/** * 合法性检查 */ private function valid() { $file = $this->file; $data = array(); $data["success"] = true; //判断文件是否正确 if (empty($file)) { throw new MiniException(1100); } //判断用户是否有访问该文件的权限 // if($this->user["id"]!=$file["user_id"]){ //当前判断的是用户是否文件拥有者进行判断 // throw new MiniException(1101); // } //本域自身使用无限制 $currentHost = MiniHttp::getMiniHost(); if (strpos($currentHost, $this->originDomain) === false) { $model = new MiniChooserForm(); if ($model->validKey($this->originDomain, $this->appKey) !== true) { throw new MiniException(1102); } } return $data; }
/** * 验证chooser是否有效 */ public function chooserValid() { $valid = false; $url = MiniHttp::getParam("key", ""); $params = explode('/', $url); if (count($params) > 9) { $originDomain = $params[3]; $appKey = $params[9]; //本域自身使用无限制 $currentHost = MiniHttp::getMiniHost(); if (strpos($currentHost, $originDomain) !== false) { $valid = true; } else { $model = new MiniChooserForm(); if ($model->validKey($originDomain, $appKey) === true) { $valid = true; } } } if ($valid === false) { throw new MiniException(1301); } return array('success' => true); }