User.php 1.0 KB

12345678910111213141516171819202122232425262728293031323334
  1. <?php
  2. namespace App\Http\Middleware;
  3. use Closure;
  4. class User
  5. {
  6. /**
  7. * Handle an incoming request.
  8. *
  9. * @param \Illuminate\Http\Request $request
  10. * @param \Closure $next
  11. * @return mixed
  12. */
  13. public function handle($request, Closure $next)
  14. {
  15. $authorization = $request->input('auth_data') ?? $request->header('authorization');
  16. if ($authorization) {
  17. $authData = explode(':', base64_decode($authorization));
  18. if (!isset($authData[1]) || !isset($authData[0])) abort(403, '鉴权失败,请重新登入');
  19. $user = \App\Models\User::where('password', $authData[1])
  20. ->where('email', $authData[0])
  21. ->first();
  22. if (!$user) abort(403, '鉴权失败,请重新登入');
  23. $request->session()->put('email', $user->email);
  24. $request->session()->put('id', $user->id);
  25. }
  26. if (!$request->session()->get('id')) {
  27. abort(403, '未登录或登陆已过期');
  28. }
  29. return $next($request);
  30. }
  31. }