【发布时间】:2020-01-22 02:50:31
【问题描述】:
我无法让我的 Laravel 设置在我的 StripeController 中找到经过身份验证的用户。我正在尝试设置 Stripe webhook 以在成功付款后执行操作。
我已经阅读了很多关于类似问题的文章,但在尝试修复我阅读过的内容后,大多数问题都继续返回 null。
我最近的尝试是返回status code 419 和Page Expired。
StripeController.php
class StripeController extends Controller
{
public function __construct(){
\Stripe\Stripe::setApiKey(env('STRIPE_SECRET'));
}
public function paymentSuccess()
{
// The commented code fetches the first User OK but I want the logged in user.
// $userDetails = User::first();
// $userDetails->is_subscribed = 1;
// $userDetails->save();
//This always returns null, as does any other user() command.
return Auth::user();
}
public function createSession(Request $request)
{
$session = \Stripe\Checkout\Session::create([
"success_url" => "https://www.mymarketingwizard.io/#/dashboard",
"cancel_url" => "https://example.com/cancel",
"payment_method_types" => ["card"],
"line_items" => [[
"name" => "Lifetime Access",
"description" => "Lifetime Access",
"amount" => 15000,
"currency" => "gbp",
"quantity" => 1
]]
]);
return $session;
}
我的登录脚本: AuthController.php
public function login(Request $request)
{
$request->validate([
'email' => 'required|string|email',
'password' => 'required|string'
]);
$credentials = request(['email', 'password']);
$credentials['active'] = 1;
$credentials['deleted_at'] = null;
if(!Auth::attempt($credentials))
return response()->json(['error' => 'unauthorized'],404);
$user = $request->user();
$tokenResult = $user->createToken('Personal Access Token');
$token = $tokenResult->token;
if ($request->remember_me)
$token->expires_at = Carbon::now()->addWeeks(1);
$token->save();
return response()->json([
'access_token' => $tokenResult->accessToken,
'token_type' => 'Bearer',
'expires_at' => Carbon::parse(
$tokenResult->token->expires_at
)->toDateTimeString()
]);
}
我已经阅读了很多关于这个问题的其他类似问题,很多都指向 'middleware' => 'web' 必须用于您要访问 Auth::user 的地方,所以这是我最近的尝试:
api.php
Route::group(['prefix' => '/'], function () {
Route::group(['middleware' => 'web'], function () {
Route::auth();
Route::post('paymentSuccess','StripeController@paymentSuccess'); // Route I'm a hitting via Stripe
});
Route::post('login', 'AuthController@login');
Route::post('send-token', 'AuthController@sendToken');
Route::post('validate-token', 'AuthController@validateToken');
Route::post('reset-password', 'AuthController@resetPassword');
Route::group(['middleware' => 'auth:api'], function() {
Route::post('session','StripeController@createSession');
我还阅读了有关将'web' 类从middlewareGroups 移到Kernel.php 中的全局middleware 的其他解决方案,但这对我也不起作用。
内核.php
namespace App\Http;
use Illuminate\Foundation\Http\Kernel as HttpKernel;
class Kernel extends HttpKernel
{
/**
* The application's global HTTP middleware stack.
*
* These middleware are run during every request to your application.
*
* @var array
*/
protected $middleware = [
\App\Http\Middleware\CheckForMaintenanceMode::class,
\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
\App\Http\Middleware\TrimStrings::class,
\Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
\App\Http\Middleware\TrustProxies::class,
\Spatie\Cors\Cors::class,
];
/**
* The application's route middleware groups.
*
* @var array
*/
protected $middlewareGroups = [
'web' => [
\App\Http\Middleware\EncryptCookies::class,
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
\Illuminate\Session\Middleware\StartSession::class,
\Illuminate\Session\Middleware\AuthenticateSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\VerifyCsrfToken::class,
\Illuminate\Routing\Middleware\SubstituteBindings::class,
],
'api' => [
'throttle:60,1',
'bindings',
],
];
/**
* The application's route middleware.
*
* These middleware may be assigned to groups or used individually.
*
* @var array
*/
protected $routeMiddleware = [
'auth' => \App\Http\Middleware\Authenticate::class,
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class,
'can' => \Illuminate\Auth\Middleware\Authorize::class,
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
];
/**
* The priority-sorted list of middleware.
*
* This forces non-global middleware to always be in the given order.
*
* @var array
*/
protected $middlewarePriority = [
\Illuminate\Session\Middleware\StartSession::class,
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
\App\Http\Middleware\Authenticate::class,
\Illuminate\Session\Middleware\AuthenticateSession::class,
\Illuminate\Routing\Middleware\SubstituteBindings::class,
\Illuminate\Auth\Middleware\Authorize::class,
];
}
Payment.vue
这是我的 Vue 组件,它在首次创建组件时创建 Stripe 会话。当用户点击proceed to checkout按钮时,该方法被执行。
methods: {
checkout() {
stripe
.redirectToCheckout({
sessionId: this.sessionId.id
})
.then(result => {
// If `redirectToCheckout` fails due to a browser or network
// error, display the localized error message to your customer
// using `result.error.message`.
})
}
},
created() {
api
.post('/session')
.then(response => {
this.sessionId = response.data
})
.catch(error => {
})
}
我的目标是更新我的用户表,说明处理付款的用户现在已订阅。
【问题讨论】:
-
这是一个 webhook,这意味着 Stripe 在某些操作后会向您的服务器发起 HTTP 调用。拨打电话时当前没有登录用户。
-
如果我通过我的网站进行测试付款,作为登录用户,我仍然会得到相同的结果。我希望它返回登录到前端的用户?
-
您需要让 Stripe 在 webhook 中将用户详细信息(电子邮件地址,如果它是唯一的)传递给您,然后使用它从数据库中获取用户。
-
但是,如果我的用户在付款时提供的电子邮件与他们注册我的服务时使用的电子邮件不同,会发生什么?
-
您将在初始化事务时将引用传递给 Stripe。 Stripe 将在 webhook 中返回引用。它不一定是电子邮件地址,但只要设置正确,它应该可以工作。
标签: php laravel stripe-payments