首页 发现 帮助
注册 登录
Apq
/
ProxyPanel
镜像自地址 https://github.com/ProxyPanel/ProxyPanel.git
1
0
派生 0
文件 工单管理 0 Wiki
目录树: f7db097a06
分支列表 标签列表
ProxyPanel
/
app
/
Http
/
Middleware
/
isForbidden.php

isForbidden.php 3.0 KB
文件历史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Middleware;
    4. 

  4. 

  5. use Agent;
    6. 

  6. use App\Components\IP;
    7. 

  7. use Closure;
    8. 

  8. use Illuminate\Http\Request;
    9. 

  9. use Log;
    10. 

  10. use Response;
    11. 

  11. 

  12. class isForbidden
    13. 

  13. {
    14. 

  14.     /**
    15. 

  15.      * 限制机器人、指定IP访问.
    16. 

  16.      *
    17. 

  17.      * @param  Request  $request
    18. 

  18.      * @param  Closure  $next
    19. 

  19.      * @return mixed
    20. 

  20.      */
    21. 

  21.     public function handle(Request $request, Closure $next)
    22. 

  22.     {
    23. 

  23.         // 拒绝机器人访问
    24. 

  24.         if (sysConfig('is_forbid_robot') && Agent::isRobot()) {
    25. 

  25.             Log::warning('识别到机器人访问('.IP::getClientIp().')');
    26. 

  26. 

  27.             return Response::view('auth.error', ['message' => trans('errors.forbidden.bots')], 403);
    28. 

  28.         }
    29. 

  29. 

  30.         // 拒绝通过订阅链接域名访问网站,防止网站被探测
    31. 

  31.         if (config('app.env') === 'production' && sysConfig('website_url') && ! str_contains(sysConfig('website_url'), $request->getHost())) {
    32. 

  32.             Log::warning('识别到通过订阅链接访问,强制跳转至百度('.IP::getClientIp().')');
    33. 

  33. 

  34.             return redirect('https://www.baidu.com');
    35. 

  35.         }
    36. 

  36. 

  37.         $ip = IP::getClientIP();
    38. 

  38.         $ipLocation = IP::getIPInfo($ip);
    39. 

  39. 

  40.         // 拒绝无IP请求
    41. 

  41.         if (! $ipLocation || empty(array_filter($ipLocation))) {
    42. 

  42.             return Response::view('auth.error', ['message' => trans('errors.forbidden.access')], 403);
    43. 

  43.         }
    44. 

  44. 

  45.         if (! in_array($ipLocation['country'], ['本机地址', '局域网']) && sysConfig('forbid_mode')) {
    46. 

  46.             // 拒绝大陆IP访问
    47. 

  47.             switch (sysConfig('forbid_mode')) {
    48. 

  48.                 case 'ban_mainland':
    49. 

  49.                     if (in_array($ipLocation['country'], ['China', '中国']) && ! in_array($ipLocation['province'], ['香港', '澳门', '台湾', '台湾省'])) {
    50. 

  50.                         Log::warning('识别到大陆IP,拒绝访问:'.$ip);
    51. 

  51. 

  52.                         return Response::view('auth.error', ['message' => trans('errors.forbidden.china')], 403);
    53. 

  53.                     }
    54. 

  54.                     break;
    55. 

  55.                 case 'ban_china':
    56. 

  56.                     if (in_array($ipLocation['country'], ['China', '中国', 'Taiwan', 'Hong Kong', 'Macao'])) {
    57. 

  57.                         Log::warning('识别到中国IP,拒绝访问:'.$ip);
    58. 

  58. 

  59.                         return Response::view('auth.error', ['message' => trans('errors.forbidden.china')], 403);
    60. 

  60.                     }
    61. 

  61.                     break;
    62. 

  62.                 case 'ban_oversea':
    63. 

  63.                     if (! in_array($ipLocation['country'], ['China', '中国', 'Taiwan', 'Hong Kong', 'Macao'])) {
    64. 

  64.                         Log::warning('识别到海外IP,拒绝访问:'.$ip.' - '.$ipLocation['country']);
    65. 

  65. 

  66.                         return Response::view('auth.error', ['message' => trans('errors.forbidden.oversea')], 403);
    67. 

  67.                     }
    68. 

  68.                     break;
    69. 

  69.                 default:
    70. 

  70.                     Log::emergency('未知禁止访问模式!请在系统设置中修改【禁止访问模式】!');
    71. 

  71.                     break;
    72. 

  72.             }
    73. 

  73.         }
    74. 

  74. 

  75.         return $next($request);
    76. 

  76.     }
    77. 

  77. }
    78.