blackteay/ThinkAdmin
1
0
Fork 0
mirror of https://gitee.com/zoujingli/ThinkAdmin.git synced 2025-09-06 16:19:46 +08:00
Code Issues Projects Releases Wiki Activity
ThinkAdmin/vendor/zoujingli/think-library/src/service/TokenService.php
Anyon 44c4637ea0 ComposerUpdate
2019-11-11 14:05:12 +08:00

67 lines
2.3 KiB
PHP
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<?php
// +----------------------------------------------------------------------
// | ThinkAdmin
// +----------------------------------------------------------------------
// | 版权所有 2014~2019 广州楚才信息科技有限公司 [ http://www.cuci.cc ]
// +----------------------------------------------------------------------
// | 官方网站: http://demo.thinkadmin.top
// +----------------------------------------------------------------------
// | 开源协议 ( https://mit-license.org )
// +----------------------------------------------------------------------
// | gitee 代码仓库https://gitee.com/zoujingli/ThinkAdmin
// | github 代码仓库https://github.com/zoujingli/ThinkAdmin
// +----------------------------------------------------------------------
namespace think\admin\service;
use think\admin\Service;
/**
* 表单令牌管理服务
* Class TokenService
* @package think\admin\service
*/
class TokenService extends Service
{
/**
* 验证表单令牌是否有效
* @param string $token 表单令牌
* @return boolean
*/
public function checkFormToken($token)
{
$service = NodeService::instance($this->app);
list($node, $cache) = [$service->getCurrent(), $this->app->session->get($token, [])];
if (empty($cache['node']) || empty($cache['time']) || empty($cache['token'])) return false;
if ($cache['token'] !== $token || $cache['time'] + 600 < time() || $cache['node'] !== $node) return false;
return true;
}
/**
* 清理表单CSRF信息
* @param string $name
*/
public function clearFormToken($name = null)
{
$this->app->session->delete($name);
}
/**
* 生成表单CSRF信息
* @param null|string $node
* @return array
*/
public function buildFormToken($node = null)
{
list($token, $time) = [uniqid('csrf'), time()];
foreach ($this->app->session->all() as $key => $item) {
if (stripos($key, 'csrf') === 0 && isset($item['time'])) {
if ($item['time'] + 600 < $time) $this->clearFormToken($key);
}
}
$data = ['node' => NodeService::instance($this->app)->fullnode($node), 'token' => $token, 'time' => $time];
$this->app->session->set($token, $data);
return $data;
}
}
Reference in New Issue View Git Blame Copy Permalink