Skip to content

N
newShopBack
Commit a68ca043 authored by 郭勇志's avatar 郭勇志
Browse files
Options

授权判断

parent a28ad944
Show whitespace changes
Inline Side-by-side
Showing with 19 additions and 15 deletions
backend/components/v1/authorizationFilter.php
View file @ a68ca043
...@@ -6,7 +6,8 @@ use Yii; ...@@ -6,7 +6,8 @@ use Yii;
use yii\base\ActionFilter; use yii\base\ActionFilter;
use yii\helpers\StringHelper; use yii\helpers\StringHelper;
use app\models\v1\rbacuser\ShopRbacUser; use app\models\v1\rbacuser\ShopRbacUser;
use yii\web\HttpException; use yii\web\ForbiddenHttpException;
use yii\web\UnauthorizedHttpException;
class authorizationFilter extends ActionFilter class authorizationFilter extends ActionFilter
{ {
public $optional; public $optional;
...@@ -16,6 +17,7 @@ class authorizationFilter extends ActionFilter ...@@ -16,6 +17,7 @@ class authorizationFilter extends ActionFilter
if ($this->isOptional($action)) { if ($this->isOptional($action)) {
return true; return true;
} }
if (isset(Yii::$app->user->identity->GUID)) {
$userGuid = Yii::$app->user->identity->GUID; $userGuid = Yii::$app->user->identity->GUID;
$url = Yii::$app->request->pathInfo; $url = Yii::$app->request->pathInfo;
$shopRbacUser = ShopRbacUser::find() $shopRbacUser = ShopRbacUser::find()
...@@ -30,7 +32,9 @@ class authorizationFilter extends ActionFilter ...@@ -30,7 +32,9 @@ class authorizationFilter extends ActionFilter
if (!empty($shopRbacUser)) { if (!empty($shopRbacUser)) {
return true; return true;
} }
throw new HttpException('403','没有权限访问此接口'); throw new ForbiddenHttpException('没有权限访问此接口');
}
throw new UnauthorizedHttpException();
} }
/** /**
* Checks, whether authentication is optional for the given action. * Checks, whether authentication is optional for the given action.
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment