57 lines
1.1 KiB
PHP
57 lines
1.1 KiB
PHP
<?php
|
|
/**
|
|
* Created by PhpStorm.
|
|
* User: dongwei
|
|
* Date: 2019/1/14
|
|
* Time: 11:45 AM
|
|
*/
|
|
|
|
namespace JsonRpc\Middleware;
|
|
|
|
use Closure;
|
|
use Illuminate\Http\JsonResponse;
|
|
use Illuminate\Support\Str;
|
|
|
|
class Security
|
|
{
|
|
public function __construct()
|
|
{
|
|
}
|
|
|
|
|
|
/**
|
|
* @param \Illuminate\Http\Request $request
|
|
* @param Closure $next
|
|
* @return JsonResponse|mixed
|
|
*/
|
|
public function handle($request, Closure $next)
|
|
{
|
|
app('log')->info("rpc security middleware call here");
|
|
$ip = $request->getClientIp();
|
|
if ($this->isClientIPPermitted($ip) == false) {
|
|
return new JsonResponse("$ip is forbidden", 403);
|
|
}
|
|
return $next($request);
|
|
}
|
|
|
|
/**
|
|
* 内网ip判断
|
|
* @param $ip
|
|
* @return bool
|
|
*/
|
|
private function isClientIPPermitted($ip)
|
|
{
|
|
if (!app()->environment('production', 'staging')) {
|
|
return true;
|
|
}
|
|
|
|
if (Str::startsWith($ip, [
|
|
'127.0.0.',
|
|
'192.168.',
|
|
'10.0.',
|
|
])) {
|
|
return true;
|
|
}
|
|
return false;
|
|
}
|
|
} |