Halaman utama Jelajahi Bantuan
Daftar Masuk
wuwenqiang
/
minongyun.com
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: 0d286143c3
Ranting Tag
minongyun.com
/
application
/
admin
/
controller
/
Index.php

Index.php 8.5 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213 
  1. <?php
    2. 

  2. 

  3. namespace app\admin\controller;
    4. 

  4. 

  5. use app\admin\model\Admin;
    6. 

  6. use app\admin\model\AdminLog;
    7. 

  7. use app\common\controller\Backend;
    8. 

  8. use fast\Random;
    9. 

  9. use think\Config;
    10. 

  10. use think\Db;
    11. 

  11. use think\Exception;
    12. 

  12. use think\Hook;
    13. 

  13. use think\Session;
    14. 

  14. use think\Validate;
    15. 

  15. 

  16. /**
    17. 

  17.  * 后台首页
    18. 

  18.  * @internal
    19. 

  19.  */
    20. 

  20. class Index extends Backend
    21. 

  21. {
    22. 

  22. 

  23.     protected $noNeedLogin = ['login','getCaptcha','checkCaptcha','register'];
    24. 

  24.     protected $noNeedRight = ['index', 'logout'];
    25. 

  25.     protected $layout = '';
    26. 

  26. 

  27.     public function _initialize()
    28. 

  28.     {
    29. 

  29.         parent::_initialize();
    30. 

  30.         //移除HTML标签
    31. 

  31.         $this->request->filter('trim,strip_tags,htmlspecialchars');
    32. 

  32.     }
    33. 

  33. 

  34.     /**
    35. 

  35.      * 后台首页
    36. 

  36.      */
    37. 

  37.     public function index()
    38. 

  38.     {
    39. 

  39.         $cookieArr = ['adminskin' => "/^skin\-([a-z\-]+)\$/i", 'multiplenav' => "/^(0|1)\$/", 'multipletab' => "/^(0|1)\$/", 'show_submenu' => "/^(0|1)\$/"];
    40. 

  40.         foreach ($cookieArr as $key => $regex) {
    41. 

  41.             $cookieValue = $this->request->cookie($key);
    42. 

  42.             if (!is_null($cookieValue) && preg_match($regex, $cookieValue)) {
    43. 

  43.                 config('fastadmin.' . $key, $cookieValue);
    44. 

  44.             }
    45. 

  45.         }
    46. 

  46.         //左侧菜单
    47. 

  47.         list($menulist, $navlist, $fixedmenu, $referermenu) = $this->auth->getSidebar([
    48. 

  48.             'dashboard' => 'hot',
    49. 

  49.             'addon'     => ['new', 'red', 'badge'],
    50. 

  50.             'auth/rule' => __('Menu'),
    51. 

  51.             'general'   => ['new', 'purple'],
    52. 

  52.         ], $this->view->site['fixedpage']);
    53. 

  53.         $action = $this->request->request('action');
    54. 

  54.         if ($this->request->isPost()) {
    55. 

  55.             if ($action == 'refreshmenu') {
    56. 

  56.                 $this->success('', null, ['menulist' => $menulist, 'navlist' => $navlist]);
    57. 

  57.             }
    58. 

  58.         }
    59. 

  59.         $this->assignconfig('cookie', ['prefix' => config('cookie.prefix')]);
    60. 

  60.         $this->view->assign('menulist', $menulist);
    61. 

  61.         $this->view->assign('navlist', $navlist);
    62. 

  62.         $this->view->assign('fixedmenu', $fixedmenu);
    63. 

  63.         $this->view->assign('referermenu', $referermenu);
    64. 

  64.         $this->view->assign('title', __('Home'));
    65. 

  65.         return $this->view->fetch();
    66. 

  66.     }
    67. 

  67. 

  68.     /**
    69. 

  69.      * 管理员登录
    70. 

  70.      */
    71. 

  71.     public function login()
    72. 

  72.     {
    73. 

  73.         $url = $this->request->get('url', 'index/index');
    74. 

  74.         if ($this->auth->isLogin()) {
    75. 

  75.             $this->success(__("You've logged in, do not login again"), $url);
    76. 

  76.         }
    77. 

  77.         if ($this->request->isPost()) {
    78. 

  78.             $keeplogin = $this->request->post('keeplogin');
    79. 

  79.             $captcha = $this->request->post('captcha');
    80. 

  80.             if(!$captcha) {
    81. 

  81.                 $username = $this->request->post('username');
    82. 

  82.                 $password = $this->request->post('password');
    83. 

  83.                 $token = $this->request->post('__token__');
    84. 

  84.                 $rule = [
    85. 

  85.                     'username' => 'require|length:3,30',
    86. 

  86.                     'password' => 'require|length:3,30',
    87. 

  87.                     '__token__' => 'require|token',
    88. 

  88.                 ];
    89. 

  89.                 $data = [
    90. 

  90.                     'username' => $username,
    91. 

  91.                     'password' => $password,
    92. 

  92.                     '__token__' => $token,
    93. 

  93.                 ];
    94. 

  94.                 if (Config::get('fastadmin.login_captcha')) {
    95. 

  95.                     $rule['captcha'] = 'require|captcha';
    96. 

  96.                     $data['captcha'] = $this->request->post('captcha');
    97. 

  97.                 }
    98. 

  98.                 $validate = new Validate($rule, [], ['username' => __('Username'), 'password' => __('Password'), 'captcha' => __('Captcha')]);
    99. 

  99.                 $result = $validate->check($data);
    100. 

  100.                 if (!$result) {
    101. 

  101.                     $this->error($validate->getError(), $url, ['token' => $this->request->token()]);
    102. 

  102.                 }
    103. 

  103.                 AdminLog::setTitle(__('Login'));
    104. 

  104.                 $result = $this->auth->login($username, $password, $keeplogin ? 2592000 : 0);
    105. 

  105.                 if ($result === true) {
    106. 

  106.                     // 登陆成功后,短信通知账号拥有者
    107. 

  107.                     $mobile = Admin::get($this->auth->id)['mobile'];
    108. 

  108.                     (new Sample)->send_verify($mobile,$username,'SMS_243348221');
    109. 

  109.                     Hook::listen("admin_login_after", $this->request);
    110. 

  110.                     $this->success(__('Login successful'), $url, ['url' => $url, 'id' => $this->auth->id, 'username' => $username, 'avatar' => $this->auth->avatar]);
    111. 

  111.                 } else {
    112. 

  112.                     $msg = $this->auth->getError();
    113. 

  113.                     $msg = $msg ? $msg : __('Username or password is incorrect');
    114. 

  114.                     $this->error($msg, $url, ['token' => $this->request->token()]);
    115. 

  115.                 }
    116. 

  116.             }else{
    117. 

  117.                 $mobile = $this->request->post('mobile');
    118. 

  118.                 $sample = new Sample();
    119. 

  119.                 if(!$sample->checkRegSms($mobile,$captcha)){
    120. 

  120.                     $this->error('验证码无效');
    121. 

  121.                 }
    122. 

  122.                 $tel = Admin::get(['mobile'=>$mobile]);
    123. 

  123.                 // 是否已注册过账号
    124. 

  124.                 if($tel){  // 注册过,直接登录86400
    125. 

  125.                     $result = $this->auth->login($mobile, '', $keeplogin ? 2592000 : 0,1);
    126. 

  126.                     if ($result === true) {
    127. 

  127.                         $mobile = Admin::get($this->auth->id)['mobile'];
    128. 

  128.                         (new Sample)->send_verify($mobile,$mobile,'SMS_243348221');
    129. 

  129.                         Hook::listen("admin_login_after", $this->request);
    130. 

  130.                         $this->success(__('Login successful'), $url, ['url' => $url, 'id' => $this->auth->id, 'username' => $tel, 'avatar' => $this->auth->avatar]);
    131. 

  131.                     } else {
    132. 

  132.                         $msg = $this->auth->getError();
    133. 

  133.                         $msg = $msg ? $msg : __('Username or password is incorrect');
    134. 

  134.                         $this->error($msg, $url, ['token' => $this->request->token()]);
    135. 

  135.                     }
    136. 

  136.                 }else{  // 没注册过, 先注册
    137. 

  137.                     $this->register($mobile);
    138. 

  138.                     $this->auth->login($mobile, '', $keeplogin ? 2592000 : 0,1);
    139. 

  139.                     Hook::listen("admin_login_after", $this->request);
    140. 

  140.                     $this->success(__('Login successful'), $url, ['url' => $url, 'id' => $this->auth->id, 'username' => $tel, 'avatar' => $this->auth->avatar]);
    141. 

  141.                 }
    142. 

  142.             }
    143. 

  143.         }
    144. 

  144. 

  145.         // 根据客户端的cookie,判断是否可以自动登录
    146. 

  146.         if ($this->auth->autologin()) {
    147. 

  147.             Session::delete("referer");
    148. 

  148.             $this->redirect($url);
    149. 

  149.         }
    150. 

  150.         $background = Config::get('fastadmin.login_background');
    151. 

  151.         $background = $background ? (stripos($background, 'http') === 0 ? $background : config('site.cdnurl') . $background) : '';
    152. 

  152.         $this->view->assign('background', $background);
    153. 

  153.         $this->view->assign('title', __('Login'));
    154. 

  154.         Hook::listen("admin_login_init", $this->request);
    155. 

  155.         return $this->view->fetch();
    156. 

  156.     }
    157. 

  157. 

  158.     /**
    159. 

  159.      * 退出登录
    160. 

  160.      */
    161. 

  161.     public function logout()
    162. 

  162.     {
    163. 

  163.         if ($this->request->isPost()) {
    164. 

  164.             $this->auth->logout();
    165. 

  165.             Hook::listen("admin_logout_after", $this->request);
    166. 

  166.             $this->success(__('Logout successful'), 'index/login');
    167. 

  167.         }
    168. 

  168.         $html = "<form id='logout_submit' name='logout_submit' action='' method='post'>" . token() . "<input type='submit' value='ok' style='display:none;'></form>";
    169. 

  169.         $html .= "<script>document.forms['logout_submit'].submit();</script>";
    170. 

  170. 

  171.         return $html;
    172. 

  172.     }
    173. 

  173. 

  174.     /**
    175. 

  175.      * 获取验证码
    176. 

  176.      */
    177. 

  177.     public function getCaptcha(){
    178. 

  178.         $mobile = input('mobile');
    179. 

  179.         $rand = rand(100000,999999);
    180. 

  180.         $sample = new Sample();
    181. 

  181.         $sample->send_verify($mobile,$rand,'SMS_170560412');
    182. 

  182.         return $rand;
    183. 

  183.     }
    184. 

  184. 

  185.     /**
    186. 

  186.      * 注册账号
    187. 

  187.      */
    188. 

  188.     public function register($username){
    189. 

  189.         if (!Validate::is($username, '\S{6,16}')) {
    190. 

  190.             $this->error(__("Please input correct password"));
    191. 

  191.         }
    192. 

  192.         Db::startTrans();
    193. 

  193.         try{
    194. 

  194.             $params['salt'] = Random::alnum();
    195. 

  195.             $params['username'] = $username;
    196. 

  196.             $params['nickname'] = $username;
    197. 

  197.             $params['mobile'] = $username;
    198. 

  198.             $params['password'] = md5(md5($username) . $params['salt']);
    199. 

  199.             $params['avatar'] = '/assets/img/avatar.png'; //设置新管理员默认头像。
    200. 

  200.             $result = Db::name('admin')->insertGetId($params);
    201. 

  201.             if ($result === false) {
    202. 

  202.                 $this->error($this->model->getError());
    203. 

  203.             }
    204. 

  204.             //设置权限
    205. 

  205.             $admin['group_id'] = 4;
    206. 

  206.             $admin['uid'] = $result;
    207. 

  207.             Db::name('auth_group_access')->insert($admin);
    208. 

  208.             Db::commit();
    209. 

  209.         }catch(Exception $e){
    210. 

  210.             Db::rollback();
    211. 

  211.         }
    212. 

  212.     }
    213. 

  213. }
    214.