英文:
Laravel 8: Session put works but session flash does not work
问题
我在项目中使用 Laravel 8,并在控制器中添加以下内容以显示成功消息:
Session::flash('success','asdasd');
但这不在模板中显示任何数据:
@if(\Session::has('success'))
<div class="alert alert-success" role="alert">
{{ \Session::get('success') }}
</div>
@endif
但是,当我使用 Session put 时,它能正常显示警告框:
Session::put('success','asdasd');
然而,在 kernel.php 中,我已经确定了这一点:
protected $middleware = [
\Illuminate\Session\Middleware\StartSession::class,
...
那么这里出了什么问题?如何使用 session->flash 仅提交一次会话?
这是 session.php 的完整代码:
<?php
use Illuminate\Support\Str;
return [
/*
|--------------------------------------------------------------------------
| Default Session Driver
|--------------------------------------------------------------------------
|
| This option controls the default session "driver" that will be used on
| requests. By default, we will use the lightweight native driver but
| you may specify any of the other wonderful drivers provided here.
|
| Supported: "file", "cookie", "database", "apc",
| "memcached", "redis", "dynamodb", "array"
|
*/
'driver' => env('SESSION_DRIVER', 'file'),
/*
|--------------------------------------------------------------------------
| Session Lifetime
|--------------------------------------------------------------------------
|
| Here you may specify the number of minutes that you wish the session
| to be allowed to remain idle before it expires. If you want them
| to immediately expire on the browser closing, set that option.
|
*/
'lifetime' => env('SESSION_LIFETIME', 120),
'expire_on_close' => false,
/*
|--------------------------------------------------------------------------
| Session Encryption
|--------------------------------------------------------------------------
|
| This option allows you to easily specify that all of your session data
| should be encrypted before it is stored. All encryption will be run
| automatically by Laravel and you can use the Session like normal.
|
*/
'encrypt' => false,
/*
|--------------------------------------------------------------------------
| Session File Location
|--------------------------------------------------------------------------
|
| When using the native session driver, we need a location where session
| files may be stored. A default has been set for you but a different
| location may be specified. This is only needed for file sessions.
|
*/
'files' => storage_path('framework/sessions'),
/*
|--------------------------------------------------------------------------
| Session Database Connection
|--------------------------------------------------------------------------
|
| When using the "database" or "redis" session drivers, you may specify a
| connection that should be used to manage these sessions. This should
| correspond to a connection in your database configuration options.
|
*/
'connection' => env('SESSION_CONNECTION', null),
/*
|--------------------------------------------------------------------------
| Session Database Table
|--------------------------------------------------------------------------
|
| When using the "database" session driver, you may specify the table we
| should use to manage the sessions. Of course, a sensible default is
| provided for you; however, you are free to change this as needed.
|
*/
'table' => 'sessions',
/*
|--------------------------------------------------------------------------
| Session Cache Store
|--------------------------------------------------------------------------
|
| While using one of the framework's cache driven session backends you may
| list a cache store that should be used for these sessions. This value
| must match with one of the application's configured cache "stores".
|
| Affects: "apc", "dynamodb", "memcached", "redis"
|
*/
'store' => env('SESSION_STORE', null),
/*
|--------------------------------------------------------------------------
| Session Sweeping Lottery
|--------------------------------------------------------------------------
|
| Some session drivers must manually sweep their storage location to get
| rid of old sessions from storage. Here are the chances that it will
| happen on a given request. By default, the odds are 2 out of 100.
|
*/
'lottery' => [2, 100],
/*
|--------------------------------------------------------------------------
| Session Cookie Name
|--------------------------------------------------------------------------
|
| Here you may change the name of the cookie used to identify a session
| instance by ID. The name specified here will get used every time a
| new session cookie is created by the framework for every driver.
|
*/
'cookie' => env(
'SESSION_COOKIE',
Str::slug(env('APP_NAME', 'laravel'), '_').'_session'
),
/*
|--------------------------------------------------------------------------
| Session Cookie Path
|--------------------------------------------------------------------------
|
| The session cookie path determines the path for which the cookie will
| be regarded as available. Typically, this will be the root path of
| your application but you are free to change this when necessary.
|
*/
'path' => '/',
/*
|--------------------------------------------------------------------------
| Session Cookie Domain
|--------------------------------------------------------------------------
|
| Here you may change the domain of the cookie used to identify a session
| in your application. This will determine which domains the cookie is
| available to in your application. A sensible default has been set.
|
*/
'domain' => env('SESSION_DOMAIN', null),
/*
|--------------------------------------------------------------------------
| HTTPS Only Cookies
|--------------------------------------------------------------------------
|
| By setting this option to true, session cookies will only be sent back
| to the server if the browser has a HTTPS connection. This will keep
| the cookie from being sent to you when it can't be done securely.
|
*/
'secure' => env('SESSION_SECURE_COOKIE'),
/*
|--------------------------------------------------------------------------
| HTTP Access Only
|--------------------------------------------------------------------------
|
| Setting this value to true will prevent JavaScript from accessing the
| value of the cookie and the cookie will only be accessible through
| the HTTP protocol. You are free to modify this option if needed.
|
*/
'http_only' => true,
/*
|--------------------------------------------------------------------------
| Same-Site Cookies
|--------------------------------------------------------------------------
|
| This option determines how your cookies behave when cross-site requests
| take place, and can be used to mitigate CSRF attacks. By default, we
| will set this value to "lax" since this is a secure default value.
|
| Supported: "lax", "strict", "none", null
|
*/
'same_site' => 'lax',
];
更新:
public function update(Request $request)
{
$homie = HomeMainPage::where('id',1)->update([
'header' => $request->header,
'para' => $request->para,
'button' => $request->button,
'action' => $request->action,
]);
$request->session()->flash("success", "Hello, I am here");
return redirect()->back();
}
英文:
I'm using Laravel 8 for my project and for updating a form and there fore in the Controller, I added this for showing success message:
Session::flash('success','asdasd');
But this does not show any data in the blade:
@if(\Session::has('success'))
<div class="alert alert-success" role="alert">
{{ \Session::get('success') }}
</div>
@endif
But when I use Session put, it shows the alert box properly:
Session::put('success','asdasd');
However in kernel.php, I have already determined this:
protected $middleware = [
\Illuminate\Session\Middleware\StartSession::class,
...
So what's going wrong here? How can I submit the session for only one time using session->flash?
Here is the full code of session.php:
<?php
use Illuminate\Support\Str;
return [
/*
|--------------------------------------------------------------------------
| Default Session Driver
|--------------------------------------------------------------------------
|
| This option controls the default session "driver" that will be used on
| requests. By default, we will use the lightweight native driver but
| you may specify any of the other wonderful drivers provided here.
|
| Supported: "file", "cookie", "database", "apc",
| "memcached", "redis", "dynamodb", "array"
|
*/
'driver' => env('SESSION_DRIVER', 'file'),
/*
|--------------------------------------------------------------------------
| Session Lifetime
|--------------------------------------------------------------------------
|
| Here you may specify the number of minutes that you wish the session
| to be allowed to remain idle before it expires. If you want them
| to immediately expire on the browser closing, set that option.
|
*/
'lifetime' => env('SESSION_LIFETIME', 120),
'expire_on_close' => false,
/*
|--------------------------------------------------------------------------
| Session Encryption
|--------------------------------------------------------------------------
|
| This option allows you to easily specify that all of your session data
| should be encrypted before it is stored. All encryption will be run
| automatically by Laravel and you can use the Session like normal.
|
*/
'encrypt' => false,
/*
|--------------------------------------------------------------------------
| Session File Location
|--------------------------------------------------------------------------
|
| When using the native session driver, we need a location where session
| files may be stored. A default has been set for you but a different
| location may be specified. This is only needed for file sessions.
|
*/
'files' => storage_path('framework/sessions'),
/*
|--------------------------------------------------------------------------
| Session Database Connection
|--------------------------------------------------------------------------
|
| When using the "database" or "redis" session drivers, you may specify a
| connection that should be used to manage these sessions. This should
| correspond to a connection in your database configuration options.
|
*/
'connection' => env('SESSION_CONNECTION', null),
/*
|--------------------------------------------------------------------------
| Session Database Table
|--------------------------------------------------------------------------
|
| When using the "database" session driver, you may specify the table we
| should use to manage the sessions. Of course, a sensible default is
| provided for you; however, you are free to change this as needed.
|
*/
'table' => 'sessions',
/*
|--------------------------------------------------------------------------
| Session Cache Store
|--------------------------------------------------------------------------
|
| While using one of the framework's cache driven session backends you may
| list a cache store that should be used for these sessions. This value
| must match with one of the application's configured cache "stores".
|
| Affects: "apc", "dynamodb", "memcached", "redis"
|
*/
'store' => env('SESSION_STORE', null),
/*
|--------------------------------------------------------------------------
| Session Sweeping Lottery
|--------------------------------------------------------------------------
|
| Some session drivers must manually sweep their storage location to get
| rid of old sessions from storage. Here are the chances that it will
| happen on a given request. By default, the odds are 2 out of 100.
|
*/
'lottery' => [2, 100],
/*
|--------------------------------------------------------------------------
| Session Cookie Name
|--------------------------------------------------------------------------
|
| Here you may change the name of the cookie used to identify a session
| instance by ID. The name specified here will get used every time a
| new session cookie is created by the framework for every driver.
|
*/
'cookie' => env(
'SESSION_COOKIE',
Str::slug(env('APP_NAME', 'laravel'), '_').'_session'
),
/*
|--------------------------------------------------------------------------
| Session Cookie Path
|--------------------------------------------------------------------------
|
| The session cookie path determines the path for which the cookie will
| be regarded as available. Typically, this will be the root path of
| your application but you are free to change this when necessary.
|
*/
'path' => '/',
/*
|--------------------------------------------------------------------------
| Session Cookie Domain
|--------------------------------------------------------------------------
|
| Here you may change the domain of the cookie used to identify a session
| in your application. This will determine which domains the cookie is
| available to in your application. A sensible default has been set.
|
*/
'domain' => env('SESSION_DOMAIN', null),
/*
|--------------------------------------------------------------------------
| HTTPS Only Cookies
|--------------------------------------------------------------------------
|
| By setting this option to true, session cookies will only be sent back
| to the server if the browser has a HTTPS connection. This will keep
| the cookie from being sent to you when it can't be done securely.
|
*/
'secure' => env('SESSION_SECURE_COOKIE'),
/*
|--------------------------------------------------------------------------
| HTTP Access Only
|--------------------------------------------------------------------------
|
| Setting this value to true will prevent JavaScript from accessing the
| value of the cookie and the cookie will only be accessible through
| the HTTP protocol. You are free to modify this option if needed.
|
*/
'http_only' => true,
/*
|--------------------------------------------------------------------------
| Same-Site Cookies
|--------------------------------------------------------------------------
|
| This option determines how your cookies behave when cross-site requests
| take place, and can be used to mitigate CSRF attacks. By default, we
| will set this value to "lax" since this is a secure default value.
|
| Supported: "lax", "strict", "none", null
|
*/
'same_site' => 'lax',
];
UPDATE:
public function update(Request $request)
{
$homie = HomeMainPage::where('id',1)->update([
'header' => $request->header,
'para' => $request->para,
'button' => $request->button,
'action' => $request->action,
]);
$request->session()->flash("success", "Hello, I am here");
return redirect()->back();
}
答案1
得分: 1
确保“StartSession”中间件仅在您的路由中使用一次。
在您的问题中,您提到“StartSession”中间件位于全局的$middleware堆栈中。然而,默认情况下,Laravel已将“StartSession”中间件包含在“web”中间件组中。
如果您将“StartSession”中间件添加到全局堆栈中,但没有从“web”中间件组中删除中间件,这意味着使用您的“web”中间件组的任何路由都将运行“StartSession”中间件两次。如果“StartSession”中间件运行两次,您的闪存数据将永远无法传递到下一个请求。
在“StartSession”中间件的“after-middleware”部分,会保存并写入存储会话数据。保存会话数据的一部分是使闪存数据变老。这将闪存数据从“_flash.new”(在此请求中闪存的数据)移动到“_flash.old”(在下一个请求中可用的闪存数据),然后清空“_flash.new”。接下来的请求通过查看“_flash.old”来访问闪存数据。
然而,如果“StartSession”中间件在同一请求中运行两次,它将保存两次会话数据,进而使闪存数据变老两次。因此,在第一次保存时,它会将新的闪存数据从“_flash.new”移动到“_flash.old”,并清空“_flash.new”。然而,在第二次保存时,它会再次执行此操作,但由于“_flash.new”已经被清空,它将将现在为空的“_flash.new”复制到“_flash.old”,而下一个请求中将不存在闪存数据。
英文:
TLDR:
Ensure that the StartSession middleware is only used once for your routes.
Details:
In your question, you state that the StartSession middleware is in your global $middleware stack. However, by default, Laravel already includes the StartSession middleware in the web middleware group.
If you've added the StartSession middleware to the global stack without removing the middleware from the web middleware group, that means any routes using your web middleware group will have the StartSession middleware run twice. If the StartSession middleware is run twice, your flash data will never make it to the next request.
In the "after-middleware" part of the StartSession middleware, the session data is saved and written to storage. Part of saving the session data is aging the flash data. This moves the flash data from _flash.new (data flashed in this request) into _flash.old (flash data available in next request), and then empties out _flash.new. The next request then accesses the flash data by looking at _flash.old.
However, if the StartSession middleware is being run twice in the same request, it will end up saving the session data twice, and in turn age the flash data twice. So, on the first save it will move the new flash data from _flash.new into _flash.old and clear out _flash.new. However, in the second save, it will do this again, but since _flash.new has already been emptied, it will copy the now empty _flash.new into _flash.old, and the flash data will not exist in the next request.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论