ホーム エクスプローラ ヘルプ
サインイン
rainbow
/
community-service
Watch 6
Star 0
Fork 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: fe60126b1c
ブランチ タグ
community-se...
/
app
/
Http
/
Middleware
/
JwtAuthMiddleware.php

JwtAuthMiddleware.php 2.4 KB
履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Middleware;
    4. 

  4. 

  5. use Closure;
    6. 

  6. use Illuminate\Support\Facades\Redis;
    7. 

  7. use Tymon\JWTAuth\Exceptions\JWTException;
    8. 

  8. use Tymon\JWTAuth\Exceptions\TokenExpiredException;
    9. 

  9. use Tymon\JWTAuth\Exceptions\TokenInvalidException;
    10. 

  10. use Tymon\JWTAuth\Facades\JWTAuth;
    11. 

  11. 

  12. class JwtAuthMiddleware
    13. 

  13. {
    14. 

  14.     /**
    15. 

  15.      * Handle an incoming request.
    16. 

  16.      *
    17. 

  17.      * @param  \Illuminate\Http\Request $request
    18. 

  18.      * @param  \Closure $next
    19. 

  19.      * @return mixed
    20. 

  20.      */
    21. 

  21.     public function handle($request, Closure $next)
    22. 

  22.     {
    23. 

  23. 

  24.         try {
    25. 

  25.             $token = JWTAuth::getToken();
    26. 

  26.             if(empty($token)){
    27. 

  27.                 $error = [
    28. 

  28.                     'message' => 'token is required',
    29. 

  29.                     'code' => 401,
    30. 

  30.                 ];
    31. 

  31.                 return response()->json($error)->setStatusCode(401);
    32. 

  32.             }
    33. 

  33.             $data = JWTAuth::decode($token)['user'];
    34. 

  34.             //检测token是否存在黑名单中
    35. 

  35.             if(Redis::zscore('blacklist_token', $token->get())){
    36. 

  36.                 $error = [
    37. 

  37.                     'message' => 'token in blacklist',
    38. 

  38.                     'code' => 401,
    39. 

  39.                 ];
    40. 

  40.                 return response()->json($error)->setStatusCode(401);
    41. 

  41.             }
    42. 

  42. //            if ($data->sign !== md5($data->uid . config('customer.jwt_secret'))) {
    43. 

  43. //                $error = [
    44. 

  44. //                    'message' => 'request is not allow',
    45. 

  45. //                    'code' => 401,
    46. 

  46. //                ];
    47. 

  47. //                return response()->json($error);
    48. 

  48. //            }
    49. 

  49.         } catch (TokenExpiredException $e) {
    50. 

  50.             $error = [
    51. 

  51.                 'message' => 'Token is Expired',
    52. 

  52.                 'code' => 401,
    53. 

  53.             ];
    54. 

  54.             return response()->json($error)->setStatusCode(401);
    55. 

  55.         } catch (TokenInvalidException $e) {
    56. 

  56.             $error = [
    57. 

  57.                 'message' => $e->getMessage(),
    58. 

  58.                 'code' => 401,
    59. 

  59.             ];
    60. 

  60.             return response()->json($error)->setStatusCode(401);
    61. 

  61.         } catch (JWTException $e) {
    62. 

  62.             $error = [
    63. 

  63.                 'message' => $e->getMessage(),
    64. 

  64.                 'code' => 401,
    65. 

  65.             ];
    66. 

  66. 

  67.             return response()->json($error)->setStatusCode(401);
    68. 

  68.         }catch (\Exception $e){
    69. 

  69.             $error = [
    70. 

  70.                 'message' => $e->getMessage(),
    71. 

  71.                 'code' => 401,
    72. 

  72.             ];
    73. 

  73.             return response()->json($error)->setStatusCode(401);
    74. 

  74.         }
    75. 

  75.         return $next($request);
    76. 

  76.     }
    77. 

  77. }
    78. 

  78.