Base.php 18 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570
  1. <?php
  2. namespace Passport\Lib;
  3. use Dever;
  4. use Upload\Src\Lib\Img;
  5. use Dever\Routing\Uri;
  6. use Dever\Session\Oper as Save;
  7. use Dever\String\Encrypt;
  8. class Base
  9. {
  10. const NAME = 'dever_passport_v2';
  11. const CODE = 'dever_code';
  12. const MCODE = 'dever_mcode';
  13. protected $save;
  14. public function __construct()
  15. {
  16. $this->save = new Save(false, 'cookie');
  17. }
  18. public function wechat($data, $user = array(), $account, $system, $source_type, $source = false)
  19. {
  20. $uid = false;
  21. if (!$data['openid']) {
  22. Dever::alert('错误的openid');
  23. }
  24. if (!isset($user['username'])) {
  25. Dever::alert('用户名错误');
  26. }
  27. if (isset($user['sex'])) {
  28. if ($user['sex'] == 1) {
  29. $user['sex'] = 1;
  30. } elseif ($user['sex'] == 2) {
  31. $user['sex'] = 2;
  32. } else {
  33. $user['sex'] = 3;
  34. }
  35. }
  36. if (isset($user['country']) && $user['country'] && isset($user['province']) && $user['province'] && isset($user['city']) && $user['city']) {
  37. $user['area'] = $user['country'] .','. $user['province'] .','. $user['city'];
  38. }
  39. $info = Dever::load('passport/wechat-one', array('option_openid' => $data['openid']));
  40. if (!$info) {
  41. if (isset($data['unionid']) && $data['unionid']) {
  42. $info = Dever::load('passport/wechat-one', array('unionid' => $data['unionid']));
  43. if (!$info) {
  44. $uid = false;
  45. } else {
  46. $uid = $info['uid'];
  47. }
  48. $wechat['unionid'] = $data['unionid'];
  49. }
  50. if (!$uid) {
  51. $user['source_type'] = 'service';
  52. if ($system) {
  53. $user['system_id'] = $system;
  54. }
  55. if ($source_type) {
  56. $user['source_type'] = $source_type;
  57. }
  58. $uid = Dever::load('passport/user-insert', $user);
  59. } else {
  60. $user['where_id'] = $uid;
  61. Dever::load('passport/user-update', $user);
  62. }
  63. $wechat['access_token'] = $data['access_token'];
  64. $wechat['openid'] = $data['openid'];
  65. $wechat['expires_in'] = $data['expires_in'];
  66. $wechat['refresh_token'] = $data['refresh_token'];
  67. $wechat['account_id'] = $account;
  68. if ($system) {
  69. $wechat['system_id'] = $system;
  70. }
  71. $wechat['uid'] = $uid;
  72. $wechat['type'] = 2;
  73. if ($source_type == 'applet') {
  74. $wechat['type'] = 1;
  75. } elseif ($source_type == 'ios') {
  76. $wechat['type'] = 3;
  77. } elseif ($source_type == 'android') {
  78. $wechat['type'] = 4;
  79. }
  80. $id = Dever::load('passport/wechat-insert', $wechat);
  81. if (Dever::project('source') && isset($source) && $source && $source > 0) {
  82. Dever::load('source/lib/core')->saveUser($id, $uid, $source, 'oauth', $account);
  83. }
  84. } else {
  85. $uid = $info['uid'];
  86. if (isset($data['unionid']) && $data['unionid']) {
  87. $wechat['unionid'] = $data['unionid'];
  88. # 判断用户是否存在,是否需要合并
  89. $wechat['uid'] = $this->combine($uid, $data['unionid']);
  90. }
  91. $wechat['access_token'] = $data['access_token'];
  92. $wechat['openid'] = $data['openid'];
  93. $wechat['expires_in'] = $data['expires_in'];
  94. $wechat['refresh_token'] = $data['refresh_token'];
  95. $wechat['where_id'] = $info['id'];
  96. $wechat['account_id'] = $account;
  97. if ($system) {
  98. $wechat['system_id'] = $system;
  99. }
  100. $id = $info['id'];
  101. Dever::load('passport/wechat-update', $wechat);
  102. $user['where_id'] = $uid;
  103. Dever::load('passport/user-update', $user);
  104. }
  105. $this->createUsername($uid, $user['username']);
  106. $user = Dever::load('passport/user-one', $uid);
  107. $this->save($user);
  108. $user['uid'] = $user['id'];
  109. $user['signature'] = Dever::login($user['id']);
  110. return $user;
  111. }
  112. /**
  113. * 更新用户信息 绑定用户手机号
  114. *
  115. * @return mixed
  116. */
  117. public function bind_mobile()
  118. {
  119. $uid = $this->check();
  120. //$code = Dever::input('mcode');
  121. $mobile = Dever::load('passport/reg')->checkMobileExists();
  122. //$mobile = Dever::input('mobile');
  123. if ($mobile && $uid) {
  124. $info = Dever::load('passport/user-one', array('mobile' => $mobile));
  125. if ($info && $info['bind'] == 1) {
  126. Dever::alert('该手机号已绑定');
  127. }
  128. $uid = $this->combine($uid, $mobile, 'mobile');
  129. $info = Dever::load('passport/user-one', $uid);
  130. $result['mobile'] = $mobile;
  131. if ($info) {
  132. $update['set_mobile'] = $mobile;
  133. $update['set_bind'] = 1;
  134. $update['where_id'] = $uid;
  135. Dever::load('passport/user-update', $update);
  136. $state = Dever::config('base', 'project')->regSendSms;
  137. if ($state) {
  138. Dever::setInput('skin', $state);
  139. $this->send($mobile, $uid);
  140. }
  141. } else {
  142. Dever::alert('无效的用户id,请重新登录');
  143. }
  144. }
  145. if (!$info['mobile']) {
  146. Dever::score($uid, 'bind_mobile', '绑定手机号');
  147. }
  148. $result['uid'] = $uid;
  149. $result['signature'] = Dever::login($uid);
  150. return $result;
  151. }
  152. public function createUsername($uid, $username, $update = false)
  153. {
  154. if (!$username || $username == '临时用户') {
  155. $username = $uid + 100000;
  156. $username = 'JM' . $username;
  157. if ($update) {
  158. Dever::db('passport/user')->update(array('where_id' => $uid, 'username' => $username));
  159. }
  160. }
  161. return $username;
  162. }
  163. # 合并用户
  164. public function combine($uid, $unionid, $col = 'unionid')
  165. {
  166. $cur = $uid;
  167. if ($col == 'mobile' || $col == 'id') {
  168. $user_wechat = Dever::load('passport/user-all', array($col => $unionid));
  169. } else {
  170. $user_wechat = Dever::load('passport/wechat-state', array($col => $unionid));
  171. }
  172. if ($user_wechat) {
  173. # 合并去
  174. $drop = array();
  175. foreach ($user_wechat as $k => $v) {
  176. if (!isset($v['uid'])) {
  177. $v['uid'] = $v['id'];
  178. }
  179. $user = Dever::db('passport/user')->one($v['uid']);
  180. if (isset($user['temp']) && $user['temp'] == 2 && $cur != $v['uid']) {
  181. $drop[$cur] = $cur;
  182. $cur = $v['uid'];
  183. } elseif (isset($user['avatar']) && $user['avatar'] && $cur != $v['uid']) {
  184. $drop[$cur] = $cur;
  185. $cur = $v['uid'];
  186. } else {
  187. if ($v['uid'] < $cur) {
  188. $drop[$cur] = $cur;
  189. $cur = $v['uid'];
  190. } elseif ($v['uid'] > $cur) {
  191. $drop[$v['uid']] = $v['uid'];
  192. }
  193. }
  194. }
  195. $test = Dever::input('test');
  196. if ($test == 1) {
  197. print_r($cur);
  198. print_r($drop);die;
  199. }
  200. if ($drop) {
  201. foreach ($drop as $k => $v) {
  202. if ($cur == $v) {
  203. unset($drop[$k]);
  204. continue;
  205. }
  206. $insert['new_uid'] = $cur;
  207. $insert['old_uid'] = $v;
  208. $info = Dever::db('passport/combine')->one($insert);
  209. if (!$info) {
  210. Dever::db('passport/combine')->insert($insert);
  211. }
  212. Dever::load('passport/user-update', array('set_state' => 2, 'where_id' => $v));
  213. Dever::load('passport/user-update', array('set_state' => 1, 'where_id' => $cur));
  214. $new = Dever::db('passport/user')->one($cur);
  215. $old = Dever::db('passport/user')->one($v);
  216. $update = array();
  217. if ($new['temp'] == 1) {
  218. $update['username'] = $old['username'];
  219. }
  220. if (strstr($new['username'], '****')) {
  221. $update['username'] = $old['username'];
  222. }
  223. if (!$new['avatar']) {
  224. $update['avatar'] = $old['avatar'];
  225. }
  226. if (!$new['area']) {
  227. $update['area'] = $old['area'];
  228. }
  229. if (isset($update) && $update) {
  230. $update['where_id'] = $cur;
  231. Dever::load('passport/user-update', $update);
  232. }
  233. }
  234. $combine = Dever::project('combine');
  235. if ($combine && $drop) {
  236. $drop = implode(',', $drop);
  237. Dever::load('combine/lib/core.handle?uid=' . $cur . '&drop=' . $drop);
  238. //Dever::daemon('lib/core.handle?uid=' . $cur . '&drop=' . $drop, 'combine');
  239. }
  240. }
  241. }
  242. return $cur;
  243. }
  244. /**
  245. * 检测用户有效性
  246. *
  247. * @return mixed
  248. */
  249. public function check($state = true)
  250. {
  251. $signature = Dever::input('signature');
  252. $user = Dever::loginResult($signature, $state);
  253. if ($state && !isset($user['uid'])) {
  254. Dever::alert('user error');
  255. }
  256. if (isset($user['uid']) && $user['uid']) {
  257. return $user['uid'];
  258. }
  259. return -1;
  260. }
  261. public function getToken($request = array())
  262. {
  263. return http_build_query(Dever::token($request));
  264. }
  265. public function getUrl($method, $request = array())
  266. {
  267. return Dever::proxy($method, $this->getToken($request));
  268. }
  269. protected function info()
  270. {
  271. $data = $this->save->get(self::NAME);
  272. return $data;
  273. }
  274. protected function code($code = false)
  275. {
  276. if ($code) {
  277. $save = $this->save->get(self::CODE);
  278. return $code == $save;
  279. }
  280. $code = new Code();
  281. $code->create();
  282. $this->save->add(self::CODE, $code->code, 600);
  283. }
  284. protected function mcode($mobile, $code = false)
  285. {
  286. if ($code) {
  287. $save = $this->save->get(self::MCODE);
  288. return $mobile . '_' . $code == $save;
  289. }
  290. $day = date('Ymd', time());
  291. # 检测当前手机号最新一次发送时间,不允许一分钟之内发送
  292. $param['option_day'] = $day;
  293. $param['option_mobile'] = $mobile;
  294. # 检测当前手机号今天已经发送多少验证码了
  295. $info = Dever::load('passport/code-total', $param);
  296. if ($info >= 1) {
  297. $check = Dever::load('passport/code-one', $param);
  298. if ($check) {
  299. if (time() - $check['cdate'] < Dever::config('base', 'project')->mobileCode['time']) {
  300. Dever::alert('请不要在一分钟之内申请多次验证码,请您稍后再试');
  301. }
  302. }
  303. }
  304. $total = Dever::config('base', 'project')->mobileCode['total'];
  305. if ($info >= $total) {
  306. Dever::alert('很抱歉,您已经申请获取验证码超过' . $total . '次,今天您已经无法获取验证码了,请您明天再来');
  307. }
  308. $code = new Code();
  309. $code->createM();
  310. # 记录当前的验证码
  311. $insert['add_mobile'] = $mobile;
  312. $insert['add_day'] = $day;
  313. $insert['add_code'] = $code->mcode;
  314. $id = Dever::load('passport/code-insert', $insert);
  315. # 启动发送
  316. $this->send($mobile, $insert['add_code'], $id);
  317. $this->save->add(self::MCODE, $mobile . '_' . $code->mcode, Dever::config('base', 'project')->mobileCode['timeout']);
  318. return $code->mcode;
  319. }
  320. public function send($mobile, $code, $id = false)
  321. {
  322. if (Dever::project('sms')) {
  323. $send['skin'] = 'code';
  324. $send['mobile'] = $mobile;
  325. $send['param'] = array
  326. (
  327. 'code' => $code
  328. );
  329. $send['param'] = Dever::json_encode($send['param']);
  330. return Dever::load('sms/api.send', $send);
  331. }
  332. $url = Dever::config('base', 'project')->mobileCode['url'];
  333. if (!$url) {
  334. return;
  335. }
  336. $content = Dever::config('base', 'project')->mobileCode['body'];
  337. $content = $this->replace($content, $mobile, $code);
  338. parse_str($content, $param);
  339. $type = Dever::config('base', 'project')->mobileCode['method'];
  340. $json = Dever::config('base', 'project')->mobileCode['json'];
  341. $header = Dever::config('base', 'project')->mobileCode['header'];
  342. return Dever::curl($url, $param, $type, $json, $header);
  343. }
  344. private function replace($content, $mobile = '', $code = '')
  345. {
  346. $skin = Dever::config('base', 'project')->mobileCode['skin'];
  347. $skin_key = Dever::input('skin', 'code');
  348. if (isset($skin[$skin_key])) {
  349. $skin = $skin[$skin_key];
  350. } else {
  351. $skin = array_shift($skin);
  352. }
  353. $config = array('{code}', '{mobile}', '{sign}', '{skin}', '{param}');
  354. $replace = array($code, $mobile, Dever::config('base', 'project')->mobileCode['sign'], $skin);
  355. return str_replace($config, $replace, $content);
  356. }
  357. protected function refer($state = false)
  358. {
  359. $refer = Dever::input('refer');
  360. $project = 'main';
  361. if ($refer) {
  362. $refer = Encrypt::decode($refer);
  363. /*
  364. $url = parse_url(Encrypt::decode($refer));
  365. $url['path'] = preg_replace('/^\//', '', $url['path']);
  366. if (!isset($url['query'])) {
  367. $url['query'] = '';
  368. }
  369. if (Uri::$type == '?') {
  370. $refer = Dever::url(str_replace($url['path'] . Uri::$type, '', $url['query']), $project);
  371. } else {
  372. $refer = Dever::url($url['path'] . '?' . $url['query'], $project);
  373. }
  374. */
  375. } else {
  376. $refer = Dever::url('home', $project);
  377. }
  378. $param = Dever::input('param');
  379. if ($param) {
  380. $refer .= '&' . $param;
  381. }
  382. if ($state) {
  383. return $refer;
  384. }
  385. Dever::out($refer);
  386. }
  387. protected function save($user)
  388. {
  389. if (is_numeric($user)) {
  390. $user = Dever::load('passport/user-one', $user);
  391. }
  392. if ($user && is_array($user)) {
  393. if (Dever::mobile()) {
  394. $time = 30;
  395. } else {
  396. $time = 7;
  397. }
  398. $this->save->add(self::NAME, $user, 3600 * 24 * $time);
  399. $user['signature'] = Dever::login($user['id']);
  400. if (Dever::config('base', 'project')->regAction) {
  401. Dever::load(Dever::config('base', 'project')->regAction, $user);
  402. }
  403. return $user;
  404. }
  405. }
  406. public function createRefer()
  407. {
  408. return 'refer=' . Encrypt::encode(Dever::url(false, 'main'));
  409. }
  410. protected function saveSex($sex)
  411. {
  412. if ($sex || $sex == 0) {
  413. $config_sex = Dever::config('base', 'project')->sex;
  414. if (isset($config_sex[$sex])) {
  415. $sex = $config_sex[$sex];
  416. } else {
  417. if ($sex == '男') {
  418. $sex = 1;
  419. } elseif ($sex == '女') {
  420. $sex = 2;
  421. } elseif ($sex == '未知') {
  422. $sex = 3;
  423. }
  424. }
  425. }
  426. return $sex;
  427. }
  428. protected function saveAvatar($value)
  429. {
  430. if (!$value) {
  431. return '';
  432. }
  433. $value = Dever::pic($value);
  434. $base = Dever::data();
  435. $date = explode('-', date("Y-m-d"));
  436. if (is_array($value)) {
  437. $user = $value[1];
  438. $value = $value[0];
  439. if (is_array($value)) {
  440. $name = md5($value['tmp_name'] . rand(0, 100) . microtime());
  441. $path = 'avatar/' . $date[0] . '/' . $date[1] . '/' . $date[2] . '/';
  442. $ext = '.jpg';
  443. $temp = Dever::path($base, $path . $name . $ext);
  444. move_uploaded_file($value['tmp_name'], $temp);
  445. $value = $temp;
  446. }
  447. }
  448. //$result = Dever::$global['host']['img'] . 'chead.jpg';
  449. if ($value) {
  450. # 裁图
  451. $handle = new Img();
  452. $size = '200_200_2';
  453. $user = isset($user) && $user ? $user : $this->init();
  454. if ($user && isset($user['id']) && $user['id']) {
  455. $name = md5($user['id']);
  456. } else {
  457. $name = md5($value . rand(0, 100) . microtime());
  458. }
  459. $path = 'avatar/' . $date[0] . '/' . $date[1] . '/' . $date[2] . '/';
  460. $ext = '.jpg';
  461. $file = Dever::path($base, $path . $name . $ext);
  462. $temp = $file . '.temp.jpg';
  463. //$value = Dever::curl($value);
  464. //file_put_contents($temp, file_get_contents($value));
  465. $file = $handle->thumb($value, $size, true, $file);
  466. if ($file) {
  467. $result = str_replace('/upload/', '/', Dever::config('host')->uploadRes . $path . $name . $ext);
  468. } else {
  469. $result = $value;
  470. }
  471. }
  472. return $result;
  473. }
  474. }