composer/php-auth-client
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

bug fix

Browse Source
This commit is contained in:
候学杰 2018-02-09 17:01:48 +08:00
parent b99be29a9d
commit 26714dbc63
1 changed files with 4 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/PdAuth/Middleware/CheckRole.php
View File

@ -15,13 +15,12 @@ class CheckRole
$roles = $controller::Privileges;
if (empty($roles) || empty($roles[$action])) {
api_abort(403, '未定义权限');
abort(403, '未定义权限');
}
$user = $request->user();
if (!$user->hasRoles($roles[$action])) {
api_abort(403, '无权访问');
if (empty(array_intersect($roles[$action],$user['roles']))) {
abort(403, '无权访问');
}
return $next($request);