wh-api/app/Service/SysService.php

<?php
/**
 * Author: ykxiao
 * Date: 2025/6/4
 * Time: 上午9:51
 * Description:
 *
 * (c) ykxiao <yk_9001@hotmail.com>
 *
 * This source file is subject to the MIT license that is bundled
 * with this source code in the file LICENSE.
 */

declare(strict_types=1);

namespace App\Service;

use App\Repository\Company\CompanyModulesRepository;
use Hyperf\Config\Annotation\Value;
use Hyperf\Di\Annotation\Inject;
use Hyperf\HttpServer\Router\Dispatched;
use Psr\Http\Message\ServerRequestInterface;
use function Hyperf\Collection\collect;

/**
 * Author: ykxiao
 * Date: 2025/6/4
 * Time: 上午10:19
 * Description: 系统服务
 *
 * (c) ykxiao <yk_9001@hotmail.com>
 *
 * This source file is subject to the MIT license that is bundled
 * with this source code in the file LICENSE.
 */
class SysService
{
    #[Inject]
    protected RelatedInfo $relatedInfo;

    #[Inject]
    protected CompanyModulesRepository $companyModulesRepository;

    #[Value('menu.menu')]
    protected array $menu;

    #[Value('menu.data_permissions')]
    protected array $dataPermissions;

    public function getDefaultMenu(): array
    {
        $list = treeToList($this->menu);
        foreach ($list as $item => $value) {
            $code = $value['meta']['code'];
            $value['meta']['data_permission'] = [];
            if (array_key_exists($code, $this->dataPermissions)) {
                $value['meta']['data_permission'] = $this->dataPermissions[$code];
            }
            $list[$item] = $value;
        }
        return $list;
    }

    /**
     * 获取当前方法名
     * @param ServerRequestInterface $request
     * @return string
     */
    public function method(ServerRequestInterface $request): string
    {
        $dispatched = $request->getAttribute(Dispatched::class);

        $method = null;
        if ($dispatched instanceof Dispatched) {
            $handler = $dispatched->handler->callback ?? null;
            if ($handler) {
                $method = $handler[1];
            }
        }
        return $method;
    }

    /**
     * 获取当前用户的角色权限。
     * @param array $user
     * @return array
     */
    public function roleAction(array $user): array
    {
        // 获取用户角色拥有的菜单权限
        $default_menu = (new SysService())->getDefaultMenu();
        return collect($default_menu)
            ->whereIn('meta.code', $this->menuPermissions($user))
            ->pluck('actions')
            ->collapse()
            ->toArray();
    }

    /**
     * 获取用户的菜单权限。
     *
     * @param mixed $user 用户信息，预期包含用户ID
     * @return array 返回一个包含用户所有菜单权限的数组
     */
    public function menuPermissions(mixed $user): array
    {
        // 获取用户角色的所有权限
        $role_permissions = $this->relatedInfo->getRolePermissions($user['id']);

        // 收集角色权限码，去除重复，转换为数组格式后返回
        return $role_permissions
            ->pluck('role_permission_code')
            ->collapse()
            ->unique()
            ->toArray();
    }

    /**
     * 菜单权限。
     * 该函数用于获取指定用户的菜单权限。
     *
     * @param mixed $user 用户信息，预期为包含用户ID的数组或对象
     * @return array 返回一个包含用户菜单权限动作的数组
     */
    public function dataPermissions(mixed $user): array
    {
        $dataPermissions = $this->relatedInfo->dataPermissions($user['id']);

        // 获取并转换用户的所有数据权限
        return collect($dataPermissions)
            ->pluck('data_permissions')
            ->collapse()
            ->toArray();
    }

    /**
     * 获取客户端IP信息
     * @param ServerRequestInterface $request
     * @return string
     */
    public function getClientIpInfo(ServerRequestInterface $request): string
    {
        // 尝试从请求头获取客户端真实IP或转发的IP
        $realIP = $request->getHeaderLine('x-real-ip');
        $forwardedFor = $request->getHeaderLine('x-forwarded-for');
        // 确定客户端IP，优先使用 x-real-ip，其次是 x-forwarded-for，最后是默认IP
        $clientIP = $realIP ?: $forwardedFor;

        return $clientIP ?: '127.0.0.1';
    }

    /**
     * 验证平台管理员权限。
     */
    public function verifyPlatformAdmin(mixed $user, mixed $request): bool
    {
        $companyInfo = $user['company_info'];
        $module = $this->companyModulesRepository->codeList($companyInfo['id']);

        // 菜单权限
        $default_menu = (new SysService())->getDefaultMenu();
        $role_permissions_result = collect($default_menu)
            ->whereIn('meta.code', $module['role_permission_code'])
            ->flatMap(fn($item) => $item['actions'])
            ->toArray();

        $data_permissions_result = collect($module['data_permission_code'])
            ->pluck('actions')
            ->toArray();

        $method = $this->method($request);
        if ($method) {
            return in_array($method, $role_permissions_result, true) || in_array($method, $data_permissions_result, true);
        }

        return false;
    }
}