3 anni fa · d888e4d798
--- a/app/Http/Controllers/Admins/AdminAreaController.php
+++ b/app/Http/Controllers/Admins/AdminAreaController.php
@@ -28,8 +28,12 @@ class AdminAreaController extends Controller
 
				         if(empty($user)){
			
 
				             return showJsonErr('当前用户状态异常或无此用户');
			
 
				         }
			
 
				+        if(isset($param['s'])){
			
 
				+            unset($param['s']);
			
 
				+        }
			
 
				         $adminarea=AdminArea::whereAdminId($param['admin_id'])->first();
			
 
				         if(empty($adminarea)){
			
 
				+
			
 
				             $res=AdminArea::insert($param);
			
 
				         }else{
			
 
				             $res=AdminArea::whereId($adminarea->id)->update($param);
			
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -16,6 +16,7 @@ use App\Http\Middleware\AuthPermission;
 
				 use App\Http\Middleware\AuthToken;
			
 
				 use App\Http\Middleware\AuthTokenByMaybe;
			
 
				 use App\Http\Middleware\AuthTokenByMust;
			
 
				+use App\Http\Middleware\EnableCrossRequestMiddleware;
			
 
				 use App\Http\Middleware\MustLevelMiddleware;
			
 
				 use App\Http\Middleware\MustSystemManager;
			
 
				 use App\Http\Middleware\RefreshToken;
			
@@ -41,6 +42,7 @@ class Kernel extends HttpKernel
 
				         \Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
			
 
				         \App\Http\Middleware\TrustProxies::class,
			
 
				         // \App\Http\Middleware\CressHttp::class,
			
 
				+        EnableCrossRequestMiddleware::class,
			
 
				         RequestLogModdleware::class,
			
 
				         SwitchServiceMiddleware::class
			
 
				     ];
			
@@ -59,6 +61,7 @@ class Kernel extends HttpKernel
 
				             \Illuminate\View\Middleware\ShareErrorsFromSession::class,
			
 
				             \App\Http\Middleware\VerifyCsrfToken::class,
			
 
				             \Illuminate\Routing\Middleware\SubstituteBindings::class,
			
 
				+            EnableCrossRequestMiddleware::class,
			
 
				         ],
			
 
				 
			
 
				         'api' => [
			
--- a/app/Http/Middleware/EnableCrossRequestMiddleware.php
+++ b/app/Http/Middleware/EnableCrossRequestMiddleware.php
@@ -0,0 +1,26 @@
 
				+<?php
			
 
				+namespace App\Http\Middleware;
			
 
				+use Closure;
			
 
				+class EnableCrossRequestMiddleware{
			
 
				+    /**
			
 
				+     * @param $request
			
 
				+     * @param Closure $next
			
 
				+     * @return mixed
			
 
				+     */
			
 
				+    public function handle($request, Closure $next)
			
 
				+    {
			
 
				+        $response = $next($request);
			
 
				+        $origin = $request->server('HTTP_ORIGIN') ? $request->server('HTTP_ORIGIN') : '';
			
 
				+        $allow_origin = [
			
 
				+            'http://test.com',//允许访问
			
 
				+        ];
			
 
				+//        if (in_array($origin, $allow_origin)) {
			
 
				+        $response->header('Access-Control-Allow-Origin', '*');
			
 
				+        $response->header('Access-Control-Allow-Headers', 'Origin, Content-Type, Cookie, X-CSRF-TOKEN, Accept, Authorization, accessToken, X-XSRF-TOKEN');
			
 
				+        $response->header('Access-Control-Expose-Headers', 'Authorization, authenticated');
			
 
				+        $response->header('Access-Control-Allow-Methods', 'GET, POST, PATCH, PUT, OPTIONS');
			
 
				+        $response->header('Access-Control-Allow-Credentials', 'true');
			
 
				+//        }
			
 
				+        return $response;
			
 
				+    }
			
 
				+}