paide_shop/app/shopapi/http/middleware/Login.php

<?php
// +----------------------------------------------------------------------
// | likeshop开源商城系统
// +----------------------------------------------------------------------
// | 欢迎阅读学习系统程序代码，建议反馈是我们前进的动力
// | gitee下载：https://gitee.com/likeshop_gitee
// | github下载：https://github.com/likeshop-github
// | 访问官网：https://www.likeshop.cn
// | 访问社区：https://home.likeshop.cn
// | 访问手册：http://doc.likeshop.cn
// | 微信公众号：likeshop技术社区
// | likeshop系列产品在gitee、github等公开渠道开源版本可免费商用，未经许可不能去除前后端官方版权标识
// |  likeshop系列产品收费版本务必购买商业授权，购买去版权授权后，方可去除前后端官方版权标识
// | 禁止对系统程序代码以任何目的，任何形式的再发布
// | likeshop团队版权所有并拥有最终解释权
// +----------------------------------------------------------------------
// | author: likeshop.cn.team
// +----------------------------------------------------------------------

namespace app\shopapi\http\middleware;


use app\common\model\shop\ShopAdmin;
use app\shopapi\validate\TokenValidate;
use think\exception\ValidateException;

class Login
{
    /**
     * 登录验证
     * @param $request
     * @param \Closure $next
     * @return mixed|\think\response\Redirect
     */
    public function handle($request, \Closure $next)
    {
        //允许跨域调用
        header('Access-Control-Allow-Origin: *');
        header("Access-Control-Allow-Headers: Authorization, Sec-Fetch-Mode, DNT, X-Mx-ReqToken, Keep-Alive, User-Agent, If-Match, If-None-Match, If-Unmodified-Since, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type, Accept-Language, Origin, Accept-Encoding,Access-Token,token");
        header('Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE');
        header('Access-Control-Max-Age: 1728000');
        header('Access-Control-Allow-Credentials:true');

        if (strtoupper($request->method()) == "OPTIONS") {
            return response();
        }

        // 过滤前后空格
        $request->filter(['trim']);

        $token = $request->header('token');

        // 无需登录
        if (empty($token) && $this->isNotNeedLogin($request)) {
            return $next($request);
        }


        //token验证，并生成缓存
        $validateError = '';
        try {
            validate(TokenValidate::class)->check(['token' => $token]);
            $adminInfo = (new ShopAdmin())->alias('a')
                ->join('shop_session ss', 'a.id=ss.admin_id')
                ->join('shop s', 's.id = a.shop_id')
                ->where(['ss.token' => $token])
                ->field('a.*,ss.token,ss.client,s.name as shop_name')
                ->hidden(['password'])
                ->findOrEmpty();
            $adminInfo = $adminInfo ? $adminInfo->toArray() : [];
            // 设置缓存
            cache($token, $adminInfo);
            // 设置用户信息
            $request->admin_info = $adminInfo;
            return $next($request);
        } catch (ValidateException $e) {
            $validateError = $e->getError();
        }

        //无需要登录，带token的情况
        if ($this->isNotNeedLogin($request) && $token) {
            return $next($request);
        }

        //登录失败
        $result = array(
            'code' => -1,
            'show' => 1,
            'msg' => $validateError,
            'data' => []
        );
        return json($result);


    }


    /**
     * @notes 是否需要登录
     * @param $request
     * @return bool // false-需要; true-不需要
     * @author 段誉
     * @date 2021/11/10 11:10
     */
    private function isNotNeedLogin($request)
    {
        $controllerObj = invoke('\\app\\shopapi\\controller\\' . $request->controller());
        $data = $controllerObj->like_not_need_login;
        if (empty($data)) {
            return false;
        }
        return in_array($request->action(), $data);
    }

}