Home Explore
Register Sign In
wangjunchong
/
JDF_ElectronicPublicity_admin
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
JDF_Electron...
/
app
/
admin
/
middleware
/
AllowCrossDomain.php

AllowCrossDomain.php 3.1 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586 
  1. <?php
    2. 

  2. // | ThinkPHP [ WE CAN DO IT JUST THINK ]
    3. 

  3. // +----------------------------------------------------------------------
    4. 

  4. // | Copyright (c) 2006~2021 http://thinkphp.cn All rights reserved.
    5. 

  5. // +----------------------------------------------------------------------
    6. 

  6. // | Licensed ( http://www.apache.org/licenses/LICENSE-2.0 )
    7. 

  7. // +----------------------------------------------------------------------
    8. 

  8. // | Author: liu21st <liu21st@gmail.com>
    9. 

  9. // +----------------------------------------------------------------------
    10. 

  10. declare (strict_types = 1);
    11. 

  11. 

  12. namespace app\admin\middleware;
    13. 

  13. 

  14. use Closure;
    15. 

  15. use think\Config;
    16. 

  16. use think\Request;
    17. 

  17. use think\Response;
    18. 

  18. use Firebase\JWT\Key;
    19. 

  19. use Firebase\JWT\JWT;
    20. 

  20. /**
    21. 

  21.  * 跨域请求支持
    22. 

  22.  */
    23. 

  23. class AllowCrossDomain
    24. 

  24. {
    25. 

  25.     protected $cookieDomain;
    26. 

  26. 		protected $jwtOpen;
    27. 

  27. 		protected $jwtSalt;
    28. 

  28.     protected $header = [
    29. 

  29.         'Access-Control-Allow-Origin'       =>'*',
    30. 

  30.         // 'Access-Control-Allow-Origin'       =>'127.0.0.1',
    31. 

  31.         'Access-Control-Allow-Credentials'  => 'true',
    32. 

  32.         'Access-Control-Max-Age'            => 1800,
    33. 

  33.         'Access-Control-Allow-Methods'      => 'GET, POST, PATCH, PUT, DELETE',
    34. 

  34.         'Access-Control-Allow-Headers'      => 'Accept,token, Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With',
    35. 

  35.     ];
    36. 

  36.     public function __construct(Config $config)
    37. 

  37.     {
    38. 

  38.         $this->cookieDomain = $config->get('cookie.domain', '');
    39. 

  39.         $this->jwtOpen = $config->get('develop.jwt_open', '');
    40. 

  40.         $this->jwtSalt = $config->get('develop.jwt_salt', '');
    41. 

  41.     }
    42. 

  42.     /**
    43. 

  43.      * 允许跨域请求
    44. 

  44.      * @access public
    45. 

  45.      * @param array
    46. 

  46.      * @param Closure $next
    47. 

  47.      * @param array   $header
    48. 

  48.      * @return Response
    49. 

  49.      */
    50. 

  50.     public function handle($request, Closure $next, ? array $header = [])
    51. 

  51.     {
    52. 

  52.         $header = !empty($header) ? array_merge($this->header, $header) : $this->header;
    53. 

  53.         if (!isset($header['Access-Control-Allow-Origin'])) {
    54. 

  54.             $origin = $request->header('origin');
    55. 

  55.             if ($origin && ('' == $this->cookieDomain || strpos($origin, $this->cookieDomain))) {
    56. 

  56.                 $header['Access-Control-Allow-Origin'] = $origin;
    57. 

  57.             } else {
    58. 

  58.                 $header['Access-Control-Allow-Origin'] = '*';
    59. 

  59.             }
    60. 

  60.         }
    61. 

  61. 				if($this->jwtOpen && $request->isPost()){
    62. 

  62. 					$input = $request->getInput();
    63. 

  63. 					$input = str_replace("\"",'',$input);
    64. 

  64. 					if(count(explode('.',$input))==3){
    65. 

  65. 						$input = $request->param('jwtData');
    66. 

  66. 						$salt = hash('sha256',$this->jwtSalt);
    67. 

  67. 						$data = JWT::decode($input, new Key($salt, 'HS256'),array('HS256'));
    68. 

  68. 						$data = json_decode(json_encode($data,JSON_UNESCAPED_UNICODE | JSON_PRETTY_PRINT),true);
    69. 

  69. 					}
    70. 

  70. 				}elseif($request->isGet()){
    71. 

  71. 					$input = $request->get();
    72. 

  72. 					$data = $input;
    73. 

  73. 				}else{
    74. 

  74. 					$input = $request->getInput();
    75. 

  75. 					$data = !empty($input)?json_decode($input,true):[];
    76. 

  76. 				}
    77. 

  77. 				if(!empty($data)){
    78. 

  78. 					if($request->isPost()){
    79. 

  79. 						$request->withPost($data);
    80. 

  80. 					}elseif($request->isGet()){
    81. 

  81. 						$request->withGet($data);
    82. 

  82. 					}
    83. 

  83. 				}
    84. 

  84.         return $next($request)->header($header);
    85. 

  85.     }
    86. 

  86. }
    87.