search

Zizaco / confide

Confide is a authentication solution for Laravel 4
1.19k stars 258 forks source link

Confide redirect issue #513

Open jesders88 opened 9 years ago

jesders88 commented 9 years ago

I didnt know exactly where to post this but after logging in and refreshing the page on my /admin page it redirects back to the login instead of staying on admin. It looks like the session is there but for some reason its just redirecting back to /users/login like I said.

filters.php

<?php

/* -------------------------------------------------------------------------- Application & Route Filters
Below you will find the "before" and "after" events for the application
which may be used to do any work before or after a request into your
application. Here you may also register your custom route filters.

*/

App::before(function($request) { // });

App::after(function($request, $response) { // });

/* -------------------------------------------------------------------------- Authentication Filters
The following filters are used to verify that the user of the current
session is logged into this application. The "basic" filter easily
integrates HTTP Basic authentication for quick, simple checking.

*/

Route::filter('auth', function () { // If the user is not logged in if (Auth::guest()) { return Redirect::guest('users/login'); } });

// Only authenticated users will be able to access routes that begins with // 'admin'. Ex: 'admin/posts', 'admin/categories'. Route::when('/admin*', 'auth');

Route::filter('auth.basic', function() { return Auth::basic(); });

/* -------------------------------------------------------------------------- Guest Filter
The "guest" filter is the counterpart of the authentication filters as
it simply checks that the current user is not logged in. A redirect
response will be issued if they are, which you may freely change.

*/

Route::filter('guest', function() { if (Auth::check()) return Redirect::to('/'); });

/* -------------------------------------------------------------------------- CSRF Protection Filter
The CSRF filter is responsible for protecting your application against
cross-site request forgery attacks. If this special token in a user
session does not match the one given in this request, we'll bail.

*/

Route::filter('csrf', function() { if (Session::token() !== Input::get('_token')) { throw new Illuminate\Session\TokenMismatchException; } });

routes.php

Route::get('/admin', function(){ return View::make('site.pages.admin.index'); });

Route::when('/admin*', 'auth');

Here is my full filters.php and the one route I need for the authentication. Can you explain this further? Also, I was wondering how to implement a logout on just an anchor tag. Can you explain this?