Halaman utama Jelajahi Bantuan
Daftar Masuk
wugg
/
phpstock
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: 57c2091a35
Ranting Tag
phpstock
/
app
/
abutment
/
middleware
/
homeMiddleware.php

homeMiddleware.php 5.0 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150 
  1. <?php
    2. 

  2. 

  3. namespace app\abutment\middleware;
    4. 

  4. 

  5. use app\abutment\model\SupplierRelationUser;
    6. 

  6. use app\abutment\model\SupplierUser;
    7. 

  7. use think\facade\Cache;
    8. 

  8. use think\facade\Config;
    9. 

  9. use think\facade\Validate;
    10. 

  10. use think\Response;
    11. 

  11. use app\abutment\model\RequestLog as RequestLogModel;
    12. 

  12. 

  13. //中间件
    14. 

  14. class homeMiddleware
    15. 

  15. {
    16. 

  16. 

  17.     //白名单
    18. 

  18.     private $white_list = ['login', 'getuserinfo'];
    19. 

  19. 

  20.     //请求入口
    21. 

  21.     public function handle($request, \Closure $next)
    22. 

  22.     {
    23. 

  23. 

  24.         //请求的唯一标识
    25. 

  25.         $request->request_id = date('YmdHis') . mt_rand(100000, 999999);
    26. 

  26. 

  27.         //1.接收参数
    28. 

  28.         $param = $request->post();
    29. 

  29. 

  30.         //判断白名单
    31. 

  31.         if (!in_array(strtolower(request()->pathinfo()), $this->white_list)) {
    32. 

  32. 

  33.             //获取用户信息
    34. 

  34.             $user = $this->getUserInfo($param);
    35. 

  35.             if (is_array($user)) $request->user = $user;
    36. 

  36.             else return $user;//响应信息,说明报错,直接返回给请求方
    37. 

  37. 

  38.         }
    39. 

  39. 

  40.         //3.记录日志
    41. 

  41.         RequestLogModel::add($request->request_id, $param);
    42. 

  42. 

  43.         return $next($request);
    44. 

  44. 

  45.     }
    46. 

  46. 

  47. 

  48.     //请求结束的回调(如果返回数据用的是app_show/error_show,即直接echo,则不会触发该方法)
    49. 

  49.     public function end(Response $response)
    50. 

  50.     {
    51. 

  51.         //只做记录,不做输出
    52. 

  52.         RequestLogModel::where('request_id', request()->request_id)->save([
    53. 

  53.             'response' => $response->getContent(),
    54. 

  54.             'supplierNo' => request()->user['supplierNo'] ?? '',
    55. 

  55.             'uid' => request()->user['uid'] ?? 0,
    56. 

  56.             //如果是白名单接口(例如登录接口),这个时候是没有supplierNo和uid字段的
    57. 

  57.         ]);
    58. 

  58.     }
    59. 

  59. 

  60.     /**
    61. 

  61.      * //校验相关参数
    62. 

  62.      * private function checkHeader(array $header = [])
    63. 

  63.      * {
    64. 

  64.      * $val = Validate::rule([
    65. 

  65.      * 'clientid' => 'require',
    66. 

  66.      * 'timestamp|时间戳' => 'require|number|length:10',
    67. 

  67.      * 'randomstring|随机字符串' => 'require|alphaNum|length:20',
    68. 

  68.      * 'sign|签名' => 'require',
    69. 

  69.      * 'token' => 'require|length:40|alphaNum',
    70. 

  70.      * ]);
    71. 

  71.      *
    72. 

  72.      * if (!$val->check($header)) throw new ValidateException('请求基础参数有误:' . $val->getError());
    73. 

  73.      *
    74. 

  74.      * }
    75. 

  75.      *
    76. 

  76.      *
    77. 

  77.      * //获取供应商的信息
    78. 

  78.      * private function getSupplierInfoByClientID(string $clientID = '')
    79. 

  79.      * {
    80. 

  80.      *
    81. 

  81.      * $key .= $clientID;
    82. 

  82.      *
    83. 

  83.      * $data = Cache::get($key);
    84. 

  84.      *
    85. 

  85.      * if (!$data) {
    86. 

  86.      *
    87. 

  87.      * $data = Db::name('abutment_supplier_development')
    88. 

  88.      * ->alias('a')
    89. 

  89.      * ->field('a.id,a.supplierNo,a.supplier,a.clientID,a.clientSecret,s.person,s.personid')
    90. 

  90.      * ->leftJoin('supplier s', 's.code=a.supplierNo AND s.is_del=0')
    91. 

  91.      * ->where(['a.clientID' => $clientID, 'a.is_del' => 0])
    92. 

  92.      * ->findOrEmpty();
    93. 

  93.      *
    94. 

  94.      * Cache::set($key, $data, 3600 * 24);
    95. 

  95.      * }
    96. 

  96.      *
    97. 

  97.      * return $data;
    98. 

  98.      * }
    99. 

  99.      *
    100. 

  100.      *
    101. 

  101.      * //校验签名
    102. 

  102.      * private function checkSign(array $header = [], string $clientSecret = '')
    103. 

  103.      * {
    104. 

  104.      *
    105. 

  105.      * $str = substr($header['randomstring'], 0, 10) . $header['clientid'] . $header['timestamp'] . $header['token'] . substr($header['randomstring'], 10) . $clientSecret;
    106. 

  106.      *
    107. 

  107.      * //签名 = md5(随机字符串前10位 . clientID .时间戳 . token . 随机字符串后10位 . $clientSecret, 时间戳);
    108. 

  108.      * $sign = md5($str);
    109. 

  109.      *
    110. 

  110.      * if ($sign != $header['sign']) throw new ValidateException('签名错误');
    111. 

  111.      *
    112. 

  112.      * }
    113. 

  113.      **/
    114. 

  114. 

  115.     //获取用户信息
    116. 

  116.     public function getUserInfo(array $param = [])
    117. 

  117.     {
    118. 

  118.         //101 < code < 104 ,表示用户鉴权错误,需要用户重新登录
    119. 

  119.         //code==101 token不存在
    120. 

  120.         //code==102 token已失效
    121. 

  121.         //code==103 未找到对应的账户
    122. 

  122.         //code==104 token无效
    123. 

  123.         //code==105 供应商编码错误
    124. 

  124.         //code==106 你尚未绑定当前供应商
    125. 

  125.         $val = Validate::rule(['token|用户token' => 'require|length:40|alphaNum']);
    126. 

  126.         if (!$val->check($param)) return json_show(101, '参数错误,' . $val->getError());
    127. 

  127. 

  128.         $val2 = Validate::rule(['supplierNo|供应商编码' => 'require|length:18|alphaNum']);
    129. 

  129.         if (!$val2->check($param)) return json_show(105, '参数错误,' . $val2->getError());
    130. 

  130. 

  131.         $data = SupplierUser::field('uid,nickname,mobile,email')
    132. 

  132.             ->alias('a')
    133. 

  133.             ->where(['is_del' => SupplierUser::$is_del_normal, 'status' => SupplierUser::$status_normal, 'token' => $param['token']])
    134. 

  134.             ->where('expire_time', '>=', date('Y-m-d H:i:s'))
    135. 

  135.             ->findOrEmpty()
    136. 

  136.             ->toArray();
    137. 

  137. 

  138.         if (empty($data)) return json_show(102, 'token不存在或已过期');
    139. 

  139. 

  140.         $res = SupplierRelationUser::field('id,supplierNo,supplierName')
    141. 

  141.             ->where(['is_del' => SupplierUser::$is_del_normal, 'supplierNo' => $param['supplierNo'], 'uid' => $data['uid']])
    142. 

  142.             ->findOrEmpty()
    143. 

  143.             ->toArray();
    144. 

  144. 

  145.         if (empty($res)) return json_show(106, '你尚未绑定当前供应商');
    146. 

  146. 

  147.         return array_merge($data, ['supplierNo' => $param['supplierNo'], 'supplierName' => $res['supplierName']]);
    148. 

  148.     }
    149. 

  149. 

  150. }
    151.