zhengxifeng
/
yzncms_console
Observar 1
Favorito 0
Fork 0
Código Issues 0 Pull requests 0 Versões 0 Wiki Atividade
控制台应用,yzncms本身基于tp5.1框架,里面的队列用不了,bug,坑
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
1 Commit
4 Branches
Branch: master
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de master
${ noResults }
yzncms_console/application/admin/service/User.php

User.php 13KB
Link permanente Histórico Original

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407 
  1. <?php

  2. // +----------------------------------------------------------------------

  3. // | Yzncms [ 御宅男工作室 ]

  4. // +----------------------------------------------------------------------

  5. // | Copyright (c) 2018 http://yzncms.com All rights reserved.

  6. // +----------------------------------------------------------------------

  7. // | Licensed ( http://www.apache.org/licenses/LICENSE-2.0 )

  8. // +----------------------------------------------------------------------

  9. // | Author: 御宅男 <530765310@qq.com>

  10. // +----------------------------------------------------------------------

  11. 

  12. // +----------------------------------------------------------------------

  13. // |  后台用户服务

  14. // +----------------------------------------------------------------------

  15. namespace app\admin\service;

  16. 

  17. use app\admin\model\AdminUser;

  18. use think\Db;

  19. use think\facade\Config;

  20. use think\facade\Cookie;

  21. use think\facade\Request;

  22. use think\facade\Session;

  23. use util\Random;

  24. use util\Tree;

  25. 

  26. class User extends \libs\Auth

  27. {

  28.     //当前登录会员详细信息

  29.     protected $error   = '';

  30.     protected $logined = false; //登录状态

  31. 

  32.     public function __construct()

  33.     {

  34.         parent::__construct();

  35.     }

  36. 

  37.     public function __get($name)

  38.     {

  39.         return Session::get('admin.' . $name);

  40.     }

  41. 

  42.     /**

  43.      * 取出当前管理员所拥有权限的分组.

  44.      *

  45.      * @param bool $withself 是否包含当前所在的分组

  46.      *

  47.      * @return array

  48.      */

  49.     public function getChildrenGroupIds($withself = false)

  50.     {

  51.         //取出当前管理员所有的分组

  52.         $groups   = $this->getGroups();

  53.         $groupIds = [];

  54.         foreach ($groups as $k => $v) {

  55.             $groupIds[] = $v['id'];

  56.         }

  57.         $originGroupIds = $groupIds;

  58.         foreach ($groups as $k => $v) {

  59.             if (in_array($v['parentid'], $originGroupIds)) {

  60.                 $groupIds = array_diff($groupIds, [$v['id']]);

  61.                 unset($groups[$k]);

  62.             }

  63.         }

  64.         // 取出所有分组

  65.         $groupList = \app\admin\model\AuthGroup::where('status', 1)->select()->toArray();

  66.         $objList   = [];

  67.         foreach ($groups as $k => $v) {

  68.             if ($v['rules'] === '*') {

  69.                 $objList = $groupList;

  70.                 break;

  71.             }

  72.             // 取出包含自己的所有子节点

  73.             $childrenList = Tree::instance()->init($groupList)->getChildren($v['id'], true);

  74.             $obj          = Tree::instance()->init($childrenList)->getTreeArray($v['parentid']);

  75.             $objList      = array_merge($objList, Tree::instance()->getTreeList($obj, 'title'));

  76.         }

  77.         $childrenGroupIds = [];

  78.         foreach ($objList as $k => $v) {

  79.             $childrenGroupIds[] = $v['id'];

  80.         }

  81.         if (!$withself) {

  82.             $childrenGroupIds = array_diff($childrenGroupIds, $groupIds);

  83.         }

  84.         return $childrenGroupIds;

  85.     }

  86. 

  87.     public function check($name, $uid = '', $mode = 'url', $relation = 'or')

  88.     {

  89.         $uid = $uid ? $uid : $this->id;

  90.         return parent::check($name, $uid, $mode, $relation);

  91.     }

  92. 

  93.     /**

  94.      * 取出当前管理员所拥有权限的管理员.

  95.      *

  96.      * @param bool $withself 是否包含自身

  97.      *

  98.      * @return array

  99.      */

  100.     public function getChildrenAdminIds($withself = false)

  101.     {

  102.         $childrenAdminIds = [];

  103.         if (!$this->isAdministrator()) {

  104.             $groupIds         = $this->getChildrenGroupIds(false);

  105.             $childrenAdminIds = Db::name('Admin')->where('roleid', 'in', $groupIds)->column('id');

  106.         } else {

  107.             //超级管理员拥有所有人的权限

  108.             $childrenAdminIds = Db::name('Admin')->column('id');

  109.         }

  110.         if ($withself) {

  111.             if (!in_array($this->id, $childrenAdminIds)) {

  112.                 $childrenAdminIds[] = $this->id;

  113.             }

  114.         } else {

  115.             $childrenAdminIds = array_diff($childrenAdminIds, [$this->id]);

  116.         }

  117.         return $childrenAdminIds;

  118.     }

  119. 

  120.     public function getGroups($uid = null)

  121.     {

  122.         $uid = is_null($uid) ? $this->id : $uid;

  123.         return parent::getGroups($uid);

  124.     }

  125. 

  126.     public function getAuthList($uid = null)

  127.     {

  128.         $uid = is_null($uid) ? $this->id : $uid;

  129.         return parent::getAuthList($uid);

  130.     }

  131. 

  132.     public function getRuleIds($uid = null)

  133.     {

  134.         $uid = is_null($uid) ? $this->id : $uid;

  135.         return parent::getRuleIds($uid);

  136.     }

  137. 

  138.     /**

  139.      * 用户登录

  140.      * @param string $username 用户名

  141.      * @param string $password 密码

  142.      * @return bool|mixed

  143.      */

  144.     public function login($username = '', $password = '', $keeptime = 0)

  145.     {

  146.         $username = trim($username);

  147.         $password = trim($password);

  148.         $admin    = AdminUser::get(['username' => $username]);

  149.         if (!$admin) {

  150.             $this->setError('用户名不正确');

  151.             return false;

  152.         }

  153.         if ($admin['status'] !== 1) {

  154.             $this->setError('管理员已经被禁止登录');

  155.             return false;

  156.         }

  157.         if (Config::get('login_failure_retry') && $admin->login_failure >= 10 && time() - $admin->getData('update_time') < 86400) {

  158.             $this->setError('请于1天后再尝试登录');

  159.             return false;

  160.         }

  161.         if ($admin->password != encrypt_password($password, $admin->encrypt)) {

  162.             $admin->login_failure++;

  163.             $admin->save();

  164.             $this->setError('密码不正确');

  165.             return false;

  166.         }

  167.         $admin->login_failure   = 0;

  168.         $admin->last_login_time = time();

  169.         $admin->last_login_ip   = request()->ip();

  170.         $admin->token           = Random::uuid();

  171.         $admin->save();

  172.         Session::set("admin", $admin->toArray());

  173.         Session::set("admin.safecode", $this->getEncryptSafecode($admin));

  174.         $this->keeplogin($admin, $keeptime);

  175.         return true;

  176.     }

  177. 

  178.     /**

  179.      * 刷新保持登录的Cookie

  180.      *

  181.      * @param int $keeptime

  182.      * @return  boolean

  183.      */

  184.     protected function keeplogin($admin, $keeptime = 0)

  185.     {

  186.         if ($keeptime) {

  187.             $expiretime = time() + $keeptime;

  188.             $key        = $this->getKeeploginKey($admin, $keeptime, $expiretime);

  189.             Cookie::set('keeplogin', implode('|', [$admin['id'], $keeptime, $expiretime, $key]), $keeptime);

  190.             return true;

  191.         }

  192.         return false;

  193.     }

  194. 

  195.     /**

  196.      * 自动登录

  197.      * @return boolean

  198.      */

  199.     public function autologin()

  200.     {

  201.         $keeplogin = Cookie::get('keeplogin');

  202.         if (!$keeplogin) {

  203.             return false;

  204.         }

  205.         list($id, $keeptime, $expiretime, $key) = explode('|', $keeplogin);

  206.         if ($id && $keeptime && $expiretime && $key && $expiretime > time()) {

  207.             $admin = AdminUser::get($id);

  208.             if (!$admin || !$admin->token) {

  209.                 return false;

  210.             }

  211.             //token有变更

  212.             if ($key != $this->getKeeploginKey($admin, $keeptime, $expiretime)) {

  213.                 return false;

  214.             }

  215.             $ip = request()->ip();

  216.             //IP有变动

  217.             if ($admin->last_login_ip != $ip) {

  218.                 return false;

  219.             }

  220.             Session::set("admin", $admin->toArray());

  221.             Session::set("admin.safecode", $this->getEncryptSafecode($admin));

  222.             //刷新自动登录的时效

  223.             $this->keeplogin($admin, $keeptime);

  224.             return true;

  225.         } else {

  226.             return false;

  227.         }

  228.     }

  229. 

  230.     /**

  231.      * 检验用户是否已经登陆

  232.      * @return boolean 失败返回false,成功返回当前登陆用户基本信息

  233.      */

  234.     public function isLogin()

  235.     {

  236.         if ($this->logined) {

  237.             return true;

  238.         }

  239.         $admin = Session::get('admin');

  240.         if (!$admin) {

  241.             return false;

  242.         }

  243.         $my = AdminUser::get($admin['id']);

  244.         if (!$my) {

  245.             return false;

  246.         }

  247.         //校验安全码,可用于判断关键信息发生了变更需要重新登录

  248.         if (!isset($admin['safecode']) || $this->getEncryptSafecode($my) !== $admin['safecode']) {

  249.             $this->logout();

  250.             return false;

  251.         }

  252.         //判断是否同一时间同一账号只能在一个地方登录

  253.         if (Config::get('login_unique')) {

  254.             if ($my['token'] != $admin['token']) {

  255.                 $this->logout();

  256.                 return false;

  257.             }

  258.         }

  259.         //判断管理员IP是否变动

  260.         if (Config::get('loginip_check')) {

  261.             if (!isset($admin['last_login_ip']) || $admin['last_login_ip'] != request()->ip()) {

  262.                 $this->logout();

  263.                 return false;

  264.             }

  265.         }

  266.         $this->logined = true;

  267.         return true;

  268.     }

  269. 

  270.     /**

  271.      * 检查当前用户是否超级管理员

  272.      * @return boolean

  273.      */

  274.     public function isAdministrator()

  275.     {

  276.         return in_array('*', $this->getRuleIds()) ? true : false;

  277.     }

  278. 

  279.     /**

  280.      * 获取自动登录Key

  281.      * @param $params

  282.      * @param $keeptime

  283.      * @param $expiretime

  284.      * @return string

  285.      */

  286.     public function getKeeploginKey($params, $keeptime, $expiretime)

  287.     {

  288.         $key = md5(md5($params['id']) . md5($keeptime) . md5($expiretime) . $params['token'] . Config::get('token.key'));

  289.         return $key;

  290.     }

  291. 

  292.     /**

  293.      * 获取加密后的安全码

  294.      * @param $params

  295.      * @return string

  296.      */

  297.     public function getEncryptSafecode($params)

  298.     {

  299.         return md5(md5($params['username']) . md5(substr($params['password'], 0, 6)) . Config::get('token.key'));

  300.     }

  301. 

  302.     /**

  303.      * 检测当前控制器和方法是否匹配传递的数组

  304.      *

  305.      * @param array $arr 需要验证权限的数组

  306.      * @return bool

  307.      */

  308.     public function match($arr = [])

  309.     {

  310.         $request = Request::instance();

  311.         $arr     = is_array($arr) ? $arr : explode(',', $arr);

  312.         if (!$arr) {

  313.             return false;

  314.         }

  315. 

  316.         $arr = array_map('strtolower', $arr);

  317.         // 是否存在

  318.         if (in_array(strtolower($request->action()), $arr) || in_array('*', $arr)) {

  319.             return true;

  320.         }

  321. 

  322.         // 没找到匹配

  323.         return false;

  324.     }

  325. 

  326.     /**

  327.      * 注销登录

  328.      */

  329.     public function logout()

  330.     {

  331.         $admin = AdminUser::get(intval($this->id));

  332.         if ($admin) {

  333.             $admin->token = '';

  334.             $admin->save();

  335.         }

  336.         $this->logined = false; //重置登录状态

  337.         Session::delete("admin");

  338.         Cookie::delete("keeplogin");

  339.         return true;

  340.     }

  341. 

  342.     public function getSidebar()

  343.     {

  344.         $module = request()->module();

  345.         // 读取管理员当前拥有的权限节点

  346.         $userRule = $this->getAuthList();

  347.         // 必须将结果集转换为数组

  348.         $ruleList = \app\admin\model\AuthRule::where('status', 1)

  349.             ->where('ismenu', 1)

  350.             ->order('listorder', 'desc')

  351.             ->cache("__menu__")

  352.             ->select()->toArray();

  353.         $indexRuleList = \app\admin\model\AuthRule::where('status', 1)

  354.             ->where('ismenu', 0)

  355.             ->where('name', 'like', '%/index')

  356.             ->column('name,parentid');

  357.         $pidArr = array_unique(array_filter(array_column($ruleList, 'parentid')));

  358.         foreach ($ruleList as $k => &$v) {

  359.             if (!in_array($v['name'], $userRule)) {

  360.                 unset($ruleList[$k]);

  361.                 continue;

  362.             }

  363.             $indexRuleName = $v['name'] . '/index';

  364.             if (isset($indexRuleList[$indexRuleName]) && !in_array($indexRuleName, $userRule)) {

  365.                 unset($ruleList[$k]);

  366.                 continue;

  367.             }

  368.             $v['openType'] = $v['menutype']; //兼容前端

  369.             $v['type']     = $v['ismenu']; //兼容前端

  370.             $v['href']     = isset($v['url']) && $v['url'] ? $v['url'] : '/' . $module . '/' . $v['name'];

  371.             $v['href']     = preg_match("/^((?:[a-z]+:)?\/\/|data:image\/)(.*)/i", $v['href']) ? $v['href'] : url($v['href']);

  372.         }

  373.         $lastArr    = array_unique(array_filter(array_column($ruleList, 'parentid')));

  374.         $pidDiffArr = array_diff($pidArr, $lastArr);

  375.         foreach ($ruleList as $index => $item) {

  376.             if (in_array($item['id'], $pidDiffArr)) {

  377.                 unset($ruleList[$index]);

  378.             }

  379.         }

  380.         // 构造菜单数据

  381.         Tree::instance()->init($ruleList);

  382.         return Tree::instance()->getTreeArray(0);

  383.     }

  384. 

  385.     /**

  386.      * 获取错误信息

  387.      * @access public

  388.      * @return mixed

  389.      */

  390.     public function getError()

  391.     {

  392.         return $this->error ? $this->error : '';

  393.     }

  394. 

  395.     /**

  396.      * 设置错误信息

  397.      *

  398.      * @param string $error 错误信息

  399.      * @return Auth

  400.      */

  401.     public function setError($error)

  402.     {

  403.         $this->error = $error;

  404.         return $this;

  405.     }

  406. 

  407. }