Home Explore Help
Sign In
waibao
/
NN2026012201
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 9c14a26e00
Branches Tags
NN2026012201
/
app
/
Http
/
Middleware
/
WebLogin.php

WebLogin.php 2.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081 
  1. <?php
    2. 

  2. 

  3. 

  4. namespace App\Http\Middleware;
    5. 

  5. 

  6. use App\Helpers\Jwt;
    7. 

  7. use App\Services\RedisService;
    8. 

  8. use Closure;
    9. 

  9. use Illuminate\Auth\Middleware\Authenticate as Middleware;
    10. 

  10. 

  11. class WebLogin extends Middleware
    12. 

  12. {
    13. 

  13.     /**
    14. 

  14.      * 执行句柄
    15. 

  15.      * @param \Illuminate\Http\Request $request
    16. 

  16.      * @param Closure $next
    17. 

  17.      * @param mixed ...$guards
    18. 

  18.      * @return mixed
    19. 

  19.      * @throws \Illuminate\Auth\AuthenticationException
    20. 

  20.      * @since 2020/8/31
    21. 

  21.      * @author wesmiler
    22. 

  22.      */
    23. 

  23.     public function handle($request, Closure $next, ...$guards)
    24. 

  24.     {
    25. 

  25.         $action = app('request')->route()->getAction();
    26. 

  26.         $controller = class_basename($action['controller']);
    27. 

  27.         list($controller, $action) = explode('@', $controller);
    28. 

  28.         $noLoginActs = ['LoginController','UploadController','IndexController'];
    29. 

  29.         $token = $request->headers->get('Authorization');
    30. 

  30.         if (strpos($token, 'Bearer ') !== false) {
    31. 

  31.             $token = str_replace("Bearer ", null, $token);
    32. 

  32.             $token = trim($token);
    33. 

  33.             if($token){
    34. 

  34.                 // JWT解密token
    35. 

  35.                 $jwt = new Jwt('jwt_rship_app');
    36. 

  36.                 $userId = $jwt->verifyToken($token);
    37. 

  37.             }else{
    38. 

  38.                 return response()->json(message(1035, false, [], 403))->setEncodingOptions(256);
    39. 

  39.             }
    40. 

  40. 

  41.         } else {
    42. 

  42.             $userId = 0;
    43. 

  43.         }
    44. 

  44. 

  45.         // 接口验证
    46. 

  46.         $url = $request->get('s');
    47. 

  47.         $url = empty($url)? $request->path() : $url;
    48. 

  48.         $params = $request->except('s');
    49. 

  49.         $sign = $request->header('sign');
    50. 

  50.         if(empty($sign)){
    51. 

  51.             $sign = isset($params['sign'])? $params['sign'] : '';
    52. 

  52.         }
    53. 

  53. 

  54.         if($action != 'setAvatar'){
    55. 

  55.             $system = isset($params['system']) ? $params['system'] : '';
    56. 

  56.             $system = $system && !is_array($system)? json_decode($system,true) : $system;
    57. 

  57.             $ctime = isset($system['sys_time'])? $system['sys_time'] : 0;
    58. 

  58.             $uuid = isset($system['uuid'])? $system['uuid'] : 0;
    59. 

  59.             $url = '/'.ltrim($url,'/');
    60. 

  60.             $checkSign = getSign("{$url}&{$uuid}&{$ctime}");
    61. 

  61.             if ($ctime < time() - 30 && !in_array($controller, $noLoginActs)) {
    62. 

  62.                 return response()->json(message(1012, false, null))->setEncodingOptions(256);
    63. 

  63.             }
    64. 

  64. 

  65.             if ((empty($sign) || $sign != $checkSign) && !in_array($controller, $noLoginActs)) {
    66. 

  66.                 return response()->json(message(1005, false, null))->setEncodingOptions(256);
    67. 

  67.             }
    68. 

  68.         }
    69. 

  69. 

  70.         // 接口加密验证
    71. 

  71.         $userInfo = RedisService::get("auths:info:{$userId}");
    72. 

  72.         if (($userId<=0 || empty($userInfo))&& !in_array($controller, $noLoginActs)) {
    73. 

  73.             // 在这里可以定制你想要的返回格式, 亦或者是 JSON 编码格式
    74. 

  74.             return response()->json(message(1035, false, [], 403))->setEncodingOptions(256);
    75. 

  75.         }
    76. 

  76. 

  77.         $request->headers->set('token_uid' , $userId);
    78. 

  78.         //如果已登录则执行正常的请求
    79. 

  79.         return $next($request);
    80. 

  80.     }
    81. 

  81. }
    82.