Главная Обзор Помощь
Вход
youyou
/
dms-api
3
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: 54488c3e37
Ветки Метки
dms-api
/
app
/
v1
/
middleware
/
FilterPermission.php

FilterPermission.php 2.2 KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. <?php
    2. 

  2. namespace app\v1\middleware;
    3. 

  3. 

  4. use plugin\saiadmin\app\cache\UserInfoCache;
    5. 

  5. use support\think\Db;
    6. 

  6. use Webman\Http\Request;
    7. 

  7. use Webman\Http\Response;
    8. 

  8. use Webman\MiddlewareInterface;
    9. 

  9. 

  10. /**
    11. 

  11.  * 权限检查中间件
    12. 

  12.  */
    13. 

  13. class FilterPermission implements MiddlewareInterface
    14. 

  14. {
    15. 

  15.     public function process(Request $request, callable $handler) : Response
    16. 

  16.     {
    17. 

  17.         // 根据用户id获取用户权限
    18. 

  18.         $token = getCurrentInfo();
    19. 

  19.         // 用户权限缓存
    20. 

  20.         $userAuthCache = new UserInfoCache($token['id']);
    21. 

  21.         $user_info = $userAuthCache->getUserInfo();
    22. 

  22.         $currentUserRoleList = array_column($user_info['roleList'], 'id');
    23. 

  23. 

  24.         // $user_info = $this->systemUserLogic->read($token['id']);
    25. 

  25. 

  26.         // 获取游戏数据权限
    27. 

  27.         if(in_array(1,$currentUserRoleList)){
    28. 

  28.             $authGameList = '*';
    29. 

  29.         }else{
    30. 

  30.             $authGameList = $user_info['game_list'] ?? '';
    31. 

  31.         }
    32. 

  32. 

  33.         // 获取游戏自然量数据权限
    34. 

  34.         if(in_array(1,$currentUserRoleList)){
    35. 

  35.             // 如果是管理员,则不限制自然量数据权限
    36. 

  36.             // 需要请求所有游戏ID
    37. 

  37.             $gameData = Db::connect('db_center')->table('pf_game')->where('status',1)->select()->toArray();
    38. 

  38.             $game_list = array_column($gameData, 'id');
    39. 

  39.             $auth_normal_game_list = array_values($game_list);
    40. 

  40.         }else{
    41. 

  41.             $auth_normal_game_list = $user_info['normal_game_list'] ?? '';
    42. 

  42.         }
    43. 

  43. 

  44.         // 获取广告投放数据权限
    45. 

  45.         if(in_array(1,$currentUserRoleList)){
    46. 

  46.             $auth_ad_permission = '*';
    47. 

  47.         }else{
    48. 

  48.             $auth_ad_permission = $user_info['ad_permission'] ?? '';
    49. 

  49.         }
    50. 

  50. 

  51.         // 追加参数逻辑
    52. 

  52.         $extraParams = [
    53. 

  53.             'auth_normal_game_list' => $auth_normal_game_list === '*' ? '' : $auth_normal_game_list,
    54. 

  54.             'auth_game_list' => $authGameList === '' ? '' : $authGameList,
    55. 

  55.             'auth_ad_permission' => $auth_ad_permission === '*' ? 1 : $auth_ad_permission,
    56. 

  56.         ];
    57. 

  57.        
    58. 

  58.         // 合并并设置回 request
    59. 

  59.         $origin_header = $request->header();
    60. 

  60.         $request->setHeader(array_merge($origin_header, $extraParams));
    61. 

  61. 

  62.         return $handler($request);
    63. 

  63.     }
    64. 

  64. }
    65.