Strona główna Odkrywaj Pomoc
Zaloguj się
waibao
/
NN2025031206
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: 3026faa8d4
Gałęzie Tagi
NN2025031206
/
app
/
Http
/
Middleware
/
WebLogin.php

WebLogin.php 2.8 KB
Historia Czysty

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. <?php
    2. 

  2. 

  3. 

  4. namespace App\Http\Middleware;
    5. 

  5. 

  6. use App\Helpers\Jwt;
    7. 

  7. use App\Services\ConfigService;
    8. 

  8. use Closure;
    9. 

  9. use Illuminate\Auth\Middleware\Authenticate as Middleware;
    10. 

  10. 

  11. class WebLogin extends Middleware
    12. 

  12. {
    13. 

  13.     /**
    14. 

  14.      * 执行句柄
    15. 

  15.      * @param \Illuminate\Http\Request $request
    16. 

  16.      * @param Closure $next
    17. 

  17.      * @param mixed ...$guards
    18. 

  18.      * @return mixed
    19. 

  19.      * @throws \Illuminate\Auth\AuthenticationException
    20. 

  20.      * @since 2020/8/31
    21. 

  21.      * @author wesmiler
    22. 

  22.      */
    23. 

  23.     public function handle($request, Closure $next, ...$guards)
    24. 

  24.     {
    25. 

  25.         $action = app('request')->route()->getAction();
    26. 

  26.         $controller = class_basename($action['controller']);
    27. 

  27.         list($controller, $action) = explode('@', $controller);
    28. 

  28.         $noLoginActs = ['LoginController','GoodsController','IndexController','UploadController'];
    29. 

  29.         $token = $request->headers->get('Authorization');
    30. 

  30.         if (strpos($token, 'Bearer ') !== false) {
    31. 

  31.             $token = str_replace("Bearer ", null, $token);
    32. 

  32.             $token = trim($token);
    33. 

  33.             if($token){
    34. 

  34.                 // JWT解密token
    35. 

  35.                 $jwt = new Jwt('jwt_yd_app');
    36. 

  36.                 $userId = $jwt->verifyToken($token);
    37. 

  37.             }else{
    38. 

  38.                 return response()->json(message(1035, false, [], 403))->setEncodingOptions(256);
    39. 

  39.             }
    40. 

  40. 

  41.         } else {
    42. 

  42.             $userId = 0;
    43. 

  43.         }
    44. 

  44. 

  45.         // 接口验证
    46. 

  46.         $url = $request->get('s');
    47. 

  47.         $url = empty($url)? $request->path() : $url;
    48. 

  48.         $params = $request->except('s');
    49. 

  49.         $sign = $request->header('sign');
    50. 

  50.         if(empty($sign)){
    51. 

  51.             $sign = isset($params['sign'])? $params['sign'] : '';
    52. 

  52.         }
    53. 

  53. 

  54.         $system = isset($params['system']) ? $params['system'] : '';
    55. 

  55.         $system = $system && !is_array($system)? json_decode($system,true) : $system;
    56. 

  56.         $ctime = isset($system['sys_time'])? $system['sys_time'] : 0;
    57. 

  57.         $uuid = isset($system['uuid'])? $system['uuid'] : 0;
    58. 

  58.         $url = '/'.ltrim($url,'/');
    59. 

  59.         $checkSign = getSign("{$url}&{$uuid}&{$ctime}");
    60. 

  60.         if ($ctime < time() - 30) {
    61. 

  61.             return response()->json(message(1012, false, null))->setEncodingOptions(256);
    62. 

  62.         }
    63. 

  63. 

  64.         var_dump("{$url}&{$uuid}&{$ctime}");
    65. 

  65.         var_dump($sign,$checkSign);
    66. 

  66.         if ((empty($sign) || $sign != $checkSign) && !in_array($controller, $noLoginActs)) {
    67. 

  67.             return response()->json(message(1036, false, null))->setEncodingOptions(256);
    68. 

  68.         }
    69. 

  69. 

  70.         // 接口加密验证
    71. 

  71.         if ($userId<=0 && !in_array($controller, $noLoginActs)) {
    72. 

  72.             // 在这里可以定制你想要的返回格式, 亦或者是 JSON 编码格式
    73. 

  73.             return response()->json(message(1035, false, [], 403))->setEncodingOptions(256);
    74. 

  74.         }
    75. 

  75. 

  76.         $request->headers->set('token_uid' , $userId);
    77. 

  77.         //如果已登录则执行正常的请求
    78. 

  78.         return $next($request);
    79. 

  79.     }
    80. 

  80. }
    81.