mirror of
https://gitee.com/apiadmin/ApiAdmin.git
synced 2025-04-05 05:42:45 +08:00
120 lines
3.9 KiB
PHP
120 lines
3.9 KiB
PHP
<?php
|
||
declare (strict_types=1);
|
||
|
||
namespace app\middleware;
|
||
|
||
use app\model\AdminApp;
|
||
use app\model\AdminList;
|
||
use app\util\ReturnCode;
|
||
use think\facade\Cache;
|
||
|
||
class ApiAuth {
|
||
|
||
/**
|
||
* 获取接口基本配置参数,校验接口Hash是否合法,校验APP_ID是否合法等
|
||
* @param \think\facade\Request $request
|
||
* @param \Closure $next
|
||
* @return mixed|\think\response\Json
|
||
* @author zhaoxiang <zhaoxiang051405@gmail.com>
|
||
*/
|
||
public function handle($request, \Closure $next) {
|
||
$header = config('apiadmin.CROSS_DOMAIN');
|
||
$apiHash = substr($request->path(), 4);
|
||
|
||
if ($apiHash) {
|
||
$cached = Cache::has('ApiInfo:' . $apiHash);
|
||
if ($cached) {
|
||
$apiInfo = Cache::get('ApiInfo:' . $apiHash);
|
||
} else {
|
||
$apiInfo = AdminList::get(['hash' => $apiHash, 'hash_type' => 2]);
|
||
if ($apiInfo) {
|
||
$apiInfo = $apiInfo->toArray();
|
||
Cache::rm('ApiInfo:' . $apiInfo['api_class']);
|
||
Cache::set('ApiInfo:' . $apiHash, $apiInfo);
|
||
} else {
|
||
$apiInfo = AdminList::get(['api_class' => $apiHash, 'hash_type' => 1]);
|
||
if ($apiInfo) {
|
||
$apiInfo = $apiInfo->toArray();
|
||
Cache::rm('ApiInfo:' . $apiInfo['hash']);
|
||
Cache::set('ApiInfo:' . $apiHash, $apiInfo);
|
||
} else {
|
||
return json([
|
||
'code' => ReturnCode::DB_READ_ERROR,
|
||
'msg' => '获取接口配置数据失败',
|
||
'data' => []
|
||
])->header($header);
|
||
}
|
||
}
|
||
}
|
||
|
||
$accessToken = $request->header('access-token', '');
|
||
if (!$accessToken) {
|
||
return json([
|
||
'code' => ReturnCode::AUTH_ERROR,
|
||
'msg' => '缺少必要参数access-token',
|
||
'data' => []
|
||
])->header($header);
|
||
}
|
||
if ($apiInfo['access_token']) {
|
||
$appInfo = $this->doCheck($accessToken);
|
||
} else {
|
||
$appInfo = $this->doEasyCheck($accessToken);
|
||
}
|
||
if ($appInfo === false) {
|
||
return json([
|
||
'code' => ReturnCode::ACCESS_TOKEN_TIMEOUT,
|
||
'msg' => 'access-token已过期',
|
||
'data' => []
|
||
])->header($header);
|
||
}
|
||
|
||
$request->APP_CONF_DETAIL = $appInfo;
|
||
$request->API_CONF_DETAIL = $apiInfo;
|
||
|
||
return $next($request);
|
||
} else {
|
||
return json([
|
||
'code' => ReturnCode::AUTH_ERROR,
|
||
'msg' => '缺少接口Hash',
|
||
'data' => []
|
||
])->header($header);
|
||
}
|
||
}
|
||
|
||
/**
|
||
* 简易鉴权,更具APP_SECRET获取应用信息
|
||
* @param $accessToken
|
||
* @return bool|mixed
|
||
* @author zhaoxiang <zhaoxiang051405@gmail.com>
|
||
*/
|
||
private function doEasyCheck($accessToken) {
|
||
$appInfo = cache('AccessToken:Easy:' . $accessToken);
|
||
if (!$appInfo) {
|
||
$appInfo = AdminApp::get(['app_secret' => $accessToken]);
|
||
if (!$appInfo) {
|
||
return false;
|
||
} else {
|
||
$appInfo = $appInfo->toArray();
|
||
cache('AccessToken:Easy:' . $accessToken, $appInfo);
|
||
}
|
||
}
|
||
|
||
return $appInfo;
|
||
}
|
||
|
||
/**
|
||
* 复杂鉴权,需要先通过接口获取AccessToken
|
||
* @param $accessToken
|
||
* @return bool|mixed
|
||
* @author zhaoxiang <zhaoxiang051405@gmail.com>
|
||
*/
|
||
private function doCheck($accessToken) {
|
||
$appInfo = cache('AccessToken:' . $accessToken);
|
||
if (!$appInfo) {
|
||
return false;
|
||
} else {
|
||
return $appInfo;
|
||
}
|
||
}
|
||
}
|