wanghongjun
/
parking_manage_system
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
停车场管理系统
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
367 KiB
 
 
Tree: 3ebea2eae5
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '3ebea2eae5'
${ noResults }
parking_manage_system/app/Http/Middleware/AdminAuthMiddleware.php

86 lines
2.3 KiB
Raw Blame History

<?php
namespace App\Http\Middleware;
use App\Services\ApiResponseService;
use Closure;
use Illuminate\Http\Request;
use Illuminate\Http\JsonResponse;
use Illuminate\Support\Facades\Auth;
class AdminAuthMiddleware
{
/**
* @var ApiResponseService
*/
protected ApiResponseService $responseService;
/**
* 构造函数
* @param ApiResponseService $responseService
*/
public function __construct(ApiResponseService $responseService)
{
$this->responseService = $responseService;
}
/**
* Handle an incoming request.
* @param Request $request
* @param Closure $next
* @return JsonResponse|mixed
*/
public function handle(Request $request, Closure $next): mixed
{
// 检查请求头中是否有 auth
if (!$request->hasHeader('auth')) {
return $this->responseService->unauthorized(
__('middleware.auth.token_exists')
);
}
$token = $request->header('auth');
// 检查 token 是否有效
if (!Auth::guard('sanctum')->check()) {
// 尝试通过 token 认证
$request->headers->set('Authorization', 'Bearer ' . $token);
if (!Auth::guard('sanctum')->check()) {
return $this->responseService->unauthorized(
__('middleware.auth.token_invalid')
);
}
}
// 检查用户状态
$user = Auth::guard('sanctum')->user();
if (!$user || $user->status !== 1) {
return $this->responseService->error(
__('middleware.auth.user_disabled'),
403
);
}
// 检查是否为 JSON 请求
$contentType = $request->header('Content-Type');
if ($request->isMethod('POST')
&& (!$contentType
|| !str_contains(
$contentType,
'application/json'
))
) {
return $this->responseService->error(
__('middleware.auth.use_json'),
400
);
}
// 检查请求体是否为空对象
if ($request->isMethod('POST') && $request->getContent() === '') {
$request->merge([]);
}
return $next($request);
}
}