탐색 도움말
가입하기 로그인
zhengwentao
/
game-sdk
1
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
트리: 35371102d5
브랜치 태그
game-sdk
/
simplewind
/
cmf
/
lib
/
Auth.php

Auth.php 4.0 KB
히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118 
  1. <?php
    2. 

  2. // +---------------------------------------------------------------------
    3. 

  3. // | ThinkCMF [ WE CAN DO IT MORE SIMPLE ]
    4. 

  4. // +---------------------------------------------------------------------
    5. 

  5. // | Copyright (c) 2013-2014 http://www.thinkcmf.com All rights reserved.
    6. 

  6. // +---------------------------------------------------------------------
    7. 

  7. // | Licensed ( http://www.apache.org/licenses/LICENSE-2.0 )
    8. 

  8. // +---------------------------------------------------------------------
    9. 

  9. // | Author: Dean <zxxjjforever@163.com>
    10. 

  10. // +---------------------------------------------------------------------
    11. 

  11. namespace cmf\lib;
    12. 

  12. 

  13. use huo\model\user\UserModel;
    14. 

  14. use huolib\constant\CommonConst;
    15. 

  15. use think\Db;
    16. 

  16. 

  17. /**
    18. 

  18.  * ThinkCMF权限认证类
    19. 

  19.  */
    20. 

  20. class Auth {
    21. 

  21.     //默认配置
    22. 

  22.     protected $_config = [];
    23. 

  23. 

  24.     public function __construct() {
    25. 

  25.     }
    26. 

  26. 

  27.     /**
    28. 

  28.      * 检查权限
    29. 

  29.      *
    30. 

  30.      * @param $name     string|array  需要验证的规则列表,支持逗号分隔的权限规则或索引数组
    31. 

  31.      * @param $uid      int           认证用户的id
    32. 

  32.      * @param $relation string    如果为 'or' 表示满足任一条规则即通过验证;如果为 'and'则表示需满足所有规则才能通过验证
    33. 

  33.      *
    34. 

  34.      * @return boolean           通过验证返回true;失败返回false
    35. 

  35.      */
    36. 

  36.     public function check($uid, $name, $relation = 'or') {
    37. 

  37.         if (empty($uid)) {
    38. 

  38.             return false;
    39. 

  39.         }
    40. 

  40.         if ($uid == 1) {
    41. 

  41.             return true;
    42. 

  42.         }
    43. 

  43.         if (is_string($name)) {
    44. 

  44.             $name = strtolower($name);
    45. 

  45.             if (strpos($name, ',') !== false) {
    46. 

  46.                 $name = explode(',', $name);
    47. 

  47.             } else {
    48. 

  48.                 $findAuthRuleCount = Db::name('auth_rule')->where(
    49. 

  49.                     [
    50. 

  50.                         'name' => $name
    51. 

  51.                     ]
    52. 

  52.                 )->count();
    53. 

  53.                 if ($findAuthRuleCount == 0) {//没有规则时,不验证!
    54. 

  54.                     return true;
    55. 

  55.                 }
    56. 

  56.                 $name = [$name];
    57. 

  57.             }
    58. 

  58.         }
    59. 

  59.         $list = []; //保存验证通过的规则名
    60. 

  60. //        $groups = Db::name('RoleUser')
    61. 

  61. //                    ->alias("a")
    62. 

  62. //                    ->join('__ROLE__ r', 'a.role_id = r.id')
    63. 

  63. //                    ->where(["a.user_id" => $uid, "r.status" => CommonConst::STATUS_YES])
    64. 

  64. //                    ->column("role_id");
    65. 

  65.         $_map['id'] = $uid;
    66. 

  66.         $_map['user_status'] = CommonConst::STATUS_YES;
    67. 

  67.         $groups = (new UserModel())->where($_map)->column('role_id');
    68. 

  68.         if (in_array(1, $groups)) {
    69. 

  69.             return true;
    70. 

  70.         }
    71. 

  71.         if (empty($groups)) {
    72. 

  72.             return false;
    73. 

  73.         }
    74. 

  74.         $rules = Db::name('AuthAccess')
    75. 

  75.                    ->alias("a")
    76. 

  76.                    ->join('__AUTH_RULE__ b ', ' a.rule_name = b.name')
    77. 

  77.                    ->where(["a.role_id" => ["in", $groups], "b.name" => ["in", $name]])
    78. 

  78.                    ->select();
    79. 

  79.         foreach ($rules as $rule) {
    80. 

  80.             if (!empty($rule['condition'])) { //根据condition进行验证
    81. 

  81.                 $user = $this->getUserInfo($uid);//获取用户信息,一维数组
    82. 

  82.                 $command = preg_replace('/\{(\w*?)\}/', '$user[\'\\1\']', $rule['condition']);
    83. 

  83.                 //dump($command);//debug
    84. 

  84.                 @(eval('$condition=('.$command.');'));
    85. 

  85.                 if ($condition) {
    86. 

  86.                     $list[] = strtolower($rule['name']);
    87. 

  87.                 }
    88. 

  88.             } else {
    89. 

  89.                 $list[] = strtolower($rule['name']);
    90. 

  90.             }
    91. 

  91.         }
    92. 

  92.         if ($relation == 'or' and !empty($list)) {
    93. 

  93.             return true;
    94. 

  94.         }
    95. 

  95.         $diff = array_diff($name, $list);
    96. 

  96.         if ($relation == 'and' and empty($diff)) {
    97. 

  97.             return true;
    98. 

  98.         }
    99. 

  99. 

  100.         return false;
    101. 

  101.     }
    102. 

  102. 

  103.     /**
    104. 

  104.      * 获得用户资料
    105. 

  105.      *
    106. 

  106.      * @param $uid
    107. 

  107.      *
    108. 

  108.      * @return mixed
    109. 

  109.      */
    110. 

  110.     private function getUserInfo($uid) {
    111. 

  111.         static $userInfo = [];
    112. 

  112.         if (!isset($userInfo[$uid])) {
    113. 

  113.             $userInfo[$uid] = Db::name('user')->where(['id' => $uid])->find();
    114. 

  114.         }
    115. 

  115. 

  116.         return $userInfo[$uid];
    117. 

  117.     }
    118. 

  118. }
    119.