Home Explore Help
Sign In
huangzhidong
/
guoyao-jiankang
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
guoyao-jiank...
/
application
/
admin
/
controller
/
Common.php

Common.php 5.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158 
  1. <?php
    2. 

  2. namespace app\admin\controller;
    3. 

  3. 

  4. use app\common\model\Seeker;
    5. 

  5. use think\Controller;
    6. 

  6. use think\Db;
    7. 

  7. use think\Exception;
    8. 

  8. 

  9. class Common extends Controller
    10. 

  10. {
    11. 

  11.     public function initialize()
    12. 

  12.     {
    13. 

  13.         parent::initialize();
    14. 

  14.     }
    15. 

  15. 

  16.     public function login(){
    17. 

  17.         if(request()->isPost()){
    18. 

  18.             $username = input('?post.account')?input('post.account','','trim'):'';
    19. 

  19.             $password = input('?post.password')?input('post.password','','trim'):'';
    20. 

  20.             if(!$username||!$password){
    21. 

  21.                 $this->error('用户名或密码错误');
    22. 

  22.             }
    23. 

  23. 

  24.             $ret = (new \app\common\util\ThrottlesUtil(config('app.login_throttles')))->tooManyAttempts($username); // 登录限流
    25. 

  25.             if($ret){
    26. 

  26.                 $this->error('账号已被锁定,请稍后重试');
    27. 

  27.             }
    28. 

  28. 

  29.             $info = Db::name('user')->where('account',$username)->where('del',0)->find();
    30. 

  30.             if(empty($info))  $this->error('用户信息不存在');
    31. 

  31.             if($info['enable']==0) $this->error('该账号被禁用');
    32. 

  32. 

  33.             if(!password_verify($password,$info['password'])){
    34. 

  34.                 $this->error('用户名或密码错误');
    35. 

  35.             }
    36. 

  36. 

  37.             $rolesId = Db::name('user_roles')->where('user_id',$info['id'])->value('roles_id');
    38. 

  38.             if(!$rolesId){
    39. 

  39.                 $this->error('用户未设置角色,无法登陆');
    40. 

  40.             }
    41. 

  41.             $orgs = model('Org')->getListByRoles($info['id']);
    42. 

  42.             if(empty($orgs)){
    43. 

  43.                 $this->error('用户没有组织,无法登陆');
    44. 

  44.             }
    45. 

  45. 

  46.             /* 更新登录信息 */
    47. 

  47.             $data = array(
    48. 

  48.                 'last_login_time' => date('Y-m-d H:i:s')
    49. 

  49.             );
    50. 

  50.             Db::name('user')->where('id',$info['id'])->update($data);
    51. 

  51. 

  52.             /* 记录登录SESSION和COOKIES */
    53. 

  53.             $auth = array(
    54. 

  54.                 'id'                => $info['id'],
    55. 

  55.                 'account'           => $info['account'],
    56. 

  56.                 'real_name'         => $info['real_name'],
    57. 

  57.                 'last_login_time'   => $data['last_login_time'],
    58. 

  58.                 'rolesId'           => $rolesId?$rolesId:0
    59. 

  59.             );
    60. 

  60.             session('user_auth',$auth);
    61. 

  61.             session('user_auth_sign',data_auth_sign($auth));
    62. 

  62. 

  63.             session('orgId',$orgs[0]['id']);
    64. 

  64.             session('orgName',$orgs[0]['name']);
    65. 

  65. 

  66.             (new \app\common\util\ThrottlesUtil(config('app.login_throttles')))->resetAttempts($username); // 登录成功,重置限流
    67. 

  67. 

  68.             $url = $_SERVER['HTTP_REFERER']?$_SERVER['HTTP_REFERER']:url('Index/index');
    69. 

  69.             $this->success('登录成功',$url);
    70. 

  70.         }else{
    71. 

  71.             $config = Db::name('config')
    72. 

  72.                 ->where('name','web_site_title')
    73. 

  73.                 ->value('value');
    74. 

  74.             if(is_login()){
    75. 

  75.                 $this->redirect(url('Index/index'));
    76. 

  76.             }
    77. 

  77.             $this->assign('title',$config);
    78. 

  78.             return $this->fetch();
    79. 

  79.         }
    80. 

  80.     }
    81. 

  81. 

  82.     public function forget(){
    83. 

  83.         if(request()->isPost()) {
    84. 

  84.             $username = input('?post.account')?input('post.account','','trim'):'';
    85. 

  85.             $password = input('?post.password')?input('post.password','','trim'):'';
    86. 

  86.             $code = input('?post.code')?input('post.code','','trim'):'';
    87. 

  87. 

  88.             if(!$username){
    89. 

  89.                 $this->error('手机号不能为空');
    90. 

  90.             }
    91. 

  91.             if(!$code){
    92. 

  92.                 $this->error('验证码不能为空');
    93. 

  93.             }
    94. 

  94.             if(!$password){
    95. 

  95.                 $this->error('新密码不能为空');
    96. 

  96.             }
    97. 

  97.             if(!verify_sms($username,$code)){
    98. 

  98.                 $this->error('验证码信息错误');
    99. 

  99.             }
    100. 

  100.             $info = Db::name('user')
    101. 

  101.                 ->where('mobile',$username)
    102. 

  102.                 ->where('del',0)->find();
    103. 

  103.             if(empty($info))  $this->error('用户信息不存在');
    104. 

  104.             if($info['enable']==0) $this->error('该账号被禁用');
    105. 

  105. 

  106.             $pas =  password_hash($password, PASSWORD_DEFAULT);
    107. 

  107.             $sdata = [
    108. 

  108.                 'update_time' => date('Y-m-d H:i:s'),
    109. 

  109.                 'password' =>$pas
    110. 

  110.             ];
    111. 

  111.             $res = Db::name('user')
    112. 

  112.                 ->where('id',$info['id'])
    113. 

  113.                 ->update($sdata);
    114. 

  114.             $res?$this->success('修改成功',url('common/login')):$this->error('修改失败');
    115. 

  115.         }else{
    116. 

  116.             $config = Db::name('config')
    117. 

  117.                 ->where('name', 'web_site_title')
    118. 

  118.                 ->value('value');
    119. 

  119.             $this->assign('title',$config);
    120. 

  120.             return $this->fetch();
    121. 

  121.         }
    122. 

  122. 

  123.     }
    124. 

  124. 

  125.     public function sms(){
    126. 

  126.         $phone = input('mobile');
    127. 

  127.         if(empty($phone)){
    128. 

  128.             $this->error('手机号不能为空');
    129. 

  129.         }
    130. 

  130.         $res = send_verify_sms($phone);
    131. 

  131.         if(!$res){
    132. 

  132.             $this->error('发送失败');
    133. 

  133.         }
    134. 

  134.         $this->success('发送成功');
    135. 

  135.     }
    136. 

  136.     /**
    137. 

  137.      * 退出登录
    138. 

  138.      */
    139. 

  139.     public function logout(){
    140. 

  140.         session('user_auth',null);
    141. 

  141.         session('user_auth_sign',null);
    142. 

  142.         $this->redirect(url('Common/login'));
    143. 

  143.     }
    144. 

  144. 

  145.     /**
    146. 

  146.      * 无权限跳转页面
    147. 

  147.      */
    148. 

  148.     public function access(){
    149. 

  149.         return $this->fetch();
    150. 

  150.     }
    151. 

  151. 

  152.     /**
    153. 

  153.      * 403页面
    154. 

  154.      */
    155. 

  155.     public function forbid(){
    156. 

  156.         return $this->fetch('403');
    157. 

  157.     }
    158. 

  158. }
    159.