mirror of
https://gitee.com/ctexthuang/hyperf_rbac_framework_server_ctexthuang.git
synced 2025-12-25 23:57:49 +08:00
96 lines
2.8 KiB
PHP
96 lines
2.8 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Middleware\Token;
|
|
|
|
use App\Common\Interface\CheckTokenInterface;
|
|
use App\Common\Interface\JwtInterface;
|
|
use App\Constants\ResultCode;
|
|
use App\Exception\ErrException;
|
|
use App\Lib\Jwt\JwtFactory;
|
|
use Hyperf\Collection\Arr;
|
|
use Hyperf\Stringable\Str;
|
|
use Lcobucci\JWT\Token;
|
|
use Lcobucci\JWT\UnencryptedToken;
|
|
use Lcobucci\JWT\Validation\RequiredConstraintsViolated;
|
|
use Psr\Container\ContainerInterface;
|
|
use Psr\Http\Message\ResponseInterface;
|
|
use Psr\Http\Message\ServerRequestInterface;
|
|
use Psr\Http\Server\RequestHandlerInterface;
|
|
use Swow\Psr7\Message\ServerRequestPlusInterface;
|
|
use function Hyperf\Support\value;
|
|
|
|
abstract class AbstractTokenMiddleware
|
|
{
|
|
public function __construct(
|
|
protected ContainerInterface $container,
|
|
protected readonly JwtFactory $jwtFactory,
|
|
protected readonly CheckTokenInterface $checkToken,
|
|
) {}
|
|
|
|
public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
|
|
{
|
|
$token = $this->parserToken($request);
|
|
$this->checkToken->checkJwt($token);
|
|
$this->checkIssuer($token);
|
|
|
|
$this->setContext($token);
|
|
|
|
return $handler->handle(
|
|
value(
|
|
static function (ServerRequestPlusInterface $request, UnencryptedToken $token) {
|
|
return $request->setAttribute('token', $token);
|
|
},
|
|
$request,
|
|
$token
|
|
)
|
|
);
|
|
}
|
|
|
|
/**
|
|
* @param UnencryptedToken $token
|
|
* @return void
|
|
*/
|
|
abstract public function checkIssuer(UnencryptedToken $token): void;
|
|
|
|
abstract public function getJwt(): JwtInterface;
|
|
|
|
/**
|
|
* @param UnencryptedToken $token
|
|
* @return void
|
|
*/
|
|
abstract public function setContext(UnencryptedToken $token): void;
|
|
|
|
/**
|
|
* @param ServerRequestInterface $request
|
|
* @return Token
|
|
*/
|
|
protected function parserToken(ServerRequestInterface $request): Token
|
|
{
|
|
try {
|
|
return $this->getJwt()->parserAccessToken($this->getToken($request));
|
|
} catch (RequiredConstraintsViolated $e) {
|
|
throw new ErrException('token过期',ResultCode::JWT_EXPIRED,['err_msg' => $e->getMessage()]);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* @param ServerRequestInterface $request
|
|
* @return string
|
|
*/
|
|
protected function getToken(ServerRequestInterface $request): string
|
|
{
|
|
if ($request->hasHeader('Authorization')) {
|
|
return Str::replace('Bearer ', '', $request->getHeaderLine('Authorization'));
|
|
}
|
|
if ($request->hasHeader('token')) {
|
|
return $request->getHeaderLine('token');
|
|
}
|
|
if (Arr::has($request->getQueryParams(), 'token')) {
|
|
return $request->getQueryParams()['token'];
|
|
}
|
|
return '';
|
|
}
|
|
}
|