Accueil Explorer Aide
S'inscrire Connexion
huwhois
/
blog_tp6
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: 0d9d7076e1
Branches Tags
blog_tp6
/
app
/
sys
/
middleware
/
Admin.php

Admin.php 3.9 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * +----------------------------------------------------------------------
    5. 

  5.  * | 后台中间件
    6. 

  6.  * +----------------------------------------------------------------------
    7. 

  7.  */
    8. 

  8. 

  9. namespace app\sys\middleware;
    10. 

  10. 

  11. use think\facade\Config;
    12. 

  12. use think\facade\Session;
    13. 

  13. use think\Response;
    14. 

  14. use think\exception\HttpResponseException;
    15. 

  15. use think\facade\Request;
    16. 

  16. use think\model\Collection;
    17. 

  17. 

  18. class Admin
    19. 

  19. {
    20. 

  20.     public function handle($request, \Closure $next)
    21. 

  21.     {
    22. 

  22.         // 获取当前用户
    23. 

  23.         $admin_id = Session::get('adminuser.userid');
    24. 

  24. 

  25.         if (empty($admin_id)) {
    26. 

  26.             return redirect((string)url('login/index'));
    27. 

  27.         }
    28. 

  28. 

  29.         // 查找当前控制器和方法,控制器首字母大写,方法名首字母小写 如:Index/index
    30. 

  30.         $route = strtolower(preg_replace('/(?<=[a-z])([A-Z])/', '_$1', Request::controller())) . '/' . strtolower(preg_replace('/(?<=[a-z])([A-Z])/', '_$1', Request::action()));
    31. 

  31. 

  32.         // 权限认证
    33. 

  33.         if (!$this->checkAuth($route, Session::get('adminuser.roleid'))) {
    34. 

  34.             $this->error('您无此操作权限!');
    35. 

  35.         }
    36. 

  36. 

  37.         // 进行操作日志的记录
    38. 

  38.         $this->syslogRecord($route);
    39. 

  39. 

  40.         // 中间件handle方法的返回值必须是一个Response对象。
    41. 

  41.         return $next($request);
    42. 

  42.     }
    43. 

  43. 

  44.     protected function syslogRecord($route = '')
    45. 

  45.     {
    46. 

  46.         // 定义方法白名单(不记录日志)
    47. 

  47.         $allow = [
    48. 

  48.             
    49. 

  49.         ];
    50. 

  50.         
    51. 

  51.         $action = Request::action();
    52. 

  52. 

  53.         if ($action != 'index' && !in_array($route, $allow)) {
    54. 

  54.             \app\common\model\SysLog::record();
    55. 

  55.         }
    56. 

  56.     }
    57. 

  57. 

  58.     /**
    59. 

  59.      * 检查权限
    60. 

  60.      * @param  string|array  $route     需要验证的规则列表,支持逗号分隔的权限规则或索引数组
    61. 

  61.      * @param  integer  $rid      认证用户角色ID
    62. 

  62.      * @return boolean           通过验证返回true;失败返回false
    63. 

  63.      */
    64. 

  64.     public function checkAuth($route, $rid)
    65. 

  65.     {
    66. 

  66.         // 超级管理员不检查权限
    67. 

  67.         if ($rid==1) {
    68. 

  68.             return true;
    69. 

  69.         }
    70. 

  70. 

  71.         $menus = \app\common\model\SysMenu::getUserMenuList($rid);
    72. 

  72. 

  73.         if (!Config::get('app.auth_on')) {
    74. 

  74.             return true;
    75. 

  75.         }
    76. 

  76. 

  77.         // 定义方法白名单
    78. 

  78.         $allow = [
    79. 

  79.             'index/index',      // 首页
    80. 

  80.             'index/usedspace',      //  使用空间
    81. 

  81.             'index/clearcache',      // 清除缓存
    82. 

  82.             'file_manager/uploadimg',      // 图片上传
    83. 

  83.         ];
    84. 

  84. 

  85.         // 查询所有不验证的方法并放入白名单
    86. 

  86.         $menuOpen = \app\common\model\SysMenu::where('open', 1)->column('url');
    87. 

  87.         
    88. 

  88.         $allow = array_merge($allow, $menuOpen);
    89. 

  89. 

  90.         foreach ($menus as $value) {
    91. 

  91.             if ($value->type == 0) {
    92. 

  92.                 continue;
    93. 

  93.             }
    94. 

  94.             $allow[] = $value->url;
    95. 

  95.         }
    96. 

  96. 

  97.         $allow = array_unique($allow);
    98. 

  98. 

  99.         if (in_array($route, $allow)) {
    100. 

  100.             return true;
    101. 

  101.         }
    102. 

  102.         return false;
    103. 

  103.     }
    104. 

  104. 

  105.     /**
    106. 

  106.      * 操作错误跳转的快捷方法 抽的 liliuwei Jump error 方法
    107. 

  107.      * @access protected
    108. 

  108.      * @param  mixed $msg 提示信息
    109. 

  109.      * @return void
    110. 

  110.      */
    111. 

  111.     protected function error($msg = '')
    112. 

  112.     {
    113. 

  113.         $url = Request::isAjax() ? '' : 'javascript:history.back(-1);';
    114. 

  114. 

  115.         $result = [
    116. 

  116.             'code' => 0,
    117. 

  117.             'msg' => $msg,
    118. 

  118.             'data' => '',
    119. 

  119.             'url' => $url,
    120. 

  120.             'wait' => 3,
    121. 

  121.         ];
    122. 

  122. 

  123.         $type = Request::isJson() || Request::isAjax() ? 'json' : 'html';;
    124. 

  124. 

  125.         if ('html' == strtolower($type)) {
    126. 

  126.             $type = 'view';
    127. 

  127.             $dispatch_error_tmpl = app()->getRootPath().'/vendor/liliuwei/thinkphp-jump/src/tpl/dispatch_jump.tpl';
    128. 

  128.             $response = Response::create($dispatch_error_tmpl, $type)->assign($result)->header([]);
    129. 

  129.         } else {
    130. 

  130.             $response = Response::create($result, $type)->header([]);
    131. 

  131.         }
    132. 

  132. 

  133.         throw new HttpResponseException($response);
    134. 

  134.     }
    135. 

  135. }
    136.