|
| xqd
@@ -30,12 +30,21 @@ class VerifyCsrfToken extends BaseVerifier
|
|
|
// 如果是来自 api 域名,就跳过检查
|
|
|
|
|
|
$QUERY_STRING = explode('/', $_SERVER['QUERY_STRING']);
|
|
|
- print_r($QUERY_STRING);die;
|
|
|
- if ($_SERVER['SERVER_NAME'] != config('api.domain'))
|
|
|
- {
|
|
|
- return parent::handle($request, $next);
|
|
|
+
|
|
|
+ if($QUERY_STRING[0] == 'route=admin' && $QUERY_STRING[1] == 'Base' && $QUERY_STRING[2] == 'Attachment'){
|
|
|
+ return $next($request);
|
|
|
+ }
|
|
|
+
|
|
|
+ if($QUERY_STRING[0] == 'route=wechat'){
|
|
|
+ return $next($request);
|
|
|
}
|
|
|
|
|
|
- return $next($request);
|
|
|
+ if($QUERY_STRING[0] == 'route=notify'){
|
|
|
+ return $next($request);
|
|
|
+ }
|
|
|
+ return parent::handle($request, $next);
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
}
|
|
|
}
|
