时间戳

首页 > 解决方案 > Laravel 5.6 自定义中间件打破模型绑定

php - Laravel 5.6 自定义中间件打破模型绑定

问题描述

这是我的routes/api.php

Route::group([
    'middleware' => 'jwt.auth',
], function ($router) {

    //Route group with my custom middleware
    Route::group([
        'middleware' => CheckPermission::class
    ], function ($router) {

        Route::group([
            'prefix' => 'permissions'
        ], function($router) {

            Route::resources([
                'users' => 'UserPermissionController'
            ]);
        });

    });

});

这是我正在尝试使用的控制器方法:

public function update(Request $request, User $user)
{
    dd($user);
}

编辑: 我的CheckPermission中间件:

namespace App\Http\Middleware;

use Closure;

use Illuminate\Support\Facades\Auth;

use Illuminate\Routing\Router;

use App\MethodModuleUser;

class CheckPermission
{

    protected $router;

    public function __construct(Router $router)
    {
        $this->router = $router;
    }

    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle($request, Closure $next)
    {

        $method = $request->method();
        $path = $this->router->getRoutes()->match($request)->uri;
        $path = str_replace('api/', '', $path);

        $permissions = MethodModuleUser::with([
            'user',
            'module',
            'method'
        ])->whereHas('user', function($query) {
            $query->where('id', Auth::id());
        })->whereHas('module', function($query) use ($path) {
            $query->where('url', $path);
        })->whereHas('method', function($query) use ($method) {
            $query->where('name', strtoupper($method));
        })->count();

        if($permissions <= 0) {
            return response()->json([
                'message' => 'No tiene los privilegios para realizar esta acción'
            ], 403);
        }

        return $next($request);
    }
}

当我使用我的自定义中间件时,模型绑定不起作用并且$user只是一个空模型,但是当我评论该'middleware' => CheckPermission::class行时,模型绑定运行良好。

我做错了什么?

标签: phplaraveleloquentmiddlewarelaravel-5.6

解决方案

好的,我不知道这是否是一个好习惯,但我修复了它。如果有人也有这个问题,我会发布我的解决方案:

在中间件中,我通过像这样调用中间件来CheckPermission替换:return $next($request)SubstituteBindings

return app(\Illuminate\Routing\Middleware\SubstituteBindings::class)
    ->handle($request, function($request) use ($next) {
        return $next($request);
    });

编辑:

解决问题的另一种方法是$request->route()->uriCheckPermission中间件中使用,而不是Router像罗斯威尔逊在评论中所说的那样找到它。现在不再需要__construct(Router $router)and 调用中间件。SubstituteBindings

推荐阅读