loumengning
/
hbp
2
0
Fork 0
Código Issues 1 Pull requests 0 Versões 0 Wiki Atividade
酒店预订平台
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
199 Commits
3 Branches
67 MiB
 
 
 
 
 
 
Tag: 725159421f
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 725159421f
${ noResults }
hbp/application/admin/controller/auth/Admin.php

316 linhas
11 KiB
Original Anotar Histórico 

  1. <?php

  2. 

  3. namespace app\admin\controller\auth;

  4. 

  5. use app\admin\model\AuthGroup;

  6. use app\admin\model\AuthGroupAccess;

  7. use app\common\controller\Backend;

  8. use fast\Random;

  9. use fast\Tree;

  10. use think\Db;

  11. use think\Validate;

  12. 

  13. /**

  14.  * 管理员管理

  15.  *

  16.  * @icon   fa fa-users

  17.  * @remark 一个管理员可以有多个角色组,左侧的菜单根据管理员所拥有的权限进行生成

  18.  */

  19. class Admin extends Backend

  20. {

  21.     protected $noNeedRight = ['getList'];

  22. 

  23.     /**

  24.      * @var \app\admin\model\Admin

  25.      */

  26.     protected $model = null;

  27.     protected $selectpageFields = 'id,username,nickname,avatar';

  28.     protected $searchFields = 'id,username,nickname';

  29.     protected $childrenGroupIds = [];

  30.     protected $childrenAdminIds = [];

  31. 

  32.     public function _initialize()

  33.     {

  34.         parent::_initialize();

  35.         $this->model = model('Admin');

  36. 

  37.         $this->childrenAdminIds = $this->auth->getChildrenAdminIds($this->auth->isSuperAdmin());

  38.         $this->childrenGroupIds = $this->auth->getChildrenGroupIds($this->auth->isSuperAdmin());

  39. 

  40.         $groupList = collection(AuthGroup::where('id', 'in', $this->childrenGroupIds)->select())->toArray();

  41. 

  42.         Tree::instance()->init($groupList);

  43.         $groupdata = [];

  44.         if ($this->auth->isSuperAdmin()) {

  45.             $result = Tree::instance()->getTreeList(Tree::instance()->getTreeArray(0));

  46.             foreach ($result as $k => $v) {

  47.                 $groupdata[$v['id']] = $v['name'];

  48.             }

  49.         } else {

  50.             $result = [];

  51.             $groups = $this->auth->getGroups();

  52.             foreach ($groups as $m => $n) {

  53.                 $childlist = Tree::instance()->getTreeList(Tree::instance()->getTreeArray($n['id']));

  54.                 $temp = [];

  55.                 foreach ($childlist as $k => $v) {

  56.                     $temp[$v['id']] = $v['name'];

  57.                 }

  58.                 $result[__($n['name'])] = $temp;

  59.             }

  60.             $groupdata = $result;

  61.         }

  62. 

  63.         $this->view->assign('groupdata', $groupdata);

  64.         $this->assignconfig("admin", ['id' => $this->auth->id]);

  65.     }

  66. 

  67.     /**

  68.      * 查看

  69.      */

  70.     public function index()

  71.     {

  72.         //设置过滤方法

  73.         $this->request->filter(['strip_tags', 'trim']);

  74.         if ($this->request->isAjax()) {

  75.             //如果发送的来源是Selectpage,则转发到Selectpage

  76.             if ($this->request->request('keyField')) {

  77.                 return $this->selectpage();

  78.             }

  79.             $childrenGroupIds = $this->childrenGroupIds;

  80.             $groupName = AuthGroup::where('id', 'in', $childrenGroupIds)

  81.                 ->column('id,name');

  82.             $authGroupList = AuthGroupAccess::where('group_id', 'in', $childrenGroupIds)

  83.                 ->field('uid,group_id')

  84.                 ->select();

  85. 

  86.             $adminGroupName = [];

  87.             foreach ($authGroupList as $k => $v) {

  88.                 if (isset($groupName[$v['group_id']])) {

  89.                     $adminGroupName[$v['uid']][$v['group_id']] = $groupName[$v['group_id']];

  90.                 }

  91.             }

  92.             $groups = $this->auth->getGroups();

  93.             foreach ($groups as $m => $n) {

  94.                 $adminGroupName[$this->auth->id][$n['id']] = $n['name'];

  95.             }

  96.             list($where, $sort, $order, $offset, $limit) = $this->buildparams();

  97. 

  98.             $list = $this->model

  99.                 ->where($where)

  100.                 ->where('id', 'in', $this->childrenAdminIds)

  101.                 ->field(['password', 'salt', 'token'], true)

  102.                 ->order($sort, $order)

  103.                 ->paginate($limit);

  104. 

  105.             foreach ($list as $k => &$v) {

  106.                 $groups = isset($adminGroupName[$v['id']]) ? $adminGroupName[$v['id']] : [];

  107.                 $v['groups'] = implode(',', array_keys($groups));

  108.                 $v['groups_text'] = implode(',', array_values($groups));

  109.             }

  110.             unset($v);

  111.             $result = array("total" => $list->total(), "rows" => $list->items());

  112. 

  113.             return json($result);

  114.         }

  115.         return $this->view->fetch();

  116.     }

  117. 

  118.     /**

  119.      * 添加

  120.      */

  121.     public function add()

  122.     {

  123.         if ($this->request->isPost()) {

  124.             $this->token();

  125.             $params = $this->request->post("row/a");

  126.             if ($params) {

  127.                 Db::startTrans();

  128.                 try {

  129.                     if (!Validate::is($params['password'], '\S{6,16}')) {

  130.                         exception(__("Please input correct password"));

  131.                     }

  132.                     $params['salt'] = Random::alnum();

  133.                     $params['password'] = md5(md5($params['password']) . $params['salt']);

  134.                     $params['avatar'] = '/assets/img/avatar.png'; //设置新管理员默认头像。

  135.                     $result = $this->model->validate('Admin.add')->save($params);

  136.                     if ($result === false) {

  137.                         exception($this->model->getError());

  138.                     }

  139.                     $group = $this->request->post("group/a");

  140. 

  141.                     //过滤不允许的组别,避免越权

  142.                     $group = array_intersect($this->childrenGroupIds, $group);

  143.                     if (!$group) {

  144.                         exception(__('The parent group exceeds permission limit'));

  145.                     }

  146. 

  147.                     $dataset = [];

  148.                     foreach ($group as $value) {

  149.                         $dataset[] = ['uid' => $this->model->id, 'group_id' => $value];

  150.                     }

  151.                     model('AuthGroupAccess')->saveAll($dataset);

  152.                     Db::commit();

  153.                 } catch (\Exception $e) {

  154.                     Db::rollback();

  155.                     $this->error($e->getMessage());

  156.                 }

  157.                 $this->success();

  158.             }

  159.             $this->error(__('Parameter %s can not be empty', ''));

  160.         }

  161.         return $this->view->fetch();

  162.     }

  163. 

  164.     /**

  165.      * 编辑

  166.      */

  167.     public function edit($ids = null)

  168.     {

  169.         $row = $this->model->get(['id' => $ids]);

  170.         if (!$row) {

  171.             $this->error(__('No Results were found'));

  172.         }

  173.         if (!in_array($row->id, $this->childrenAdminIds)) {

  174.             $this->error(__('You have no permission'));

  175.         }

  176.         if ($this->request->isPost()) {

  177.             $this->token();

  178.             $params = $this->request->post("row/a");

  179.             if ($params) {

  180.                 Db::startTrans();

  181.                 try {

  182.                     if ($params['password']) {

  183.                         if (!Validate::is($params['password'], '\S{6,16}')) {

  184.                             exception(__("Please input correct password"));

  185.                         }

  186.                         $params['salt'] = Random::alnum();

  187.                         $params['password'] = md5(md5($params['password']) . $params['salt']);

  188.                     } else {

  189.                         unset($params['password'], $params['salt']);

  190.                     }

  191.                     //这里需要针对username和email做唯一验证

  192.                     $adminValidate = \think\Loader::validate('Admin');

  193.                     $adminValidate->rule([

  194.                         'username' => 'require|regex:\w{3,12}|unique:admin,username,' . $row->id,

  195.                         'email'    => 'require|email|unique:admin,email,' . $row->id,

  196.                         'password' => 'regex:\S{32}',

  197.                     ]);

  198.                     $result = $row->validate('Admin.edit')->save($params);

  199.                     if ($result === false) {

  200.                         exception($row->getError());

  201.                     }

  202. 

  203.                     // 先移除所有权限

  204.                     model('AuthGroupAccess')->where('uid', $row->id)->delete();

  205. 

  206.                     $group = $this->request->post("group/a");

  207. 

  208.                     // 过滤不允许的组别,避免越权

  209.                     $group = array_intersect($this->childrenGroupIds, $group);

  210.                     if (!$group) {

  211.                         exception(__('The parent group exceeds permission limit'));

  212.                     }

  213. 

  214.                     $dataset = [];

  215.                     foreach ($group as $value) {

  216.                         $dataset[] = ['uid' => $row->id, 'group_id' => $value];

  217.                     }

  218.                     model('AuthGroupAccess')->saveAll($dataset);

  219.                     Db::commit();

  220.                 } catch (\Exception $e) {

  221.                     Db::rollback();

  222.                     $this->error($e->getMessage());

  223.                 }

  224.                 $this->success();

  225.             }

  226.             $this->error(__('Parameter %s can not be empty', ''));

  227.         }

  228.         $grouplist = $this->auth->getGroups($row['id']);

  229.         $groupids = [];

  230.         foreach ($grouplist as $k => $v) {

  231.             $groupids[] = $v['id'];

  232.         }

  233.         $this->view->assign("row", $row);

  234.         $this->view->assign("groupids", $groupids);

  235.         return $this->view->fetch();

  236.     }

  237. 

  238.     /**

  239.      * 删除

  240.      */

  241.     public function del($ids = "")

  242.     {

  243.         if (!$this->request->isPost()) {

  244.             $this->error(__("Invalid parameters"));

  245.         }

  246.         $ids = $ids ? $ids : $this->request->post("ids");

  247.         if ($ids) {

  248.             $ids = array_intersect($this->childrenAdminIds, array_filter(explode(',', $ids)));

  249.             // 避免越权删除管理员

  250.             $childrenGroupIds = $this->childrenGroupIds;

  251.             $adminList = $this->model->where('id', 'in', $ids)->where('id', 'in', function ($query) use ($childrenGroupIds) {

  252.                 $query->name('auth_group_access')->where('group_id', 'in', $childrenGroupIds)->field('uid');

  253.             })->select();

  254.             if ($adminList) {

  255.                 $deleteIds = [];

  256.                 foreach ($adminList as $k => $v) {

  257.                     $deleteIds[] = $v->id;

  258.                 }

  259.                 $deleteIds = array_values(array_diff($deleteIds, [$this->auth->id]));

  260.                 if ($deleteIds) {

  261.                     Db::startTrans();

  262.                     try {

  263.                         $this->model->destroy($deleteIds);

  264.                         model('AuthGroupAccess')->where('uid', 'in', $deleteIds)->delete();

  265.                         Db::commit();

  266.                     } catch (\Exception $e) {

  267.                         Db::rollback();

  268.                         $this->error($e->getMessage());

  269.                     }

  270.                     $this->success();

  271.                 }

  272.                 $this->error(__('No rows were deleted'));

  273.             }

  274.         }

  275.         $this->error(__('You have no permission'));

  276.     }

  277. 

  278.     /**

  279.      * 批量更新

  280.      * @internal

  281.      */

  282.     public function multi($ids = "")

  283.     {

  284.         // 管理员禁止批量操作

  285.         $this->error();

  286.     }

  287. 

  288.     /**

  289.      * 下拉搜索

  290.      */

  291.     public function selectpage()

  292.     {

  293.         $this->dataLimit = 'auth';

  294.         $this->dataLimitField = 'id';

  295.         return parent::selectpage();

  296.     }

  297. 

  298. 

  299.     public function getList(){

  300.         $name=$this->request->post('name');

  301.         $keyValue=$this->request->post('keyValue');

  302.         $this->model->field('id,nickname as name');

  303.         if($keyValue){

  304.             $this->model->where(['id'=>$keyValue]);

  305.         }elseif($name){

  306.             $this->model->where(['nickname'=>['like','%'.$name.'%']]);

  307.         }

  308.         $result= $this->model->select();

  309. //        print_r($result);

  310.         if($keyValue){

  311.             return json(['list' => $result]);

  312.         }

  313.         return json(['list' => $result]);

  314.     }

  315. }