我正在尝试使此自定义验证有效,但目前我没有得到任何东西。似乎是什么问题?
['password', function($attribute, $params){
$password = \Yii::$app->db
->createCommand("SELECT * FROM forbiddenPasswords WHERE password = '{$params}'")
->queryOne();
if($password)
$this->addError($attribute, 'This password is forbidden. Please try another.');
}],
$params包含验证器参数,而不是属性,例如:
$count = Yii::$app->db->createCommand('SELECT COUNT(*) FROM forbiddenPasswords WHERE password = :password')
->bindValue(':password', $this->password)
->queryScalar();
if($count)
$this->addError($attribute, 'This password is forbidden. Please try another.');
或者你可以创建一个ActiveRecord模型forbiddenPasswords并使用unique验证器来做同样的事情......
在 Yii2 中你可以使用Security组件validatePassword的方法。
首先通过方法将密码的哈希存储在数据库中setPassword:
/**
*
* @param string $password WARNING! OPEN PASSWORD!
*/
public function setPassword($password)
{
$this->password_hash = Yii::$app->security->generatePasswordHash($password);
}
在模型中你应该有方法validatePassword:
/**
* @param string $password WARNING! OPEN PASSWORD!
*
* @return boolean
*/
public function validatePassword($password)
{
return Yii::$app->security->validatePassword($password, $this->password_hash);
}
或者,如果你想使用User模型作为表单,你可以这样写:
/**
* @inheritdoc
*/
public function rules()
{
return [
...
['password', 'validatePassword']
];
}
/**
* @param string $attribute attribute name
* @param array $params Additional params
*/
public function validatePassword($attribute, $params)
{
if (Yii::$app->security->validatePassword($this->$attribute, $this->password_hash) == false) {
$this->addError($attribute, Yii::t('frontend', 'Incorrect password'));
}
}
我检查了 {$params} 变量是否用于附加值。如果您想验证密码,请分配这样的值。
['password', function($attribute, $params){
$pass=$this->password;
$password = \Yii::$app->db
->createCommand("SELECT * FROM forbiddenPasswords WHERE password = '{$pass}'")
->queryOne();
if($password)
$this->addError($attribute, 'This password is forbidden. Please try another.');
}],