Home Explore Help
Register Sign In
wanglu
/
crmeb
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c3eea91f7f
Branches Tags
crmeb
/
app
/
common
/
middleware
/
UserTokenMiddleware.php

UserTokenMiddleware.php 3.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 
  1. <?php
    2. 

  2. 

  3. // +----------------------------------------------------------------------
    4. 

  4. // | CRMEB [ CRMEB赋能开发者,助力企业发展 ]
    5. 

  5. // +----------------------------------------------------------------------
    6. 

  6. // | Copyright (c) 2016~2022 https://www.crmeb.com All rights reserved.
    7. 

  7. // +----------------------------------------------------------------------
    8. 

  8. // | Licensed CRMEB并不是自由软件,未经许可不能去掉CRMEB相关版权
    9. 

  9. // +----------------------------------------------------------------------
    10. 

  10. // | Author: CRMEB Team <admin@crmeb.com>
    11. 

  11. // +----------------------------------------------------------------------
    12. 

  12. 

  13. 

  14. namespace app\common\middleware;
    15. 

  15. 

  16. use app\common\repositories\user\UserRepository;
    17. 

  17. use app\Request;
    18. 

  18. use crmeb\exceptions\AuthException;
    19. 

  19. use crmeb\services\JwtTokenService;
    20. 

  20. use Firebase\JWT\ExpiredException;
    21. 

  21. use think\exception\ValidateException;
    22. 

  22. use think\Response;
    23. 

  23. use Throwable;
    24. 

  24. 

  25. class UserTokenMiddleware extends BaseMiddleware
    26. 

  26. {
    27. 

  27. 

  28.     /**
    29. 

  29.      * @param Request $request
    30. 

  30.      * @throws Throwable
    31. 

  31.      * @author xaboy
    32. 

  32.      * @day 2020-04-10
    33. 

  33.      */
    34. 

  34.     public function before(Request $request)
    35. 

  35.     {
    36. 

  36.         $force = $this->getArg(0, true);
    37. 

  37.         try {
    38. 

  38.             $token = trim($request->header('X-Token'));
    39. 

  39.             if (strpos($token, 'Bearer') === 0)
    40. 

  40.                 $token = trim(substr($token, 6));
    41. 

  41.             if (!$token)
    42. 

  42.                 throw new ValidateException('请登录');
    43. 

  43. 

  44.             /**
    45. 

  45.              * @var UserRepository $repository
    46. 

  46.              */
    47. 

  47.             $repository = app()->make(UserRepository::class);
    48. 

  48.             $service = new JwtTokenService();
    49. 

  49.             try {
    50. 

  50.                 $payload = $service->parseToken($token);
    51. 

  51.             } catch (ExpiredException $e) {
    52. 

  52.                 $repository->checkToken($token);
    53. 

  53.                 $payload = $service->decode($token);
    54. 

  54.             } catch (Throwable $e) {//Token 过期
    55. 

  55.                 throw new AuthException('token 已过期');
    56. 

  56.             }
    57. 

  57.             if ('user' != $payload->jti[1])
    58. 

  58.                 throw new AuthException('无效的 token');
    59. 

  59. 

  60.             $user = $repository->get($payload->jti[0]);
    61. 

  61.             if (!$user)
    62. 

  62.                 throw new AuthException('用户不存在');
    63. 

  63.             if (!$user['status'])
    64. 

  64.                 throw new AuthException('用户已被禁用');
    65. 

  65.             if ($user['cancel_time'])
    66. 

  66.                 throw new AuthException('用户不存在');
    67. 

  67. 

  68.         } catch (Throwable $e) {
    69. 

  69.             if ($force)
    70. 

  70.                 throw  $e;
    71. 

  71.             $request->macro('isLogin', function () {
    72. 

  72.                 return false;
    73. 

  73.             });
    74. 

  74.             $request->macros(['tokenInfo', 'uid', 'userInfo', 'token'], function () {
    75. 

  75.                 throw new AuthException('请登录');
    76. 

  76.             });
    77. 

  77.             return;
    78. 

  78.         }
    79. 

  79.         $repository->updateToken($token);
    80. 

  80. 

  81.         $request->macro('isLogin', function () {
    82. 

  82.             return true;
    83. 

  83.         });
    84. 

  84.         $request->macro('userType', function () {
    85. 

  85.             return 1;
    86. 

  86.         });
    87. 

  87.         $request->macro('tokenInfo', function () use (&$payload) {
    88. 

  88.             return $payload;
    89. 

  89.         });
    90. 

  90.         $request->macro('token', function () use (&$token) {
    91. 

  91.             return $token;
    92. 

  92.         });
    93. 

  93.         $request->macro('uid', function () use (&$user) {
    94. 

  94.             return $user->uid;
    95. 

  95.         });
    96. 

  96.         $request->macro('userInfo', function () use (&$user) {
    97. 

  97.             return $user;
    98. 

  98.         });
    99. 

  99.     }
    100. 

  100. 

  101.     public function after(Response $response)
    102. 

  102.     {
    103. 

  103.         // TODO: Implement after() method.
    104. 

  104.     }
    105. 

  105. }
    106.