ホーム エクスプローラ ヘルプ
登録 サインイン
zhangbj
/
web
Watch 1
Star 0
Fork 0
コード 課題 1 プルリクエスト 0 リリース 0 Wiki Activity
2 コミット
1 ブランチ
ツリー: 97d25c38f3
ブランチ タグ
${ item.name }
Create branch ${ searchTerm }
from '97d25c38f3'
${ noResults }
web/vendor/illuminate/session/Middleware/AuthenticateSession.php

AuthenticateSession.php 2.3KB
履歴 Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 
  1. <?php

  2. 

  3. namespace Illuminate\Session\Middleware;

  4. 

  5. use Closure;

  6. use Illuminate\Auth\AuthenticationException;

  7. use Illuminate\Contracts\Auth\Factory as AuthFactory;

  8. 

  9. class AuthenticateSession

  10. {

  11.     /**

  12.      * The authentication factory implementation.

  13.      *

  14.      * @var \Illuminate\Contracts\Auth\Factory

  15.      */

  16.     protected $auth;

  17. 

  18.     /**

  19.      * Create a new middleware instance.

  20.      *

  21.      * @param  \Illuminate\Contracts\Auth\Factory  $auth

  22.      * @return void

  23.      */

  24.     public function __construct(AuthFactory $auth)

  25.     {

  26.         $this->auth = $auth;

  27.     }

  28. 

  29.     /**

  30.      * Handle an incoming request.

  31.      *

  32.      * @param  \Illuminate\Http\Request  $request

  33.      * @param  \Closure  $next

  34.      * @return mixed

  35.      */

  36.     public function handle($request, Closure $next)

  37.     {

  38.         if (! $request->user() || ! $request->session()) {

  39.             return $next($request);

  40.         }

  41. 

  42.         if ($this->auth->viaRemember()) {

  43.             $passwordHash = explode('|', $request->cookies->get($this->auth->getRecallerName()))[2];

  44. 

  45.             if ($passwordHash != $request->user()->getAuthPassword()) {

  46.                 $this->logout($request);

  47.             }

  48.         }

  49. 

  50.         if (! $request->session()->has('password_hash')) {

  51.             $this->storePasswordHashInSession($request);

  52.         }

  53. 

  54.         if ($request->session()->get('password_hash') !== $request->user()->getAuthPassword()) {

  55.             $this->logout($request);

  56.         }

  57. 

  58.         return tap($next($request), function () use ($request) {

  59.             $this->storePasswordHashInSession($request);

  60.         });

  61.     }

  62. 

  63.     /**

  64.      * Store the user's current password hash in the session.

  65.      *

  66.      * @param  \Illuminate\Http\Request  $request

  67.      * @return void

  68.      */

  69.     protected function storePasswordHashInSession($request)

  70.     {

  71.         if (! $request->user()) {

  72.             return;

  73.         }

  74. 

  75.         $request->session()->put([

  76.             'password_hash' => $request->user()->getAuthPassword(),

  77.         ]);

  78.     }

  79. 

  80.     /**

  81.      * Log the user out of the application.

  82.      *

  83.      * @param  \Illuminate\Http\Request  $request

  84.      * @return void

  85.      *

  86.      * @throws \Illuminate\Auth\AuthenticationException

  87.      */

  88.     protected function logout($request)

  89.     {

  90.         $this->auth->logout();

  91. 

  92.         $request->session()->flush();

  93. 

  94.         throw new AuthenticationException;

  95.     }

  96. }