houduan01
/
ball


			
							1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889
							<?php
// +----------------------------------------------------------------------
// | whitef快速开发前后端分离管理后台（PHP版）
// +----------------------------------------------------------------------
// | 欢迎阅读学习系统程序代码，建议反馈是我们前进的动力
// | 开源版本可自由商用，可去除界面版权logo
// | gitee下载：https://gitee.com/likeshop_gitee/whitef
// | github下载：https://github.com/likeshop-github/whitef
// | 访问官网：https://www.whitef.cn
// | whitef团队 版权所有 拥有最终解释权
// +----------------------------------------------------------------------
// | author: whitefTeam
// +----------------------------------------------------------------------
declare (strict_types=1);

namespace app\workerapi\http\middleware;


use app\common\cache\MasterWokerTokenCache;
use app\common\model\master_worker\MappingMworkerSession;
use app\common\service\JsonService;
use app\workerapi\service\MasterWokerTokenService;
use think\facade\Config;

class LoginMiddleware
{
    /**
     * @notes 登录验证
     * @param $request
     * @param \Closure $next
     * @return mixed|\think\response\Json
     * @author 令狐冲
     * @date 2021/7/1 17:33
     */
    public function handle($request, \Closure $next)
    {
        $token = $request->header('token');
        $mapSession = MappingMworkerSession::where([['type', '=', 1],['token', '=', $token], ['expire_time', '>', time()]])->findOrEmpty();
        if(!$mapSession->isEmpty()) {
            $mapSession->map_token && $token = $mapSession->map_token;
        }
        //判断接口是否免登录
        $isNotNeedLogin = $request->controllerObject->isNotNeedLogin();

        //不直接判断$isNotNeedLogin结果，使不需要登录的接口通过，为了兼容某些接口可以登录或不登录访问
        if (empty($token) && !$isNotNeedLogin) {
            //没有token并且该地址需要登录才能访问, 指定show为0，前端不弹出此报错
            return JsonService::fail('请先进行登录', [], 401, 0);
        }

        $userInfo = (new MasterWokerTokenCache())->getUserInfo($token);

        if (empty($userInfo) && !$isNotNeedLogin) {
            //token过期无效并且该地址需要登录才能访问
            return JsonService::fail('登录超时，请重新登录', [], 401, 0);
        }

        //token临近过期，自动续期
        if ($userInfo) {
            if (!isset($userInfo['is_temporary']) ) {
                $userInfo = (new MasterWokerTokenCache())->setUserInfo($token);
            }

            //获取临近过期自动续期时长
            $beExpireDuration = Config::get('project.user_token.be_expire_duration');
            //token续期
            if (time() > ($userInfo['expire_time'] - $beExpireDuration)) {
                $result = MasterWokerTokenService::overtimeToken($token);
                //续期失败（数据表被删除导致）
                if (empty($result)) {
                    return JsonService::fail('登录过期', [], 401);
                }
            }

            //临时工程师校验一下权限
            $controller = $request->controller();
            if (isset($userInfo['is_temporary']) && $userInfo['is_temporary'] == 1 && !in_array(strtolower($controller), ['groupworks','sms','login','upload','masterworkeragree'])) {
                return JsonService::fail('暂无权限', [], 401);
            }
        }

        //给request赋值，用于控制器
        $request->userInfo = $userInfo;
        $request->userId = $userInfo['user_id'] ?? 0;

        return $next($request);
    }

}