108 lines
3.0 KiB
PHP
Executable File
108 lines
3.0 KiB
PHP
Executable File
<?php
|
||
|
||
# @Author: 嗨噜客(三亚) <fm453>
|
||
# @Date: 2022-04-15 20:22:03
|
||
# @Email: fm453@lukegzs.com
|
||
# @Last modified by: fm453
|
||
# @Last modified time: 2024-08-09T09:20:31+08:00
|
||
# @Copyright: www.hiluker.cn
|
||
//DataApi站点用户专入口
|
||
|
||
namespace api\controllers\client\v1;
|
||
|
||
use Yii;
|
||
use yii\helpers\Url;
|
||
use common\models\User;
|
||
|
||
class UserController extends Common
|
||
{
|
||
public function beforeAction($action)
|
||
{
|
||
if (!$this->pid) {
|
||
$this->result('您正使用本系统内部接口,禁止非法链接使用!');
|
||
}
|
||
return parent::beforeAction($action);
|
||
}
|
||
|
||
public function actionIndex()
|
||
{
|
||
$apis = [
|
||
'login' => '登陆'
|
||
];
|
||
$this->result('您正使用DACMS系统用户管理接口!', $apis, 200);
|
||
}
|
||
|
||
public function actionLogin()
|
||
{
|
||
$pid = $this->pid;
|
||
$post = $this->postdata;
|
||
$search = $post['search'] ?? NULL;
|
||
|
||
$username = $search['username'] ?? NULL;
|
||
$username = $post['username'] ?? $username;
|
||
|
||
$passwd = $search['passwd'] ?? NULL;
|
||
$passwd = $post['passwd'] ?? $passwd;
|
||
|
||
$return = [];
|
||
if (!$username && !$passwd) {
|
||
$this->result('登陆参数错误!', NULL, 400);
|
||
}
|
||
if (!$username) {
|
||
$this->result('请输入您的账号!', NULL, 400);
|
||
}
|
||
if (!$passwd) {
|
||
$this->result('请输入您的密码!', NULL, 400);
|
||
}
|
||
$username = trim(htmlspecialchars_decode($username));
|
||
$passwd = trim(htmlspecialchars_decode($passwd));
|
||
if (!$username) {
|
||
$this->result('输入错误,请检查您的账号!', NULL, 400);
|
||
}
|
||
if (!$passwd) {
|
||
$this->result('输入有误,请检查您的密码!', NULL, 400);
|
||
}
|
||
|
||
$model = new User();
|
||
$user = $model->findOne(['mobile' => $username]);
|
||
if (!$user) {
|
||
$this->result('查无此人!', NULL, 404);
|
||
}
|
||
|
||
if ($user->status != User::STATUS_ACTIVE) {
|
||
$this->result('账户异常,禁止登陆!', NULL, 403);
|
||
}
|
||
//安全校验,登陆密码
|
||
$isPwdRight = $user->validatePassword($passwd);
|
||
|
||
if (!$isPwdRight) {
|
||
$this->result('密码错误,禁止登陆!', NULL, 400);
|
||
}
|
||
//用户主信息校验结束
|
||
|
||
$_user = $this->userLogin($user, TRUE);
|
||
$this->result('登陆成功!', ['user' => $_user], 200);
|
||
}
|
||
|
||
private function userLogin($user, $hasExt = FALSE)
|
||
{
|
||
// 使用指定用户名获取用户身份实例
|
||
$identity = $user;
|
||
// 登录用户,有效期30d
|
||
$duration = 3600 * 24 * 30;
|
||
$_login = Yii::$app->user->login($identity, $duration);
|
||
if (!$_login) {
|
||
$this->result('登陆失败!', NULL, 400);
|
||
}
|
||
//登陆成功,返回用户信息
|
||
$_user = ['id' => $user->id, 'username' => $user->username, 'mobile' => $user->mobile, 'email' => $user->email, 'avatar' => Url::to($user->avatar)];
|
||
$_user['employee_id'] = $this->employee_id;
|
||
|
||
//生成token(用户数据,是否强制更新,过期时间
|
||
$isLong = $this->postdata['isLong'] ?? FALSE;
|
||
$expire = $isLong ? '+1 Month' : FALSE;
|
||
$_user = $this->userToken($_user, $refresh = TRUE, $expire);
|
||
return $_user;
|
||
}
|
||
}
|