优化keeptime和allowFields配置

2025-06-30 11:25:47 +08:00 · 2025-06-30 11:25:47 +08:00 · 60e643ff4a
parent d1dfff490b
commit 60e643ff4a
2 changed files with 11 additions and 4 deletions
--- a/application/common/library/Auth.php
+++ b/application/common/library/Auth.php
@ -26,7 +26,7 @@ class Auth
    //默认配置
    protected $config = [];
    protected $options = [];
-    protected $allowFields = ['id', 'username', 'nickname', 'mobile', 'avatar', 'score'];
+    protected $allowFields = [];

    public function __construct($options = [])
    {
@ -34,6 +34,9 @@ class Auth
            $this->config = array_merge($this->config, $config);
        }
        $this->options = array_merge($this->config, $options);
+
+        $this->keeptime = config('fastadmin.user_login_keeptime') ?? 259200;
+        $this->allowFields = config('fastadmin.user_allow_fields') ?? ['id', 'username', 'nickname', 'mobile', 'avatar', 'score'];
    }

    /**
@ -183,7 +186,7 @@ class Auth
            $this->_user = User::get($user->id);

            //设置Token
-            $this->_token = Random::uuid();
+            $this->_token = Random::uuid($user->id);
            Token::set($this->_token, $user->id, $this->keeptime);

            //设置登录状态
@ -324,7 +327,7 @@ class Auth

                $this->_user = $user;

-                $this->_token = Random::uuid();
+                $this->_token = Random::uuid($user->id);
                Token::set($this->_token, $user->id, $this->keeptime);

                $this->_logined = true;
@ -360,7 +363,7 @@ class Auth
        foreach ($ruleList as $k => $v) {
            $rules[] = $v['name'];
        }
-        $url = ($module ? $module : request()->module()) . '/' . (is_null($path) ? $this->getRequestUri() : $path);
+        $url = ($module ?: request()->module()) . '/' . (is_null($path) ? $this->getRequestUri() : $path);
        $url = strtolower(str_replace('.', '/', $url));
        return in_array($url, $rules);
    }
--- a/application/config.php
+++ b/application/config.php
@ -277,6 +277,10 @@ return [
        'user_api_captcha'      => false,
        //会员登录默认类型,支持mobile和account
        'user_login_type'       => 'account',
+        //会员登录有效期时长(秒)
+        'user_login_keeptime'   => 2592000,
+        //会员允许输出的字段
+        'user_allow_fields'     => ['id', 'username', 'nickname', 'mobile', 'avatar', 'score'],
        //用户注册协议
        'user_register_agreement' => true,
        //会员主页URL规则，{uid}表示用户的ID