TinkPHP 自定义API基控制器类

TinkPHP 自定义API基控制器类

经过几次重构后，得到的精华版本，主要实现了API的token验证，如果接口带了token，则去身份认证，没有带token分两种，一是必须验证，二是无需验证。说这么多是不是有点晕，直接上代码吧！

[php] view plain copy
<?php  
namespace common\controller;  

use think\Cache;  
use think\Controller;  
use think\Request;  
use tools\HttpClient;  


class ApiBaseController extends Controller  
{  
    protected $accessToken;  
    protected $user;  
    protected $userId;  
    protected $loginAuth;  

    protected function _initialize()  
    {  
        $this->accessToken = Request::instance()->header('access-token');  

        if($this->accessToken){    //有token时授权  
            if(strlen($this->accessToken)<24){  
                api(102,"access-token无效！");  
            }  
            $this->authenticate();  
        }else{                     //无token时判断授权  
            if($this->loginAuth){  
                $this->beforeActionList['loginAuth'] = $this->loginAuth; //定义是否登录  
            }else{  
                $this->beforeActionList['loginAuth'] = null;//没有定义时，默认需要登录  
            }  
        }  

    }  

    /** 
     * 登录 
     * @param $user 
     * @return bool 
     */  
    protected function doLogin($user){  
        $this->accessToken = $user['access_token'];  
        $this->user = $user;  
        $this->userId = $user['yunsu_id'];  
        $rt = Cache::set($this->accessToken,$user,10*24*60*60);//token有效期两个小时 调试时间为10天有效  
        if(!$rt)die($rt);  
        return true;  
    }  

    /** 
     * 登录权限 
     */  
    protected function loginAuth(){  
        if($this->accessToken==null){  
            api(101,"该接口需要登录权限！");  
        }  
    }  

    /** 
     *  鉴定身份 
     */  
    protected function authenticate(){  

        $loginUser = Cache::get($this->accessToken);  
        //当本系统无登录时，去总用户系统认证(实现单点登录)  
        if($loginUser==null){  
            $params = config('thirdaccount.users_sys');  
            $loginUser = $this->requestUserServer("/api/user/identityAuth",$params,false);  
            $this->doLogin($loginUser);  
        }  
        if($loginUser){  
            $this->user = $loginUser;  
            $this->userId = $loginUser['yunsu_id'];  
        }  
    }  

    /** 
     * 重写 表单验证 
     */  
    protected function validate($data, $validate, $message = [], $batch = false, $callback = null)  
    {  
        $result = parent::validate($data, $validate, $message, $batch, $callback); // TODO: Change the autogenerated stub  
        if (true !== $result) {  
             error($result);  
        }  
    }  

    /** 
     * 请求用户系统 
     * @param $path 服务器资源路径 例如：/api/user/login 
     * @param null $params 参数 
     * @param bool $isVerify  是否严格验证 
     * @return mixed 
     */  
    protected function requestUserServer($path,$params=null,$isVerify=true){  
        $url = $userHost.$path;  
        if($this->accessToken){  
            if(strpos($url,'?')){  
                $url = $url."&access-token=".$this->accessToken;  
            }else{  
                $url = $url."?access-token=".$this->accessToken;  
            }  
        }  

        if($params){  
            $rt = HttpClient::post($url,$params);  
        }else{  
            $rt = HttpClient::get($url);  
        }  

        $info = json_decode($rt,true);  
        if($info){  
            if($info['code']==100){  
                return $info['data'];  
            }else{  
                if($isVerify){  
                    api($info['code'],"From Users System. ".$info['msg'],$info['data']);  
                }  
            }  
        }  
        error("用户系统异常！".$url);  
    }  
}