Inicio Explorar Axuda
Rexistro Iniciar sesión
ITTEC
/
SistemaMantenimiento
3
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 506f47802b
Ramas Etiquetas
SistemaMante...
/
sistema-mantenimiento-back
/
app
/
Http
/
Middleware
/
JWTMiddleware.php

JWTMiddleware.php 2.2 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Middleware;
    4. 

  4. 

  5. use Closure;
    6. 

  6. use Illuminate\Http\Request;
    7. 

  7. use Illuminate\Support\Carbon;
    8. 

  8. use Illuminate\Support\Facades\DB;
    9. 

  9. 

  10. use Firebase\JWT\JWT;
    11. 

  11. use Firebase\JWT\Key;
    12. 

  12. 

  13. use App\Http\Controllers\ResponseController;
    14. 

  14. 

  15. class JWTMiddleware{
    16. 

  16.     private $responseController;
    17. 

  17.     private $publicKey = "zOgD0uF22+xg37nTmA+bg/6/E80BJYeHeByGpeTrNFw=";
    18. 

  18.     /**
    19. 

  19.      * Handle an incoming request.
    20. 

  20.      *
    21. 

  21.      * @param  \Illuminate\Http\Request  $request
    22. 

  22.      * @param  \Closure(\Illuminate\Http\Request): (\Illuminate\Http\Response|\Illuminate\Http\RedirectResponse)  $next
    23. 

  23.      * @return \Illuminate\Http\Response|\Illuminate\Http\RedirectResponse
    24. 

  24.      */
    25. 

  25.     public function __construct($responseController = new ResponseController()){
    26. 

  26.         $this->responseController = $responseController;
    27. 

  27.     }
    28. 

  28. 

  29.     public function handle(Request $request, Closure $next){
    30. 

  30.         $auth = $request->header('Authorization');
    31. 

  31.         if(is_null($auth)){
    32. 

  32.             return $this->responseController->makeResponse(true, "No se encontró el token de autorización.", [], 401);
    33. 

  33.         }else if(!str_contains($auth, "Bearer")){
    34. 

  34.             return $this->responseController->makeResponse(true, "No se encontró el token de autorización.", [], 401);
    35. 

  35.         }
    36. 

  36. 

  37.         $token = str_replace("Bearer ", "", $auth);
    38. 

  38.         if(strlen($token) < 234){
    39. 

  39.             return $this->responseController->makeResponse(true, "Token inválido.", [], 401);
    40. 

  40.         }
    41. 

  41. 

  42.         $decoded = JWT::decode($token, new Key($this->publicKey, 'EdDSA'));
    43. 

  43.         $now = Carbon::now('America/Mexico_city')->timestamp;
    44. 

  44. 

  45.         $usr = DB::table('samusua')->where('USUA_EMAI', '=', $decoded->iss)->first();
    46. 

  46.         if(is_null($usr)){
    47. 

  47.             return $this->responseController->makeResponse(true, "El usuario que generó el token no está registrado en la base.", [], 401);
    48. 

  48.         }
    49. 

  49. 

  50.         if($decoded->aud != "dominio.syp.mx"){
    51. 

  51.             return $this->responseController->makeResponse(true, "El token no fue generado en este sistema.", [], 401);
    52. 

  52.         }
    53. 

  53. 

  54.         if($now > $decoded->cad){
    55. 

  55.             return $this->responseController->makeResponse(true, "Token expirado.", [], 401);
    56. 

  56.         }
    57. 

  57.         
    58. 

  58.         return $next($request);
    59. 

  59.     }
    60. 

  60. }
    61.