Home Verkennen Help
Registreren Inloggen
scott
/
crm
1
0
Vork 0
Bestanden Pull-aanvragen 0 Wiki
Aftakking: master
Aftakkingen Labels
crm
/
app
/
middleware
/
Auth.php

Auth.php 3.8 KB
Permalink Geschiedenis Ruwe

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798 
  1. <?php
    2. 

  2. 

  3. namespace app\middleware;
    4. 

  4. 

  5. use app\model\Employee;
    6. 

  6. use app\model\Grant;
    7. 

  7. use app\model\GrantedAuth;
    8. 

  8. use app\model\Org;
    9. 

  9. use app\model\Permission;
    10. 

  10. use think\exception\HttpException;
    11. 

  11. use think\facade\Session;
    12. 

  12. 

  13. class Auth
    14. 

  14. {
    15. 

  15.     public function handle($request, \Closure $next)
    16. 

  16.     {
    17. 

  17.         // 获取控制器
    18. 

  18.         $controller = lcfirst($request->controller());
    19. 

  19.         $action = lcfirst($request->action());
    20. 

  20.         // 如果是登陆相关操作   wisdom智慧屏演示
    21. 

  21.         if ($controller == 'login' || $controller == 'wisdom') return $next($request);
    22. 

  22.         // 微信绑定页面
    23. 

  23.         if ($controller == 'index' && $action == 'wechat') return $next($request);
    24. 

  24.         // 判断是否登陆
    25. 

  25.         $employee =  session('employee');
    26. 

  26. 

  27.         $domain = request()->domain();
    28. 

  28.         $url = strpos($domain,"zqxg.cc")!==false ? url('manage/login/index') : url('login/index');
    29. 

  29.         if (empty($employee)) return redirect($url);
    30. 

  30. 

  31.         // 如果是多企业页面
    32. 

  32.         if ($controller == 'index' && $action == 'company') return $next($request);
    33. 

  33.         // 如果上传文件
    34. 

  34.         if ($action == 'osscallback') return $next($request);
    35. 

  35.         // 如果是多企业
    36. 

  36.         if (is_string($employee)) return redirect(url('index/company'));
    37. 

  37. 

  38.         $sessionId = cache('employee_' . $employee['phone']);
    39. 

  39.         if(!empty($sessionId) && $sessionId != Session::getId()){
    40. 

  40.             Session::clear();
    41. 

  41.             return response('<script>alert("您的账号已在其他地方登录");location.href="'.url('login/index').'"</script>');
    42. 

  42.         }
    43. 

  43. 

  44.         $line = Employee::where([['id', '=', $employee->id], ['grant_id', '<>', '0']])->count();
    45. 

  45.         if (!$line) {
    46. 

  46.             $employee = null;
    47. 

  47.             Session::clear();
    48. 

  48.             return redirect(url('login/index'));
    49. 

  49.         }
    50. 

  50. 

  51.         // 获取用户权限
    52. 

  52.         // $grant = cache('grant_' . $employee->grand_id);
    53. 

  53.         // if (is_null($grant)) {
    54. 

  54.         $permissionIds = Grant::where('id', $employee->grant_id)->value('permission');
    55. 

  55.         $permissionIds = is_null($permissionIds) ? [] : $permissionIds;
    56. 

  56.         $permission = Permission::where([['id', 'in', $permissionIds], ['uri', '<>', '']])->column('uri,relation');
    57. 

  57.         $relation = explode(',', implode(',', array_column($permission, 'relation')));
    58. 

  58.         $grant = array_merge(array_column($permission, 'uri'), $relation);
    59. 

  59.         // cache('grant_' . $employee->grand_id, $grant);
    60. 

  60.         // }
    61. 

  61.         // 获取用户组织
    62. 

  62.         // $org = [$employee->org_id];
    63. 

  63.         // if ($employee->is_manager) {
    64. 

  64.         //     $org = cache('org_manager_' . $employee->org_id);
    65. 

  65.         //     if (is_null($org)) {
    66. 

  66.                 // $org = orgSubIds($employee->org_id);
    67. 

  67.                 //$org = (new Org())->getChildOrg($employee->org_id);
    68. 

  68.         //         cache('org_manager_' . $employee->org_id, $org);
    69. 

  69.         //     }
    70. 

  70.         // }
    71. 

  71. 

  72.         $org = orgSubIds($employee->root_id);
    73. 

  73. 

  74.         // 设置请求信息
    75. 

  75.         $request->employee = $employee;
    76. 

  76.         $request->grant = $grant;
    77. 

  77.         $request->org = $org;
    78. 

  78. 

  79.         // 不验证权限页面
    80. 

  80.         if ($controller == 'index' || $controller == 'backup' || $controller=='ueditor') return $next($request);
    81. 

  81.         // 如果是查询获取企业人员
    82. 

  82.         if ($controller == 'statistics' && $action == 'get_person') return $next($request);
    83. 

  83.         if ($controller == 'org' && $action == 'employee') return $next($request);
    84. 

  84.         
    85. 

  85.         // 关联企业权限
    86. 

  86.         // $request->granted = (new GrantedAuth())->getIdsByAuth($controller . '_' . $action, $employee['root_id']);
    87. 

  87.         // 判断是否有权限
    88. 

  88.         $grant = array_unique($grant);
    89. 

  89.         if (!in_array($controller . '/' . $action, $grant)) {
    90. 

  90.             if ($request->isAjax()) {
    91. 

  91.                 return json(['code' => 1, 'msg' => '无权限']);
    92. 

  92.             }
    93. 

  93.             throw new HttpException(404, '无权限');
    94. 

  94.         }
    95. 

  95. 

  96.         return $next($request);
    97. 

  97.     }
    98. 

  98. }
    99.