Inicio Explorar Ayuda
Registro Iniciar sesión
alroyso
/
neiyou_user_web
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 795e9c0ffc
Ramas Etiquetas
neiyou_user_web
/
app
/
Http
/
Middleware
/
isSecurity.php

isSecurity.php 1.4 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Middleware;
    4. 

  4. 

  5. use App\Components\IP;
    6. 

  6. use Cache;
    7. 

  7. use Closure;
    8. 

  8. use Log;
    9. 

  9. use Response;
    10. 

  10. 

  11. class isSecurity
    12. 

  12. {
    13. 

  13. 

  14.     /**
    15. 

  15.      * 是否需要安全码才访问(仅用于登录页)
    16. 

  16.      *
    17. 

  17.      * @param           $request
    18. 

  18.      * @param  Closure  $next
    19. 

  19.      *
    20. 

  20.      * @return mixed
    21. 

  21.      */
    22. 

  22.     public function handle($request, Closure $next)
    23. 

  23.     {
    24. 

  24.         $ip                  = IP::getClientIP();
    25. 

  25.         $code                = $request->securityCode;
    26. 

  26.         $cacheKey            = 'SecurityLogin_' . ip2long($ip);
    27. 

  27.         $websiteSecurityCode = sysConfig('website_security_code');
    28. 

  28. 

  29.         if ($websiteSecurityCode && ! Cache::has($cacheKey)) {
    30. 

  30.             if ($code != $websiteSecurityCode) {
    31. 

  31.                 Log::info("拒绝非安全入口访问(" . $ip . ")");
    32. 

  32. 

  33.                 return Response::view(
    34. 

  34.                     'auth.error',
    35. 

  35.                     [
    36. 

  36.                         'message' => trans('error.SecurityError') . ', 
    37. 

  37.                         ' . trans(
    38. 

  38.                                 'error.Visit'
    39. 

  39.                             ) . '<a href="/login?securityCode=" target="_self">' .
    40. 

  40.                                      trans('error.SecurityEnter') . '</a>',
    41. 

  41.                     ],
    42. 

  42.                     403
    43. 

  43.                 );
    44. 

  44.             }
    45. 

  45. 

  46.             Cache::put($cacheKey, $ip, 7200); // 2小时之内无需再次输入安全码访问
    47. 

  47.         }
    48. 

  48. 

  49.         return $next($request);
    50. 

  50.     }
    51. 

  51. 

  52. }
    53.