info("rpc security middleware call here"); $ip = $request->getClientIp(); if ($this->isClientIPPermitted($ip) == false) { return new JsonResponse("$ip is forbidden", 403); } return $next($request); } /** * 内网ip判断 * @param $ip * @return bool */ private function isClientIPPermitted($ip) { if (!app()->environment('production', 'staging')) { return true; } if (Str::startsWith($ip, [ '127.0.0.', '192.168.', '10.0.', ])) { return true; } return false; } }