You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
344 lines
13 KiB
344 lines
13 KiB
<?php
|
|
namespace Api\Controller;
|
|
use Think\Controller;
|
|
class UserController extends BaseController {
|
|
|
|
|
|
//注册
|
|
public function register(){
|
|
$username = trim(I("username"));
|
|
$password = I("password");
|
|
$confirm_password = I("confirm_password");
|
|
$v_code = I("v_code");
|
|
$register_open = D("Options")->get("register_open" ) ;
|
|
if ($register_open === '0') {
|
|
$this->sendError(10101,"管理员已关闭注册");
|
|
return ;
|
|
}
|
|
if (C('CloseVerify') || $v_code && $v_code == session('v_code') ) {
|
|
session('v_code',null) ;
|
|
if ( $password != '' && $password == $confirm_password) {
|
|
|
|
if(!D("User")->checkDbOk()){
|
|
$this->sendError(100100,"数据库连接不上。请确保安装了php-sqlite扩展以及数据库文件Sqlite/showdoc.db.php可用");
|
|
return;
|
|
}
|
|
|
|
if ( ! D("User")->isExist($username) ) {
|
|
$new_uid = D("User")->register($username,$password);
|
|
if ($new_uid) {
|
|
|
|
$create_sample = D("Options")->get("create_sample") ;
|
|
//获取后台的语言设置
|
|
//这是个历史包袱。因为安装的时候语言设置没有写到API模块的配置下,所以只能读文件读取Home模快的配置文件
|
|
$config = file_get_contents("./Application/Home/Conf/config.php");
|
|
if ($create_sample !== '0' && strstr($config, "'zh-cn',") ) {
|
|
//导入示例项目
|
|
$this->_importSample($new_uid);
|
|
}
|
|
|
|
//设置自动登录
|
|
$ret = D("User")->where("uid = '$new_uid' ")->find() ;
|
|
unset($ret['password']);
|
|
session("login_user" , $ret );
|
|
$token = D("UserToken")->createToken($ret['uid']);
|
|
cookie('cookie_token',$token,array('expire'=>60*60*24*90,'httponly'=>'httponly'));//此处由服务端控制token是否过期,所以cookies过期时间设置多久都无所谓
|
|
$this->sendResult(array(
|
|
"uid" => $ret['uid'] ,
|
|
"username" => $ret['username'] ,
|
|
"name" => $ret['name'] ,
|
|
"groupid" => $ret['groupid'] ,
|
|
"avatar" => $ret['avatar'] ,
|
|
"avatar_small" => $ret['avatar_small'] ,
|
|
"email" => $ret['email'] ,
|
|
"email_verify" => $ret['email_verify'] ,
|
|
"user_token" => $token ,
|
|
));
|
|
|
|
}else{
|
|
$this->sendError(10101,'register fail');
|
|
}
|
|
}else{
|
|
$this->sendError(10101,L('username_exists'));
|
|
}
|
|
|
|
}else{
|
|
$this->sendError(10101,L('code_much_the_same'));
|
|
}
|
|
}else{
|
|
$this->sendError(10206,L('verification_code_are_incorrect'));
|
|
}
|
|
}
|
|
|
|
//导入示例项目
|
|
private function _importSample($uid){
|
|
$this->_importZip("../Public/SampleZip/apidoc.zip" , $uid);
|
|
$this->_importZip("../Public/SampleZip/databasedoc.zip" , $uid);
|
|
$this->_importZip("../Public/SampleZip/teamdoc.zip" , $uid);
|
|
$this->_importZip("../Public/SampleZip/spreadsheet.zip" , $uid);
|
|
}
|
|
|
|
private function _importZip($file , $uid){
|
|
$zipArc = new \ZipArchive();
|
|
$ret = $zipArc->open($file, \ZipArchive::CREATE);
|
|
$info = $zipArc->getFromName("prefix_info.json") ;
|
|
if ($info) {
|
|
$info_array = json_decode($info ,1 );
|
|
if ($info_array) {
|
|
D("Item")->import( json_encode($info_array) , $uid );
|
|
return true;
|
|
}
|
|
}
|
|
return false ;
|
|
}
|
|
|
|
//登录
|
|
public function login(){
|
|
$username = trim(I("username"));
|
|
$password = I("password");
|
|
$v_code = I("v_code");
|
|
if (!$password) {
|
|
$this->sendError(10206,"no empty password");
|
|
return;
|
|
}
|
|
//检查用户输错密码的次数。如果超过一定次数,则需要验证 验证码
|
|
$key= 'login_fail_times_'.$username;
|
|
if(!D("VerifyCode")->_check_times($key)){
|
|
if (!$v_code || $v_code != session('v_code')) {
|
|
$this->sendError(10206,L('verification_code_are_incorrect'));
|
|
return;
|
|
}
|
|
}
|
|
session('v_code',null) ;
|
|
|
|
if(!D("User")->checkDbOk()){
|
|
$this->sendError(100100,"数据库连接不上。请确保安装了php-sqlite扩展以及数据库文件Sqlite/showdoc.db.php可用");
|
|
return;
|
|
}
|
|
|
|
$ret = D("User")->checkLogin($username,$password);
|
|
//如果失败则尝试ldap登录
|
|
if (!$ret) {
|
|
$ret = D("User")->checkLdapLogin($username,$password);
|
|
}
|
|
if ($ret) {
|
|
//获取后台的语言设置
|
|
//这是个历史包袱。因为安装的时候语言设置没有写到API模块的配置下,所以只能读文件读取Home模快的配置文件
|
|
$config = file_get_contents("./Application/Home/Conf/config.php");
|
|
|
|
if (D("Item")->count() < 1 && strstr($config, "'zh-cn',") ) {
|
|
//如果项目表是空的,则生成系统示例项目
|
|
$this->_importSample(1);
|
|
}
|
|
unset($ret['password']);
|
|
session("login_user" , $ret );
|
|
D("User")->setLastTime($ret['uid']);
|
|
$token = D("UserToken")->createToken($ret['uid'],60*60*24*180);
|
|
cookie('cookie_token',$token,array('expire'=>60*60*24*180,'httponly'=>'httponly'));//此处由服务端控制token是否过期,所以cookies过期时间设置多久都无所谓
|
|
$this->sendResult(array(
|
|
"uid" => $ret['uid'] ,
|
|
"username" => $ret['username'] ,
|
|
"name" => $ret['name'] ,
|
|
"groupid" => $ret['groupid'] ,
|
|
"avatar" => $ret['avatar'] ,
|
|
"avatar_small" => $ret['avatar_small'] ,
|
|
"email" => $ret['email'] ,
|
|
"email_verify" => $ret['email_verify'] ,
|
|
"user_token" => $token ,
|
|
));
|
|
}else{
|
|
D("VerifyCode")->_ins_times($key);//输错密码则设置输错次数
|
|
|
|
if(D("VerifyCode")->_check_times($key)){
|
|
$error_code = 10204 ;
|
|
}else{
|
|
$error_code = 10210 ;
|
|
}
|
|
$this->sendError($error_code,L('username_or_password_incorrect'));
|
|
return;
|
|
}
|
|
|
|
}
|
|
|
|
//登录2
|
|
public function loginByVerify(){
|
|
$username = I("username");
|
|
$password = I("password");
|
|
$captcha_id = I("captcha_id");
|
|
$captcha = I("captcha");
|
|
|
|
if ( !D("Captcha")->check($captcha_id , $captcha) ) {
|
|
$this->sendError(10206,L('verification_code_are_incorrect'));
|
|
return;
|
|
}
|
|
$ret = D("User")->checkLogin($username,$password);
|
|
//如果失败则尝试ldap登录
|
|
if (!$ret) {
|
|
$ret = D("User")->checkLdapLogin($username,$password);
|
|
}
|
|
|
|
if ($ret) {
|
|
|
|
//获取后台的语言设置
|
|
//这是个历史包袱。因为安装的时候语言设置没有写到API模块的配置下,所以只能读文件读取Home模快的配置文件
|
|
$config = file_get_contents("./Application/Home/Conf/config.php");
|
|
|
|
if (D("Item")->count() < 1 && strstr($config, "'zh-cn',") ) {
|
|
//如果项目表是空的,则生成系统示例项目
|
|
$this->_importSample(1);
|
|
}
|
|
|
|
unset($ret['password']);
|
|
session("login_user" , $ret );
|
|
D("User")->setLastTime($ret['uid']);
|
|
$token = D("UserToken")->createToken($ret['uid'], 60*60*24*180);
|
|
$this->sendResult(array(
|
|
"uid" => $ret['uid'] ,
|
|
"username" => $ret['username'] ,
|
|
"name" => $ret['name'] ,
|
|
"groupid" => $ret['groupid'] ,
|
|
"avatar" => $ret['avatar'] ,
|
|
"avatar_small" => $ret['avatar_small'] ,
|
|
"email" => $ret['email'] ,
|
|
"email_verify" => $ret['email_verify'] ,
|
|
"user_token" => $token ,
|
|
));
|
|
|
|
}else{
|
|
$this->sendError(10204,L('username_or_password_incorrect'));
|
|
return;
|
|
}
|
|
|
|
}
|
|
|
|
//注册2
|
|
public function registerByVerify(){
|
|
$username = trim(I("username"));
|
|
$password = I("password");
|
|
$confirm_password = I("confirm_password");
|
|
$captcha_id = I("captcha_id");
|
|
$captcha = I("captcha");
|
|
$register_open = D("Options")->get("register_open" ) ;
|
|
if ($register_open === '0') {
|
|
$this->sendError(10101,"管理员已关闭注册");
|
|
return ;
|
|
}
|
|
if ( !D("Captcha")->check($captcha_id , $captcha) ) {
|
|
$this->sendError(10206,L('verification_code_are_incorrect'));
|
|
return;
|
|
}
|
|
if ( $password != '' && $password == $confirm_password) {
|
|
|
|
if ( ! D("User")->isExist($username) ) {
|
|
$new_uid = D("User")->register($username,$password);
|
|
if ($new_uid) {
|
|
|
|
$create_sample = D("Options")->get("create_sample") ;
|
|
//获取后台的语言设置
|
|
//这是个历史包袱。因为安装的时候语言设置没有写到API模块的配置下,所以只能读文件读取Home模快的配置文件
|
|
$config = file_get_contents("./Application/Home/Conf/config.php");
|
|
if ($create_sample !== '0' && strstr($config, "'zh-cn',") ) {
|
|
//导入示例项目
|
|
$this->_importSample($new_uid);
|
|
}
|
|
|
|
//设置自动登录
|
|
$ret = D("User")->where("uid = '$new_uid' ")->find() ;
|
|
unset($ret['password']);
|
|
session("login_user" , $ret );
|
|
$token = D("UserToken")->createToken($ret['uid']);
|
|
cookie('cookie_token',$token,array('expire'=>60*60*24*90,'httponly'=>'httponly'));//此处由服务端控制token是否过期,所以cookies过期时间设置多久都无所谓
|
|
|
|
$this->sendResult(array(
|
|
"uid" => $ret['uid'] ,
|
|
"username" => $ret['username'] ,
|
|
"name" => $ret['name'] ,
|
|
"groupid" => $ret['groupid'] ,
|
|
"avatar" => $ret['avatar'] ,
|
|
"avatar_small" => $ret['avatar_small'] ,
|
|
"email" => $ret['email'] ,
|
|
"user_token" => $token ,
|
|
));
|
|
|
|
}else{
|
|
$this->sendError(10101,'register fail');
|
|
}
|
|
}else{
|
|
$this->sendError(10101,L('username_exists'));
|
|
}
|
|
|
|
}else{
|
|
$this->sendError(10101,L('code_much_the_same'));
|
|
}
|
|
|
|
}
|
|
|
|
//获取用户信息
|
|
public function info(){
|
|
$login_user = $this->checkLogin();
|
|
$uid = $login_user['uid'] ;
|
|
$field = "uid,username,email,name,avatar,avatar_small,groupid" ;
|
|
$info = D("User")->where(" uid = '$uid' ")->field($field)->find();
|
|
$this->sendResult($info);
|
|
}
|
|
|
|
//获取所有用户名
|
|
public function allUser(){
|
|
$login_user = $this->checkLogin();
|
|
$uid = $login_user['uid'] ;
|
|
$username = I("username");
|
|
$field = "username as value" ;
|
|
if ($username) {
|
|
$username = \SQLite3::escapeString($username) ;
|
|
$where = " username like '%{$username}%'" ;
|
|
}else{
|
|
$where = ' 1 = 1 ';
|
|
}
|
|
$info = D("User")->where($where)->field($field)->select();
|
|
$this->sendResult($info);
|
|
}
|
|
|
|
//通过旧密码验证来更新用户密码
|
|
public function resetPassword(){
|
|
$login_user = $this->checkLogin();
|
|
$username = $login_user['username'];
|
|
$password = I("password");
|
|
$new_password = I("new_password");
|
|
$ret = D("User")->checkLogin($username,$password);
|
|
if ($ret) {
|
|
$ret = D("User")->updatePwd($login_user['uid'],$new_password);
|
|
if ($ret) {
|
|
$this->sendResult(array());
|
|
}else{
|
|
$this->sendError(10101,L('modify_faild'));
|
|
}
|
|
|
|
}else{
|
|
$this->sendError(10101,L('old_password_incorrect'));
|
|
}
|
|
}
|
|
|
|
//退出登录
|
|
public function logout(){
|
|
$login_user = $this->checkLogin();
|
|
D("UserToken")->where(" uid = '$login_user[uid]' ")->save(array("token_expire"=>0));
|
|
session("login_user" , NULL);
|
|
cookie('cookie_token',NULL);
|
|
session(null);
|
|
$this->sendResult(array());
|
|
}
|
|
|
|
|
|
public function updateInfo(){
|
|
$user = $this->checkLogin();
|
|
$uid = $user['uid'];
|
|
$name = I("name");
|
|
|
|
D("User")->where(" uid = '$uid' ")->save(array("name"=>$name));
|
|
$this->sendResult(array());
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|