loumengning
/
shop
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
330 Commits
3 Branches
51 MiB
 
 
 
 
 
 
Tree: ee387485de
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ee387485de'
${ noResults }
shop/application/common/library/Auth.php

573 lines
15 KiB
Raw Blame History 

  1. <?php

  2. 

  3. namespace app\common\library;

  4. 

  5. use app\common\model\User;

  6. use app\common\model\UserRule;

  7. use fast\Random;

  8. use think\Config;

  9. use think\Cookie;

  10. use think\Db;

  11. use think\Exception;

  12. use think\Hook;

  13. use think\Request;

  14. use think\Validate;

  15. 

  16. class Auth

  17. {

  18.     protected static $instance = null;

  19.     protected $_error = '';

  20.     protected $_logined = false;

  21.     protected $_user = null;

  22.     protected $_token = '';

  23.     //Token默认有效时长

  24.     protected $keeptime = 14400;

  25.     //protected $keeptime = 10;

  26.     protected $requestUri = '';

  27.     protected $rules = [];

  28.     //默认配置

  29.     protected $config = [];

  30.     protected $options = [];

  31.     protected $allowFields = ['id', 'username', 'nickname', 'mobile', 'avatar', 'score'];

  32. 

  33.     public function __construct($options = [])

  34.     {

  35.         if ($config = Config::get('user')) {

  36.             $this->config = array_merge($this->config, $config);

  37.         }

  38.         $this->options = array_merge($this->config, $options);

  39.     }

  40. 

  41.     /**

  42.      *

  43.      * @param array $options 参数

  44.      * @return Auth

  45.      */

  46.     public static function instance($options = [])

  47.     {

  48.         if (is_null(self::$instance)) {

  49.             self::$instance = new static($options);

  50.         }

  51. 

  52.         return self::$instance;

  53.     }

  54. 

  55.     /**

  56.      * 获取User模型

  57.      * @return User

  58.      */

  59.     public function getUser()

  60.     {

  61.         return $this->_user;

  62.     }

  63. 

  64.     /**

  65.      * 兼容调用user模型的属性

  66.      *

  67.      * @param string $name

  68.      * @return mixed

  69.      */

  70.     public function __get($name)

  71.     {

  72.         return $this->_user ? $this->_user->$name : null;

  73.     }

  74. 

  75.     /**

  76.      * 根据Token初始化

  77.      *

  78.      * @param string $token Token

  79.      * @return boolean

  80.      */

  81.     public function init($token)

  82.     {

  83.         if ($this->_logined) {

  84.             return true;

  85.         }

  86.         if ($this->_error) {

  87.             return false;

  88.         }

  89.         $data = Token::get($token);

  90.         if (!$data) {

  91.             return false;

  92.         }

  93.         $user_id = intval($data['user_id']);

  94.         if ($user_id > 0) {

  95.             $user = User::get($user_id);

  96.             if (!$user) {

  97.                 $this->setError('Account not exist');

  98.                 return false;

  99.             }

  100.             if ($user['status'] != 'normal') {

  101.                 $this->setError('Account is locked');

  102.                 return false;

  103.             }

  104.             $this->_user = $user;

  105.             $this->_logined = true;

  106.             $this->_token = $token;

  107. 

  108.             //初始化成功的事件

  109.             Hook::listen("user_init_successed", $this->_user);

  110. 

  111.             return true;

  112.         } else {

  113.             $this->setError('You are not logged in');

  114.             return false;

  115.         }

  116.     }

  117. 

  118.     /**

  119.      * 注册用户

  120.      *

  121.      * @param string $username 用户名

  122.      * @param string $password 密码

  123.      * @param string $email    邮箱

  124.      * @param string $mobile   手机号

  125.      * @param array  $extend   扩展参数

  126.      * @return boolean

  127.      */

  128.     public function register($username, $password, $email = '', $mobile = '', $extend = [])

  129.     {

  130.         // 检测用户名或邮箱、手机号是否存在

  131.         if (User::getByUsername($username)) {

  132.             $this->setError('Username already exist');

  133.             return false;

  134.         }

  135.         if ($email && User::getByEmail($email)) {

  136.             $this->setError('Email already exist');

  137.             return false;

  138.         }

  139.         if ($mobile && User::getByMobile($mobile)) {

  140.             $this->setError('Mobile already exist');

  141.             return false;

  142.         }

  143. 

  144.         $ip = request()->ip();

  145.         $time = time();

  146. 

  147.         $data = [

  148.             'username' => $username,

  149.             'password' => $password,

  150.             'email'    => $email,

  151.             'mobile'   => $mobile,

  152.             'level'    => 1,

  153.             'score'    => 0,

  154.             'avatar'   => '',

  155.         ];

  156.         $params = array_merge($data, [

  157.             'nickname'  => $username,

  158.             'salt'      => Random::alnum(),

  159.             'jointime'  => $time,

  160.             'joinip'    => $ip,

  161.             'logintime' => $time,

  162.             'loginip'   => $ip,

  163.             'prevtime'  => $time,

  164.             'status'    => 'normal'

  165.         ]);

  166.         $params['password'] = $this->getEncryptPassword($password, $params['salt']);

  167.         $params = array_merge($params, $extend);

  168. 

  169.         //账号注册时需要开启事务,避免出现垃圾数据

  170.         Db::startTrans();

  171.         try {

  172.             $user = User::create($params, true);

  173. 

  174.             $this->_user = User::get($user->id);

  175. 

  176.             //设置Token

  177.             $this->_token = Random::uuid();

  178.             Token::set($this->_token, $user->id, $this->keeptime);

  179. 

  180.             //注册成功的事件

  181.             Hook::listen("user_register_successed", $this->_user, $data);

  182.             Db::commit();

  183.         } catch (Exception $e) {

  184.             $this->setError($e->getMessage());

  185.             Db::rollback();

  186.             return false;

  187.         }

  188.         return true;

  189.     }

  190. 

  191.     /**

  192.      * 用户登录

  193.      *

  194.      * @param string $account  账号,用户名、邮箱、手机号

  195.      * @param string $password 密码

  196.      * @return boolean

  197.      */

  198.     public function login($account, $password)

  199.     {

  200.         $field = Validate::is($account, 'email') ? 'email' : (Validate::regex($account, '/^1\d{10}$/') ? 'mobile' : 'username');

  201.         $user = User::get([$field => $account]);

  202.         if (!$user) {

  203.             $this->setError('Account is incorrect');

  204.             return false;

  205.         }

  206. 

  207.         if ($user->status != 'normal') {

  208.             $this->setError('Account is locked');

  209.             return false;

  210.         }

  211.         $loginError = Cookie::get($account);

  212.         if ($loginError && $loginError>=5) {

  213.             $this->setError(__('登录错误次数过多,请5分钟后再登录'));;

  214.             return false;

  215.         }

  216.         if ($user->password != $this->getEncryptPassword($password, $user->salt)) {

  217.             $loginError = $loginError?$loginError+1:1;

  218.             Cookie::set($account,$loginError,60*5);

  219.             $this->setError('Password is incorrect');

  220.             return false;

  221.         }

  222. 

  223.         //直接登录会员

  224.         $this->direct($user->id);

  225. 

  226.         return true;

  227.     }

  228. 

  229.     /**

  230.      * 注销

  231.      *

  232.      * @return boolean

  233.      */

  234.     public function logout()

  235.     {

  236.         if (!$this->_logined) {

  237.             $this->setError('You are not logged in');

  238.             return false;

  239.         }

  240.         //设置登录标识

  241.         $this->_logined = false;

  242.         //删除Token

  243.         Token::delete($this->_token);

  244.         //注销成功的事件

  245.         Hook::listen("user_logout_successed", $this->_user);

  246.         return true;

  247.     }

  248. 

  249.     /**

  250.      * 修改密码

  251.      * @param string $newpassword       新密码

  252.      * @param string $oldpassword       旧密码

  253.      * @param bool   $ignoreoldpassword 忽略旧密码

  254.      * @return boolean

  255.      */

  256.     public function changepwd($newpassword, $oldpassword = '', $ignoreoldpassword = false)

  257.     {

  258.         if (!$this->_logined) {

  259.             $this->setError('You are not logged in');

  260.             return false;

  261.         }

  262.         //判断旧密码是否正确

  263.         if ($this->_user->password == $this->getEncryptPassword($oldpassword, $this->_user->salt) || $ignoreoldpassword) {

  264.             Db::startTrans();

  265.             try {

  266.                 $salt = Random::alnum();

  267.                 $newpassword = $this->getEncryptPassword($newpassword, $salt);

  268.                 $this->_user->save(['loginfailure' => 0, 'password' => $newpassword, 'salt' => $salt]);

  269. 

  270.                 Token::delete($this->_token);

  271.                 //修改密码成功的事件

  272.                 Hook::listen("user_changepwd_successed", $this->_user);

  273.                 Db::commit();

  274.             } catch (Exception $e) {

  275.                 Db::rollback();

  276.                 $this->setError($e->getMessage());

  277.                 return false;

  278.             }

  279.             return true;

  280.         } else {

  281.             $this->setError('Password is incorrect');

  282.             return false;

  283.         }

  284.     }

  285. 

  286.     /**

  287.      * 直接登录账号

  288.      * @param int $user_id

  289.      * @return boolean

  290.      */

  291.     public function direct($user_id)

  292.     {

  293.         $user = User::get($user_id);

  294.         if ($user) {

  295.             Db::startTrans();

  296.             try {

  297.                 $ip = request()->ip();

  298.                 $time = time();

  299. 

  300.                 //判断连续登录和最大连续登录

  301.                 if ($user->logintime < \fast\Date::unixtime('day')) {

  302.                     $user->successions = $user->logintime < \fast\Date::unixtime('day', -1) ? 1 : $user->successions + 1;

  303.                     $user->maxsuccessions = max($user->successions, $user->maxsuccessions);

  304.                 }

  305. 

  306.                 $user->prevtime = $user->logintime;

  307.                 //记录本次登录的IP和时间

  308.                 $user->loginip = $ip;

  309.                 $user->logintime = $time;

  310.                 //重置登录失败次数

  311.                 $user->loginfailure = 0;

  312. 

  313.                 $user->save();

  314. 

  315.                 $this->_user = $user;

  316. 

  317.                 $this->_token = Random::uuid();

  318.                 Token::set($this->_token, $user->id, $this->keeptime);

  319. 

  320.                 $this->_logined = true;

  321. 

  322.                 //登录成功的事件

  323.                 Hook::listen("user_login_successed", $this->_user);

  324.                 Db::commit();

  325.             } catch (Exception $e) {

  326.                 Db::rollback();

  327.                 $this->setError($e->getMessage());

  328.                 return false;

  329.             }

  330.             return true;

  331.         } else {

  332.             return false;

  333.         }

  334.     }

  335. 

  336.     /**

  337.      * 检测是否是否有对应权限

  338.      * @param string $path   控制器/方法

  339.      * @param string $module 模块 默认为当前模块

  340.      * @return boolean

  341.      */

  342.     public function check($path = null, $module = null)

  343.     {

  344.         if (!$this->_logined) {

  345.             return false;

  346.         }

  347. 

  348.         $ruleList = $this->getRuleList();

  349.         $rules = [];

  350.         foreach ($ruleList as $k => $v) {

  351.             $rules[] = $v['name'];

  352.         }

  353.         $url = ($module ? $module : request()->module()) . '/' . (is_null($path) ? $this->getRequestUri() : $path);

  354.         $url = strtolower(str_replace('.', '/', $url));

  355.         return in_array($url, $rules) ? true : false;

  356.     }

  357. 

  358.     /**

  359.      * 判断是否登录

  360.      * @return boolean

  361.      */

  362.     public function isLogin()

  363.     {

  364.         if ($this->_logined) {

  365.             return true;

  366.         }

  367.         return false;

  368.     }

  369. 

  370.     /**

  371.      * 获取当前Token

  372.      * @return string

  373.      */

  374.     public function getToken()

  375.     {

  376.         return $this->_token;

  377.     }

  378. 

  379.     /**

  380.      * 获取会员基本信息

  381.      */

  382.     public function getUserinfo()

  383.     {

  384.         $data = $this->_user->toArray();

  385.         $allowFields = $this->getAllowFields();

  386.         $userinfo = array_intersect_key($data, array_flip($allowFields));

  387.         $userinfo = array_merge($userinfo, Token::get($this->_token));

  388.         return $userinfo;

  389.     }

  390. 

  391.     /**

  392.      * 获取会员组别规则列表

  393.      * @return array

  394.      */

  395.     public function getRuleList()

  396.     {

  397.         if ($this->rules) {

  398.             return $this->rules;

  399.         }

  400.         $group = $this->_user->group;

  401.         if (!$group) {

  402.             return [];

  403.         }

  404.         $rules = explode(',', $group->rules);

  405.         $this->rules = UserRule::where('status', 'normal')->where('id', 'in', $rules)->field('id,pid,name,title,ismenu')->select();

  406.         return $this->rules;

  407.     }

  408. 

  409.     /**

  410.      * 获取当前请求的URI

  411.      * @return string

  412.      */

  413.     public function getRequestUri()

  414.     {

  415.         return $this->requestUri;

  416.     }

  417. 

  418.     /**

  419.      * 设置当前请求的URI

  420.      * @param string $uri

  421.      */

  422.     public function setRequestUri($uri)

  423.     {

  424.         $this->requestUri = $uri;

  425.     }

  426. 

  427.     /**

  428.      * 获取允许输出的字段

  429.      * @return array

  430.      */

  431.     public function getAllowFields()

  432.     {

  433.         return $this->allowFields;

  434.     }

  435. 

  436.     /**

  437.      * 设置允许输出的字段

  438.      * @param array $fields

  439.      */

  440.     public function setAllowFields($fields)

  441.     {

  442.         $this->allowFields = $fields;

  443.     }

  444. 

  445.     /**

  446.      * 删除一个指定会员

  447.      * @param int $user_id 会员ID

  448.      * @return boolean

  449.      */

  450.     public function delete($user_id)

  451.     {

  452.         $user = User::get($user_id);

  453.         if (!$user) {

  454.             return false;

  455.         }

  456.         Db::startTrans();

  457.         try {

  458.             // 删除会员

  459.             User::destroy($user_id);

  460.             // 删除会员指定的所有Token

  461.             Token::clear($user_id);

  462. 

  463.             Hook::listen("user_delete_successed", $user);

  464.             Db::commit();

  465.         } catch (Exception $e) {

  466.             Db::rollback();

  467.             $this->setError($e->getMessage());

  468.             return false;

  469.         }

  470.         return true;

  471.     }

  472. 

  473.     /**

  474.      * 获取密码加密后的字符串

  475.      * @param string $password 密码

  476.      * @param string $salt     密码盐

  477.      * @return string

  478.      */

  479.     public function getEncryptPassword($password, $salt = '')

  480.     {

  481.         return md5(md5($password) . $salt);

  482.     }

  483. 

  484.     /**

  485.      * 检测当前控制器和方法是否匹配传递的数组

  486.      *

  487.      * @param array $arr 需要验证权限的数组

  488.      * @return boolean

  489.      */

  490.     public function match($arr = [])

  491.     {

  492.         $request = Request::instance();

  493.         $arr = is_array($arr) ? $arr : explode(',', $arr);

  494.         if (!$arr) {

  495.             return false;

  496.         }

  497.         $arr = array_map('strtolower', $arr);

  498.         // 是否存在

  499.         if (in_array(strtolower($request->action()), $arr) || in_array('*', $arr)) {

  500.             return true;

  501.         }

  502. 

  503.         // 没找到匹配

  504.         return false;

  505.     }

  506. 

  507.     /**

  508.      * 设置会话有效时间

  509.      * @param int $keeptime 默认为永久

  510.      */

  511.     public function keeptime($keeptime = 0)

  512.     {

  513.         $this->keeptime = $keeptime;

  514.     }

  515. 

  516.     /**

  517.      * 渲染用户数据

  518.      * @param array  $datalist  二维数组

  519.      * @param mixed  $fields    加载的字段列表

  520.      * @param string $fieldkey  渲染的字段

  521.      * @param string $renderkey 结果字段

  522.      * @return array

  523.      */

  524.     public function render(&$datalist, $fields = [], $fieldkey = 'user_id', $renderkey = 'userinfo')

  525.     {

  526.         $fields = !$fields ? ['id', 'nickname', 'level', 'avatar'] : (is_array($fields) ? $fields : explode(',', $fields));

  527.         $ids = [];

  528.         foreach ($datalist as $k => $v) {

  529.             if (!isset($v[$fieldkey])) {

  530.                 continue;

  531.             }

  532.             $ids[] = $v[$fieldkey];

  533.         }

  534.         $list = [];

  535.         if ($ids) {

  536.             if (!in_array('id', $fields)) {

  537.                 $fields[] = 'id';

  538.             }

  539.             $ids = array_unique($ids);

  540.             $selectlist = User::where('id', 'in', $ids)->column($fields);

  541.             foreach ($selectlist as $k => $v) {

  542.                 $list[$v['id']] = $v;

  543.             }

  544.         }

  545.         foreach ($datalist as $k => &$v) {

  546.             $v[$renderkey] = isset($list[$v[$fieldkey]]) ? $list[$v[$fieldkey]] : null;

  547.         }

  548.         unset($v);

  549.         return $datalist;

  550.     }

  551. 

  552.     /**

  553.      * 设置错误信息

  554.      *

  555.      * @param $error 错误信息

  556.      * @return Auth

  557.      */

  558.     public function setError($error)

  559.     {

  560.         $this->_error = $error;

  561.         return $this;

  562.     }

  563. 

  564.     /**

  565.      * 获取错误信息

  566.      * @return string

  567.      */

  568.     public function getError()

  569.     {

  570.         return $this->_error ? __($this->_error) : '';

  571.     }

  572. }