github/niucloud-admin
1
0
Fork 0
mirror of https://gitee.com/niucloud-team/niucloud-admin.git synced 2026-01-15 00:11:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
niucloud-admin/niucloud/app/service/admin/auth/LoginService.php
全栈小学生 00f6383d37 update niucloud
2023-08-12 16:03:34 +08:00

177 lines
5.9 KiB
PHP
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<?php
// +----------------------------------------------------------------------
// | Niucloud-admin 企业快速开发的saas管理平台
// +----------------------------------------------------------------------
// | 官方网址https://www.niucloud-admin.com
// +----------------------------------------------------------------------
// | niucloud团队 版权所有 开源版本可自由商用
// +----------------------------------------------------------------------
// | Author: Niucloud Team
// +----------------------------------------------------------------------
namespace app\service\admin\auth;
use app\dict\sys\AppTypeDict;
use app\model\sys\SysUser;
use app\service\admin\captcha\CaptchaService;
use app\service\admin\site\SiteService;
use app\service\admin\user\UserRoleService;
use app\service\admin\user\UserService;
use app\service\core\sys\CoreConfigService;
use core\base\BaseAdminService;
use core\exception\AuthException;
use core\util\TokenAuth;
use Exception;
use Throwable;
/**
* 登录服务层
* Class BaseService
* @package app\service
*/
class LoginService extends BaseAdminService
{
public function __construct()
{
parent::__construct();
$this->model = new SysUser();
}
/**
* 用户登录
* @param string $username
* @param string $password
* @param string $app_type
* @return array|bool
*/
public function login(string $username, string $password, string $app_type)
{
if(!array_key_exists($app_type, AppTypeDict::getAppType())) throw new AuthException('APP_TYPE_NOT_EXIST');
$config = (new ConfigService())->getConfig();
switch($app_type){
case AppTypeDict::SITE:
$is_captcha = $config['is_site_captcha'];
break;
case AppTypeDict::ADMIN:
$is_captcha = $config['is_captcha'];
break;
}
if($is_captcha == 1){
(new CaptchaService())->verification();
}
$user_service = new UserService();
$userinfo = $user_service->getUserInfoByUsername($username);
if (empty($userinfo)) return false;
if (!check_password($password, $userinfo->password)) return false;
if (!$userinfo->status) {
throw new AuthException('USER_LOCK');
}
if($app_type == AppTypeDict::ADMIN){
$default_site_id = $this->request->defaultSiteId();
$userrole = (new UserRoleService())->getUserRole($default_site_id, $userinfo->uid);
if(empty($userrole)) throw new AuthException('SITE_USER_CAN_NOT_LOGIN_IN_ADMIN');
}else if($app_type == AppTypeDict::SITE){
$default_site_id = (new UserRoleService())->getUserDefaultSiteId($userinfo->uid);
if(!($default_site_id > 0)) throw new AuthException('ADMIN_USER_CAN_NOT_LOGIN_IN_SITE');
}else{
throw new AuthException('APP_TYPE_NOT_EXIST');
}
//修改用户登录信息
$userinfo->last_time = time();
$userinfo->last_ip = app('request')->ip();
$userinfo->login_count++;
$userinfo->save();
//创建token
$token_info = $this->createToken($userinfo, $app_type);
//查询权限以及菜单
$data = [
'token' => $token_info['token'],
'expires_time' => $token_info['params']['exp'],
'userinfo' => [
'uid' => $userinfo->uid,
'username' => $userinfo->username,
],
'site_id' => $default_site_id,
];
$data['site_info'] = (new SiteService())->getInfo($data['site_id']);
// 获取站点布局
$layout_config = (new CoreConfigService())->getConfig($data['site_id'], 'SITE_LAYOUT');
$data['layout'] = empty($layout_config) ? 'default' : $layout_config['value']['key'];
return $data;
}
/**
* 登陆退出(当前账户) (todo 这儿应该登出当前token, (登出一个账号还是全端口登出))
* @return true
*/
public function logout()
{
self::clearToken($this->uid, $this->app_type, $this->request->adminToken());
return true;
}
/**
* 创建token
* @param SysUser $userinfo
* @param string $app_type
* @return array
*/
public function createToken(SysUser $userinfo, string $app_type)
{
$expire_time = env('system.admin_token_expire_time') ?? 3600;
return TokenAuth::createToken($userinfo->uid, AppTypeDict::ADMIN, ['uid' => $userinfo->uid, 'username' => $userinfo->username], $expire_time);
}
/**
* 清理token
* @param int $uid
* @param string|null $type
* @param string|null $token
*/
public static function clearToken(int $uid, ?string $type = '', ?string $token = '')
{
if (empty($type)) {
TokenAuth::clearToken($uid, AppTypeDict::ADMIN, $token);//清除平台管理端的token
// TokenAuth::clearToken($uid, AppTypeDict::SITE, $token);//清除站点管理端的token
} else {
TokenAuth::clearToken($uid, $type, $token);
}
}
/**
* 解析token
* @param string|null $token
* @return array
*/
public function parseToken(?string $token)
{
if (empty($token)) {
//定义专属于授权认证机制的错误响应, 定义专属语言包
throw new AuthException('MUST_LOGIN', 401);
}
//暴力操作,截停所有异常覆盖为token失效
try {
$token_info = TokenAuth::parseToken($token, AppTypeDict::ADMIN);
} catch ( Throwable $e ) {
// if(env('app_debug', false)){
// throw new AuthException($e->getMessage(), 401);
// }else{
throw new AuthException('LOGIN_EXPIRE', 401);
// }
}
if (!$token_info) {
throw new AuthException('MUST_LOGIN', 401);
}
//验证有效次数或过期时间
return $token_info;
}
}
Reference in New Issue View Git Blame Copy Permalink