When trying to check a URL with the middleware the error ReflectionException: Class signedurl does not exist is thrown.

This commit laravel/framework@06303d9#diff-66c4eb54eb5af7de5e493b416e13991d changed the registering of middleware method name in the router from middleware() to aliasMiddleware().

I fixed it by manually registering the signedurl middleware in app/Http/Kernel.php.

Is there a way to view all URLs that are currently signed?

The dependency named league/url is not supported after few days and has been abandoned

so i think we should use league/uri instead, isn't it?

Do you have time or I should send PR?

Hi, I'm still learning how to use Laravel, so it's possible I've got something wrong.

I've followed the installation and configuration instructions, and I've been over them several times to check that everything is correct.

In: app/Http/Controllers/VenuesManageController.php I have:

namespace App\Http\Controllers;

use Illuminate\Http\Request;

use App\Http\Requests;
use App\Http\Controllers\Controller;

use App\Exceptions\Handler;

use UrlSigner;

use App\Venues;

class VenuesManageController extends Controller
{

	public function get_url()
	{
		echo UrlSigner::sign('https://myapp.com/user/1/unsubscribe', 1);
	}

}

But I get an error:

FatalErrorException

syntax error, unexpected ':', expecting ';' or '{'
in UrlSigner.php (line 17)

What's wrong?

Dear Spatie,

We are using your nice URL signer package!
But everytime i perform a composer update it returns that the Package league/url is abandoned.
Just wanted to report this in case you guys are not aware of this.

While I am trying to install in laravel 5.5 the requirements fails:

spatie/laravel-url-signer 2.3.0 requires illuminate/http ~5.8.0 -> satisfiable by illuminate/http[v5.8.0, v5.8.11, v5.8.12, v5.8.14, v5.8.15, v5.8.17, v5.8.18, v5.8.19, v5.8.2, v5.8.20, v5.8.22, v5.8.24, v5.8.27, v5.8.28, v5.8.29, v5.8.3, v5.8.30, v5.8.31, v5.8.4, v5.8.8, v5.8.9].

but I suppose the package should be available up to Laravel 5.6

Hello, I just used your signed url package and it is working fine with normal urls but a url with additional parameters is generating 403 error. I'm using Laravel 5.4 and my code is as follows:

//This is my Route
Route::get('/get-user', ['middleware' => 'signedurl', 'uses' => 'HomeController@getUser']);

//This is my function
public function getUser(Request $request)
{
print_r($request->all());
}

//This is my url generated by this package
http://localhost/MYPROJECT/get-user?expires=1557553652&signature=0bd90275ad12f422dc13b167cb75a829&zip=90038&isTomorrow=1&timeslot=d86c1db3-96ae-497d-bc96-2426adg4g43

If I run above generated url in browser, it will throw 403 error but if I'll run this url only with expires and signature, it will work fine. I want signed url working with additional parameters. Please help me out! Thanks in advance.. :-)

Is it possible to make the URL invalid?

Thanks for reply.

I ran into an issue where I was signing a URL with several query string parameters. For example: https://www.example.com/posts?date_start=2019-01-01&date_end=2019-03-01 Note that the parameter order is date_start followed by date_end. The URL is signed without any issues but then in the ValidateSignature middleware it uses $request->fullUrl() to get the URL but the issue is that it will return the URL with the query string parameters sorted alphabetically which in this case would be a URL like https://example.com/posts?date_end=2019-03-01&date_start=2019-01-01 and since the URL is different it fails to validate the signature.

For reference, Symfony\Component\HttpFoundation\Request::normalizeQueryString() is where it sorts the query string keys

In my middleware I had used URL::to($request->getRequestUri()) to get the URL without sorting the query string parameters. There might be a more elegant way to get the un-modified URL but that worked for me.

Update I ended up using $url = $request->getSchemeAndHttpHost().$request->getRequestUri(); to get the URL

how to use this code to my controller?
UrlSigner::sign('https://myapp.com/protected-route', 30);
i want to sign url and return signed url not working

When installing the Laravel URL Signer component I get the message "Package league/url is abandoned, you should avoid using it. Use league/uri instead."

Do you have plans to update this dependency? I briefly tried to Install League/URI, but that package has further dependencies and I'm not sure if those would pose any downstream problems with Laravel URL Signer.

Thanks ..
-martin.

Would love to use this but working with Lumen at the moment.

Hello,

Your open source packages are great !

I'm considering using this one for a file-sharing app (with private share links of course !). I have not worked at lot with secure urls and I'm not sure if this library will be up to the task.

It would be nice to have a list with some projects that use it and are online (assuming there are any 😅 ) so I could see what was done with it.

Also, I see the name MD5UrlSigner. In my head MD5 != secure. Should I use another hashing function to make it more secure ?

laravel-url-signer is working perfectly fine on my local dev machine. When accessing url-signer on production i get

ErrorException in BaseUrlSigner.php line 44: The signature key is empty (View: plan.blade.php)

signature key is set in config/laravel-url-signer.php:
'signatureKey' => config('app.key'),

app.key is set:
'key' => env('APP_KEY'),

APP_KEY is set in .env:
APP_KEY=base64:pCeC0it .... .... ....

Hi,

This package is working locally, but as soon as i deploy to production any links generated by this package are returning that they are invalid.

Example link: https://example.com/approve/8?expires=1519637818&signature={hash}

If you check that timestamp, you will see it is for 7 days time, however it returns false on the validate method.

After modifying the source files to do a check, it's this code which is failing:

        if (!$this->hasValidSignature($url)) {
            return false;
        }

The site is working locally.. and my .env file does have an APP_KEY - help.

Hi,

Please support Lumen. Class Illuminate\Routing\Router does not exist throws.

Hi i've got this error where trying to validate url through UrlSigner::validate("url...")

Non-static method Spatie\UrlSigner\UrlSigner::validate() cannot be called statically, assuming $this from incompatible context

Any help would be greatly appreciated, Thanks

Can make the url expired just by simply call a function? ,
Right now from what i see , all the url is expired based on time (hours/days)
I want simply make the url expired by simply call a function ,
Any solution to my problem?