Laravel 5.5 升級到 5.5.42 後遇到的 Cookie 序列化問題
最近手殘升級了項目裏 Laravel 的小版本號(v5.5.39 => v5.5.45),這不升級則已,一升級就出了問題!php
Sentry 平臺上提示錯誤:openssl_encrypt() expects parameter 1 to be string, array given,具體報錯記錄以下:laravel
ErrorException
openssl_encrypt() expects parameter 1 to be string, array given
vendor/laravel/framework/src/Illuminate/Encryption/Encrypter.php in handleError at line 91
vendor/sentry/sentry/lib/Raven/Breadcrumbs/ErrorHandler.php in handleError at line 34
vendor/sentry/sentry/lib/Raven/Breadcrumbs/ErrorHandler.php in openssl_encrypt
vendor/laravel/framework/src/Illuminate/Encryption/Encrypter.php in encrypt at line 91
vendor/laravel/framework/src/Illuminate/Cookie/Middleware/EncryptCookies.php in encrypt at line 139
vendor/laravel/framework/src/Illuminate/Cookie/Middleware/EncryptCookies.php in handle at line 66
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in Illuminate\Pipeline\{closure} at line 149
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 53
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in then at line 102
vendor/laravel/framework/src/Illuminate/Routing/Router.php in runRouteWithinStack at line 660
vendor/laravel/framework/src/Illuminate/Routing/Router.php in runRoute at line 635
vendor/laravel/framework/src/Illuminate/Routing/Router.php in dispatchToRoute at line 601
vendor/laravel/framework/src/Illuminate/Routing/Router.php in dispatch at line 590
vendor/laravel/framework/src/Illuminate/Foundation/Http/Kernel.php in Illuminate\Foundation\Http\{closure} at line 176
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 30
vendor/barryvdh/laravel-debugbar/src/Middleware/InjectDebugbar.php in handle at line 58
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in Illuminate\Pipeline\{closure} at line 149
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 53
vendor/fideloper/proxy/src/TrustProxies.php in handle at line 56
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in Illuminate\Pipeline\{closure} at line 149
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 53
vendor/laravel/framework/src/Illuminate/Foundation/Http/Middleware/TransformsRequest.php in handle at line 30
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in Illuminate\Pipeline\{closure} at line 149
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 53
vendor/laravel/framework/src/Illuminate/Foundation/Http/Middleware/TransformsRequest.php in handle at line 30
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in Illuminate\Pipeline\{closure} at line 149
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 53
vendor/laravel/framework/src/Illuminate/Foundation/Http/Middleware/ValidatePostSize.php in handle at line 27
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in Illuminate\Pipeline\{closure} at line 149
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 53
vendor/laravel/framework/src/Illuminate/Foundation/Http/Middleware/CheckForMaintenanceMode.php in handle at line 46
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in Illuminate\Pipeline\{closure} at line 149
vendor/laravel/framework/src/Illuminate/Routing/Pipeline.php in Illuminate\Routing\{closure} at line 53
vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php in then at line 102
vendor/laravel/framework/src/Illuminate/Foundation/Http/Kernel.php in sendRequestThroughRouter at line 151
vendor/laravel/framework/src/Illuminate/Foundation/Http/Kernel.php in handle at line 116
public/index.php at line 55
仔細查看上面的異常堆棧記錄,而且進行斷點調試,最終肯定是因爲 Laravel 5.5 升級小版本後 Cookie 加密的邏輯變更所致使的報錯。json
查閱 Laravel 官方文檔(Laravel 5.5 Upgrade Guide)後得知,Laravel 新版爲了防止 PHP 對象的序列化/反序列化漏洞被利用,再也不對 Cookie 值進行自動的序列化和反序列化處理。微信
舉個栗子:cookie
\Cookie::queue('user', ['id' => 1, 'name' => 'admin'], 720, '/')
Laravel 更新到 v5.5.42 後,由於 Laravel 再也不自動對 Cookie 值 ['id' => 1, 'name' => 'admin'] 進行序列化處理,而 openssl_encrypt ( string $data ... ) 只能加密字符串數據,這個時候程序就會拋出錯誤:openssl_encrypt() expects parameter 1 to be string, array given。ide
解決方法:函數
- 新版裏面在中間件 AppHttpMiddlewareEncryptCookies 新增靜態屬性 $serialize,當設置爲 true 時可開啓 Cookie 值的自動序列化和反序列化處理。
/** * Indicates if cookies should be serialized. * * @var bool */ protected static $serialize = true;
- 【推薦】將 Cookie 值使用 JSON 函數編碼成字符串後再進行存儲(獲取 Cookie 值後需調用 JSON 函數進行解碼)。
\Cookie::queue('user', json_encode(['id' => 1, 'name' => 'admin']), 720, '/');
-EOF-學習
首發於知乎專欄《PHP和Laravel學習》:https://zhuanlan.zhihu.com/p/...ui
掃碼關注《PHP和Laravel學習》微信公衆號:編碼
相關文章
- 1. 升級到Xcode8遇到的問題
- 2. mysql5.1.37升級到5.5.3遇到的問題
- 3. TSL1.0升級到TSL1.2遇到的問題
- 4. hibernate3.2.0升級到hibernate3.6.10遇到的問題
- 5. jdk1.7升級到1.8遇到的問題
- 6. ubuntu16.04升級到18.04,遇到的問題
- 7. 升級Xcode10 遇到問題。
- 8. mysql 5.5.42升級到5.6.24步驟
- 9. 從vSphere 5.5升級到6之2-升級vCenter Server 5.5到6.0
- 10. Gradle版本升級到3.0後遇到的問題
- 更多相關文章...
- • Rust 輸出到命令行 - RUST 教程
- • 數據庫涉及到哪些技術? - MySQL教程
- • PHP Ajax 跨域問題最佳解決方案
- • 算法總結-歸併排序
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
- 1. eclipse設置粘貼字符串自動轉義
- 2. android客戶端學習-啓動模擬器異常Emulator: failed to initialize HAX: Invalid argument
- 3. android.view.InflateException: class com.jpardogo.listbuddies.lib.views.ListBuddiesLayout問題
- 4. MYSQL8.0數據庫恢復 MYSQL8.0ibd數據恢復 MYSQL8.0恢復數據庫
- 5. 你本是一個肉體,是什麼驅使你前行【1】
- 6. 2018.04.30
- 7. 2018.04.30
- 8. 你本是一個肉體,是什麼驅使你前行【3】
- 9. 你本是一個肉體,是什麼驅使你前行【2】
- 10. 【資訊】LocalBitcoins達到每週交易比特幣的7年低點
歡迎關注本站公眾號,獲取更多信息
