首頁 探索 說明
註冊 登入
Kirin
/
yatang
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 2c838e11f2
分支列表 標籤列表
yatang
/
app
/
common
/
middleware
/
UserTokenMiddleware.php

UserTokenMiddleware.php 3.5 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. <?php
    2. 

  2. 

  3. // +----------------------------------------------------------------------
    4. 

  4. // | CRMEB [ CRMEB赋能开发者,助力企业发展 ]
    5. 

  5. // +----------------------------------------------------------------------
    6. 

  6. // | Copyright (c) 2016~2020 https://www.crmeb.com All rights reserved.
    7. 

  7. // +----------------------------------------------------------------------
    8. 

  8. // | Licensed CRMEB并不是自由软件,未经许可不能去掉CRMEB相关版权
    9. 

  9. // +----------------------------------------------------------------------
    10. 

  10. // | Author: CRMEB Team <admin@crmeb.com>
    11. 

  11. // +----------------------------------------------------------------------
    12. 

  12. 

  13. 

  14. namespace app\common\middleware;
    15. 

  15. 

  16. use app\common\repositories\user\UserRepository;
    17. 

  17. use app\Request;
    18. 

  18. use crmeb\exceptions\AuthException;
    19. 

  19. use crmeb\services\JwtTokenService;
    20. 

  20. use Firebase\JWT\ExpiredException;
    21. 

  21. use think\exception\ValidateException;
    22. 

  22. use think\Response;
    23. 

  23. use Throwable;
    24. 

  24. 

  25. class UserTokenMiddleware extends BaseMiddleware
    26. 

  26. {
    27. 

  27. 

  28.     /**
    29. 

  29.      * @param Request $request
    30. 

  30.      * @throws Throwable
    31. 

  31.      * @author xaboy
    32. 

  32.      * @day 2020-04-10
    33. 

  33.      */
    34. 

  34.     public function before(Request $request)
    35. 

  35.     {
    36. 

  36.         $force = $this->getArg(0, true);
    37. 

  37.         try {
    38. 

  38.             $token = trim($request->header('X-Token'));
    39. 

  39.             $lonlat = trim($request->header('LatLon'));
    40. 

  40. 

  41. //            $longitude = explode(',', $lonlat)[0] ?? 0;
    42. 

  42. //            $latitude = explode(',', $lonlat)[1] ?? 0;
    43. 

  43. 

  44.             if (strpos($token, 'Bearer') === 0)
    45. 

  45.                 $token = trim(substr($token, 6));
    46. 

  46.             if (!$token)
    47. 

  47.                 throw new ValidateException('请登录');
    48. 

  48. 

  49.             /**
    50. 

  50.              * @var UserRepository $repository
    51. 

  51.              */
    52. 

  52.             $repository = app()->make(UserRepository::class);
    53. 

  53.             $service = new JwtTokenService();
    54. 

  54.             try {
    55. 

  55.                 $payload = $service->parseToken($token);
    56. 

  56.             } catch (ExpiredException $e) {
    57. 

  57.                 $repository->checkToken($token);
    58. 

  58.                 $payload = $service->decode($token);
    59. 

  59.             } catch (Throwable $e) {//Token 过期
    60. 

  60.                 throw new AuthException('token 已过期');
    61. 

  61.             }
    62. 

  62.             if ('user' != $payload->jti[1])
    63. 

  63.                 throw new AuthException('无效的 token');
    64. 

  64. 

  65.             $user = $repository->get($payload->jti[0]);
    66. 

  66.             if (!$user)
    67. 

  67.                 throw new AuthException('账号不存在');
    68. 

  68.             if (!$user['status'])
    69. 

  69.                 throw new AuthException('账号已被禁用');
    70. 

  70. 

  71.             $user['now_local'] = $lonlat;
    72. 

  72.         } catch (Throwable $e) {
    73. 

  73.             if ($force)
    74. 

  74.                 throw  $e;
    75. 

  75.             $request->macro('isLogin', function () {
    76. 

  76.                 return false;
    77. 

  77.             });
    78. 

  78.             $request->macros(['tokenInfo', 'uid', 'userInfo', 'token'], function () {
    79. 

  79.                 throw new AuthException('请登录');
    80. 

  80.             });
    81. 

  81.             return;
    82. 

  82.         }
    83. 

  83.         $repository->updateToken($token);
    84. 

  84. 

  85.         $request->macro('isLogin', function () {
    86. 

  86.             return true;
    87. 

  87.         });
    88. 

  88.         $request->macro('tokenInfo', function () use (&$payload) {
    89. 

  89.             return $payload;
    90. 

  90.         });
    91. 

  91.         $request->macro('token', function () use (&$token) {
    92. 

  92.             return $token;
    93. 

  93.         });
    94. 

  94.         $request->macro('uid', function () use (&$user) {
    95. 

  95.             return $user->uid;
    96. 

  96.         });
    97. 

  97.         $request->macro('userInfo', function () use (&$user) {
    98. 

  98.             return $user;
    99. 

  99.         });
    100. 

  100.     }
    101. 

  101. 

  102.     public function after(Response $response)
    103. 

  103.     {
    104. 

  104.         // TODO: Implement after() method.
    105. 

  105.     }
    106. 

  106. }
    107.