wpic-dev/datahub
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update auth

Browse Source
This commit is contained in:
Nick Zeng
2026-04-03 15:11:27 +08:00
parent 16df59ca9d
commit 5f2f9f2e96
1 changed files with 7 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
backend/app/Controller/api/v1/AuthController.php
+7 -6
View File
@@ -246,8 +246,10 @@ class AuthController extends AbstractController
])->withStatus(403); ])->withStatus(403);
} }
// 生成 Access Token $user->load('role');
$token = $auth->guard('jwt')->login($user);
// 生成 Access Token(注入 role 到 JWT payload,前端从 JWT 解码 role 作为可信权限来源)
$token = $auth->guard('jwt')->login($user, ['role' => $user->role?->name ?? 'accessor']);
// 生成 Refresh Token // 生成 Refresh Token
$refreshToken = bin2hex(random_bytes(32)); $refreshToken = bin2hex(random_bytes(32));
@@ -255,8 +257,6 @@ class AuthController extends AbstractController
$user->refresh_token_expires_at = Carbon::now()->addDays(30); $user->refresh_token_expires_at = Carbon::now()->addDays(30);
$user->save(); $user->save();
$user->load('role');
OperationLogService::log( OperationLogService::log(
user_id: $user->id, user_id: $user->id,
action: 'auth.login', action: 'auth.login',
@@ -355,8 +355,9 @@ class AuthController extends AbstractController
])->withStatus(403); ])->withStatus(403);
} }
// 生成新的 Access Token // 生成新的 Access Token(注入 role 到 JWT payload
$token = $auth->guard('jwt')->login($user); $user->load('role');
$token = $auth->guard('jwt')->login($user, ['role' => $user->role?->name ?? 'accessor']);
// 生成新的 Refresh Token(轮换以提升安全性) // 生成新的 Refresh Token(轮换以提升安全性)
$newRefreshToken = bin2hex(random_bytes(32)); $newRefreshToken = bin2hex(random_bytes(32));