composer/php-auth-client
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

check role

Browse Source
This commit is contained in:
候学杰 2018-02-07 21:22:54 +08:00
parent 7947cbe79b
commit 34a71b0664
2 changed files with 46 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
src/PdAuth/Middleware/Authenticate.php
View File

@ -74,22 +74,22 @@ class Authenticate
} }
//权限检测 //权限检测
$path = $request->path(); // $path = $request->path();
$privileges = config('pdauth.roles_privileges'); // $privileges = config('pdauth.roles_privileges');
$user = $request->user(); // $user = $request->user();
$match = []; // $match = [];
foreach ($user['roles'] as $role) { // foreach ($user['roles'] as $role) {
if (array_key_exists($role, $privileges)) { // if (array_key_exists($role, $privileges)) {
//如果设置了 * ,则跳过权限检测 // //如果设置了 * ,则跳过权限检测
if (is_string($privileges[$role]) && $privileges[$role] == '*') { // if (is_string($privileges[$role]) && $privileges[$role] == '*') {
return $next($request); // return $next($request);
} // }
if (!is_array($privileges[$role])) { // if (!is_array($privileges[$role])) {
throw new \Exception('pdauth 配置错误!'); // throw new \Exception('pdauth 配置错误!');
} // }
$match = array_merge($match, $privileges[$role]); // $match = array_merge($match, $privileges[$role]);
} // }
} // }
if (in_array($path, $match)) { if (in_array($path, $match)) {
return $next($request); return $next($request);

30
src/PdAuth/Middleware/CheckRole.php Normal file
View File

@ -0,0 +1,30 @@
<?php
namespace PdAuth\Middleware;
use Closure;
use Illuminate\Http\Request;
class CheckRole
{
public function handle(Request $request, Closure $next)
{
$uses = $request->route()[1]['uses'];
list($controller, $action) = explode('@', $uses);
$roles = $controller::Privileges;
if (empty($roles) || empty($roles[$action])) {
api_abort(403, '未定义权限');
}
$user = $request->user();
if (!$user->hasRoles($roles[$action])) {
api_abort(403, '无权访问');
}
return $next($request);
}
}