超管后台 - 登录拦截
This commit is contained in:
柳清爽
@@ -1,19 +1,28 @@
|
||||
<?php
|
||||
use think\facade\Route;
|
||||
|
||||
// 超级管理员认证相关路由
|
||||
// 超级管理员认证相关路由(不需要鉴权)
|
||||
Route::post('auth/login', 'app\\superadmin\\controller\\Auth@login');
|
||||
|
||||
// 菜单管理相关路由
|
||||
Route::group('menu', function () {
|
||||
Route::get('tree', 'app\\superadmin\\controller\\Menu@getMenuTree');
|
||||
Route::get('list', 'app\\superadmin\\controller\\Menu@getMenuList');
|
||||
});
|
||||
|
||||
// 管理员相关路由
|
||||
Route::group('administrator', function () {
|
||||
// 获取管理员列表
|
||||
Route::get('list', 'app\\superadmin\\controller\\Administrator@getList');
|
||||
// 获取管理员详情
|
||||
Route::get('detail/:id', 'app\\superadmin\\controller\\Administrator@getDetail');
|
||||
});
|
||||
// 需要登录认证的路由组
|
||||
Route::group('', function () {
|
||||
// 菜单管理相关路由
|
||||
Route::group('menu', function () {
|
||||
Route::get('tree', 'app\\superadmin\\controller\\Menu@getMenuTree');
|
||||
Route::get('list', 'app\\superadmin\\controller\\Menu@getMenuList');
|
||||
Route::post('save', 'app\\superadmin\\controller\\Menu@saveMenu');
|
||||
Route::delete('delete/:id', 'app\\superadmin\\controller\\Menu@deleteMenu');
|
||||
Route::post('status', 'app\\superadmin\\controller\\Menu@updateStatus');
|
||||
});
|
||||
|
||||
// 管理员相关路由
|
||||
Route::group('administrator', function () {
|
||||
// 获取管理员列表
|
||||
Route::get('list', 'app\\superadmin\\controller\\Administrator@getList');
|
||||
// 获取管理员详情
|
||||
Route::get('detail/:id', 'app\\superadmin\\controller\\Administrator@getDetail');
|
||||
});
|
||||
|
||||
// 系统信息相关路由
|
||||
Route::get('system/info', 'app\\superadmin\\controller\\System@getInfo');
|
||||
})->middleware(['app\\superadmin\\middleware\\AdminAuth']);
|
||||
@@ -57,7 +57,7 @@ class Auth extends Controller
|
||||
*/
|
||||
private function createToken($admin)
|
||||
{
|
||||
$data = $admin->id . '|' . $admin->account . '|' . time();
|
||||
$data = $admin->id . '|' . $admin->account;
|
||||
return md5($data . 'cunkebao_admin_secret');
|
||||
}
|
||||
}
|
||||
74
Server/application/superadmin/middleware/AdminAuth.php
Normal file
74
Server/application/superadmin/middleware/AdminAuth.php
Normal file
@@ -0,0 +1,74 @@
|
||||
<?php
|
||||
namespace app\superadmin\middleware;
|
||||
|
||||
/**
|
||||
* 超级管理员后台登录认证中间件
|
||||
*/
|
||||
class AdminAuth
|
||||
{
|
||||
/**
|
||||
* 处理请求
|
||||
* @param \think\Request $request
|
||||
* @param \Closure $next
|
||||
* @return mixed
|
||||
*/
|
||||
public function handle($request, \Closure $next)
|
||||
{
|
||||
// 获取Cookie中的管理员信息
|
||||
$adminId = cookie('admin_id');
|
||||
$adminToken = cookie('admin_token');
|
||||
|
||||
// 如果没有登录信息,返回401未授权
|
||||
if (empty($adminId) || empty($adminToken)) {
|
||||
return json([
|
||||
'code' => 401,
|
||||
'msg' => '请先登录',
|
||||
'data' => null
|
||||
]);
|
||||
}
|
||||
|
||||
// 获取管理员信息
|
||||
$admin = \app\superadmin\model\Administrator::where([
|
||||
['id', '=', $adminId],
|
||||
['status', '=', 1],
|
||||
['deleteTime', '=', 0]
|
||||
])->find();
|
||||
|
||||
// 如果管理员不存在,返回401未授权
|
||||
if (!$admin) {
|
||||
return json([
|
||||
'code' => 401,
|
||||
'msg' => '管理员账号不存在或已被禁用',
|
||||
'data' => null
|
||||
]);
|
||||
}
|
||||
|
||||
// 验证Token是否有效
|
||||
$expectedToken = $this->createToken($admin);
|
||||
|
||||
if ($adminToken !== $expectedToken) {
|
||||
return json([
|
||||
'code' => 401,
|
||||
'msg' => '登录已过期,请重新登录',
|
||||
'data' => null
|
||||
]);
|
||||
}
|
||||
|
||||
// 将管理员信息绑定到请求对象,方便后续控制器使用
|
||||
$request->adminInfo = $admin;
|
||||
|
||||
// 继续执行后续操作
|
||||
return $next($request);
|
||||
}
|
||||
|
||||
/**
|
||||
* 创建登录令牌
|
||||
* @param \app\superadmin\model\Administrator $admin
|
||||
* @return string
|
||||
*/
|
||||
private function createToken($admin)
|
||||
{
|
||||
$data = $admin->id . '|' . $admin->account;
|
||||
return md5($data . 'cunkebao_admin_secret');
|
||||
}
|
||||
}
|
||||
@@ -12,16 +12,16 @@
|
||||
// [ 应用入口文件 ]
|
||||
namespace think;
|
||||
|
||||
//处理跨域预检请求
|
||||
if($_SERVER['REQUEST_METHOD'] == 'OPTIONS'){
|
||||
//允许的源域名
|
||||
header("Access-Control-Allow-Origin: *");
|
||||
//允许的请求头信息
|
||||
header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization");
|
||||
//允许的请求类型
|
||||
header('Access-Control-Allow-Methods: GET, POST, PUT,DELETE,OPTIONS,PATCH');
|
||||
exit;
|
||||
}
|
||||
////处理跨域预检请求
|
||||
//if($_SERVER['REQUEST_METHOD'] == 'OPTIONS'){
|
||||
// //允许的源域名
|
||||
// header("Access-Control-Allow-Origin: *");
|
||||
// //允许的请求头信息
|
||||
// header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization");
|
||||
// //允许的请求类型
|
||||
// header('Access-Control-Allow-Methods: GET, POST, PUT,DELETE,OPTIONS,PATCH');
|
||||
// exit;
|
||||
//}
|
||||
|
||||
define('ROOT_PATH', dirname(__DIR__));
|
||||
define('DS', DIRECTORY_SEPARATOR);
|
||||
|
||||
@@ -12,11 +12,11 @@
|
||||
use think\facade\Route;
|
||||
|
||||
// 允许跨域
|
||||
header('Access-Control-Allow-Origin: *');
|
||||
header('Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS, PATCH');
|
||||
header('Access-Control-Allow-Headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-Requested-With, X-Token, X-Api-Token');
|
||||
header('Access-Control-Max-Age: 1728000');
|
||||
header('Access-Control-Allow-Credentials: true');
|
||||
// header('Access-Control-Allow-Origin: *');
|
||||
// header('Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS, PATCH');
|
||||
// header('Access-Control-Allow-Headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-Requested-With, X-Token, X-Api-Token');
|
||||
// header('Access-Control-Max-Age: 1728000');
|
||||
// header('Access-Control-Allow-Credentials: true');
|
||||
|
||||
// 加载Store模块路由配置
|
||||
include __DIR__ . '/../application/api/config/route.php';
|
||||
|
||||
Reference in New Issue
Block a user