<?php
declare (strict_types=1);

namespace app\middleware;

use think\facade\Db;

class AuthUser
{
    public function handle($request, \Closure $next)
    {
        $islogin = false;
        $cookie = cookie('user_token');
        $user = null;
        if($cookie && config_get('sys_key')){
            $token=authcode($cookie, 'DECODE', config_get('sys_key'));
            if($token){
                list($type, $uid, $sid, $expiretime) = explode("\t", $token);
                if($type == 'user'){
                    $user = Db::name('user')->where('id', $uid)->find();
                    if($user && $user['status']==1){
                        $session=md5($user['id'].$user['password']);
                        if($session==$sid && $expiretime>time()) {
                            $islogin = true;
                        }
                        $user['type'] = 'user';
                        $user['permission'] = [];
                        if($user['level'] == 1){
                            $user['permission'] = Db::name('permission')->where('uid', $uid)->column('domain');
                        }
                    }
                }elseif($type == 'domain'){
                    $user = Db::name('domain')->where('id', $uid)->find();
                    if($user && $user['is_sso']==1){
                        $session=md5($user['id'].$user['name']);
                        if($session==$sid && $expiretime>time()) {
                            $islogin = true;
                        }
                        $user['username'] = $user['name'];
                        $user['regtime'] = $user['addtime'];
                        $user['type'] = 'domain';
                        $user['level'] = 0;
                        $user['permission'] = [$user['name']];
                    }
                }
            }
        }
        $request->islogin = $islogin;
        $request->user = $user;
        return $next($request);
    }
}