Home Explore Help
Register Sign In
huwhois
/
blog_tp6
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c87c43874c
Branches Tags
blog_tp6
/
app
/
middleware
/
Admin.php

Admin.php 3.8 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * +----------------------------------------------------------------------
    5. 

  5.  * | 后台中间件
    6. 

  6.  * +----------------------------------------------------------------------
    7. 

  7.  */
    8. 

  8. 

  9. namespace app\middleware;
    10. 

  10. 

  11. use think\Response;
    12. 

  12. use think\facade\Config;
    13. 

  13. use think\facade\Session;
    14. 

  14. use think\facade\Request;
    15. 

  15. use think\exception\HttpResponseException;
    16. 

  16. 

  17. class Admin
    18. 

  18. {
    19. 

  19.     public function handle($request, \Closure $next)
    20. 

  20.     {
    21. 

  21.         // 获取当前用户
    22. 

  22.         $admin_id = Session::get('adminuser.userid');
    23. 

  23. 

  24.         if (empty($admin_id)) {
    25. 

  25.             return redirect((string)url('/sys/login/index'));
    26. 

  26.         }
    27. 

  27. 

  28.         // 查找当前控制器和方法,控制器首字母大写,方法名首字母小写 如:Index/index
    29. 

  29.         $route = str_replace("sys.", "", strtolower(preg_replace('/(?<=[a-z])([A-Z])/', '_$1', Request::controller()))) . '/' . strtolower(preg_replace('/(?<=[a-z])([A-Z])/', '_$1', Request::action()));
    30. 

  30. 

  31.         // 权限认证
    32. 

  32.         if (!$this->checkAuth($route, Session::get('adminuser.roleid'))) {
    33. 

  33.             $this->error('您无此操作权限!');
    34. 

  34.         }
    35. 

  35. 

  36.         // 进行操作日志的记录
    37. 

  37.         $this->syslogRecord($route);
    38. 

  38. 

  39.         // 中间件handle方法的返回值必须是一个Response对象。
    40. 

  40.         return $next($request);
    41. 

  41.     }
    42. 

  42. 

  43.     protected function syslogRecord($route = '')
    44. 

  44.     {
    45. 

  45.         // 定义方法白名单(不记录日志)
    46. 

  46.         $allow = [
    47. 

  47.             
    48. 

  48.         ];
    49. 

  49.         
    50. 

  50.         $action = Request::action();
    51. 

  51. 

  52.         if ($action != 'index' && !in_array($route, $allow)) {
    53. 

  53.             \app\model\SysLog::record();
    54. 

  54.         }
    55. 

  55.     }
    56. 

  56. 

  57.     /**
    58. 

  58.      * 检查权限
    59. 

  59.      * @param  string|array  $route     需要验证的规则列表,支持逗号分隔的权限规则或索引数组
    60. 

  60.      * @param  integer  $rid      认证用户角色ID
    61. 

  61.      * @return boolean           通过验证返回true;失败返回false
    62. 

  62.      */
    63. 

  63.     public function checkAuth($route, $rid)
    64. 

  64.     {
    65. 

  65.         // 超级管理员不检查权限
    66. 

  66.         if ($rid==1) {
    67. 

  67.             return true;
    68. 

  68.         }
    69. 

  69. 

  70.         $menus = \app\model\SysMenu::getUserMenuList($rid);
    71. 

  71. 

  72.         if (!Config::get('app.auth_on')) {
    73. 

  73.             return true;
    74. 

  74.         }
    75. 

  75. 

  76.         // 定义方法白名单
    77. 

  77.         $allow = [
    78. 

  78.             'index/index',      // 首页
    79. 

  79.             'index/usedspace',      //  使用空间
    80. 

  80.             'index/clearcache',      // 清除缓存
    81. 

  81.             'file_manager/uploadimg',      // 图片上传
    82. 

  82.         ];
    83. 

  83. 

  84.         // 查询所有不验证的方法并放入白名单
    85. 

  85.         $menuOpen = \app\model\SysMenu::where('open', 1)->column('url');
    86. 

  86.         
    87. 

  87.         $allow = array_merge($allow, $menuOpen);
    88. 

  88. 

  89.         foreach ($menus as $value) {
    90. 

  90.             if ($value->type == 0) {
    91. 

  91.                 continue;
    92. 

  92.             }
    93. 

  93.             $allow[] = $value->url;
    94. 

  94.         }
    95. 

  95. 

  96.         $allow = array_unique($allow);
    97. 

  97. 

  98.         if (in_array($route, $allow)) {
    99. 

  99.             return true;
    100. 

  100.         }
    101. 

  101.         return false;
    102. 

  102.     }
    103. 

  103. 

  104.     /**
    105. 

  105.      * 操作错误跳转的快捷方法 抽的 liliuwei Jump error 方法
    106. 

  106.      * @access protected
    107. 

  107.      * @param  mixed $msg 提示信息
    108. 

  108.      * @return void
    109. 

  109.      */
    110. 

  110.     protected function error($msg = '')
    111. 

  111.     {
    112. 

  112.         $url = Request::isAjax() ? '' : 'javascript:history.back(-1);';
    113. 

  113. 

  114.         $result = [
    115. 

  115.             'code' => 0,
    116. 

  116.             'msg' => $msg,
    117. 

  117.             'data' => '',
    118. 

  118.             'url' => $url,
    119. 

  119.             'wait' => 3,
    120. 

  120.         ];
    121. 

  121. 

  122.         $type = Request::isJson() || Request::isAjax() ? 'json' : 'html';;
    123. 

  123. 

  124.         if ('html' == strtolower($type)) {
    125. 

  125.             $type = 'view';
    126. 

  126.             $dispatch_error_tmpl = app()->getRootPath().'/vendor/liliuwei/thinkphp-jump/src/tpl/dispatch_jump.tpl';
    127. 

  127.             $response = Response::create($dispatch_error_tmpl, $type)->assign($result)->header([]);
    128. 

  128.         } else {
    129. 

  129.             $response = Response::create($result, $type)->header([]);
    130. 

  130.         }
    131. 

  131. 

  132.         throw new HttpResponseException($response);
    133. 

  133.     }
    134. 

  134. }
    135.