Laravel 5.5 多用户类型嵌套路由组

Question

我有两种用户类型：操作和维护。 Operations 用户类型的所有路由都可以通过 Maintenance 用户类型访问，但并非 Maintenance 拥有的所有路由都无法通过 Operations 访问。

这是我现有的代码。

Route::group(['middleware'=>'maintenance'], function(){
    //routes here

    Route::group(['middleware'=>'operations'], function(){
         //routes here

    });
});

kernel.php

 protected $routeMiddleware = [
    'auth' => \Illuminate\Auth\Middleware\Authenticate::class,
    'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
    'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
    'can' => \Illuminate\Auth\Middleware\Authorize::class,
    'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
    'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
    'revalidate' => \App\Http\Middleware\RevalidateBackHistory::class,
    'dev' => \App\Http\Middleware\isDev::class,
    'operations' => \App\Http\Middleware\operations::class,
    'maintenance' => \App\Http\Middleware\maintenance::class,
];

中间件/操作.php

public function handle($request, Closure $next)
{
    $a = UserAccess::where(['employee_id'=>\Auth::user()->id, 'user_type_id'=>1])->first();
    if($a){
        return $next($request);
    }

    return redirect('/');
}

但它不起作用。维护可以访问它的所有路线，但无权访问操作，并且操作根本无法访问任何路线。

注意：两个组都在 auth 中间件组内

Answer 1

为此找到了解决方法。我创建了另一个满足操作和维护的中间件，方法是向中间件传递两个参数，特别是 1 = 操作和 2 = 维护，并让中间件检查访问。代码如下：

Route::group(['middleware'=>'access:2,2'], function(){
    //Routes that can be accessed by Maintenance user type
});

Route::group(['middleware'=>['access:1,2']], function(){
    //Routes that can be accesed by Operations and Maintenance user type.
});

这是中间件：

public function handle($request, Closure $next, $ops, $main)
{
    $a = UserAccess::where('employee_id',\Auth::user()->id)->whereIn('user_type_id', [$ops, $main])->first();
    if($a){
        return $next($request);
    }

    return redirect('/');
}

编辑：

优化代码以去除参数冗余。

Web.php：

Route::group(['middleware'=>'access:2'], function(){
    //Routes that can be accessed by Maintenance user type
});

Route::group(['middleware'=>['access:1,2']], function(){
    //Routes that can be accesed by Operations and Maintenance user type.
});

access.php

public function handle($request, Closure $next, $ops, $main = 0)
{
    $a = UserAccess::where('employee_id',\Auth::user()->id)->whereIn('user_type_id', [$ops, $main])->first();
    if($a){
        return $next($request);
    }

    return redirect('/');
}

Answer 2

我认为您在 where 查询中遗漏了一个额外的数组，请尝试更改您的 operations 中间件中的代码，如下所示：

$a = UserAccess::where([
         ['employee_id', \Auth::user()->id],
         ['user_type_id', 1]
     ])->first();

编辑：

然后尝试将您的两个middlewares 移动到$middlewareGroups 下面的web 中间件，像这样：

'web' => [
    ...
],
'operations' => \App\Http\Middleware\operations::class,
'maintenance' => \App\Http\Middleware\maintenance::class,

编辑 2：

将$a变量的代码改成这个

$a = UserAccess::where([
         ['employee_id', Auth::user()->id], //Hence there is no \ before Auth
         ['user_type_id', 1]
     ])->first();

然后在同一文件的顶部包含以下use：

use Illuminate\Support\Facades\Auth;

编辑 3：

您可以向request 添加其他参数，然后将其转发，如下所示：

中间件/操作.php

function handle($request, Closure $next) {
    ...
    $request->attributes->add(['passedOperations' => true]);
    return next($next);
}

中间件/maintenance.php

function handle($request, Closure $next) {
    ...
    if($request->get('passedOperations')) {
        return next($next);
    } else {
        //didn't pass operations
    }
}