Base.php 18 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581
  1. <?php
  2. namespace Passport\Lib;
  3. use Dever;
  4. use Upload\Src\Lib\Img;
  5. use Dever\Routing\Uri;
  6. use Dever\Session\Oper as Save;
  7. use Dever\String\Encrypt;
  8. class Base
  9. {
  10. const NAME = 'passportv1';
  11. const CODE = 'code';
  12. const MCODE = 'mcode';
  13. protected $save;
  14. public function __construct()
  15. {
  16. $this->save = new Save(false, 'cookie');
  17. }
  18. public function wechat($data, $user = array(), $account, $system, $source_type, $source = false)
  19. {
  20. $uid = false;
  21. if (!$data['openid']) {
  22. Dever::alert('错误的openid');
  23. }
  24. if (!isset($user['username'])) {
  25. Dever::alert('用户名错误');
  26. }
  27. if (isset($user['sex'])) {
  28. if ($user['sex'] != 1 && $user['sex'] != 2) {
  29. $user['sex'] = 3;
  30. }
  31. }
  32. if (isset($user['country']) && $user['country'] && isset($user['province']) && $user['province'] && isset($user['city']) && $user['city']) {
  33. $user['area'] = $user['country'] .','. $user['province'] .','. $user['city'];
  34. }
  35. $info = Dever::db('passport/wechat')->one(array('openid' => $data['openid']));
  36. if (!$info) {
  37. if (isset($data['unionid']) && $data['unionid']) {
  38. $info = Dever::db('passport/wechat')->one(array('unionid' => $data['unionid']));
  39. if (!$info) {
  40. $uid = false;
  41. } else {
  42. $uid = $info['uid'];
  43. }
  44. $wechat['unionid'] = $data['unionid'];
  45. }
  46. if (!$uid) {
  47. $user['source_type'] = 'service';
  48. if ($system) {
  49. $user['system_id'] = $system;
  50. }
  51. if ($source_type) {
  52. $user['source_type'] = $source_type;
  53. }
  54. $uid = Dever::db('passport/user')->insert($user);
  55. } else {
  56. $user['where_id'] = $uid;
  57. Dever::db('passport/user')->update($user);
  58. }
  59. $wechat['access_token'] = $data['access_token'];
  60. $wechat['openid'] = $data['openid'];
  61. $wechat['expires_in'] = $data['expires_in'];
  62. $wechat['refresh_token'] = $data['refresh_token'];
  63. $wechat['account_id'] = $account;
  64. if ($system) {
  65. $wechat['system_id'] = $system;
  66. }
  67. $wechat['uid'] = $uid;
  68. $wechat['type'] = 2;
  69. if ($source_type == 'applet') {
  70. $wechat['type'] = 1;
  71. } elseif ($source_type == 'ios') {
  72. $wechat['type'] = 3;
  73. } elseif ($source_type == 'android') {
  74. $wechat['type'] = 4;
  75. }
  76. $id = Dever::db('passport/wechat')->insert($wechat);
  77. if (Dever::project('source') && isset($source) && $source && $source > 0) {
  78. Dever::load('source/lib/core')->saveUser($id, $uid, $source, 'oauth', $account);
  79. }
  80. } else {
  81. $uid = $info['uid'];
  82. if (isset($data['unionid']) && $data['unionid']) {
  83. $wechat['unionid'] = $data['unionid'];
  84. # 判断用户是否存在,是否需要合并
  85. $wechat['uid'] = $this->combine($uid, $data['unionid']);
  86. }
  87. $wechat['access_token'] = $data['access_token'];
  88. $wechat['openid'] = $data['openid'];
  89. $wechat['expires_in'] = $data['expires_in'];
  90. $wechat['refresh_token'] = $data['refresh_token'];
  91. $wechat['where_id'] = $info['id'];
  92. $wechat['account_id'] = $account;
  93. if ($system) {
  94. $wechat['system_id'] = $system;
  95. }
  96. $id = $info['id'];
  97. Dever::db('passport/wechat')->update($wechat);
  98. $user['where_id'] = $uid;
  99. //Dever::load('passport/user-update', $user);
  100. }
  101. $this->createUsername($uid, $user['username']);
  102. $user = Dever::load('passport/user-one', $uid);
  103. $this->save($user);
  104. $user['uid'] = $user['id'];
  105. $user['signature'] = Dever::login($user['id']);
  106. return $user;
  107. }
  108. /**
  109. * 更新用户信息 绑定用户手机号
  110. *
  111. * @return mixed
  112. */
  113. public function bind_mobile()
  114. {
  115. $uid = $this->check();
  116. //$code = Dever::input('mcode');
  117. $mobile = Dever::load('passport/reg')->checkMobileExists();
  118. //$mobile = Dever::input('mobile');
  119. if ($mobile && $uid) {
  120. $info = Dever::load('passport/user-one', array('mobile' => $mobile));
  121. if ($info && $info['bind'] == 1) {
  122. Dever::alert('该手机号已绑定');
  123. }
  124. $uid = $this->combine($uid, $mobile, 'mobile');
  125. $info = Dever::load('passport/user-one', $uid);
  126. $result['mobile'] = $mobile;
  127. if ($info) {
  128. $update['set_mobile'] = $mobile;
  129. $update['set_bind'] = 1;
  130. $update['where_id'] = $uid;
  131. Dever::load('passport/user-update', $update);
  132. $state = Dever::config('base', 'project')->regSendSms;
  133. if ($state) {
  134. Dever::setInput('skin', $state);
  135. $this->send($mobile, $uid);
  136. }
  137. } else {
  138. Dever::alert('无效的用户id,请重新登录');
  139. }
  140. }
  141. if (!$info['mobile']) {
  142. Dever::score($uid, 'bind_mobile', '绑定手机号');
  143. }
  144. $result['uid'] = $uid;
  145. $result['signature'] = Dever::login($uid);
  146. return $result;
  147. }
  148. public function createUsername($uid, $username, $update = false)
  149. {
  150. if (!$username || $username == '临时用户') {
  151. $username = $uid + 100000;
  152. $username = 'JM' . $username;
  153. if ($update) {
  154. Dever::db('passport/user')->update(array('where_id' => $uid, 'username' => $username));
  155. }
  156. }
  157. return $username;
  158. }
  159. # 合并用户
  160. public function combine($uid, $unionid, $col = 'unionid')
  161. {
  162. $cur = $uid;
  163. if ($col == 'mobile' || $col == 'id') {
  164. $user_wechat = Dever::load('passport/user-all', array($col => $unionid));
  165. } else {
  166. $user_wechat = Dever::load('passport/wechat-state', array($col => $unionid));
  167. }
  168. if ($user_wechat) {
  169. # 合并去
  170. $drop = array();
  171. $total = count($user_wechat);
  172. if ($total <= 1) {
  173. return $cur;
  174. }
  175. $new = false;
  176. foreach ($user_wechat as $k => $v) {
  177. if (!isset($v['uid'])) {
  178. $v['uid'] = $v['id'];
  179. $user = $v;
  180. } else {
  181. $user = Dever::db('passport/user')->one($v['uid']);
  182. }
  183. if (!$new) {
  184. if ($user['bind'] == 1 && !strstr($user['username'], '****')) {
  185. $new = $v['uid'];
  186. } elseif ($user['temp'] == 2 && $user['source_type'] == 'applet') {
  187. $new = $v['uid'];
  188. } elseif ($user['avatar']) {
  189. $new = $v['uid'];
  190. } elseif ($user['mobile']) {
  191. $new = $v['uid'];
  192. } elseif ($user['temp'] == 2) {
  193. $new = $v['uid'];
  194. } elseif ($v['uid'] < $cur) {
  195. $cur = $new = $v['uid'];
  196. } else {
  197. $drop[$v['uid']] = $v['uid'];
  198. }
  199. } else {
  200. $drop[$v['uid']] = $v['uid'];
  201. }
  202. }
  203. $cur = $new;
  204. if (Dever::input('test') == 1) {
  205. print_r($cur);
  206. print_r($drop);die;
  207. }
  208. $new = Dever::db('passport/user')->one($cur);
  209. if ($drop) {
  210. foreach ($drop as $k => $v) {
  211. if ($cur == $v) {
  212. unset($drop[$k]);
  213. continue;
  214. }
  215. $old = Dever::db('passport/user')->one($v);
  216. $update = array();
  217. if ($new['temp'] == 1) {
  218. $update['username'] = $old['username'];
  219. }
  220. if (strstr($new['username'], '****')) {
  221. $update['username'] = $old['username'];
  222. }
  223. if (!$new['avatar']) {
  224. $update['avatar'] = $old['avatar'];
  225. }
  226. if (!$new['mobile']) {
  227. $update['mobile'] = $old['mobile'];
  228. }
  229. if (!$new['area']) {
  230. $update['area'] = $old['area'];
  231. }
  232. if (isset($update) && $update) {
  233. $update['where_id'] = $cur;
  234. Dever::load('passport/user-update', $update);
  235. }
  236. }
  237. if ($drop) {
  238. ksort($drop);
  239. $combine = array();
  240. $combine['status'] = 1;
  241. $combine['new_uid'] = $cur;
  242. $combine['old_uid'] = implode(',', $drop);
  243. $info = Dever::db('passport/combine')->one($combine);
  244. if (!$info) {
  245. Dever::db('passport/combine')->insert($combine);
  246. }
  247. Dever::load('passport/user-updates', array('set_state' => 2, 'where_id' => $combine['old_uid']));
  248. }
  249. }
  250. }
  251. return $cur;
  252. }
  253. /**
  254. * 检测用户有效性
  255. *
  256. * @return mixed
  257. */
  258. public function check($state = true)
  259. {
  260. $signature = Dever::input('signature');
  261. $user = Dever::checkLogin($signature, $state);
  262. if ($state && !isset($user['uid'])) {
  263. Dever::alert('user error');
  264. }
  265. if (isset($user['uid']) && $user['uid']) {
  266. return $user['uid'];
  267. }
  268. return -1;
  269. }
  270. public function getToken($request = array())
  271. {
  272. return http_build_query(Dever::token($request));
  273. }
  274. public function getUrl($method, $request = array())
  275. {
  276. return Dever::proxy($method, $this->getToken($request));
  277. }
  278. protected function info()
  279. {
  280. $data = $this->save->get(self::NAME);
  281. return $data;
  282. }
  283. protected function code($code = false)
  284. {
  285. if ($code) {
  286. $save = $this->save->get(self::CODE);
  287. return $code == $save;
  288. }
  289. $code = new Code();
  290. $code->create();
  291. $this->save->add(self::CODE, $code->code, 600);
  292. }
  293. protected function mcode($mobile, $code = false)
  294. {
  295. if ($code) {
  296. $save = $this->save->get(self::MCODE);
  297. return $mobile . '_' . $code == $save;
  298. }
  299. $day = date('Ymd', time());
  300. # 检测当前手机号最新一次发送时间,不允许一分钟之内发送
  301. $param['option_day'] = $day;
  302. $param['option_mobile'] = $mobile;
  303. # 检测当前手机号今天已经发送多少验证码了
  304. $info = Dever::load('passport/code-total', $param);
  305. if ($info >= 1) {
  306. $check = Dever::load('passport/code-one', $param);
  307. if ($check) {
  308. if (time() - $check['cdate'] < Dever::config('base', 'project')->mobileCode['time']) {
  309. Dever::alert('请不要在一分钟之内申请多次验证码,请您稍后再试');
  310. }
  311. }
  312. }
  313. $total = Dever::config('base', 'project')->mobileCode['total'];
  314. if ($info >= $total) {
  315. Dever::alert('很抱歉,您已经申请获取验证码超过' . $total . '次,今天您已经无法获取验证码了,请您明天再来');
  316. }
  317. $code = new Code();
  318. $code->createM();
  319. # 记录当前的验证码
  320. $insert['add_mobile'] = $mobile;
  321. $insert['add_day'] = $day;
  322. $insert['add_code'] = $code->mcode;
  323. $id = Dever::load('passport/code-insert', $insert);
  324. # 启动发送
  325. $this->send($mobile, $insert['add_code'], $id);
  326. $this->save->add(self::MCODE, $mobile . '_' . $code->mcode, Dever::config('base', 'project')->mobileCode['timeout']);
  327. return $code->mcode;
  328. }
  329. public function send($mobile, $code, $id = false)
  330. {
  331. if (Dever::project('sms')) {
  332. $send['skin'] = 'code';
  333. $send['mobile'] = $mobile;
  334. $send['param'] = array
  335. (
  336. 'code' => $code
  337. );
  338. $send['param'] = Dever::json_encode($send['param']);
  339. return Dever::load('sms/api.send', $send);
  340. }
  341. $url = Dever::config('base', 'project')->mobileCode['url'];
  342. if (!$url) {
  343. return;
  344. }
  345. $content = Dever::config('base', 'project')->mobileCode['body'];
  346. $content = $this->replace($content, $mobile, $code);
  347. parse_str($content, $param);
  348. $type = Dever::config('base', 'project')->mobileCode['method'];
  349. $json = Dever::config('base', 'project')->mobileCode['json'];
  350. $header = Dever::config('base', 'project')->mobileCode['header'];
  351. return Dever::curl($url, $param, $type, $json, $header);
  352. }
  353. private function replace($content, $mobile = '', $code = '')
  354. {
  355. $skin = Dever::config('base', 'project')->mobileCode['skin'];
  356. $skin_key = Dever::input('skin', 'code');
  357. if (isset($skin[$skin_key])) {
  358. $skin = $skin[$skin_key];
  359. } else {
  360. $skin = array_shift($skin);
  361. }
  362. $config = array('{code}', '{mobile}', '{sign}', '{skin}', '{param}');
  363. $replace = array($code, $mobile, Dever::config('base', 'project')->mobileCode['sign'], $skin);
  364. return str_replace($config, $replace, $content);
  365. }
  366. protected function refer($state = false)
  367. {
  368. $refer = Dever::input('refer');
  369. $project = 'main';
  370. if ($refer) {
  371. $refer = Encrypt::decode($refer);
  372. /*
  373. $url = parse_url(Encrypt::decode($refer));
  374. $url['path'] = preg_replace('/^\//', '', $url['path']);
  375. if (!isset($url['query'])) {
  376. $url['query'] = '';
  377. }
  378. if (Uri::$type == '?') {
  379. $refer = Dever::url(str_replace($url['path'] . Uri::$type, '', $url['query']), $project);
  380. } else {
  381. $refer = Dever::url($url['path'] . '?' . $url['query'], $project);
  382. }
  383. */
  384. } else {
  385. $refer = Dever::url('home', $project);
  386. }
  387. $param = Dever::input('param');
  388. if ($param) {
  389. $refer .= '&' . $param;
  390. }
  391. if ($state) {
  392. return $refer;
  393. }
  394. Dever::out($refer);
  395. }
  396. protected function save($user)
  397. {
  398. if (is_numeric($user)) {
  399. $user = Dever::load('passport/user-one', $user);
  400. }
  401. if ($user && is_array($user)) {
  402. if (Dever::mobile()) {
  403. $time = 30;
  404. } else {
  405. $time = 7;
  406. }
  407. $this->save->add(self::NAME, $user, 3600 * 24 * $time);
  408. $user['signature'] = Dever::login($user['id']);
  409. if (Dever::config('base', 'project')->regAction) {
  410. Dever::load(Dever::config('base', 'project')->regAction, $user);
  411. }
  412. return $user;
  413. }
  414. }
  415. public function createRefer()
  416. {
  417. return 'refer=' . Encrypt::encode(Dever::url(false, 'main'));
  418. }
  419. protected function saveSex($sex)
  420. {
  421. if ($sex || $sex == 0) {
  422. $config_sex = Dever::config('base', 'project')->sex;
  423. if (isset($config_sex[$sex])) {
  424. $sex = $config_sex[$sex];
  425. } else {
  426. if ($sex == '男') {
  427. $sex = 1;
  428. } elseif ($sex == '女') {
  429. $sex = 2;
  430. } elseif ($sex == '未知') {
  431. $sex = 3;
  432. }
  433. }
  434. }
  435. return $sex;
  436. }
  437. protected function saveAvatar($value)
  438. {
  439. if (!$value) {
  440. return '';
  441. }
  442. $value = Dever::pic($value);
  443. $base = Dever::data();
  444. $date = explode('-', date("Y-m-d"));
  445. if (is_array($value)) {
  446. $user = $value[1];
  447. $value = $value[0];
  448. if (is_array($value)) {
  449. $name = md5($value['tmp_name'] . rand(0, 100) . microtime());
  450. $path = 'avatar/' . $date[0] . '/' . $date[1] . '/' . $date[2] . '/';
  451. $ext = '.jpg';
  452. $temp = Dever::path($base, $path . $name . $ext);
  453. move_uploaded_file($value['tmp_name'], $temp);
  454. $value = $temp;
  455. }
  456. }
  457. //$result = Dever::$global['host']['img'] . 'chead.jpg';
  458. if ($value) {
  459. # 裁图
  460. $handle = new Img();
  461. $size = '200_200_2';
  462. $user = isset($user) && $user ? $user : $this->init();
  463. if ($user && isset($user['id']) && $user['id']) {
  464. $name = md5($user['id']);
  465. } else {
  466. $name = md5($value . rand(0, 100) . microtime());
  467. }
  468. $path = 'avatar/' . $date[0] . '/' . $date[1] . '/' . $date[2] . '/';
  469. $ext = '.jpg';
  470. $file = Dever::path($base, $path . $name . $ext);
  471. $temp = $file . '.temp.jpg';
  472. //$value = Dever::curl($value);
  473. //file_put_contents($temp, file_get_contents($value));
  474. $file = $handle->thumb($value, $size, true, $file);
  475. if ($file) {
  476. $result = str_replace('/upload/', '/', Dever::config('host')->uploadRes . $path . $name . $ext);
  477. } else {
  478. $result = $value;
  479. }
  480. }
  481. return $result;
  482. }
  483. }