px solid #ddd;background: #DADADA;margin: 2%;padding: 5%;'>
Hi $user_name,
Your KarAssist Account $user_email was just used to sign in from $user_browser on $user_os.
</div>
";
$headers = 'MIME-Version: 1.0' . "rn";
$headers .= 'Content-type: text/html; charset=iso-8859-1' . "rn";
$mail_sent=mail($user_email, "New Sign In from $user_browser on $user_os", $message,$headers);
if ($mail_sent)
{
echo json_encode(array(
'User_Info'=>array(
'status'=>true,
'id'=> $data['id'],
'First_Name'=>$data['first_name'],
'Email_Id'=>$data['email_id'],
'Last_Name'=>$data['last_name'],
'Phone_Number'=>$data['phone_number'],
'Status'=>$data['status']
),
'App_info'=>array(
'Device_token'=>$data['device_token'],
'App_version'=>$data['app_version']
)));
}
else
{
echo json_encode(array(
'status'=>false,
'message'=>"There is some Technical error. We are sorry to inform you we could not sent mail to you. So please change your mail ASAP."
));
}
}
else
{
echo json_encode(array(
'status'=>false,
'message'=>"User with Email $email is not avtivated yet."
));
}
});
此代码运行良好。我想用它实现基本身份验证。所以让我知道该怎么做。
最简单的方法是使用现有的基本身份验证中间件。使用此中间件,您可以执行以下操作:
$app = new SlimApp;
$app->add(new SlimMiddlewareHttpBasicAuthentication([
"path" => "/api",
"realm" => "Protected",
"users" => [
"root" => "t00r",
"user" => "passw0rd"
]
]));