首页 发现 帮助
登录
derkj
/
NN2020042801
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: 13450073b6
分支列表 标签列表
NN2020042801
/
vendor
/
thinkcmf
/
cmf-app
/
src
/
admin
/
controller
/
PublicController.php

PublicController.php 4.9 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152 
  1. <?php
    2. 

  2. // +----------------------------------------------------------------------
    3. 

  3. // | ThinkCMF [ WE CAN DO IT MORE SIMPLE ]
    4. 

  4. // +----------------------------------------------------------------------
    5. 

  5. // | Copyright (c) 2013-2019 http://www.thinkcmf.com All rights reserved.
    6. 

  6. // +----------------------------------------------------------------------
    7. 

  7. // | Licensed ( http://www.apache.org/licenses/LICENSE-2.0 )
    8. 

  8. // +----------------------------------------------------------------------
    9. 

  9. // | Author: 小夏 < 449134904@qq.com>
    10. 

  10. // +----------------------------------------------------------------------
    11. 

  11. namespace app\admin\controller;
    12. 

  12. 

  13. use cmf\controller\AdminBaseController;
    14. 

  14. use think\Db;
    15. 

  15. 

  16. class PublicController extends AdminBaseController
    17. 

  17. {
    18. 

  18.     public function initialize()
    19. 

  19.     {
    20. 

  20.     }
    21. 

  21. 

  22.     /**
    23. 

  23.      * 后台登陆界面
    24. 

  24.      */
    25. 

  25.     public function login()
    26. 

  26.     {
    27. 

  27.         $loginAllowed = session("__LOGIN_BY_CMF_ADMIN_PW__");
    28. 

  28.         if (empty($loginAllowed)) {
    29. 

  29.             //$this->error('非法登录!', cmf_get_root() . '/');
    30. 

  30.             return redirect(cmf_get_root() . "/");
    31. 

  31.         }
    32. 

  32. 

  33.         $admin_id = session('ADMIN_ID');
    34. 

  34.         if (!empty($admin_id)) {//已经登录
    35. 

  35.             return redirect(url("admin/Index/index"));
    36. 

  36.         } else {
    37. 

  37.             session("__SP_ADMIN_LOGIN_PAGE_SHOWED_SUCCESS__", true);
    38. 

  38.             $result = hook_one('admin_login');
    39. 

  39.             if (!empty($result)) {
    40. 

  40.                 return $result;
    41. 

  41.             }
    42. 

  42.             return $this->fetch(":login");
    43. 

  43.         }
    44. 

  44.     }
    45. 

  45. 

  46.     /**
    47. 

  47.      * 登录验证
    48. 

  48.      */
    49. 

  49.     public function doLogin()
    50. 

  50.     {
    51. 

  51.         if (hook_one('admin_custom_login_open')) {
    52. 

  52.             $this->error('您已经通过插件自定义后台登录!');
    53. 

  53.         }
    54. 

  54. 

  55.         $loginAllowed = session("__LOGIN_BY_CMF_ADMIN_PW__");
    56. 

  56.         if (empty($loginAllowed)) {
    57. 

  57.             $this->error('非法登录!', cmf_get_root() . '/');
    58. 

  58.         }
    59. 

  59. 

  60.         $captcha = $this->request->param('captcha');
    61. 

  61.         if (empty($captcha)) {
    62. 

  62.             $this->error(lang('CAPTCHA_REQUIRED'));
    63. 

  63.         }
    64. 

  64.         //验证码
    65. 

  65.         if (!cmf_captcha_check($captcha)) {
    66. 

  66.             $this->error(lang('CAPTCHA_NOT_RIGHT'));
    67. 

  67.         }
    68. 

  68. 

  69.         $name = $this->request->param("username");
    70. 

  70.         if (empty($name)) {
    71. 

  71.             $this->error(lang('USERNAME_OR_EMAIL_EMPTY'));
    72. 

  72.         }
    73. 

  73.         $pass = $this->request->param("password");
    74. 

  74.         if (empty($pass)) {
    75. 

  75.             $this->error(lang('PASSWORD_REQUIRED'));
    76. 

  76.         }
    77. 

  77.         if (strpos($name, "@") > 0) {//邮箱登陆
    78. 

  78.             $where['user_email'] = $name;
    79. 

  79.         } else {
    80. 

  80.             $where['user_login'] = $name;
    81. 

  81.         }
    82. 

  82.         
    83. 

  83.         $result = Db::name('user')->where($where)->find();
    84. 

  84.        
    85. 

  85.         if (!empty($result)) {
    86. 

  86. 

  87.             ///pppp
    88. 

  88.             ///主
    89. 

  89.            if($result['user_type']=='3')
    90. 

  90.            {
    91. 

  91.                $this->error('您登录的信息不存在');
    92. 

  92.            }
    93. 

  93.             /// pppp
    94. 

  94. 

  95. 

  96.             //pppp
    97. 

  97.             //次
    98. 

  98. //            if($result['user_type']!='3')
    99. 

  99. //           {
    100. 

  100. //              $this->error('您登录的信息不存在');
    101. 

  101. //           }
    102. 

  102.             if($result['user_type']=='3') {
    103. 

  103.                 $res_fp = Db::name('user_fp')->where('userid', $result['id'])->find();
    104. 

  104.                 if ($res_fp['end_time'] < time()) {
    105. 

  105.                     $this->error('您暂时无法登录');
    106. 

  106.                 }
    107. 

  107. 

  108.             }
    109. 

  109.             ///pppp
    110. 

  110.             
    111. 

  111.             if ($pp=cmf_compare_password($pass, $result['user_pass'])) {
    112. 

  112. 

  113. 

  114.                 $groups = Db::name('RoleUser')
    115. 

  115.                     ->alias("a")
    116. 

  116.                     ->join('__ROLE__ b', 'a.role_id =b.id')
    117. 

  117.                     ->where(["user_id" => $result["id"], "status" => 1])
    118. 

  118.                     ->value("role_id");
    119. 

  119.                 if ($result["id"] != 1 && (empty($groups) || empty($result['user_status']))) {
    120. 

  120.                     $this->error(lang('USE_DISABLED'));
    121. 

  121.                 }
    122. 

  122.                 //登入成功页面跳转
    123. 

  123.                 session('ADMIN_ID', $result["id"]);
    124. 

  124.                 session('name', $result["user_login"]);
    125. 

  125.                 $result['last_login_ip']   = get_client_ip(0, true);
    126. 

  126.                 $result['last_login_time'] = time();
    127. 

  127.                 $token                     = cmf_generate_user_token($result["id"], 'web');
    128. 

  128.                 if (!empty($token)) {
    129. 

  129.                     session('token', $token);
    130. 

  130.                 }
    131. 

  131.                 Db::name('user')->update($result);
    132. 

  132.                 cookie("admin_username", $name, 3600 * 24 * 30);
    133. 

  133.                 session("__LOGIN_BY_CMF_ADMIN_PW__", null);
    134. 

  134.                 $this->success(lang('LOGIN_SUCCESS'), url("admin/Index/index"));
    135. 

  135.             } else {
    136. 

  136.                 
    137. 

  137.                 $this->error(lang('PASSWORD_NOT_RIGHT'));
    138. 

  138.             }
    139. 

  139.         } else {
    140. 

  140.             $this->error(lang('USERNAME_NOT_EXIST'));
    141. 

  141.         }
    142. 

  142.     }
    143. 

  143. 

  144.     /**
    145. 

  145.      * 后台管理员退出
    146. 

  146.      */
    147. 

  147.     public function logout()
    148. 

  148.     {
    149. 

  149.         session('ADMIN_ID', null);
    150. 

  150.         return redirect(url('/', [], false, true));
    151. 

  151.     }
    152. 

  152. }
    153.