| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 |
- <?php
- declare (strict_types = 1);
- namespace app\txx\middleware;
- use app\txx\common\Sign;
- use think\facade\Db;
- class CheckAuth
- {
- /**
- * 处理请求
- *
- * @param \think\Request $request
- * @param \Closure $next
- * @return Response
- */
- public function handle($request, \Closure $next)
- {
- $request->isCx=0;
- $request->uid=0;
- $request->uname='';
- $param = $request->post();
- if(!isset($param['token'])||$param['token']==''){
- $header = $request->header();
- $check =$this->check($header,$param);
- if($check['code']==1){
- return json_show(104,$check['msg']);
- }
- }else{
- $acct =VerifyTokens($param['token']);
- if(!isset($acct['code']) || $acct['code']!=0){
- return json_show(102,$acct['message']);
- }
- $request->uid=isset($acct['data']['user']['id']) ?$acct['data']['user']['id']:"";
- $request->uname=isset($acct['data']['user']['nickname']) ?$acct['data']['user']['nickname']:"";
- $request->isCx=1;
- }
- $response = $next($request);
- return $response;
- }
- /**数据接口签名验证
- * @param $data
- * @param $param
- * @return array
- */
- private function check($data,$param){
- //check sign
- if (!isset($data['appid']) || !$data['appid']) {
- return ['code'=>1,'msg'=>'发送的应用参数不存在'];
- }
- $appinf =Db::name("act_company")->where(["app_id"=>$data['appid'],"is_del"=>0,"status"=>1])->findOrEmpty();
- if(empty($appinf)){
- return ['code'=>1,'msg'=>'发送的应用参数错误'];
- }
- $mege=["appid"=>$data['appid'],"nonce"=>$data['noce']??'',"sign"=>$data['sign']??'',"timestamp"=>$data['timestamp']??''];
- $value =array_merge($mege,$param);
- $Sign=new Sign($appinf['app_id'],$appinf['app_key']);
- $result =$Sign->verifySign($value);
- return $result;
- }
- }
|
