Merge pull request #2523 from jxlwqq/master

操作日志可按 Method 类型判断是否记录
z-song · Sep 19, 2018 · 1c185b8 · 1c185b8
2 parents 5385b41 + 6708e5b
commit 1c185b8
Show file tree

Hide file tree

Showing 2 changed files with 25 additions and 1 deletion.
diff --git a/config/admin.php b/config/admin.php
@@ -182,6 +182,11 @@
 
         'enable' => true,
 
+        /*
+         * Only logging allowed methods in the list
+         */
+        'allowed_methods' => ['GET', 'HEAD', 'POST', 'PUT', 'DELETE', 'CONNECT', 'OPTIONS', 'TRACE', 'PATCH'],
+
         /*
          * Routes that will not log to database.
          *

diff --git a/src/Middleware/LogOperation.php b/src/Middleware/LogOperation.php
@@ -42,10 +42,29 @@ public function handle(Request $request, \Closure $next)
     protected function shouldLogOperation(Request $request)
     {
         return config('admin.operation_log.enable')
-            && !$this->inExceptArray($request)
+            && !$this->inExceptArray($request) && $this->inAllowedMethods($request->method())
             && Admin::user();
     }
 
+
+    /**
+     * @param $method
+     *
+     * @return bool
+     */
+    protected function inAllowedMethods($method) {
+        $allowed_methods = array_map('strtoupper', (array)config('admin.operation_log.allowed_methods'));
+        if (empty($allowed_methods)) {
+            return true;
+        } else {
+            if (in_array($method, $allowed_methods)) {
+                return true;
+            } else {
+                return false;
+            }
+        }
+    }
+
     /**
      * Determine if the request has a URI that should pass through CSRF verification.
      *