gitee/course-tencent-cloud
1
0
Fork 0
mirror of https://gitee.com/koogua/course-tencent-cloud.git synced 2025-06-24 04:01:31 +08:00
Code Issues Releases Wiki Activity
course-tencent-cloud/app/Validators/Security.php
xiaochong0302 98cc8da285 1.精简AccountSearchTrait 
2.优化CsrfToken
3.优化kg_setting
4.修正CommentInfo
2024-12-02 17:14:31 +08:00

73 lines
1.8 KiB
PHP
Raw Blame History

<?php
/**
* @copyright Copyright (c) 2021 深圳市酷瓜软件有限公司
* @license https://opensource.org/licenses/GPL-2.0
* @link https://www.koogua.com
*/
namespace App\Validators;
use App\Exceptions\BadRequest as BadRequestException;
use App\Exceptions\ServiceUnavailable as ServiceUnavailableException;
use App\Library\CsrfToken as CsrfTokenService;
use App\Services\Throttle as ThrottleService;
class Security extends Validator
{
public function checkCsrfToken()
{
$route = $this->router->getMatchedRoute();
$headerToken = $this->request->getHeader('X-Csrf-Token');
$postToken = $this->request->getPost('csrf_token');
if (in_array($route->getName(), $this->getCsrfWhitelist())) {
return true;
}
$service = new CsrfTokenService();
$result = false;
if ($headerToken) {
$result = $service->checkToken($headerToken);
} elseif ($postToken) {
$result = $service->checkToken($postToken);
}
if (!$result) {
throw new BadRequestException('security.invalid_csrf_token');
}
return true;
}
public function checkHttpReferer()
{
$refererHost = parse_url($this->request->getHttpReferer(), PHP_URL_HOST);
$httpHost = preg_replace('/:\d+/', '', $this->request->getHttpHost());
if ($refererHost != $httpHost) {
throw new BadRequestException('security.invalid_http_referer');
}
}
public function checkRateLimit()
{
$service = new ThrottleService();
$result = $service->checkRateLimit();
if (!$result) {
throw new ServiceUnavailableException('security.too_many_requests');
}
}
protected function getCsrfWhitelist()
{
return [];
}
}
Reference in New Issue View Git Blame Copy Permalink