请教 request ()->session ()->regenerate () 怎么使用?
为了方便以后扩展,数据表和Auth不太一样,控制器也是自己写的
但是看到SESSION的时候发现要生新生成SESSION_ID是为了安全,我这样做对不
if (\Hash::check($password, $user->password) && ($this->admin ? $user->is_admin == 1 : true)) {
\Auth::login($user, $remember);
// 登录成功后生新生成SESSION_ID
request()->session()->regenerate();
$this->admin && session()->put('is_admin', intval(true));
session()->put('username', $username);
session()->put('last_login_time', time());
$user->recordLastLoginLog();
$user->recordLoginLog($username, true, $this->admin);
return true;
} else {
$user->recordLoginLog($username, false, $this->admin);
return false;
}
推荐文章: