Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Route::group(array('prefix'=>'Api/v1/admin'),function()
- {
- Route::post('login','AdminController@login');
- });
- Route::group(['middleware'=>'admin.csrf','prefix'=>'Api/v1/admin'],function($router){
- Route::get('getAdminDetails','AdminController@ Route::get('getAdminDetails','AdminController@login'); //Call Rest all routes after admin login
- ');
- /*Call Rest all routes after admin login like this and this request
- goes through the VerifyAdminCsrfToken.php handle request.*/
- });
- <?php namespace AppHttpMiddleware;
- class VerifyAdminCsrfToken {
- public function handle($request, Closure $next)
- {
- $token = Request::header('X-Admin-Csrf-Token');
- $id_admin = Request::header('X-Id-Admin');
- $adminObject=new AppModelsAdmin();
- $adminDetails = $adminObject->checkAdminToken($id_admin,$token); // function to identify the admin in admin model based on id_admin and token.
- // echo Session::token() .'==='. $csrfToken; //exit();
- if(!$adminDetails&&count($adminDetails)==0)
- {
- return Response::json(array('error'=>true,'message'=>'Unauthorized
- Request'),401);
- }
- else{
- $userDet = array();
- $userDet['id_admin'] = $adminDetails->id_admin;
- $userDet['name'] = $adminDetails->name;
- $request->userDet=$userDet;
- return $next($request);
- }
- }
- <?php
- namespace AppHttpControllers;
- class AdminController extends Controller
- {
- public function login(Request $request){
- $admin_email = $request->input('email');
- $password = $request->input('password');
- $adminObj = new AppModelsAdmin();
- $loginCheck=$adminObj->checkAdminLogin($admin_email,$password);// function to identify the admin in admin model based in admin_email and password.
- if($loginCheck&&count($loginCheck)>0){
- return response()->json(['message'=>'Successfully logged
- in','user_detail'=>$userDet,'csrf_token'=>$token],200);
- }else{
- return response()->json(array('message'=>'These credentials did not
- match our record'),403);
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement