Auth::logout 每次退出都有修改 token？

问答 / 0 / 1 / 创建于 7年前

这个原理是怎么样还望指教

Code_Er

课程读者 33 声望

404研发员 @ BUG研发机构

没有什么BUG是造不出来的

0 人点赞

从零开发一个电商项目，功能包括电商后台、商品 & SKU 管理、购物车、订单管理、支付宝支付、微信支付、订单退款流程、优惠券等

我们将带你从零开发一个项目并部署到线上，本课程教授 Web 开发中专业、实用的技能，如 Git 工作流、Laravel Mix 前端工作流等。

讨论数量: 1

hustnzj

版主 2.2k 声望

This functionality is only useful when u use the `remember me` functionality which purpose is to help against Remember Me cookie hijacking.

The value is refreshed upon login and logout. If a cookie is hijacked by a malicious person, logging out makes the hijacked cookie useless since it doesn't match anymore.

Study the source code, u will understand:

When u login, u will go through the steps in the vendor/laravel/framework/src/Illuminate/Auth/SessionGuard.php
as below:
When u logout, u will go through the steps in the vendor/laravel/framework/src/Illuminate/Auth/SessionGuard.php
as below:

7年前评论

讨论应以学习和精进为目的。请勿发布不友善或者负能量的内容，与人为善，比聪明更重要！

帮助

Auth::logout 每次退出都有修改 token？

This functionality is only useful when u use the `remember me` functionality which purpose is to help against Remember Me cookie hijacking.

Study the source code, u will understand:

社区赞助商

关于 LearnKu

资源推荐

服务提供商

其他信息

Auth::logout 每次退出都有修改 token？

This functionality is only useful when u use the remember me functionality which purpose is to help against Remember Me cookie hijacking.

Study the source code, u will understand:

社区赞助商

关于 LearnKu

资源推荐

服务提供商

其他信息

请登录

This functionality is only useful when u use the `remember me` functionality which purpose is to help against Remember Me cookie hijacking.