Middleware¶
As of version 2.0, PHPLucidFrame added middleware support. You can handle a HTTP request through middleware. You can define middlewares to execute before or after a HTTP request. For example, you can include a middleware that authenticates a user. If the user is not authenticated, the middleware will redirect the user to the login page, otherwise, it will allow the request to proceed. All middlewares should be located and defined in the /app/middleware directory.
Before Middleware¶
A before middleware is an event executed before a request. Here is its definition syntax:
_middleware(function () {
// Do something before the page request
// for example, checking bearer token from HTTP Authorization
// $authorization = _requestHeader('Authorization')
});
_middleware(function () {
// Do something before the page request
}, 'before'); // 'before' is optional and default
After Middleware¶
An after middleware is an event executed after a request. Here is its definition syntax:
_middleware(function () {
// Do something at the end of the page request
}, 'after');
Order/Precedence for Middlewares¶
You can register precedence of the middleware execution by using the method order(), for example,
_middleware(function () {
// ...
})->order(2);
_middleware(function () {
// ...
})->order(1);
The middlewares will be executed in ascending order, so the second middleware will be executed first.
Assigning Middleware to Routes¶
A middleware is run during every HTTP request to your application by default. However, you can assign middleware to specific routes using the on() method. The first parameter to the on() method is filter name and the second parameter is any route paths or route names.
| Filter Name | Description | Example |
|---|---|---|
| startWith | To run the middleware on the route starting with the given URI | ->on('startWith', 'api') |
| contain | To run the middleware on the route containing the given URI | ->on('contain', 'api/posts') |
| equal | To run the middleware on the route equal to the given route name or path | ->on('equal', 'lc_blog_show') |
| except | To run the middleware on the routes except the given list | ->on('except', 'login') |
Note
- You can check some example middlewares at https://github.com/phplucidframe/phplucidframe/blob/master/app/middleware/example.php
Let’s create a middleware /app/middleware/auth.php that contains the following code:
<?php
/**
* This is an example middleware running before every page request
* that route starts with "admin"
*/
_middleware(function () {
// set flash message and redirect to the login page if user is anonymous
if (auth_isAnonymous()) {
flash_set('You are not authenticated. Please log in.', '', 'error');
_redirect('admin/login');
}
// otherwise, it will proceed the request
})->on('startWith', 'admin') // executed on every page that URI starts with /admin
->on('except', array('admin/login')); // not be executed on /admin/login
It will be executed on every page that URI starts with /admin and it verifies the user is authenticated. It will not be executed on /admin/login. If the user is not authenticated, it will redirect to the login page.