Inicio Explorar Ayuda
Registro Iniciar sesión
zhangdehua
/
vaping
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 858059afc3
Ramas Etiquetas
vaping
/
app
/
store
/
controller
/
Controller.php

Controller.php 5.0 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171 
  1. <?php
    2. 

  2. // +----------------------------------------------------------------------
    3. 

  3. // | 萤火商城系统 [ 致力于通过产品和服务,帮助商家高效化开拓市场 ]
    4. 

  4. // +----------------------------------------------------------------------
    5. 

  5. // | Copyright (c) 2017~2024 https://www.yiovo.com All rights reserved.
    6. 

  6. // +----------------------------------------------------------------------
    7. 

  7. // | Licensed 这不是一个自由软件,不允许对程序代码以任何形式任何目的的再发行
    8. 

  8. // +----------------------------------------------------------------------
    9. 

  9. // | Author: 萤火科技 <admin@yiovo.com>
    10. 

  10. // +----------------------------------------------------------------------
    11. 

  11. declare (strict_types=1);
    12. 

  12. 

  13. namespace app\store\controller;
    14. 

  14. 

  15. use cores\BaseController;
    16. 

  16. 

  17. use app\store\service\Auth as AuthService;
    18. 

  18. use app\common\service\store\User as StoreUserService;
    19. 

  19. use cores\exception\BaseException;
    20. 

  20. 

  21. /**
    22. 

  22.  * 商户后台控制器基类
    23. 

  23.  * Class BaseController
    24. 

  24.  * @package app\store\controller
    25. 

  25.  */
    26. 

  26. class Controller extends BaseController
    27. 

  27. {
    28. 

  28.     // 商家登录信息
    29. 

  29.     protected array $store;
    30. 

  30. 

  31.     // 当前商城ID
    32. 

  32.     protected int $storeId;
    33. 

  33. 

  34.     // 当前控制器名称
    35. 

  35.     protected string $controller = '';
    36. 

  36. 

  37.     // 当前方法名称
    38. 

  38.     protected string $action = '';
    39. 

  39. 

  40.     // 当前路由uri
    41. 

  41.     protected string $routeUri = '';
    42. 

  42. 

  43.     // 当前路由:分组名称
    44. 

  44.     protected string $group = '';
    45. 

  45. 

  46.     // 登录验证白名单
    47. 

  47.     protected array $allowAllAction = [
    48. 

  48.         'passport/login',
    49. 

  49.         'passport/logout',
    50. 

  50.         'map/transfer',
    51. 

  51.     ];
    52. 

  52. 

  53.     /**
    54. 

  54.      * 强制验证当前访问的控制器方法method
    55. 

  55.      * 例: [ 'login' => 'POST' ]
    56. 

  56.      * @var array
    57. 

  57.      */
    58. 

  58.     protected array $methodRules = [];
    59. 

  59. 

  60.     /**
    61. 

  61.      * 后台初始化
    62. 

  62.      * @throws BaseException
    63. 

  63.      * @throws \think\db\exception\DataNotFoundException
    64. 

  64.      * @throws \think\db\exception\DbException
    65. 

  65.      * @throws \think\db\exception\ModelNotFoundException
    66. 

  66.      */
    67. 

  67.     public function initialize()
    68. 

  68.     {
    69. 

  69.         // 获取当前登录的商城ID
    70. 

  70.         $this->getStoreId();
    71. 

  71.         // 设置管理员登录信息
    72. 

  72.         $this->setStoreInfo();
    73. 

  73.         // 当前路由信息
    74. 

  74.         $this->getRouteinfo();
    75. 

  75.         // 验证登录状态
    76. 

  76.         $this->checkLogin();
    77. 

  77.         // 验证当前API权限
    78. 

  78.         $this->checkPrivilege();
    79. 

  79.         // 强制验证当前访问的控制器方法method
    80. 

  80.         $this->checkMethodRules();
    81. 

  81.     }
    82. 

  82. 

  83.     /**
    84. 

  84.      * 设置管理员登录信息
    85. 

  85.      */
    86. 

  86.     private function setStoreInfo()
    87. 

  87.     {
    88. 

  88.         $this->store = StoreUserService::getLoginInfo();
    89. 

  89.     }
    90. 

  90. 

  91.     /**
    92. 

  92.      * 验证当前路由权限
    93. 

  93.      * @return void
    94. 

  94.      * @throws BaseException
    95. 

  95.      * @throws \think\db\exception\DataNotFoundException
    96. 

  96.      * @throws \think\db\exception\DbException
    97. 

  97.      * @throws \think\db\exception\ModelNotFoundException
    98. 

  98.      */
    99. 

  99.     private function checkPrivilege(): void
    100. 

  100.     {
    101. 

  101.         // 在开发模式下, 建议把此处代码暂时屏蔽, 开发完成后在超管后台新增菜单和api
    102. 

  102.         if (!AuthService::getInstance()->checkPrivilege('/' . $this->routeUri)) {
    103. 

  103.             throwError('很抱歉,没有当前api的访问权限 ' . $this->routeUri);
    104. 

  104.         }
    105. 

  105.     }
    106. 

  106. 

  107.     /**
    108. 

  108.      * 解析当前路由参数 (分组名称、控制器名称、方法名)
    109. 

  109.      */
    110. 

  110.     protected function getRouteinfo()
    111. 

  111.     {
    112. 

  112.         // 控制器名称
    113. 

  113.         $this->controller = uncamelize($this->request->controller());
    114. 

  114.         // 方法名称
    115. 

  115.         $this->action = $this->request->action();
    116. 

  116.         // 控制器分组 (用于定义所属模块)
    117. 

  117.         $groupstr = strstr($this->controller, '.', true);
    118. 

  118.         $this->group = $groupstr !== false ? $groupstr : $this->controller;
    119. 

  119.         // 当前uri
    120. 

  120.         $this->routeUri = "{$this->controller}/$this->action";
    121. 

  121.     }
    122. 

  122. 

  123.     /**
    124. 

  124.      * 验证登录状态
    125. 

  125.      * @return void
    126. 

  126.      * @throws BaseException
    127. 

  127.      */
    128. 

  128.     private function checkLogin(): void
    129. 

  129.     {
    130. 

  130.         // 验证当前请求是否在白名单
    131. 

  131.         if (in_array($this->routeUri, $this->allowAllAction)) {
    132. 

  132.             return;
    133. 

  133.         }
    134. 

  134.         // 验证登录状态
    135. 

  135.         if (empty($this->store) || (int)$this->store['is_login'] !== 1) {
    136. 

  136.             throwError('请先登录后再访问', config('status.not_logged'));
    137. 

  137.         }
    138. 

  138.     }
    139. 

  139. 

  140.     /**
    141. 

  141.      * 获取当前登录的商城ID
    142. 

  142.      */
    143. 

  143.     protected function getStoreId()
    144. 

  144.     {
    145. 

  145.         $this->storeId = \getStoreId();
    146. 

  146.     }
    147. 

  147. 

  148.     /**
    149. 

  149.      * 强制验证当前访问的控制器方法method
    150. 

  150.      * @return void
    151. 

  151.      * @throws BaseException
    152. 

  152.      */
    153. 

  153.     private function checkMethodRules(): void
    154. 

  154.     {
    155. 

  155.         if (!isset($this->methodRules[$this->action])) {
    156. 

  156.             return;
    157. 

  157.         }
    158. 

  158.         $methodRule = $this->methodRules[$this->action];
    159. 

  159.         $currentMethod = $this->request->method();
    160. 

  160.         if (empty($methodRule)) {
    161. 

  161.             return;
    162. 

  162.         }
    163. 

  163.         if (is_array($methodRule) && in_array($currentMethod, $methodRule)) {
    164. 

  164.             return;
    165. 

  165.         }
    166. 

  166.         if (is_string($methodRule) && $methodRule == $currentMethod) {
    167. 

  167.             return;
    168. 

  168.         }
    169. 

  169.         throwError('illegal request method');
    170. 

  170.     }
    171. 

  171. }
    172.