Inicio Explorar Axuda
Rexistro Iniciar sesión
wugg
/
useraccount
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: fdcb0bfea0
Ramas Etiquetas
useraccount
/
app
/
controller
/
User.php

User.php 14 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366 
  1. <?php
    2. 

  2. declare (strict_types = 1);
    3. 

  3. 

  4. namespace app\controller;
    5. 

  5. 

  6. use app\BaseController;
    7. 

  7. use app\model\Account;
    8. 

  8. use think\facade\Cache;
    9. 

  9. use think\Exception;use think\facade\Db;
    10. 

  10. use think\App;
    11. 

  11. use think\facade\Validate;
    12. 

  12. 

  13. class User extends BaseController
    14. 

  14. {
    15. 

  15. 	private $token_time = 0;// token 有效时间
    16. 

  16.     public function __construct(App $app)
    17. 

  17.     {
    18. 

  18.        parent::__construct($app);
    19. 

  19.        $this->token_time= env("token.expire");
    20. 

  20.     }
    21. 

  21.     /**注册接口
    22. 

  22.     * @param string username 账户名称
    23. 

  23.     * @param string password 账户密码
    24. 

  24.     * @param string mobile 账户手机号
    25. 

  25.     * @param string source  来源默认register
    26. 

  26. 	* @return \think\response\Json|void
    27. 

  27. 	* @throws \think\db\exception\DataNotFoundException
    28. 

  28. 	* @throws \think\db\exception\DbException
    29. 

  29. 	* @throws \think\db\exception\ModelNotFoundException
    30. 

  30. 	 */
    31. 

  31.     public function register()
    32. 

  32.     {
    33. 

  33.         $post =$this->request->only(["username"=>'',"password"=>"","mobile"=>"","source"=>"register"],"post","trim");
    34. 

  34. 

  35.         $validate=Validate::rule([
    36. 

  36.     		'username|账户名称' => 'require|max:255',
    37. 

  37.     		'password|密码' => 'require|min:6|max:200',
    38. 

  38.     		'mobile|手机号' => 'require|number|length:11|mobile',
    39. 

  39.             ]);
    40. 

  40.     	if($validate->check($post)==false) return json_show(1004,$validate->getError());
    41. 

  41.         $source = isset($post['source']) ? trim($post['source']):"";
    42. 

  42.         $uiq = Db::table("sys_account")->where(["username"=>$post['mobile']])->find();
    43. 

  43.         if($uiq){
    44. 

  44.             return json_show(1002,"账户名已存在!");
    45. 

  45.         }
    46. 

  46.         $uiq = Db::table("sys_account")->where(["mobile"=>$post['mobile']])->find();
    47. 

  47.         if($uiq){
    48. 

  48.             return json_show(1002,"手机号已注册!");
    49. 

  49.         }
    50. 

  50.         Db::startTrans();
    51. 

  51.         try {
    52. 

  52.             $salt =makeSalt();
    53. 

  53.             $password = sha1($post['password'].$salt);
    54. 

  54.             $data = [
    55. 

  55.             	'username'=>$post['mobile'],
    56. 

  56.                 "password"=>$password,
    57. 

  57.                 "salt"=>$salt,
    58. 

  58.                 "mobile"=>$post['mobile'],
    59. 

  59.                 "source"=>$source,
    60. 

  60.                 "status"=>1,
    61. 

  61.                 "addtime"=>date("Y-m-d H:i:s"),
    62. 

  62.                 "updatetime"=>date("Y-m-d H:i:s")
    63. 

  63.                 ];
    64. 

  64.             $reuslt = Db::table('sys_account')->insert($data,true);
    65. 

  65.             if($reuslt){
    66. 

  66.                 $data=[
    67. 

  67.                     "nickname"=>$post['username'],
    68. 

  68.                     "mobile"=>$post['mobile'],
    69. 

  69.                     "email"=>"",
    70. 

  70.                     "portrait"=>"",
    71. 

  71.                     "sex"=>1,
    72. 

  72.                     "post"=>"",
    73. 

  73.                     "department"=>"",
    74. 

  74.                     "account_id"=>$reuslt,
    75. 

  75.                     "status"=>1,
    76. 

  76.                     "addtime"=>date("Y-m-d H:i:s"),
    77. 

  77.                     "updatetime"=>date("Y-m-d H:i:s")
    78. 

  78.                 ];
    79. 

  79.                 $user=Db::table("sys_user")->insert($data,true);
    80. 

  80. 

  81.                 if($user){
    82. 

  82.                         Db::commit();
    83. 

  83.                         return json_show(0,"账户注册成功");
    84. 

  84.                 }
    85. 

  85.             }
    86. 

  86.             Db::rollback();
    87. 

  87.             return json_show(1002,"账户注册失败");
    88. 

  88. 

  89.         }catch (\Exception $e){
    90. 

  90.             Db::rollback();
    91. 

  91.             return json_show(1002,"账户注册失败".$e->getMessage());
    92. 

  92.         }
    93. 

  93. 

  94. 

  95.     }
    96. 

  96. 

  97.     /**
    98. 

  98.      * 显示创建资源表单页.
    99. 

  99.      *
    100. 

  100.      * @return \think\Response
    101. 

  101.      */
    102. 

  102.     public function verify_code()
    103. 

  103.     {
    104. 

  104.         $post = $this->request->only("mobile","post");
    105. 

  105.         $code = make_verify();
    106. 

  106.         $mobile = isset($post['mobile'])&&checkMobile($post['mobile']) ? $post['mobile'] :"" ;
    107. 

  107.         if($mobile==""){
    108. 

  108.             return json_show(1001,"手机号格式不正确");
    109. 

  109.         }
    110. 

  110.         $mess =Db::name("send_message")->where(['mobile'=>$mobile,"status"=>0,"msg_type"=>1])->find();
    111. 

  111.         if($mess){
    112. 

  112.             if($mess['expire']>time()-60){
    113. 

  113.                 return json_show(1001,"验证码发送中!");
    114. 

  114.             }
    115. 

  115.             $mess['status']=1;
    116. 

  116.             Db::name("send_message")->save($mess);
    117. 

  117.         }
    118. 

  118. //        $sendJson = sendMessage($mobile, $code);
    119. 

  119. //        $sendResult = json_decode($sendJson, TRUE);
    120. 

  120. //        if($sendResult['description'] != 'Success') {
    121. 

  121. //            return json_show(1002, '短信发送失败,请重试');
    122. 

  122. //        }
    123. 

  123. 

  124.         $data=['code'=>$code,"mobile"=>$mobile,"status"=>0,"msg_type"=>1,"addtime"=>date("Y-m-d H:i:s"),
    125. 

  125.             "expire"=>time()];
    126. 

  126.         $result = Db::name("send_message")->insert($data);
    127. 

  127.         return $result ? json_show(0,"验证码已发送",["code"=>$code]): json_show(1001,"验证码发送失败");
    128. 

  128.     }
    129. 

  129. 

  130. 	/**
    131. 

  131.     * @param string username 账户
    132. 

  132.     * @param string password 密码
    133. 

  133.     * @param string plat_code 来源
    134. 

  134. 	* @return \think\response\Json
    135. 

  135. 	* @throws \Psr\SimpleCache\InvalidArgumentException
    136. 

  136. 	* @throws \think\db\exception\DataNotFoundException
    137. 

  137. 	* @throws \think\db\exception\DbException
    138. 

  138. 	* @throws \think\db\exception\ModelNotFoundException
    139. 

  139. 	* @throws \think\exception\DbException
    140. 

  140. 	 */
    141. 

  141.     public function login()
    142. 

  142.     {
    143. 

  143.         $post = $this->request->only(["username" => "", "password" => "", "plat_code" => ""], "post", "trim");
    144. 

  144.         $validate = Validate::rule([
    145. 

  145.             'username|账户名称' => 'require|max:255',
    146. 

  146.             'password|密码' => 'require|min:6|max:200',
    147. 

  147.         ]);
    148. 

  148.         if ($validate->check($post) == false) return json_show(1004, $validate->getError());
    149. 

  149. 

  150.         $acc = Db::name("account")
    151. 

  151.             ->where(['username' => $post['username'], "is_del" => Account::$account_del])
    152. 

  152.             ->find();
    153. 

  153.         if ($acc == false) return json_show(1003, '账户名不存在');
    154. 

  154. 

  155.         if ($acc['status'] == Account::$account_end) return json_show(1003, '账户已禁用');
    156. 

  156. 

  157.         $sha1 = sha1($post['password'] . $acc['salt']);
    158. 

  158.         if ($sha1 != $acc['password']) return json_show(1003, '账户或密码错误');
    159. 

  159. 

  160.         $token = makeToken($acc);
    161. 

  161.         if ($token == "") return json_show(1003, 'token生成失败');
    162. 

  162. 

  163.         //account_plat 是空表
    164. 

  164. //        if ($post['plat_code'] != "") {
    165. 

  165. //            $platinfo = Db::name("account_plat")
    166. 

  166. //                ->alias("a")
    167. 

  167. //                ->leftJoin("platform b", "a.plat_code=b.plat_code and b.is_del=0 and b.status=1")
    168. 

  168. //                ->where(["a.status" => 1, "a.is_del" => 0, "a.plat_code" => $post['plat_code'], "a.account_id" => $acc['id']])
    169. 

  169. //                ->findOrEmpty();
    170. 

  170. //            if (empty($platinfo)) return json_show(1003, '该系统账号未开通登录');
    171. 

  171. //
    172. 

  172. //        }
    173. 

  173.         $user = Db::name("account")
    174. 

  174.             ->alias("a")
    175. 

  175.             ->leftJoin("user b", "a.id=b.account_id and b.status=1")
    176. 

  176.             ->leftJoin("account_item c", "c.account_id=a.id")
    177. 

  177.             ->field("a.id,a.username,a.mobile,a.source,a.level,b.nickname,b.sex,b.email,a.addtime,a.updatetime,c.itemid,c.position")
    178. 

  178.             ->where(["a.id" => $acc["id"]])
    179. 

  179.             ->find();
    180. 

  180.         if ($user == false) return json_show(1003, '用户信息不存在');
    181. 

  181. 

  182.         $usercompany = Db::name("account_company")
    183. 

  183.             ->where(["account_id" => $user['id'], "is_del" => 0, "status" => 1])
    184. 

  184.             ->column("companyCode,companyCode companyNo,companyName,companyName company_name,company_type,is_main,status");
    185. 

  185.         $user['company_relaton'] = $usercompany;
    186. 

  186.         $cache = Cache::store("redis")->set("user:info:{$token}", $user, $this->token_time);
    187. 

  187.         if ($cache == false) return json_show(1003, 'token保存失败');
    188. 

  188.         $user['token'] = $token;
    189. 

  189.         return json_show(0, "登录成功", $user);
    190. 

  190.     }
    191. 

  191. 

  192.     /**
    193. 

  193.      *钉钉登录接口
    194. 

  194.      *
    195. 

  195.      * @param  \think\Request  $request
    196. 

  196.      * @param  string  $code
    197. 

  197.      * @return \think\Response
    198. 

  198.      */
    199. 

  199.     public function DingTalk()
    200. 

  200.     {
    201. 

  201.         $config= config("dingtalk");
    202. 

  202.         $dingtalk =new \DingTalk($config);
    203. 

  203.         $post = $this->request->only(["code"=>""],"post","trim");
    204. 

  204.         $code=isset($post["code"])&&$post["code"]!="" ? $post["code"]:"";
    205. 

  205.         if($code==""){
    206. 

  206.         	return json_show(106,"参数code不能为空");
    207. 

  207.         }
    208. 

  208.         $li = $dingtalk->getUserByCode($code);
    209. 

  209.         if($li['errcode']!=0){
    210. 

  210.             return  json_show(107,"授权失败",$li);
    211. 

  211.         }
    212. 

  212.         $list = $dingtalk->getUser($li['userid']);
    213. 

  213.         if($list['errcode']!=0){
    214. 

  214.             return  json_show(107,"授权失败",$list);
    215. 

  215.         }
    216. 

  216.         $userinfo = Db::name("account")->alias("a")
    217. 

  217. 		->leftJoin("user b","a.id=b.account_id and b.status=1")
    218. 

  218. 		->field("a.id,a.username,a.mobile,a.source,b.nickname,b.sex,b.email,a.addtime,a.updatetime")
    219. 

  219. 		->where(['DTuserid'=>$list['userid'],"unionid"=>$list['unionid'],"a.is_del"=>0])
    220. 

  220. 		->findOrEmpty();
    221. 

  221.         if(empty($userinfo)){
    222. 

  222.         	Db::startTrans();
    223. 

  223.         	try{
    224. 

  224.         		$accountid = $this->DingTalkRegister($list);
    225. 

  225.         		Db::commit();
    226. 

  226.         	}catch (\Exception $e){
    227. 

  227. 				Db::rollback();
    228. 

  228. 				return json_show(106,$e->getMessage());
    229. 

  229.         	}
    230. 

  230.         	$userinfo = Db::name("account")->alias("a")
    231. 

  231. 			->leftJoin("user b","a.id=b.account_id and b.status=1")
    232. 

  232. 			->field("a.id,a.username,a.mobile,a.source,b.nickname,b.sex,b.email,a.addtime,a.updatetime")
    233. 

  233. 			->where(["a.id"=>$accountid,"a.is_del"=>0])
    234. 

  234. 			->findOrEmpty();
    235. 

  235.         }
    236. 

  236. 		 $token = makeToken($userinfo);
    237. 

  237.         $usercompany = Db::name("account_company")->where(["account_id"=>$userinfo['id'],"is_del"=>0,"status"=>1])
    238. 

  238. 		->column("companyCode,companyName,company_type,is_main,status");
    239. 

  239.         $user['company_relaton'] = $usercompany;
    240. 

  240.         $cache = Cache::store("redis")->set("user:info:{$token}",$user ,$this->token_time);
    241. 

  241.         if($cache==false)  return json_show(1003,'token保存失败');
    242. 

  242.         $user['token']=$token;
    243. 

  243.         return json_show(0,"授权成功",$userinfo);
    244. 

  244.     }
    245. 

  245. 	/**
    246. 

  246. 	* @param $Dingtalinfo
    247. 

  247. 	 * @return int|string
    248. 

  248. 	* @throws \think\Exception
    249. 

  249. 	 */
    250. 

  250.    private function DingTalkRegister($Dingtalinfo){
    251. 

  251.     	  $salt=makeSalt();
    252. 

  252.           $data=[
    253. 

  253.                "username"=>$Dingtalinfo['mobile'],
    254. 

  254.                "password"=>sha1("dingding123".$salt),
    255. 

  255.                "mobile"=>$Dingtalinfo['mobile'],
    256. 

  256.                "salt"=>$salt,
    257. 

  257.                "status"=>1,
    258. 

  258.                "source"=>"dingtalk",
    259. 

  259.                "addtime"=>date("Y-m-d H:i:s"),
    260. 

  260.                "updatetime"=>date("Y-m-d H:i:s")
    261. 

  261.            ];
    262. 

  262.            $account = Db::table("sys_account")->insert($data,true);
    263. 

  263.            if($account<=0)throw new Exception("账户创建失败");
    264. 

  264. 

  265. 	   $verify = Db::name("user")->where("mobile","=",$Dingtalinfo['mobile'])->findOrEmpty();
    266. 

  266.        if(!empty($verify)){
    267. 

  267.            $verify['unionid']=$Dingtalinfo['unionid'];
    268. 

  268.            $verify['openId']=$Dingtalinfo['openId'];
    269. 

  269.            $verify['DTuserid']=$Dingtalinfo['userid'];
    270. 

  270.            $verify['mobile']=$Dingtalinfo['mobile'];
    271. 

  271.            $verify['account_id']=$account;
    272. 

  272.            isset($verify['portrait'])??$verify['portrait']=$Dingtalinfo['avatar'];
    273. 

  273.            isset($verify['email'])??$verify['email']=$Dingtalinfo['email'];
    274. 

  274.            $verify['updatetime']=date("Y-m-d H:i:s");
    275. 

  275.            $user =Db::name("user")->save($verify);
    276. 

  276.            if($user==false) throw new Exception("用户信息创建失败");
    277. 

  277.            $uid = $verify["id"];
    278. 

  278.        }else{
    279. 

  279.           $data=[
    280. 

  280.               "nickname"=>$Dingtalinfo['name'],
    281. 

  281.               "mobile"=>$Dingtalinfo['mobile'],
    282. 

  282.               "email"=>$Dingtalinfo['email'],
    283. 

  283.               "portrait"=>$Dingtalinfo['avatar'],
    284. 

  284.               "sex"=>1,
    285. 

  285.               "post"=>"",
    286. 

  286.               "unionid"=>$Dingtalinfo['unionid'],
    287. 

  287.               "openId"=>$Dingtalinfo['openId'],
    288. 

  288.               "DTuserid"=>$Dingtalinfo['userid'],
    289. 

  289.               "department"=>"",
    290. 

  290.               "status"=>1,
    291. 

  291.               "account_id"=>$account,
    292. 

  292.               "addtime"=>date("Y-m-d H:i:s"),
    293. 

  293.               "updatetime"=>date("Y-m-d H:i:s")
    294. 

  294.           ];
    295. 

  295.            $uid =Db::name("user")->insert($data,true);
    296. 

  296.        }
    297. 

  297.        if($uid==false) throw new Exception("用户信息创建失败");
    298. 

  298.        return $account;
    299. 

  299.    }
    300. 

  300. 

  301.     /**
    302. 

  302. 	* @return \think\response\Json
    303. 

  303. 	* @throws \think\db\exception\DataNotFoundException
    304. 

  304. 	* @throws \think\db\exception\DbException
    305. 

  305. 	* @throws \think\db\exception\ModelNotFoundException
    306. 

  306. 	* @throws \think\exception\DbException
    307. 

  307. 	 */
    308. 

  308.     public function verify_token()
    309. 

  309.     {
    310. 

  310.         $post = $this->request->only(["token" => ''], "post");
    311. 

  311.         $validate = Validate::rule(['token' => 'require']);
    312. 

  312.         if ($validate->check($post) == false) return json_show(1004, $validate->getError());
    313. 

  313.         $getToken = checkToken($post['token'], $this->token_time);
    314. 

  314.         return $getToken == false ? json_show(104, "token失效") : json_show(0, "获取成功", $getToken);
    315. 

  315.     }
    316. 

  316. 

  317.     /**
    318. 

  318.      * @return \think\response\Json|void
    319. 

  319.      * @throws \think\db\exception\DataNotFoundException
    320. 

  320.      * @throws \think\db\exception\DbException
    321. 

  321.      * @throws \think\db\exception\ModelNotFoundException
    322. 

  322.      */
    323. 

  323.    public function reset_password_mobile(){
    324. 

  324.        $post=$this->request->post();
    325. 

  325.        $mobile = isset($post['mobile'])? trim($post['mobile']):"";
    326. 

  326.        if($mobile==""){
    327. 

  327.            return json_show(1001,"手机号不能为空");
    328. 

  328.        }
    329. 

  329.        if(checkMobile($mobile)==false){
    330. 

  330.            return json_show(1002,"手机号格式不正确!");
    331. 

  331.        }
    332. 

  332.        $code = isset($post['code'])? trim($post['code']):"";
    333. 

  333.        if($code==""){
    334. 

  334.            return json_show(1001,"验证码不能为空");
    335. 

  335.        }
    336. 

  336.        $username = isset($post['username'])?trim($post['username']):"";
    337. 

  337.        if($username==""){
    338. 

  338.            return json_show(1001,"参数username 不能为空");
    339. 

  339.        }
    340. 

  340.        $account = Db::name("account")->where("username","=",$username)->find();
    341. 

  341.        if($account['mobile']!=$mobile){
    342. 

  342.            return json_show(1004,"账户关联手机号不正确");
    343. 

  343.        }
    344. 

  344.        $password = isset($post['password'])?trim($post['password']):"";
    345. 

  345.        if($password==""){
    346. 

  346.            return json_show(1001,"新密码不能为空");
    347. 

  347.        }
    348. 

  348. 

  349.        if(sha1($password.$account['salt'])==$account['password']){
    350. 

  350.            return json_show(1001,"新密码不能与原密码相同");
    351. 

  351.        }
    352. 

  352.        $codeinfo = Db::name("send_message")->where(["mobile"=>$mobile,"status"=>0,"msg_type"=>1])->find();
    353. 

  353. 

  354.        if($code!=$codeinfo['code']){
    355. 

  355.            return json_show(1003,"验证码错误");
    356. 

  356.        }
    357. 

  357.        $codeinfo['status']=1;
    358. 

  358.        Db::name("send_message")->save($codeinfo);
    359. 

  359.         $account['salt']=makeSalt();
    360. 

  360.         $account['updatetime']=date("Y-m-d");
    361. 

  361.         $account['is_pass']=1;
    362. 

  362.         $account['password']=sha1($password.$account['salt']);
    363. 

  363.         $result=Db::name("account")->save($account);
    364. 

  364.         return $result?json_show(0,"密码修改成功"):json_show(1003,"密码修改失败");
    365. 

  365.    }
    366. 

  366. }
    367.