Ошибка аутентификации JWT (Laravel) - токен не предоставлен - PullRequest
0 голосов
/ 10 января 2019

Я сражался с JWT уже несколько дней! Я проверил все решения, которые смог найти, я получаю token_not_provided. Это tymon / jwt-auth версия 'dev-development' (новейшая версия не-dev на момент публикации - 1.0.0rc-3), и я использую ее с Laravel 5.6.

В то время как локально работает нормально, после загрузки в Cloudways начинает говорить token_not_provided. Я попытался изменить файл .htaccess на общем диске, а также добавил еще одну копию в каталог маршрутов на всякий случай:

<IfModule mod_rewrite.c>
<IfModule mod_negotiation.c>
    Options -MultiViews -Indexes

RewriteEngine On
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule .* - [e=HTTP_AUTHORIZATION:%1]

# Redirect Trailing Slashes If Not A Folder...
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} (.+)/$
RewriteRule ^ %1 [L,R=301]

# Handle Front Controller...
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^ index.php [L]

Также вот мой AuthController:


namespace App\Http\Controllers;

use Auth;
use JWTAuth;
use App\User;
use App\Http\Requests\RegisterFormRequest;
use Illuminate\Http\Request;

class AuthController extends Controller
    public function register(RegisterFormRequest $request)
        $user = new User;
        $user->email = $request->email;
        $user->name = $request->name;
        $user->username = $request->username;
        $user->password = bcrypt($request->password);

        return response([
            'status' => 'success',
            'data' => $user
        ], 200);

    public function login(Request $request)
        $credentials = $request->only('email', 'password');

        if ( ! $token = JWTAuth::attempt($credentials)) {
            return response([
                'status' => 'error',
                'error' => 'invalid.credentials',
                'msg' => 'Invalid Credentials.'
            ], 400);

        return response([
            'status' => 'success'
        ->header('Authorization', $token);

    public function user(Request $request)
        $user = User::find(Auth::user()->id)->load('interest');

        return response([
            'status' => 'success',
            'data' => $user

    public function edit($id)

        $post = Post::find($id);

        return view('admin.posts.edit', compact('post'));


    public function refresh()
        return response([
            'status' => 'success'

    public function logout()

        return response([
            'status' => 'success',
            'msg' => 'Logged out Successfully.'
        ], 200);

Вот мой api.php:


use Illuminate\Http\Request;

| API Routes
| Here is where you can register API routes for your application. These
| routes are loaded by the RouteServiceProvider within a group which
| is assigned the "api" middleware group. Enjoy building your API!

Route::post('conv/store', 'ConversationController@store');
Route::post('interest/store', 'InterestController@store');
Route::post('message/store', 'MessageController@store');
Route::post('message/{id}/conv', 'MessageController@show');
Route::get('conv/{id}', 'ConversationController@show');
Route::get('get/users', 'AutoCompleteController@getUsers');
Route::get('categories', 'CategoryController@show');
Route::get('{id}/recommended', 'CategoryController@recommended');
Route::get('interests', 'InterestController@getAll');
Route::post('subscribe/{id}/{int}/add', 'InterestController@subscribe');
Route::get('interest/profile/{id}', 'InterestController@show');
Route::middleware('auth:api')->get('/user', function (Request $request) {
    return $request->user();

Route::post('auth/register', 'AuthController@register');
Route::post('auth/login', 'AuthController@login');
Route::group(['middleware' => 'api'], function(){
Route::get('auth/user', 'AuthController@user');
Route::post('auth/logout', 'AuthController@logout');

Route::group(['middleware' => 'jwt.refresh'], function(){
    Route::get('auth/refresh', 'AuthController@refresh');
    Route::get('/{id}/profile', 'AuthController@refresh');

Вот мой auth.php:


return [

| Authentication Defaults
| This option controls the default authentication "guard" and password
| reset options for your application. You may change these defaults
| as required, but they're a perfect start for most applications.

'defaults' => [
    'guard' => 'api',
    'passwords' => 'users',

| Authentication Guards
| Next, you may define every authentication guard for your application.
| Of course, a great default configuration has been defined for you
| here which uses session storage and the Eloquent user provider.
| All authentication drivers have a user provider. This defines how the
| users are actually retrieved out of your database or other storage
| mechanisms used by this application to persist your user's data.
| Supported: "session", "token"

'guards' => [
    'api' => [
        'driver' => 'jwt',
        'provider' => 'users',
    'web' => [
        'driver' => 'session',
        'provider' => 'users',

| User Providers
| All authentication drivers have a user provider. This defines how the
| users are actually retrieved out of your database or other storage
| mechanisms used by this application to persist your user's data.
| If you have multiple user tables or models you may configure multiple
| sources which represent each model / table. These sources may then
| be assigned to any extra authentication guards you have defined.
| Supported: "database", "eloquent"

'providers' => [
    'users' => [
        'driver' => 'eloquent',
        'model' => App\User::class,

    // 'users' => [
    //     'driver' => 'database',
    //     'table' => 'users',
    // ],

| Resetting Passwords
| You may specify multiple password reset configurations if you have more
| than one user table or model in the application and you want to have
| separate password reset settings based on the specific user types.
| The expire time is the number of minutes that the reset token should be
| considered valid. This security feature keeps tokens short-lived so
| they have less time to be guessed. You may change this as needed.

'passwords' => [
    'users' => [
        'provider' => 'users',
        'table' => 'password_resets',
        'expire' => 60,

надеюсь, вы можете помочь! Извините, если я что-то пропустил! Если вам нужно добавить что-нибудь еще, дайте мне знать.

Добро пожаловать на сайт PullRequest, где вы можете задавать вопросы и получать ответы от других членов сообщества.