Strona główna Odkrywaj Pomoc
Zaloguj się
waibao
/
NN2022081301
2
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Gałąź: master
Gałęzie Tagi
NN2022081301
/
application
/
http
/
middleware
/
CasbinAuthMiddleware.php

CasbinAuthMiddleware.php 2.5 KB
Bezpośredni odnośnik Historia Czysty

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. <?php
    2. 

  2. 

  3. namespace app\http\middleware;
    4. 

  4. 

  5. 

  6. use Lettered\Support\Auth as IAuth;
    7. 

  7. use Lettered\Support\Exceptions\ForbiddenException;
    8. 

  8. use thans\jwt\facade\JWTAuth;
    9. 

  9. use CasbinAdapter\Think\Facades\Casbin;
    10. 

  10. 

  11. 

  12. /**
    13. 

  13.  * 操作权限验证
    14. 

  14.  * Class CasbinAuthMiddleware
    15. 

  15.  * @package app\http\middleware
    16. 

  16.  */
    17. 

  17. class CasbinAuthMiddleware
    18. 

  18. {
    19. 

  19.     /**
    20. 

  20.      * @var IAuth
    21. 

  21.      */
    22. 

  22.     protected $auth;
    23. 

  23. 

  24.     /**
    25. 

  25.      * CasbinAuthMiddleware constructor.
    26. 

  26.      * @param IAuth $auth
    27. 

  27.      */
    28. 

  28.     public function __construct(IAuth $auth)
    29. 

  29.     {
    30. 

  30.         // 这里要做下来源 是admin 还是agent
    31. 

  31.         $this->auth = $auth;
    32. 

  32.     }
    33. 

  33. 

  34.     /**
    35. 

  35.      * Casbin 授权验证
    36. 

  36.      *
    37. 

  37.      * @author 许祖兴 < zuxing.xu@lettered.cn>
    38. 

  38.      * @date 2020/3/21 20:28
    39. 

  39.      *
    40. 

  40.      * @param $request
    41. 

  41.      * @param \Closure $next
    42. 

  42.      * @return mixed
    43. 

  43.      * @throws ForbiddenException
    44. 

  44.      * @throws \Casbin\Exceptions\CasbinException
    45. 

  45.      * @throws \Lettered\Support\Exceptions\FailedException
    46. 

  46.      * @throws \think\db\exception\DataNotFoundException
    47. 

  47.      * @throws \think\db\exception\ModelNotFoundException
    48. 

  48.      * @throws \think\exception\DbException
    49. 

  49.      */
    50. 

  50.     public function handle($request, \Closure $next)
    51. 

  51.     {
    52. 

  52.         // 操作权限验证 v0  v1  v2
    53. 

  53.         //           Uid Uri Method
    54. 

  54.         // 当前用户
    55. 

  55.         $user = $this->auth->user();
    56. 

  56. 

  57.         // 检查忽略项
    58. 

  58.         if (in_array($request->baseUrl() . '^' . strtolower($request->method()), config('casbin.ignore.policy'))
    59. 

  59.             || in_array($user->id, str2arr(config('casbin.ignore.users_idx')))) {
    60. 

  60.         } elseif (!Casbin::enforce('user_id_' . $user->id, $request->baseUrl(), strtolower($request->method()))) {
    61. 

  61.             throw new ForbiddenException([
    62. 

  62.                 'errmsg' => 'Unauthorized: 您无权操作!'
    63. 

  63.             ]);
    64. 

  64.         };
    65. 

  65. 

  66.         // 操作记录
    67. 

  67.         $log =[
    68. 

  68.             'user_id' => $user->id,
    69. 

  69.             'route' => $request->baseUrl(),
    70. 

  70.             'operate'  => strtolower($request->method()),
    71. 

  71.             'query' => enjson($request->param()),
    72. 

  72.             'ip' => $request->ip(),
    73. 

  73.             'os' => get_user_agent(),
    74. 

  74.             'browser' => get_user_agent('br')
    75. 

  75.         ];
    76. 

  76. 

  77.         // 系统日志记录
    78. 

  78.         $result = model('OperationLog')::where($log)->find();
    79. 

  79. 

  80.         if (!$result) {
    81. 

  81.             model('OperationLog')::create($log);
    82. 

  82.         } else {
    83. 

  83.             $log['id'] = $result->id;
    84. 

  84.             $log['count'] = $result->count+1;
    85. 

  85.             model('OperationLog')::update($log);
    86. 

  86.         }
    87. 

  87. 

  88.         return $next($request);
    89. 

  89.     }
    90. 

  90. 

  91. }
    92.