Home Explore Help
Register Sign In
lizhen
/
yanxuebaoming
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c58d44f59f
Branches Tags
yanxuebaoming
/
vendor
/
karsonzhang
/
fastadmin-addons
/
src
/
addons
/
Controller.php

Controller.php 6.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210 
  1. <?php
    2. 

  2. 

  3. namespace think\addons;
    4. 

  4. 

  5. use app\common\library\Auth;
    6. 

  6. use think\Config;
    7. 

  7. use think\Hook;
    8. 

  8. use think\Lang;
    9. 

  9. use think\Loader;
    10. 

  10. use think\Request;
    11. 

  11. use think\Validate;
    12. 

  12. 

  13. /**
    14. 

  14.  * 插件基类控制器
    15. 

  15.  * @package think\addons
    16. 

  16.  */
    17. 

  17. class Controller extends \think\Controller
    18. 

  18. {
    19. 

  19. 

  20.     // 当前插件操作
    21. 

  21.     protected $addon = null;
    22. 

  22.     protected $controller = null;
    23. 

  23.     protected $action = null;
    24. 

  24.     // 当前template
    25. 

  25.     protected $template;
    26. 

  26. 

  27.     /**
    28. 

  28.      * 无需登录的方法,同时也就不需要鉴权了
    29. 

  29.      * @var array
    30. 

  30.      */
    31. 

  31.     protected $noNeedLogin = ['*'];
    32. 

  32. 

  33.     /**
    34. 

  34.      * 无需鉴权的方法,但需要登录
    35. 

  35.      * @var array
    36. 

  36.      */
    37. 

  37.     protected $noNeedRight = ['*'];
    38. 

  38. 

  39.     /**
    40. 

  40.      * 权限Auth
    41. 

  41.      * @var Auth
    42. 

  42.      */
    43. 

  43.     protected $auth = null;
    44. 

  44. 

  45.     /**
    46. 

  46.      * 布局模板
    47. 

  47.      * @var string
    48. 

  48.      */
    49. 

  49.     protected $layout = null;
    50. 

  50. 

  51.     /**
    52. 

  52.      * 架构函数
    53. 

  53.      * @param Request $request Request对象
    54. 

  54.      * @access public
    55. 

  55.      */
    56. 

  56.     public function __construct(Request $request = null)
    57. 

  57.     {
    58. 

  58.         if (is_null($request)) {
    59. 

  59.             $request = Request::instance();
    60. 

  60.         }
    61. 

  61.         // 生成request对象
    62. 

  62.         $this->request = $request;
    63. 

  63. 

  64.         //移除HTML标签
    65. 

  65.         $this->request->filter('trim,strip_tags,htmlspecialchars');
    66. 

  66. 

  67.         // 是否自动转换控制器和操作名
    68. 

  68.         $convert = Config::get('url_convert');
    69. 

  69. 

  70.         $filter = $convert ? 'strtolower' : 'trim';
    71. 

  71.         // 处理路由参数
    72. 

  72.         $param = $this->request->param();
    73. 

  73.         $dispatch = $this->request->dispatch();
    74. 

  74.         $var = isset($dispatch['var']) ? $dispatch['var'] : [];
    75. 

  75.         $var = array_merge($param, $var);
    76. 

  76.         if (isset($dispatch['method']) && substr($dispatch['method'][0], 0, 7) == "\\addons") {
    77. 

  77.             $arr = explode("\\", $dispatch['method'][0]);
    78. 

  78.             $addon = strtolower($arr[2]);
    79. 

  79.             $controller = strtolower(end($arr));
    80. 

  80.             $action = $dispatch['method'][1];
    81. 

  81.         } else {
    82. 

  82.             $addon = isset($var['addon']) ? $var['addon'] : '';
    83. 

  83.             $controller = isset($var['controller']) ? $var['controller'] : '';
    84. 

  84.             $action = isset($var['action']) ? $var['action'] : '';
    85. 

  85.         }
    86. 

  86. 

  87.         $this->addon = $addon ? call_user_func($filter, $addon) : '';
    88. 

  88.         $this->controller = $controller ? call_user_func($filter, $controller) : 'index';
    89. 

  89.         $this->action = $action ? call_user_func($filter, $action) : 'index';
    90. 

  90. 

  91.         // 重置配置
    92. 

  92.         Config::set('template.view_path', ADDON_PATH . $this->addon . DS . 'view' . DS);
    93. 

  93. 

  94.         // 父类的调用必须放在设置模板路径之后
    95. 

  95.         parent::__construct($this->request);
    96. 

  96.     }
    97. 

  97. 

  98.     protected function _initialize()
    99. 

  99.     {
    100. 

  100.         // 检测IP是否允许
    101. 

  101.         if (function_exists("check_ip_allowed")) {
    102. 

  102.             check_ip_allowed();
    103. 

  103.         }
    104. 

  104. 

  105.         // 渲染配置到视图中
    106. 

  106.         $config = get_addon_config($this->addon);
    107. 

  107.         $this->view->assign("config", $config);
    108. 

  108. 

  109.         $lang = $this->request->langset();
    110. 

  110.         $lang = preg_match("/^([a-zA-Z\-_]{2,10})\$/i", $lang) ? $lang : 'zh-cn';
    111. 

  111. 

  112.         // 加载系统语言包
    113. 

  113.         Lang::load([
    114. 

  114.             ADDON_PATH . $this->addon . DS . 'lang' . DS . $lang . EXT,
    115. 

  115.         ]);
    116. 

  116. 

  117.         // 设置替换字符串
    118. 

  118.         $cdnurl = Config::get('site.cdnurl');
    119. 

  119.         $this->view->replace('__ADDON__', $cdnurl . "/assets/addons/" . $this->addon);
    120. 

  120. 

  121.         $this->auth = Auth::instance();
    122. 

  122.         // token
    123. 

  123.         $token = $this->request->server('HTTP_TOKEN', $this->request->request('token', \think\Cookie::get('token')));
    124. 

  124. 

  125.         $path = 'addons/' . $this->addon . '/' . str_replace('.', '/', $this->controller) . '/' . $this->action;
    126. 

  126.         // 设置当前请求的URI
    127. 

  127.         $this->auth->setRequestUri($path);
    128. 

  128.         // 检测是否需要验证登录
    129. 

  129.         if (!$this->auth->match($this->noNeedLogin)) {
    130. 

  130.             //初始化
    131. 

  131.             $this->auth->init($token);
    132. 

  132.             //检测是否登录
    133. 

  133.             if (!$this->auth->isLogin()) {
    134. 

  134.                 $this->error(__('Please login first'), 'index/user/login');
    135. 

  135.             }
    136. 

  136.             // 判断是否需要验证权限
    137. 

  137.             if (!$this->auth->match($this->noNeedRight)) {
    138. 

  138.                 // 判断控制器和方法判断是否有对应权限
    139. 

  139.                 if (!$this->auth->check($path)) {
    140. 

  140.                     $this->error(__('You have no permission'));
    141. 

  141.                 }
    142. 

  142.             }
    143. 

  143.         } else {
    144. 

  144.             // 如果有传递token才验证是否登录状态
    145. 

  145.             if ($token) {
    146. 

  146.                 $this->auth->init($token);
    147. 

  147.             }
    148. 

  148.         }
    149. 

  149. 

  150.         // 如果有使用模板布局
    151. 

  151.         if ($this->layout) {
    152. 

  152.             $this->view->engine->layout('layout/' . $this->layout);
    153. 

  153.         }
    154. 

  154. 

  155.         $this->view->assign('user', $this->auth->getUser());
    156. 

  156. 

  157.         $site = Config::get("site");
    158. 

  158. 

  159.         $upload = \app\common\model\Config::upload();
    160. 

  160. 

  161.         // 上传信息配置后
    162. 

  162.         Hook::listen("upload_config_init", $upload);
    163. 

  163.         Config::set('upload', array_merge(Config::get('upload'), $upload));
    164. 

  164. 

  165.         // 加载当前控制器语言包
    166. 

  166.         $this->assign('site', $site);
    167. 

  167.     }
    168. 

  168. 

  169.     /**
    170. 

  170.      * 加载模板输出
    171. 

  171.      * @access protected
    172. 

  172.      * @param string $template 模板文件名
    173. 

  173.      * @param array  $vars     模板输出变量
    174. 

  174.      * @param array  $replace  模板替换
    175. 

  175.      * @param array  $config   模板参数
    176. 

  176.      * @return mixed
    177. 

  177.      */
    178. 

  178.     protected function fetch($template = '', $vars = [], $replace = [], $config = [])
    179. 

  179.     {
    180. 

  180.         $controller = Loader::parseName($this->controller);
    181. 

  181.         if ('think' == strtolower(Config::get('template.type')) && $controller && 0 !== strpos($template, '/')) {
    182. 

  182.             $depr = Config::get('template.view_depr');
    183. 

  183.             $template = str_replace(['/', ':'], $depr, $template);
    184. 

  184.             if ('' == $template) {
    185. 

  185.                 // 如果模板文件名为空 按照默认规则定位
    186. 

  186.                 $template = str_replace('.', DS, $controller) . $depr . $this->action;
    187. 

  187.             } elseif (false === strpos($template, $depr)) {
    188. 

  188.                 $template = str_replace('.', DS, $controller) . $depr . $template;
    189. 

  189.             }
    190. 

  190.         }
    191. 

  191.         return parent::fetch($template, $vars, $replace, $config);
    192. 

  192.     }
    193. 

  193. 

  194.     /**
    195. 

  195.      * 刷新Token
    196. 

  196.      */
    197. 

  197.     protected function token()
    198. 

  198.     {
    199. 

  199.         $token = $this->request->param('__token__');
    200. 

  200. 

  201.         //验证Token
    202. 

  202.         if (!Validate::make()->check(['__token__' => $token], ['__token__' => 'require|token'])) {
    203. 

  203.             $this->error(__('Token verification error'), '', ['__token__' => $this->request->token()]);
    204. 

  204.         }
    205. 

  205. 

  206.         //刷新Token
    207. 

  207.         $this->request->token();
    208. 

  208.     }
    209. 

  209. 

  210. }
    211.