صفحهٔ اصلی گشت‌و‌گذار راهنما
ثبت نام ورود
Kirin
/
ucoin
1
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
شاخه: master
شاخه‌ها تگ‌ها
ucoin
/
app
/
http
/
middleware
/
AuthTokenMiddleware.php

AuthTokenMiddleware.php 4.0 KB
لینک دائمی تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990 
  1. <?php
    2. 

  2. 

  3. 

  4. namespace app\http\middleware;
    5. 

  5. 

  6. 

  7. use app\models\store\StoreOrder;
    8. 

  8. use app\models\user\User;
    9. 

  9. use app\models\user\UserToken;
    10. 

  10. use app\Request;
    11. 

  11. use crmeb\exceptions\AuthException;
    12. 

  12. use crmeb\interfaces\MiddlewareInterface;
    13. 

  13. use crmeb\repositories\UserRepository;
    14. 

  14. use think\db\exception\DataNotFoundException;
    15. 

  15. use think\db\exception\ModelNotFoundException;
    16. 

  16. use think\db\exception\DbException;
    17. 

  17. 

  18. /**
    19. 

  19.  * token验证中间件
    20. 

  20.  * Class AuthTokenMiddleware
    21. 

  21.  * @package app\http\middleware
    22. 

  22.  */
    23. 

  23. class AuthTokenMiddleware implements MiddlewareInterface
    24. 

  24. {
    25. 

  25.     public function handle(Request $request, \Closure $next, bool $force = true)
    26. 

  26.     {
    27. 

  27.         $request->filter(['htmlspecialchars', 'strip_tags', 'addslashes', 'trim']);
    28. 

  28.         $authInfo = null;
    29. 

  29.         $token = trim(ltrim($request->header('Authori-zation'), 'Bearer'));
    30. 

  30.         if (!$token) $token = trim(ltrim($request->header('Authorization'), 'Bearer'));//正式版,删除此行,某些服务器无法获取到token调整为 Authori-zation
    31. 

  31.         try {
    32. 

  32.             $authInfo = UserRepository::parseToken($token);
    33. 

  33.             if (!is_null($authInfo)) {
    34. 

  34. //                $sub_uid = $request->header('UID', 0);
    35. 

  35. //                if ($authInfo['user']['main_uid'] == 0) {
    36. 

  36. //                    $check = function ($item) use ($authInfo) {
    37. 

  37. //                        return User::getUserInfo($item)['main_uid'] == $authInfo['user']['uid'] || User::getUserInfo($item)['uid'] == $authInfo['user']['uid'];
    38. 

  38. //                    };
    39. 

  39. //                } else {
    40. 

  40. //                    $check = function ($item) use ($authInfo) {
    41. 

  41. //                        return (User::getUserInfo($item)['main_uid'] == $authInfo['user']['main_uid']) || User::getUserInfo($item)['uid'] == $authInfo['user']['main_uid'];
    42. 

  42. //                    };
    43. 

  43. //                }
    44. 

  44. //                if ($sub_uid) {
    45. 

  45. //                    if ($check($sub_uid)) {
    46. 

  46. //                        $authInfo['user'] = User::where('uid', $sub_uid)->find();
    47. 

  47. //                    }
    48. 

  48. //                    $main_user = User::getUserInfo($authInfo['user']['main_uid'] ?: $authInfo['user']['uid']);
    49. 

  49. //                    if ($main_user['real_check'] == 1) {
    50. 

  50. //                        $authInfo['user']['real_check'] = 1;
    51. 

  51. //                        $authInfo['user']['real_name'] = $main_user['real_name'];
    52. 

  52. //                        $authInfo['user']['card_id'] = $main_user['card_id'];
    53. 

  53. //                    }
    54. 

  54. //                }
    55. 

  55.                 if (!$authInfo['user']['real_check'] && !in_array($request->action(), ['realNameCheck', 'logout', 'user', 'userinfo', 'upload_image', 'image'])) {
    56. 

  56.                     throw new AuthException('请先进行实名认证');
    57. 

  57.                 }
    58. 

  58.                 if (!$authInfo['user']->is_promoter) {
    59. 

  59.                     $price = StoreOrder::where(['paid' => 1, 'refund_status' => 0, 'uid' => $authInfo['user']['uid']])->sum('pay_price');
    60. 

  60.                     $status = is_brokerage_statu($price);
    61. 

  61.                 } else {
    62. 

  62.                     $status = false;
    63. 

  63.                 }
    64. 

  64.                 User::edit(['is_promoter' => $status ? 1 : $authInfo['user']->is_promoter], $authInfo['user']['uid'], 'uid');
    65. 

  65.                 $authInfo['user']->is_promoter = $status ? 1 : $authInfo['user']->is_promoter;
    66. 

  66.             }
    67. 

  67.         } catch (AuthException $e) {
    68. 

  68.             if ($force)
    69. 

  69.                 return app('json')->make($e->getCode(), $e->getMessage());
    70. 

  70.         }
    71. 

  71.         if (!is_null($authInfo)) {
    72. 

  72.             Request::macro('user', function () use (&$authInfo) {
    73. 

  73.                 return $authInfo['user'];
    74. 

  74.             });
    75. 

  75.             Request::macro('tokenData', function () use (&$authInfo) {
    76. 

  76.                 return $authInfo['tokenData'];
    77. 

  77.             });
    78. 

  78.         }
    79. 

  79.         Request::macro('isLogin', function () use (&$authInfo) {
    80. 

  80.             return !is_null($authInfo);
    81. 

  81.         });
    82. 

  82.         Request::macro('uid', function () use (&$authInfo) {
    83. 

  83.             return is_null($authInfo) ? 0 : $authInfo['user']->uid;
    84. 

  84.         });
    85. 

  85.         Request::macro('isReal', function () use (&$authInfo) {
    86. 

  86.             return !is_null($authInfo) ? 0 : $authInfo['user']->real_check;
    87. 

  87.         });
    88. 

  88.         return $next($request);
    89. 

  89.     }
    90. 

  90. }
    91.