<?php

/**

 * Created by PhpStorm.

 * User: Administrator

 * Date: 2019/8/15

 * Time: 15:00

 */

namespace app\index\controller;

use app\common\lib\execption\ApiException;

use think\Controller;

class Common extends Controller

{

    public function _initialize(){

        $this->checkRequestAuth();

    }

    public function checkRequestAuth(){

        $header = request()->header();

        ##判断header中基础参数

        if(empty($header['sign'])){

            throw new ApiException('sign不存在',400);

        }

        if(!in_array($header['app_type'],config("app.app_types"))){

            throw new ApiException('app_type不合法',400);

        }

    }

}

 /**

     * 校验SIGN是否正常

     * @param $data

     */

    public static function checkSignPass($data){
　　　　　　##解密

        $str = (new Aes())->decrypt($data['sign']);

        if(empty($str)){

            return false;

        }
　　　　　　##转换为数组

        parse_str($str,$arr);
　　　　　　##判定条件根据需求可增加

        if(!is_array($arr) || empty($arr['did']) || $arr['did'] != $data['did']){

            return false;

        }

        return true;

    }

<?php

/**

 * Created by PhpStorm.

 * User: Administrator

 * Date: 2019/8/15

 * Time: 15:00

 */

namespace app\index\controller;

use app\common\lib\execption\ApiException;

use app\common\lib\IAuth;

use think\Controller;

class Common extends Controller

{

    public $header = '';

    public function _initialize(){

        $this->checkRequestAuth();

    }

    public function checkRequestAuth(){

        $header = request()->header();

        ##判断header中基础参数

        if(empty($header['sign'])){

            throw new ApiException('sign不存在',400);

        }

        if(!in_array($header['apptype'],config("app.app_types"))){

            throw new ApiException('app_type不合法',400);

        }

　　　　　　##调用鉴权类校验sign的准确性

        if(!IAuth::checkSignPass($header)){

            throw new ApiException('授权码sign失败',401);

        }
　　　　　　##如果校验通过 将header值存起来 方便后面使用

        $this->header = $header;

    }

}