100 lines
3.4 KiB
PHP
100 lines
3.4 KiB
PHP
<?php
|
||
// +----------------------------------------------------------------------
|
||
// | likeshop100%开源免费商用商城系统
|
||
// +----------------------------------------------------------------------
|
||
// | 欢迎阅读学习系统程序代码,建议反馈是我们前进的动力
|
||
// | 开源版本可自由商用,可去除界面版权logo
|
||
// | 商业版本务必购买商业授权,以免引起法律纠纷
|
||
// | 禁止对系统程序代码以任何目的,任何形式的再发布
|
||
// | gitee下载:https://gitee.com/likeshop_gitee
|
||
// | github下载:https://github.com/likeshop-github
|
||
// | 访问官网:https://www.likeshop.cn
|
||
// | 访问社区:https://home.likeshop.cn
|
||
// | 访问手册:http://doc.likeshop.cn
|
||
// | 微信公众号:likeshop技术社区
|
||
// | likeshop团队 版权所有 拥有最终解释权
|
||
// +----------------------------------------------------------------------
|
||
// | author: likeshopTeam
|
||
// +----------------------------------------------------------------------
|
||
|
||
namespace app\api\http\middleware;
|
||
|
||
|
||
use app\api\cache\TokenCache;
|
||
use app\api\validate\Token as TokenValidate;
|
||
|
||
class Login
|
||
{
|
||
/**
|
||
* 登录验证
|
||
* @param $request
|
||
* @param \Closure $next
|
||
* @return mixed|\think\response\Redirect
|
||
*/
|
||
public function handle($request, \Closure $next)
|
||
{
|
||
|
||
//允许跨域调用
|
||
header('Access-Control-Allow-Origin: *');
|
||
header("Access-Control-Allow-Headers: Authorization, Sec-Fetch-Mode, DNT, X-Mx-ReqToken, Keep-Alive, User-Agent, If-Match, If-None-Match, If-Unmodified-Since, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type, Accept-Language, Origin, Accept-Encoding,Access-Token,token");
|
||
header('Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, post');
|
||
header('Access-Control-Max-Age: 1728000');
|
||
header('Access-Control-Allow-Credentials:true');
|
||
if (strtoupper($request->method()) == "OPTIONS") {
|
||
return response();
|
||
}
|
||
|
||
|
||
$token = $request->header('token');
|
||
|
||
//无需登录
|
||
if ($this->isNotNeedLogin($request) && empty($token)) {
|
||
return $next($request);
|
||
}
|
||
|
||
//token验证
|
||
$token_cache = new TokenCache($token, ['token' => $token]);
|
||
//token缓存,直接通过
|
||
if (!$token_cache->isEmpty()) {
|
||
$request->user_info = $token_cache->get(600);
|
||
return $next($request);
|
||
}
|
||
//token验证,并生成缓存
|
||
$token_validate = new TokenValidate();
|
||
$result = $token_validate->check(['token' => $token]);
|
||
if ($result === true) {
|
||
$request->user_info = $token_cache->set(600);
|
||
return $next($request);
|
||
}
|
||
|
||
//无需要登录,带token的情况
|
||
if ($this->isNotNeedLogin($request) && $token) {
|
||
return $next($request);
|
||
}
|
||
|
||
//登录失败
|
||
action('dispatch/dispatch_error', ['msg' => $token_validate->getError(), 'code' => -1]);
|
||
|
||
}
|
||
|
||
|
||
/**
|
||
* 是否免登录验证
|
||
* @param $request
|
||
* @return bool
|
||
*/
|
||
private function isNotNeedLogin($request)
|
||
{
|
||
$data = app()->controller($request->controller())->like_not_need_login;
|
||
if (empty($data)) {
|
||
return false;
|
||
}
|
||
$action = strtolower($request->action());
|
||
$data = array_map('strtolower', $data);
|
||
if (!in_array($action, $data)) {
|
||
return false;
|
||
}
|
||
return true;
|
||
}
|
||
}
|