Home Explore Help
Sign In
chengwenliang
/
erp
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 7f2a99d671
Branches Tags
erp
/
core
/
CoreApp
/
controllers
/
Lyerpapi
/
v1
/
User.php

User.php 2.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. <?php
    2. 

  2. defined('BASEPATH') OR exit('No direct script access allowed');
    3. 

  3. 

  4. class User extends Lyapi_Controller{
    5. 

  5. 

  6.     // 注意:登录接口不能受基础控制器的登录校验,可以覆盖构造方法或单独处理
    7. 

  7.     public function __construct() {
    8. 

  8.         // 这里不执行登录校验,只加载缓存驱动
    9. 

  9.         parent::__construct(); // 暂时注释,或者使用一个新的不校验的基类
    10. 

  10.         // 简便做法:复制 Lyapi_Controller 的部分代码但不调用 _check_api_auth
    11. 

  11.        // $this->load->driver('cache'); // 加载缓存驱动
    12. 

  12.        $this->load->_model("Model_logic_tools","logic_tools");
    13. 

  13.        $this->load->_model("Model_user",'user');
    14. 

  14.        $this->load->_model("Model_power",'power');
    15. 

  15.         
    16. 

  16.     }
    17. 

  17. 

  18.     public function login() {
    19. 

  19. 

  20.         if($this->input->method(TRUE) != 'POST'){
    21. 

  21. 

  22.             $this->_json_error('请求方式错误','405');
    23. 

  23.         }
    24. 

  24.         $json_str = $this->input->raw_input_stream;
    25. 

  25.         $data = json_decode($json_str,true);
    26. 

  26.         $account = $data['account'];
    27. 

  27.         $pass = $data['pass'];
    28. 

  28.         $account = $this->logic_tools->toolsjiemi($account,"v!frlbpnjgir6alv","k!2w94m6jt!6ook4");
    29. 

  29.         $pass = $this->logic_tools->toolsjiemi($pass,"v!frlbpnjgir6alv","k!2w94m6jt!6ook4");
    30. 

  30. 

  31.         $pass = sha1($pass);
    32. 

  32.         $userinfo = $this->user->find('userid = "'.$account.'"');
    33. 

  33.         if(empty($userinfo)){
    34. 

  34.             $this->_json_error('账号不存在','500');
    35. 

  35.         }
    36. 

  36.         if($userinfo['userpass'] != $pass){
    37. 

  37.             $this->_json_error('密码错误','500');
    38. 

  38.         }
    39. 

  39.         $power = $this->power->read($userinfo['power']);
    40. 

  40.         if(empty($power)){
    41. 

  41.             $this->_json_error('角色未设置','500');
    42. 

  42.         }
    43. 

  43.         if(empty($power['lyapiid'])){
    44. 

  44.             $this->_json_error('权限未设置','500');
    45. 

  45.         }
    46. 

  46.         $lyapiids = explode("|",trim($power['lyapiid'],"|"));
    47. 

  47.         $res = $this->power->_lyapi();
    48. 

  48.         $lyapi_list = $res['lyapi_list'];
    49. 

  49.         $all_arr = [];
    50. 

  50.         foreach($lyapi_list as $v){
    51. 

  51.             if(in_array($v['id'],$lyapiids)){
    52. 

  52.                 $all_arr[] = $v['shortname'];
    53. 

  53.             }
    54. 

  54.         }
    55. 

  55. 

  56. 

  57.         // 生成唯一 token(可以用 JWT 或随机字符串)
    58. 

  58.         $token = bin2hex(random_bytes(32));
    59. 

  59.         $cache_key = 'token:' . md5($token);
    60. 

  60. 

  61.         // 写入缓存,有效期7200秒(2小时)
    62. 

  62.         $this->cache->save($cache_key, [
    63. 

  63.             'username'=>$userinfo['userid'],
    64. 

  64.             'mobile'=>'',
    65. 

  65.             'token'=>$token,
    66. 

  66.             'power'=>$all_arr
    67. 

  67.         ], 7200);
    68. 

  68. 

  69.         $this->_json_error("登陆成功",200,[
    70. 

  70.             'username'=>$userinfo['userid'],
    71. 

  71.             'mobile'=>'',
    72. 

  72.             'token'=>$token,
    73. 

  73.             'lypower'=>implode(',',$all_arr)
    74. 

  74.         ]);
    75. 

  75.     }
    76. 

  76. }
    77.