在yii2的basic版本中默认是从一个数组验证用户名和密码,如何改为从数据表中查询验证呢?
首先新建立一个user表并插入实验数据,如下CREATE TABLE `user` ( `id` int(10) unsigned NOT NULL AUTO_INCREMENT, `username` varchar(50) NOT NULL, `password` varchar(32) NOT NULL, `authKey` varchar(100) NOT NULL DEFAULT '', `accessToken` varchar(100) NOT NULL DEFAULT '', PRIMARY KEY (`id`)) ENGINE=MyISAM AUTO_INCREMENT=3 DEFAULT CHARSET=utf8;-- ------------------------------ Records of myuser-- ----------------------------INSERT INTO `user` VALUES ('1', 'admin', '123', '1234', '1234');INSERT INTO `user` VALUES ('2', 'demo', '234', '123', '123'); 模型User.php如下,替换掉原来的User.php就可以实现数据表验证登陆了
namespace app\models;class User extends /*\yii\base\Object*/ \yii\db\ActiveRecord implements \yii\web\IdentityInterface{ /*public $id; public $username; public $password; public $authKey; public $accessToken; private static $users = [ '100' => [ 'id' => '100', 'username' => 'admin', 'password' => 'admin', 'authKey' => 'test100key', 'accessToken' => '100-token', ], '101' => [ 'id' => '101', 'username' => 'demo', 'password' => 'demo', 'authKey' => 'test101key', 'accessToken' => '101-token', ], ];*/ /** * @inheritdoc */ public static function tableName() { return 'user'; } /** * @inheritdoc */ public function rules() { return [ [['username', 'password'], 'required'], [['username'], 'string', 'max' => 50], [['password'], 'string', 'max' => 32], [['authKey'], 'string', 'max' => 100], [['accessToken'], 'string', 'max' => 100], ]; } /** * @inheritdoc */ public function attributeLabels() { return [ 'id' => 'ID', 'username' => 'Username', 'password' => 'Password', 'authKey' => 'AuthKey', 'accessToken' => 'AccessToken', ]; } /** * @inheritdoc */ public static function findIdentity($id) { return static::findOne($id); //return isset(self::$users[$id]) ? new static(self::$users[$id]) : null; } /** * @inheritdoc */ public static function findIdentityByAccessToken($token, $type = null) { return static::findOne(['access_token' => $token]); /*foreach (self::$users as $user) { if ($user['accessToken'] === $token) { return new static($user); } } return null;*/ } /** * Finds user by username * * @param string $username * @return static|null */ public static function findByUsername($username) { $user = User::find() ->where(['username' => $username]) ->asArray() ->one(); if($user){ return new static($user); } return null; /*foreach (self::$users as $user) { if (strcasecmp($user['username'], $username) === 0) { return new static($user); } } return null;*/ } /** * @inheritdoc */ public function getId() { return $this->id; } /** * @inheritdoc */ public function getAuthKey() { return $this->authKey; } /** * @inheritdoc */ public function validateAuthKey($authKey) { return $this->authKey === $authKey; } /** * Validates password * * @param string $password password to validate * @return boolean if password provided is valid for current user */ public function validatePassword($password) { return $this->password === $password; }} 原来User.php是继承了\yii\base\Object,为什么要继承这个类,是有原因的
在\yii\base\Object中,有构造方法 public function __construct($config = []) { if (!empty($config)) { Yii::configure($this, $config); } $this->init(); } 继续追踪Yii::configure($this, $config)代码如下 public static function configure($object, $properties) { foreach ($properties as $name => $value) { $object->$name = $value; } return $object; }正是因为有这两个方法,所以在User.php中public static function findByUsername($username) { foreach (self::$users as $user) { if (strcasecmp($user['username'], $username) === 0) { return new static($user); } } return null; }将$user传递过来,通过static,返回一个User的实例。 当通过数据表查询时候没有必要再继承\yii\base\Object,因为不必为类似原来类变量赋值了。这个时候需要User.php继承\yii\db\ActiveRecord,因为要查询用。
findIdentity是根据传递的id返回对应的用户信息,getId返回用户id,getAuthKey和validateAuthKey是 作用于登陆中的--记住我。这个authKey是唯一的,当再次登陆时,从cookie中获取authKey传递给validateAuthKey,验证 通过,就登陆成功。