Leaf/amber-laravel
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

改进 token 认证

Browse Source
This commit is contained in:
Twilight 2024-07-24 00:41:39 +08:00
parent f7ebda06f7
commit 68252ab4a0
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
app/Providers/AppServiceProvider.php
View File

@ -52,11 +52,11 @@ private function setJWTGuard(): void
return response()->json(['error' => 'Invalid token, '.$e->getMessage()], 401); return response()->json(['error' => 'Invalid token, '.$e->getMessage()], 401);
} }
if (config('oauth.force_aud')) {
if (! in_array($decoded->aud, config('oauth.trusted_aud'))) { if (! in_array($decoded->aud, config('oauth.trusted_aud'))) {
return response()->json(['error' => 'The application rejected the token, token aud is '.$decoded->aud.', app aud is '.config('oauth.client_id')], 401); return response()->json(['error' => 'The application rejected the token, token aud is '.$decoded->aud.', app aud is '.config('oauth.client_id')], 401);
} }
if (config('oauth.force_aud') && $decoded->aud != config('oauth.client_id')) {
return response()->json(['error' => 'The token not match the application, '.' token aud is '.$decoded->aud.', app aud is '.config('oauth.client_id')], 401); return response()->json(['error' => 'The token not match the application, '.' token aud is '.$decoded->aud.', app aud is '.config('oauth.client_id')], 401);
} }