AuthWeb 权限验证类库 · ThinkPHP5高阶实战教程 --诠释为API开发而生

# AuthWeb 权限验证类库 >[info] 该类库一般在控制器判断权限的基类中调用另外需要重构两个方法 getNodeInfo 获取当前节点详情方法 getAdminRoleNodeList 获取管理员节点列表方法 ~~~ <?php /** * Created by PhpStorm. * User: Mikkle * QQ:776329498 * Date: 2017/11/13 * Time: 15:01 */ namespace mikkle\tp_auth; use app\base\model\system\SystemAdmin; use app\base\model\system\SystemNode; use mikkle\tp_master\Cache; use mikkle\tp_master\Config; use mikkle\tp_master\Cookie; use mikkle\tp_master\Request; use mikkle\tp_master\Session; use mikkle\tp_model\ModelTools; class AuthWeb { static protected $instance; public $isLogin; protected $loginType; protected $uuid; protected $adminInfo; protected $adminNodeList; protected $request; protected $module; protected $controller; protected $action; protected $publicWeb; protected $error; protected function __construct($options=[]) { switch (true) { case (!isset($options["type"])): $this->loginType = "session"; break; case ($options["type"] == "session"): $this->loginType = "session"; break; case ($options["type"] == "redis"): $this->loginType = "redis"; break; default: $this->loginType = "session"; } if (isset($options["public_web"])){ $this->publicWeb = $options["public_web"]; } $this->request = Request::instance(); $this->module = $this->request->module(); $this->controller = $this->request->controller(); $this->action = $this->request->action(); } public function checkNodeAuth() { if ($this->checkIsSuperAdmin()) { return true; } else { //跳过登录系列的公共页面检测以及主页权限 if ($this->checkPublicWeb()) { return true; } $node_info = $this->getNodeInfo(); // dump($node_info); if (empty($node_info)) { $this->error = '此页面访问权限未开放，请联系管理员'; return false; } if ($node_info['auth_grade'] > 0) { return $this->checkUserNodeAuthByNodeGuId($node_info['guid']); } return true; } } public function getUuid(){ return $this->uuid; } public function getAdminInfo(){ return $this->adminInfo; } public function getError(){ return $this->error; } protected function checkUserNodeAuthByNodeGuId($Guid) { //获取用户权限列表 $this->checkAdminRoleMenuList(); $member = $this->adminInfo; $node_list =[]; if (!in_array($Guid, $node_list)) { $this->error="你没有权限，请联系系统管理员"; return false; }else{ return true; } } protected function getNodeInfo(){ $node = new SystemNode(); return $node->getNodeInfo($this->module,$this->controller,$this->action); } protected function checkAdminRoleMenuList($refresh=false) { switch (true) { case (!empty($this->adminNodeList)): return true; break; case ($refresh || !Cache::has("admin_node_list_{$this->uuid}")): $this->adminNodeList = $this->getAdminRoleNodeList($this->uuid); Cache::set("admin_node_list_{$this->uuid}", $this->adminNodeList); break; case (Cache::has("admin_node_list_{$this->uuid}")): $this->adminNodeList = Cache::get("admin_node_list_{$this->uuid}"); break; default: } } //该方法需要重构 protected function getAdminRoleNodeList($uuid){ $admin = new SystemAdmin(); return $admin->getAdminRoleNodeList($uuid); } protected function checkPublicWeb() { return isset($this->publicWeb[$this->controller][$this->action])? true : false ; } protected function checkIsSuperAdmin() { if (Session::has('is_admin')) { return true; } else { return false; } } public function checkLoginGlobal() { if ($this->isLogin && $this->uuid && $this->adminInfo){ return $this->isLogin; } switch ($this->loginType) { case 1; case "session"; $this->uuid = Session::get('uuid', 'Global'); $this->adminInfo = Session::get('admin_info', 'Global'); if ($this->uuid && $this->adminInfo) { $this->isLogin = true; } break; case 2; case "cache"; $session_id_check = Cookie::get("session_id"); $this->uuid = Cache::get("uuid_{$session_id_check}"); $this->adminInfo = Cache::get("admin_info_{$session_id_check}"); if ($this->uuid && $this->adminInfo) { $this->isLogin = true; } //刷新缓存有效期 Cache::set("uuid_{$session_id_check}", $this->uuid); Cache::set("admin_info_{$session_id_check}", $this->adminInfo); break; case 3: case "redis": break; } return $this->isLogin; } public function setLoginGlobal($admin_info = [], $login_code = 0) { $set_success = false ; if ($admin_info&&isset($admin_info["uuid"])) { switch ($this->loginType) { case 1: case "session": Session::set('admin_info', $admin_info, 'Global'); Session::set('uuid', $admin_info['uuid'], 'Global'); if ((Session::has("uuid", "Global"))) { $set_success = true; } break; case 2: case "cache": $session_id = ModelTools::createUuid("SN"); Cookie::set("session_id", $session_id); Cache::set("admin_info_$session_id", $admin_info); Cache::set("uuid_$session_id", $admin_info['uuid']); $session_id_check = Cookie::get("session_id"); if ((Cache::get("uuid_{$session_id_check}"))) { $set_success = true; } break; case 3:case "redis": break; } } if (!$set_success) return false; //保存登录信息 $this->uuid = $admin_info['uuid']; $this->adminInfo = $admin_info; $this->isLogin = true ; //强制刷新权限信息 $this->checkAdminRoleMenuList(true); return true; } public function logoutGlobal(){ switch ($this->loginType) { case 1: case "session": Session::delete('uuid', 'Global'); Session::delete('admin_info', 'Global'); break; case 2: case "cache": $session_id_check = Cookie::get("session_id"); Cache::rm("uuid_{$session_id_check}"); Cache::rm("admin_info_{$session_id_check}"); Cookie::delete("session_id"); break; case 3:case "redis": break; } $this->adminInfo = null; $this->uuid = null; return true; } static public function instance($options=[]){ $options =self::getOptions($options); $sn = self::getSn($options); if(isset(self::$instance[$sn])){ return self::$instance[$sn]; }else{ return self::$instance[$sn]= new static($options); } } static protected function getOptions($options=[]){ if (empty($options)&& !empty( Config::get("auth.default_options_name"))){ $name = "auth".".".Config::get("auth.default_options_name"); $options = Config::get("$name"); }elseif(is_string($options)&&!empty( Config::get("auth.$options"))){ $options = Config::get("auth.$options"); } return $options; } static protected function getSn($options){ return md5(serialize(ksort($options))); } } ~~~