dms-api/app/v1/middleware/FilterPermission.php

<?php
namespace app\v1\middleware;

use plugin\saiadmin\app\cache\UserInfoCache;
use Webman\Http\Request;
use Webman\Http\Response;
use Webman\MiddlewareInterface;

/**
 * 权限检查中间件
 */
class FilterPermission implements MiddlewareInterface
{
    public function process(Request $request, callable $handler) : Response
    {

        // 获取请求方法
        $method = strtoupper($request->method());

        // 根据用户id获取用户权限
        $token = getCurrentInfo();
        // 用户权限缓存
        $userAuthCache = new UserInfoCache($token['id']);
        $user_info = $userAuthCache->getUserInfo();

        // 获取游戏数据权限
        $auth_game_list = $user_info['game_list'] ?? -1;

        // 获取游戏自然量数据权限
        $auth_normal_game_list = $user_info['normal_game_list'] ?? -1;

        // 获取游戏自然量数据权限
        $auth_ad_permission = $user_info['ad_permission'] ?? -1;

        // 追加参数逻辑
        $extraParams = [
            'auth_normal_game_list' => $auth_normal_game_list === '*' ? '' : $auth_normal_game_list,
            'auth_game_list' => $auth_game_list === '*' ? '' : $auth_game_list,
            'auth_ad_permission' => $auth_ad_permission === '*' ? '' : $auth_ad_permission,
        ];
       
       // 合并并设置回 request
        if ($method === 'GET') {
            $request->setGet(array_merge($request->get(), $extraParams));
        } elseif ($method === 'POST') {
            $request->setPost(array_merge($request->post(), $extraParams));
        }

        return $handler($request);
    }
}