2025-04-30 14:52:51 +08:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace app\common\controller;
|
|
|
|
|
|
|
|
|
|
use app\common\model\User as UserModel;
|
|
|
|
|
use app\common\util\JwtUtil;
|
|
|
|
|
use Exception;
|
|
|
|
|
use library\ResponseHelper;
|
2025-07-28 17:38:45 +08:00
|
|
|
use think\Db;
|
2025-04-30 14:52:51 +08:00
|
|
|
use think\Validate;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* 认证控制器
|
|
|
|
|
* 处理用户登录和身份验证
|
|
|
|
|
*/
|
|
|
|
|
class PasswordLoginController extends BaseController
|
|
|
|
|
{
|
|
|
|
|
/**
|
|
|
|
|
* 获取用户基本信息
|
|
|
|
|
*
|
|
|
|
|
* @param string $account
|
|
|
|
|
* @param int $typeId
|
|
|
|
|
* @return UserModel
|
|
|
|
|
*/
|
2025-07-25 16:25:00 +08:00
|
|
|
protected function getUserProfileWithAccountAndType(string $account, int $typeId)
|
2025-04-30 14:52:51 +08:00
|
|
|
{
|
2025-04-30 17:15:11 +08:00
|
|
|
$user = UserModel::where(
|
|
|
|
|
function ($query) use ($account) {
|
|
|
|
|
$query->where('phone', $account)->whereOr('account', $account);
|
|
|
|
|
}
|
|
|
|
|
)
|
|
|
|
|
->where(
|
|
|
|
|
function ($query) use ($typeId) {
|
|
|
|
|
$query->where('status', 1)->where('typeId', $typeId);
|
|
|
|
|
}
|
|
|
|
|
)->find();
|
2025-04-30 14:52:51 +08:00
|
|
|
|
2025-07-25 16:25:00 +08:00
|
|
|
if(!empty($user)){
|
|
|
|
|
return $user;
|
|
|
|
|
}else{
|
|
|
|
|
return '';
|
|
|
|
|
}
|
2025-04-30 14:52:51 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* 获取用户信息
|
|
|
|
|
*
|
|
|
|
|
* @param string $account 账号(手机号)
|
|
|
|
|
* @param string $password 密码(可能是加密后的)
|
|
|
|
|
* @param int $typeId 身份信息
|
|
|
|
|
* @return array|null
|
|
|
|
|
*/
|
|
|
|
|
protected function getUser(string $account, string $password, int $typeId): array
|
|
|
|
|
{
|
|
|
|
|
$user = $this->getUserProfileWithAccountAndType($account, $typeId);
|
|
|
|
|
if (!$user) {
|
|
|
|
|
throw new \Exception('用户不存在或已禁用', 403);
|
|
|
|
|
}
|
|
|
|
|
|
2025-07-19 17:19:50 +08:00
|
|
|
$password = md5($password);
|
2025-07-19 14:59:00 +08:00
|
|
|
if ($user->passwordMd5 !== $password) {
|
2025-04-30 14:52:51 +08:00
|
|
|
throw new \Exception('账号或密码错误', 403);
|
|
|
|
|
}
|
|
|
|
|
|
2025-04-30 17:15:11 +08:00
|
|
|
return array_merge($user->toArray(), [
|
|
|
|
|
'lastLoginIp' => $this->request->ip(),
|
|
|
|
|
'lastLoginTime' => time()
|
|
|
|
|
]);
|
2025-04-30 14:52:51 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* 数据验证
|
|
|
|
|
*
|
|
|
|
|
* @param array $params
|
|
|
|
|
* @return $this
|
|
|
|
|
* @throws \Exception
|
|
|
|
|
*/
|
|
|
|
|
protected function dataValidate(array $params): self
|
|
|
|
|
{
|
|
|
|
|
$validate = Validate::make([
|
|
|
|
|
'account' => 'require',
|
|
|
|
|
'password' => 'require|length:6,64',
|
|
|
|
|
'typeId' => 'require|in:1,2',
|
|
|
|
|
], [
|
|
|
|
|
'account.require' => '账号不能为空',
|
|
|
|
|
'password.require' => '密码不能为空',
|
|
|
|
|
'password.length' => '密码长度必须在6-64个字符之间',
|
|
|
|
|
'typeId.require' => '用户类型不能为空',
|
|
|
|
|
'typeId.in' => '用户类型错误',
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
if (!$validate->check($params)) {
|
|
|
|
|
throw new \Exception($validate->getError(), 400);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* 用户登录
|
|
|
|
|
*
|
|
|
|
|
* @param string $account 账号(手机号)
|
|
|
|
|
* @param string $password 密码(可能是加密后的)
|
|
|
|
|
* @param string $typeId 登录IP
|
|
|
|
|
* @return array
|
|
|
|
|
* @throws \Exception
|
|
|
|
|
*/
|
|
|
|
|
protected function doLogin(string $account, string $password, int $typeId): array
|
|
|
|
|
{
|
|
|
|
|
// 获取用户信息
|
|
|
|
|
$member = $this->getUser($account, $password, $typeId);
|
2025-07-28 17:38:45 +08:00
|
|
|
$deviceTotal = Db::name('device')->where(['companyId' => $member['companyId'],'deleteTime' => 0])->count();
|
|
|
|
|
|
|
|
|
|
|
2025-04-30 14:52:51 +08:00
|
|
|
|
|
|
|
|
// 生成JWT令牌
|
2025-07-28 17:38:45 +08:00
|
|
|
$token = JwtUtil::createToken($member, 86400 * 30);
|
|
|
|
|
$token_expired = time() + 86400 * 30;
|
2025-08-22 10:23:05 +08:00
|
|
|
$kefuData = [
|
|
|
|
|
'token' => [],
|
|
|
|
|
'self' => [],
|
|
|
|
|
];
|
|
|
|
|
return compact('member', 'token', 'token_expired','deviceTotal','kefuData');
|
2025-04-30 14:52:51 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* 用户登录
|
|
|
|
|
*
|
2025-04-30 17:15:11 +08:00
|
|
|
* @return \think\response\Json
|
2025-04-30 14:52:51 +08:00
|
|
|
*/
|
|
|
|
|
public function index()
|
|
|
|
|
{
|
|
|
|
|
$params = $this->request->only(['account', 'password', 'typeId']);
|
|
|
|
|
try {
|
2025-08-22 10:23:05 +08:00
|
|
|
$userData = $this->dataValidate($params)->doLogin(
|
2025-04-30 14:52:51 +08:00
|
|
|
$params['account'],
|
|
|
|
|
$params['password'],
|
|
|
|
|
$params['typeId']
|
|
|
|
|
);
|
2025-08-22 10:23:05 +08:00
|
|
|
//同时登录客服系统
|
2025-09-13 10:45:32 +08:00
|
|
|
/* if (!empty($userData['member']['passwordLocal'])){
|
2025-08-22 10:23:05 +08:00
|
|
|
$params = [
|
|
|
|
|
'grant_type' => 'password',
|
|
|
|
|
'username' => $userData['member']['account'],
|
|
|
|
|
'password' => localDecrypt($userData['member']['passwordLocal'])
|
|
|
|
|
];
|
|
|
|
|
// 调用登录接口获取token
|
|
|
|
|
$headerData = ['client:kefu-client'];
|
|
|
|
|
$header = setHeader($headerData, '', 'plain');
|
|
|
|
|
$result = requestCurl('https://s2.siyuguanli.com:9991/token', $params, 'POST', $header);
|
|
|
|
|
$token = handleApiResponse($result);
|
|
|
|
|
$userData['kefuData']['token'] = $token;
|
|
|
|
|
if (isset($token['access_token']) && !empty($token['access_token'])) {
|
|
|
|
|
$headerData = ['client:kefu-client'];
|
|
|
|
|
$header = setHeader($headerData, $token['access_token']);
|
|
|
|
|
$result = requestCurl( 'https://s2.siyuguanli.com:9991/api/account/self', [], 'GET', $header,'json');
|
|
|
|
|
$self = handleApiResponse($result);
|
|
|
|
|
$userData['kefuData']['self'] = $self;
|
|
|
|
|
}
|
2025-09-13 10:45:32 +08:00
|
|
|
}*/
|
2025-08-22 10:23:05 +08:00
|
|
|
return ResponseHelper::success($userData, '登录成功');
|
2025-04-30 14:52:51 +08:00
|
|
|
} catch (Exception $e) {
|
|
|
|
|
return ResponseHelper::error($e->getMessage(), $e->getCode());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
