You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 

233 lines
6.4 KiB

<?php
namespace Api\Controller;
use Think\Controller;
class BaseController extends Controller {
//是否开启本地调试
private $is_local_debug;
public function __construct()
{
//是否开启本地调试。
$this->is_local_debug = 0 ;
//做一个检测,以免这个配置更新到线上。
if (
$this->is_local_debug > 0
&& strpos($_SERVER['HTTP_HOST'],'127.0.0.1') === false
&& $_SERVER['HTTP_HOST'] != 'wu.com'
&& strpos($_SERVER['HTTP_HOST'], "192.168") == false
){
$this->sendError("-1001","非本地环境禁止开通调试。请通知管理员关闭调试模式");
exit();
}
//检测数据库文件是否有可写权限
$this->checkDbWhitable();
//为了兼容纯json请求
if (strstr($_SERVER['CONTENT_TYPE'],"json")) {
$json = file_get_contents('php://input');
$array = json_decode($json,1);
$_POST = array_merge($_POST,$array) ;
}
}
public function checkLogin($redirect = true){
//debug
if ($this->is_local_debug > 0 ) {
$login_user = D("User")->where("username = 'showdoc' ")->find();
session("login_user" , $login_user);
}
if ( ! session("login_user")) {
$cookie_token = I("user_token") ? I("user_token") : cookie('cookie_token');
if ($cookie_token) {
$ret = D("UserToken")->getToken($cookie_token);
if ($ret && $ret['token_expire'] > time() ) {
D("UserToken")->setLastTime($cookie_token);
$login_user = D("User")->where("uid = $ret[uid]")->find();
unset($ret['password']);
session("login_user" , $login_user);
return $login_user ;
}
}
if ($redirect) {
$this->sendError(10102);
exit();
}
}else{
return session("login_user") ;
}
}
//检查是否是管理员
public function checkAdmin($redirect = true){
$login_user = session("login_user") ;
if ($login_user) {
if ($login_user['groupid'] == 1 ) {
return true ;
}
}
if ($redirect) {
$this->sendError(10103);
exit();
}
return false;
}
/**
* 返回json结果
*/
protected function sendResult($array){
if (isset($array['error_code'])) {
$result['error_code'] = $array['error_code'] ;
$result['error_message'] = $array['error_message'] ;
}
else{
$result['error_code'] = 0 ;
$result['data'] = $array ;
}
if ($this->is_local_debug > 0 ) {
header('Access-Control-Allow-Origin: *');//允许跨域请求
header('Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Connection, User-Agent, Cookie');
header('Access-Control-Allow-Credentials: true');//允许跨域请求
}
echo json_encode($result);
//如果开启API调试模式,则记录请求参数和返回结果
if (C('API_LOG')) {
$info = '';
$info .= "\n\n【★★★★★★★★★★★】";
$info .= "\n请求接口:".MODULE_NAME ."/".CONTROLLER_NAME."/".ACTION_NAME."";
$info .= "\n请求".'$_REQUEST'."\n";
$info .= json_encode($_REQUEST);
$info .= "\n返回结果:\n";
$info .= json_encode($result)."\n";
$info .= "【★★★★★★★★★★★】\n";
\Think\log::record($info , 'INFO');
}
}
//返回错误提示
protected function sendError($error_code , $error_message = ''){
$error_code = $error_code ? $error_code : 10103 ;
//来自Html5Plus的应用允许跨域
if (strstr($_SERVER['HTTP_USER_AGENT'], "Html5Plus") ) {
header('Access-Control-Allow-Origin: *');//允许跨域请求
header('Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Connection, User-Agent, Cookie');
header('Access-Control-Allow-Credentials : true');//允许跨域请求
}
if (!$error_message) {
$error_codes = C("error_codes");
foreach ($error_codes as $key => $value) {
if ($key == $error_code ) {
$error_message = $value ;
}
}
}
$array['error_code'] = $error_code;
$array['error_message'] = $error_message ;
$this->sendResult($array);
}
//判断某用户是否有项目管理权限(项目成员member_group_id为1,是项目所在团队的成员并且成员权限为1 ,以及 项目创建者)
protected function checkItemPermn($uid , $item_id){
if (!$uid) {
return false;
}
$item = D("Item")->where("item_id = '%d' ",array($item_id))->find();
if ($item['uid'] && $item['uid'] == $uid) {
session("mamage_item_".$item_id , 1 );
return true;
}
$ItemMember = D("ItemMember")->where("item_id = '%d' and uid = '%d' and member_group_id = 1 ",array($item_id,$uid))->find();
if ($ItemMember) {
session("mamage_item_".$item_id , 1 );
return true;
}
$ItemMember = D("TeamItemMember")->where("item_id = '%d' and member_uid = '%d' and member_group_id = 1 ",array($item_id,$uid))->find();
if ($ItemMember) {
session("mamage_item_".$item_id , 1 );
return true;
}
return false;
}
//判断某用户是否为项目创建者
protected function checkItemCreator($uid , $item_id){
if (!$uid) {
return false;
}
if (session("creat_item_".$item_id)) {
return true;
}
$item = D("Item")->where("item_id = '%d' ",array($item_id))->find();
if ($item['uid'] && $item['uid'] == $uid) {
session("creat_item_".$item_id , 1 );
return true;
}
return false;
}
//判断某用户是否有项目访问权限(公开项目的话所有人可访问,私有项目则项目成员、项目创建者和访问密码输入者可访问)
protected function checkItemVisit($uid , $item_id, $refer_url= ''){
if (session("visit_item_".$item_id)) {
return true;
}
if ($this->checkItemCreator($uid , $item_id)) {
session("visit_item_".$item_id , 1 );
return true;
}
$ItemMember = D("ItemMember")->where("item_id = '%d' and uid = '%d' ",array($item_id,$uid))->find();
if ($ItemMember) {
session("visit_item_".$item_id , 1 );
return true;
}
$TeamItemMember = D("TeamItemMember")->where("item_id = '%d' and member_uid = '%d' ",array($item_id,$uid))->find();
if ($TeamItemMember) {
session("visit_item_".$item_id , 1 );
return true;
}
$item = D("Item")->where("item_id = '%d' ",array($item_id))->find();
if ($item['password']) {
return false;
}else{
session("visit_item_".$item_id , 1 );
return true;
}
}
//检查数据库文件是否可写
protected function checkDbWhitable(){
$file = C("DB_NAME") ;
if ( $fp = @fopen($file, 'a+')) {
@fclose($fp);
return true ;
} else {
$this->sendError("10103","Sqlite/showdoc.db.php文件不可写");
exit();
}
}
}