Using API Token rather than key. Token now in header. Closes #358.
This commit is contained in:
@@ -81,8 +81,8 @@ return [
|
|||||||
return new Dingo\Api\Auth\BasicProvider($app['auth']);
|
return new Dingo\Api\Auth\BasicProvider($app['auth']);
|
||||||
},
|
},
|
||||||
|
|
||||||
'api_key' => function ($app) {
|
'api_token' => function ($app) {
|
||||||
return new CachetHQ\Cachet\Http\Auth\ApiKeyAuthenticator();
|
return new CachetHQ\Cachet\Http\Auth\ApiTokenAuthenticator();
|
||||||
},
|
},
|
||||||
|
|
||||||
],
|
],
|
||||||
|
|||||||
@@ -77,12 +77,12 @@ return [
|
|||||||
],
|
],
|
||||||
|
|
||||||
'user' => [
|
'user' => [
|
||||||
'username' => 'Username',
|
'username' => 'Username',
|
||||||
'email' => 'Email',
|
'email' => 'Email',
|
||||||
'password' => 'Password',
|
'password' => 'Password',
|
||||||
'api-key' => 'API Key',
|
'api-token' => 'API Token',
|
||||||
'api-key-help' => 'Regenerating your API key will revoke all existing applications.',
|
'api-token-help' => 'Regenerating your API token will revoke all existing applications.',
|
||||||
'2fa' => [
|
'2fa' => [
|
||||||
'help' => 'Enabling two factor authentication increases security of your account. You will need to download <a href="https://support.google.com/accounts/answer/1066447?hl=en">Google Authenticator</a> or a similar app on to your mobile device. When you login you will be asked to provide a token generated by the app.',
|
'help' => 'Enabling two factor authentication increases security of your account. You will need to download <a href="https://support.google.com/accounts/answer/1066447?hl=en">Google Authenticator</a> or a similar app on to your mobile device. When you login you will be asked to provide a token generated by the app.',
|
||||||
],
|
],
|
||||||
],
|
],
|
||||||
|
|||||||
@@ -77,12 +77,12 @@ return [
|
|||||||
],
|
],
|
||||||
|
|
||||||
'user' => [
|
'user' => [
|
||||||
'username' => 'Identifiant',
|
'username' => 'Identifiant',
|
||||||
'email' => 'Adresse email',
|
'email' => 'Adresse email',
|
||||||
'password' => 'Mot de passe',
|
'password' => 'Mot de passe',
|
||||||
'api-key' => 'Clé API',
|
'api-token' => 'Jeton API',
|
||||||
'api-key-help' => 'Regénérer votre clé API révoquera toutes les applications existantes.',
|
'api-token-help' => 'Regénérer votre jeton API révoquera toutes les applications existantes.',
|
||||||
'2fa' => [
|
'2fa' => [
|
||||||
'help' => 'Enabling two factor authentication increases security of your account. You will need to download <a href="https://support.google.com/accounts/answer/1066447?hl=en">Google Authenticator</a> or a similar app on to your mobile device. When you login you will be asked to provide a token generated by the app.',
|
'help' => 'Enabling two factor authentication increases security of your account. You will need to download <a href="https://support.google.com/accounts/answer/1066447?hl=en">Google Authenticator</a> or a similar app on to your mobile device. When you login you will be asked to provide a token generated by the app.',
|
||||||
],
|
],
|
||||||
],
|
],
|
||||||
|
|||||||
@@ -76,12 +76,12 @@ return [
|
|||||||
],
|
],
|
||||||
|
|
||||||
'user' => [
|
'user' => [
|
||||||
'username' => 'Usuário',
|
'username' => 'Usuário',
|
||||||
'email' => 'Email',
|
'email' => 'Email',
|
||||||
'password' => 'Senha',
|
'password' => 'Senha',
|
||||||
'api-key' => 'Chave da API',
|
'api-token' => 'API Token',
|
||||||
'api-key-help' => 'Regenerar sua chave de API irá revogar todos os aplicativos existentes.',
|
'api-token-help' => 'Regenerating your API token will revoke all existing applications.',
|
||||||
'2fa' => [
|
'2fa' => [
|
||||||
'help' => 'Enabling two factor authentication increases security of your account. You will need to download <a href="https://support.google.com/accounts/answer/1066447?hl=en">Google Authenticator</a> or a similar app on to your mobile device. When you login you will be asked to provide a token generated by the app.',
|
'help' => 'Enabling two factor authentication increases security of your account. You will need to download <a href="https://support.google.com/accounts/answer/1066447?hl=en">Google Authenticator</a> or a similar app on to your mobile device. When you login you will be asked to provide a token generated by the app.',
|
||||||
],
|
],
|
||||||
],
|
],
|
||||||
|
|||||||
@@ -29,9 +29,9 @@
|
|||||||
</div>
|
</div>
|
||||||
<hr />
|
<hr />
|
||||||
<div class="form-group">
|
<div class="form-group">
|
||||||
<label>{{ trans('forms.user.api-key') }}</label>
|
<label>{{ trans('forms.user.api-token') }}</label>
|
||||||
<input type="text" class="form-control" name="api_key" disabled value="{{ Auth::user()->api_key }}" />
|
<input type="text" class="form-control" name="api_key" disabled value="{{ Auth::user()->api_key }}" />
|
||||||
<span class="help-block">{{ trans('forms.user.api-key-help') }}</span>
|
<span class="help-block">{{ trans('forms.user.api-token-help') }}</span>
|
||||||
</div>
|
</div>
|
||||||
<hr />
|
<hr />
|
||||||
<div class="form-group">
|
<div class="form-group">
|
||||||
|
|||||||
@@ -9,7 +9,7 @@ use Illuminate\Database\Eloquent\ModelNotFoundException;
|
|||||||
use Illuminate\Http\Request;
|
use Illuminate\Http\Request;
|
||||||
use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
|
use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
|
||||||
|
|
||||||
class ApiKeyAuthenticator extends AuthorizationProvider
|
class ApiTokenAuthenticator extends AuthorizationProvider
|
||||||
{
|
{
|
||||||
/**
|
/**
|
||||||
* Authenticate the request and return the authenticated user instance.
|
* Authenticate the request and return the authenticated user instance.
|
||||||
@@ -23,17 +23,15 @@ class ApiKeyAuthenticator extends AuthorizationProvider
|
|||||||
*/
|
*/
|
||||||
public function authenticate(Request $request, Route $route)
|
public function authenticate(Request $request, Route $route)
|
||||||
{
|
{
|
||||||
$api_key = $request->input('api_key', false);
|
if ($apiToken = $request->header('X-Cachet-Token')) {
|
||||||
|
try {
|
||||||
if ($api_key === false) {
|
return User::findByApiToken($apiToken);
|
||||||
throw new UnauthorizedHttpException(null, 'You did not provide an API key.');
|
} catch (ModelNotFoundException $e) {
|
||||||
|
throw new UnauthorizedHttpException(null, 'The API key you provided was not correct.');
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
try {
|
throw new UnauthorizedHttpException(null, 'You are not authorized to view this content.');
|
||||||
return User::findByApiKey($api_key);
|
|
||||||
} catch (ModelNotFoundException $e) {
|
|
||||||
throw new UnauthorizedHttpException(null, 'You need to be authenticated to perform this action.');
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
@@ -43,6 +41,6 @@ class ApiKeyAuthenticator extends AuthorizationProvider
|
|||||||
*/
|
*/
|
||||||
public function getAuthorizationMethod()
|
public function getAuthorizationMethod()
|
||||||
{
|
{
|
||||||
return 'api_key';
|
return 'api_token';
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
+3
-3
@@ -96,16 +96,16 @@ class User extends Model implements UserInterface, RemindableInterface
|
|||||||
/**
|
/**
|
||||||
* Find by api_key, or throw an exception.
|
* Find by api_key, or throw an exception.
|
||||||
*
|
*
|
||||||
* @param string $api_key
|
* @param string $token
|
||||||
* @param string[] $columns
|
* @param string[] $columns
|
||||||
*
|
*
|
||||||
* @throws \Illuminate\Database\Eloquent\ModelNotFoundException
|
* @throws \Illuminate\Database\Eloquent\ModelNotFoundException
|
||||||
*
|
*
|
||||||
* @return \CachetHQ\Cachet\Models\User
|
* @return \CachetHQ\Cachet\Models\User
|
||||||
*/
|
*/
|
||||||
public static function findByApiKey($api_key, $columns = ['*'])
|
public static function findByApiToken($token, $columns = ['*'])
|
||||||
{
|
{
|
||||||
$user = static::where('api_key', $api_key)->first($columns);
|
$user = static::where('api_key', $token)->first($columns);
|
||||||
|
|
||||||
if (!$user) {
|
if (!$user) {
|
||||||
throw new ModelNotFoundException();
|
throw new ModelNotFoundException();
|
||||||
|
|||||||
@@ -2,7 +2,7 @@
|
|||||||
|
|
||||||
namespace CachetHQ\Cachet\Providers;
|
namespace CachetHQ\Cachet\Providers;
|
||||||
|
|
||||||
use CachetHQ\Cachet\Http\Auth\ApiKeyAuthenticator;
|
use CachetHQ\Cachet\Http\Auth\ApiTokenAuthenticator;
|
||||||
use Illuminate\Support\ServiceProvider;
|
use Illuminate\Support\ServiceProvider;
|
||||||
|
|
||||||
class AuthServiceProvider extends ServiceProvider
|
class AuthServiceProvider extends ServiceProvider
|
||||||
@@ -24,8 +24,8 @@ class AuthServiceProvider extends ServiceProvider
|
|||||||
*/
|
*/
|
||||||
public function register()
|
public function register()
|
||||||
{
|
{
|
||||||
$this->app->bindShared('CachetHQ\Cachet\Http\Auth\ApiKeyAuthenticator', function () {
|
$this->app->bindShared('CachetHQ\Cachet\Http\Auth\ApiTokenAuthenticator', function () {
|
||||||
return new ApiKeyAuthenticator();
|
return new ApiTokenAuthenticator();
|
||||||
});
|
});
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
Reference in New Issue
Block a user