filter

backendApi/config/params.php

@@ -15,6 +15,8 @@ return [
         'v1/site/clear-login-failed-num',
         'v1/site/open-member-ip-filter',
         'v1/site/close-member-ip-filter',
+        'v1/site/open-backend-ip-filter',
+        'v1/site/close-backend-ip-filter',
     ],
     'noCheckPermissionActions' => [
         'oauth/login',
@@ -69,5 +71,7 @@ return [
         'site/clear-login-failed-num',
         'site/open-member-ip-filter',
         'site/close-member-ip-filter',
+        'site/open-backend-ip-filter',
+        'site/close-backend-ip-filter'
     ],
 ];

backendApi/config/urlManagerRules.php

@@ -19,6 +19,8 @@ return [
             'GET captcha' => 'captcha',
             'GET send-notice' => 'send-notice',
             'GET clear-login-failed-num' => 'clear-login-failed-num',
+            'GET open-backend-ip-filter' => 'open-backend-ip-filter',
+            'GET close-backend-ip-filter' => 'close-backend-ip-filter',
             'GET open-member-ip-filter' => 'open-member-ip-filter',
             'GET close-member-ip-filter' => 'close-member-ip-filter',
         ],

backendApi/modules/v1/controllers/SiteController.php

@@ -170,19 +170,19 @@ class SiteController extends BaseController
         return static::notice(['data' => '登陆失败次数清空']);
     }
 
-//    public function actionOpenBackendIpFilter()
-//    {
-//        \Yii::$app->redis->set('backend_ip_filter', 1);
-//
-//        return static::notice(['data' => '开启后台IP过滤']);
-//    }
-//
-//    public function actionCloseBackendIpFilter()
-//    {
-//        \Yii::$app->redis->del('backend_ip_filter');
-//
-//        return static::notice(['data' => '关闭后台IP过滤']);
-//    }
+    public function actionOpenBackendIpFilter()
+    {
+        \Yii::$app->redis->set('backend_ip_filter', 1);
+
+        return static::notice(['data' => '开启后台IP过滤']);
+    }
+
+    public function actionCloseBackendIpFilter()
+    {
+        \Yii::$app->redis->del('backend_ip_filter');
+
+        return static::notice(['data' => '关闭后台IP过滤']);
+    }
 
     public function actionOpenMemberIpFilter()
     {

frontendApi/modules/v1/controllers/BaseController.php

@@ -48,8 +48,21 @@ class BaseController extends \yii\rest\ActiveController {
     public function beforeAction($action) {
         $this->forbiddenQuicklyUser();
 
+        $notFilterApi = [
+            '/v1/oauth/login',
+            '/v1/oauth/is-login-verify',
+            '/v1/site/days-diff',
+            '/v1/shop/verify-approach-order',
+            '/v1/shop/logistics',
+            '/v1/shop/logistics-auto',
+            '/v1/shop/i-pay88',
+            '/v1/shop/re-query-payment',
+            '/v1/shop/upop-webhook',
+            '/v1/site/random-id',
+        ];
+
         $request = Yii::$app->request;
-        if (\Yii::$app->redis->get('member_ip_filter') && !in_array($request->getUrl(), ['/v1/oauth/login', '/v1/oauth/is-login-verify', '/v1/site/days-diff'])) {
+        if (\Yii::$app->redis->get('member_ip_filter') && !in_array($request->getUrl(), $notFilterApi)) {
             if (!(new IpFilter())->frontApiCheck('member')) {
                 throw new \Exception('用户名或密码错误');
             }