kge/application/common/library/Auth.php

<?php

namespace app\common\library;

use app\common\model\User;
use app\common\model\UserPower;
use app\common\model\UserRule;
use fast\Random;
use think\Config;
use think\Db;
use think\Exception;
use think\Hook;
use think\Request;
use think\Validate;

class Auth
{
    protected static $instance = null;
    protected $_error = '';
    protected $_logined = false;
    protected $_user = null;
    protected $_token = '';
    //Token默认有效时长
    protected $keeptime = 2592000;
    protected $requestUri = '';
    protected $rules = [];
    //默认配置
    protected $config = [];
    protected $options = [];
    protected $allowFields = ['id', 'u_id', 'username', 'nickname', 'mobile', 'pre_userid', 'has_info', 'is_auth',
         'is_guild', 'guild_id', 'avatar', 'empirical', 'image','level', 'gender', 'age_id',
        'wealth_level','charm_level',
        'job_id', 'longitude', 'latitude','province_id','city_id'
    ];

    public function __construct($options = [])
    {
        if ($config = Config::get('user')) {
            $this->config = array_merge($this->config, $config);
        }
        $this->options = array_merge($this->config, $options);
    }

    /**
     *
     * @param array $options 参数
     * @return Auth
     */
    public static function instance($options = [])
    {
        if (is_null(self::$instance)) {
            self::$instance = new static($options);
        }

        return self::$instance;
    }

    /**
     * 获取User模型
     * @return User
     */
    public function getUser()
    {
        return $this->_user;
    }

    /**
     * 兼容调用user模型的属性
     *
     * @param string $name
     * @return mixed
     */
    public function __get($name)
    {
        return $this->_user ? $this->_user->$name : null;
    }

    /**
     * 根据Token初始化
     *
     * @param string $token Token
     * @return boolean
     */
    public function init($token)
    {
        if ($this->_logined) {
            return true;
        }
        if ($this->_error) {
            return false;
        }
        $data = Token::get($token);
        if (!$data) {
            return false;
        }
        $user_id = intval($data['user_id']);
        if ($user_id > 0) {
            $user = User::get($user_id);
            if (!$user) {
                $this->setError('Account not exist');
                return false;
            }
            if ($user['status'] == -1) {
                $this->setError('账号已注销');
                return false;
            }
            if ($user['status'] != 1) {
                $this->setError('Account is locked');
                return false;
            }
            //追加权限
            $userpower = UserPower::getByUserId($user_id);
            if(!$userpower){
                $this->setError('Account not exist');
                return false;
            }
            $user->power = $userpower;
            if ($userpower['private_messages'] == 1 || $userpower['speak'] == 1) {
                $time = time();
                $updateArr = [];
                if ($userpower['private_messages_time'] < $time) {
                    $updateArr['private_messages'] = 0;
                    $user->power->private_messages = 0;
                }
                if ($userpower['speak_time'] < $time) {
                    $updateArr['speak'] = 0;
                    $user->power->speak = 0;
                }
                if (!empty($updateArr)) {
                    UserPower::where(['user_id'=>$user_id])->update($updateArr);
                }
            }

            $this->_user = $user;
            $this->_logined = true;
            $this->_token = $token;

            //初始化成功的事件
            Hook::listen("user_init_successed", $this->_user);

            return true;
        } else {
            $this->setError('You are not logged in');
            return false;
        }
    }

    /**
     * 注册用户
     *
     * @param string $username 用户名
     * @param string $password 密码
     * @param string $email 邮箱
     * @param string $mobile 手机号
     * @param array $extend 扩展参数
     * @return boolean
     */
    public function register($username, $password, $mobile = '', $extend = [])
    {
        // 检测用户名、昵称、手机号是否存在
//        if (User::getByUsername($username)) {
//            $this->setError('Username already exist');
//            return false;
//        }
//        if (User::getByNickname($username)) {
//            $this->setError('Nickname already exist');
//            return false;
//        }
        if (!isset($extend['openid'])) {
            if (!empty($extend['openid']) && User::getByOpenid($extend['openid'])) {
                $this->setError('微信账号已存在');
                return false;
            }
        } else {
            if ($mobile && User::getByMobile($mobile)) {
                $this->setError('Mobile already exist');
                return false;
            }
        }

        $invite_no = User::column("invite_no");

        $ids = User::column("u_id");
        $uidsale = Db::name('uidsale')->column('new_id');
        $ids = array_merge($ids, $uidsale);

        $ip = request()->ip();
        $time = time();

        $data = [
            'u_id'      => $this->getUinqueId(8, [$ids]),
            'invite_no' => $this->getUinqueNo(8, $invite_no),
            'username'  => $username,
//            'password'  => $password,
            'mobile'    => $mobile,
            'level'     => 0,
            'score'     => 0,
            'avatar'    => isset($extend["avatar"]) ? $extend["avatar"] : '/assets/img/default_avatar.png',
            'image'     => '/assets/img/default_avatar.png',
            //'desc'      => '这个人很懒，什么都没留下~',
        ];
        if (isset($extend['openid']) && !empty($extend['openid'])) {
            $data['openid']  = $extend['openid'];
        }
        //https://bansheng-1304213176.cos.ap-guangzhou.myqcloud.com/
        $params = array_merge($data, [
            'nickname' => get_rand_nick_name() . $data["u_id"],
//            'salt'     => Random::alnum(),
            'joinip'    => $ip,
            'logintime' => $time,
            'loginip'   => $ip,
            'status'   => 1
        ]);
//        $params['password'] = $this->getEncryptPassword($password, $params['salt']);
        $extend && $params = array_merge($params, $extend);

        //账号注册时需要开启事务,避免出现垃圾数据
        Db::startTrans();
        try {
            $user = User::create($params, true);

            $this->_user = User::get($user->id);

            //设置Token
            $this->_token = Random::uuid();
            Token::set($this->_token, $user->id, $this->keeptime);

            //设置登录状态
            $this->_logined = true;


            $wallet_data = [
                'user_id' => $user->id,
            ];
            //注册到钱包
            Db::name('user_wallet')->insertGetId($wallet_data);
            //注册用户活跃
            Db::name('user_active')->insertGetId($wallet_data);
            //注册到权限
            Db::name('user_power')->insertGetId($wallet_data);

            //初始化权限
            $userpower = UserPower::getByUserId($user->id);
            $this->_user->power = $userpower;

            //注册成功的事件
            Hook::listen("user_register_successed", $this->_user, $data);
            \app\common\model\NewBagHave::insert(["user_id" => $user->id, "createtime" => time()]);

            Db::commit();
        } catch (Exception $e) {
            $this->setError($e->getMessage());
            Db::rollback();
            return false;
        }
        return true;
    }

    /**
     * 生成不重复的随机数字
     */
    function getUinqueId($length = 8, $ids = [])
    {
        $newid = Random::build("nozero", $length);
        if (in_array($newid, $ids)) {
            $newid = $this->getUinqueId($length, $ids);
        }
        return $newid;
    }

    /**
     * 生成不重复的随机数字字母组合
     */
    function getUinqueNo($length = 8, $nos = [])
    {
        $newid = Random::build("alnum", $length);
        if (in_array($newid, $nos)) {
            $newid = $this->getUinqueNo($length, $nos);
        }
        return $newid;
    }

    /**
     * 用户登录
     *
     * @param string $account 账号,用户名、邮箱、手机号
     * @param string $password 密码
     * @return boolean
     */
    public function login($account, $password)
    {
        $field = Validate::is($account, 'email') ? 'email' : (Validate::regex($account, '/^1\d{10}$/') ? 'mobile' : 'username');
        $user = User::get([$field => $account]);
        if (!$user) {
            $this->setError('Account is incorrect');
            return false;
        }

        if ($user->status != 'normal') {
            $this->setError('Account is locked');
            return false;
        }
        if ($user->password != $this->getEncryptPassword($password, $user->salt)) {
            $this->setError('Password is incorrect');
            return false;
        }

        //直接登录会员
        $this->direct($user->id);

        return true;
    }

    /**
     * 退出
     *
     * @return boolean
     */
    public function logout()
    {
        if (!$this->_logined) {
            $this->setError('You are not logged in');
            return false;
        }
        //设置登录标识
        $this->_logined = false;
        //删除Token
        Token::delete($this->_token);
        //退出成功的事件
        Hook::listen("user_logout_successed", $this->_user);
        return true;
    }

    /**
     * 修改密码
     * @param string $newpassword 新密码
     * @param string $oldpassword 旧密码
     * @param bool $ignoreoldpassword 忽略旧密码
     * @return boolean
     */
    public function changepwd($newpassword, $oldpassword = '', $ignoreoldpassword = false)
    {
        if (!$this->_logined) {
            $this->setError('You are not logged in');
            return false;
        }
        //判断旧密码是否正确
        if ($this->_user->password == $this->getEncryptPassword($oldpassword, $this->_user->salt) || $ignoreoldpassword) {
            Db::startTrans();
            try {
                $salt = Random::alnum();
                $newpassword = $this->getEncryptPassword($newpassword, $salt);
                $this->_user->save(['loginfailure' => 0, 'password' => $newpassword, 'salt' => $salt]);

//                Token::delete($this->_token);
//                //修改密码成功的事件
//                Hook::listen("user_changepwd_successed", $this->_user);
                Db::commit();
            } catch (Exception $e) {
                Db::rollback();
                $this->setError($e->getMessage());
                return false;
            }
            return true;
        } else {
            $this->setError('Password is incorrect');
            return false;
        }
    }

    /**
     * 直接登录账号
     * @param int $user_id
     * @return boolean
     */
    public function direct($user_id)
    {
        $user = User::getById($user_id);
        if ($user) {

            $userpower = UserPower::getByUserId($user_id);
            if(!$userpower){
                return false;
            }
            if ($userpower['private_messages'] == 1 || $userpower['speak'] == 1) {
                $time = time();
                $updateArr = [];
                if ($userpower['private_messages_time'] < $time) {
                    $updateArr['private_messages'] = 0;
                }
                if ($userpower['speak_time'] < $time) {
                    $updateArr['speak_time'] = 0;
                }
                if (!empty($updateArr)) {
                    UserPower::where(['user_id'=>$user_id])->update($updateArr);
                }
            }
            Db::startTrans();
            try {
                // 微信内置浏览器时不请空用户的token,APP才清除所有token
                if (!strpos($_SERVER["HTTP_USER_AGENT"], "MicroMessenger")) {
                    // 先清除所有token
                    Token::clear($user->id);
                }

                //$user->ipaddress = newip_to_address();

                $ip = request()->ip();
                $time = time();
                //记录本次登录的IP和时间
                $user->loginip = $ip;
                $user->logintime = $time;

                $user->save();

                $user->power = $userpower;// 追加权限
                $this->_user = $user;

                $this->_token = Random::uuid();
                Token::set($this->_token, $user->id, $this->keeptime);

                $this->_logined = true;

                //登录成功的事件
                Hook::listen("user_login_successed", $this->_user);
                Db::commit();
            } catch (Exception $e) {
                Db::rollback();
                $this->setError($e->getMessage());
                return false;
            }
            return true;
        } else {
            return false;
        }
    }

    /**
     * 检测是否是否有对应权限
     * @param string $path 控制器/方法
     * @param string $module 模块 默认为当前模块
     * @return boolean
     */
    public function check($path = null, $module = null)
    {
        if (!$this->_logined) {
            return false;
        }

        $ruleList = $this->getRuleList();
        $rules = [];
        foreach ($ruleList as $k => $v) {
            $rules[] = $v['name'];
        }
        $url = ($module ? $module : request()->module()) . '/' . (is_null($path) ? $this->getRequestUri() : $path);
        $url = strtolower(str_replace('.', '/', $url));
        return in_array($url, $rules) ? true : false;
    }

    /**
     * 判断是否登录
     * @return boolean
     */
    public function isLogin()
    {
        if ($this->_logined) {
            return true;
        }
        return false;
    }

    /**
     * 获取当前Token
     * @return string
     */
    public function getToken()
    {
        return $this->_token;
    }

    /**
     * 获取会员基本信息
     */
    public function getUserinfo()
    {
        $data = $this->_user->toArray();
        $allowFields = $this->getAllowFields();
        $userinfo = array_intersect_key($data, array_flip($allowFields));
        $userinfo = array_merge($userinfo, Token::get($this->_token));

        //用户钱包
        $userwallet = Db::name('user_wallet')->where('user_id',$this->_user->id)->find();
        $userinfo['wallet'] = $userwallet;

        //关注数量
        $userinfo['follow_num'] = Db::name('user_follow')->where('uid',$this->id)->count('id');
        //粉丝数量
        $userinfo['fans_num'] = Db::name('user_follow')->where('follow_uid',$this->id)->count('id');


        //装扮
        $usercar = "";
        $userheader = "";


        // 获取用户头像框信息
        $map = [
            'a.user_id' => $this->id,
            'a.is_using' => 1,
            'a.end_time' => ['gt',time()],
        ];

        $backResult = Db::name('user_decorate')->alias('a')
            ->field('a.id,a.decorate_type,b.base_image,b.play_image')
            ->join('decorate b', 'a.decorate_id = b.id')
            ->where($map)->order('a.id desc')->select();
        $backResult = list_domain_image($backResult,['base_image','play_image']);

        if ($backResult) {
            foreach ($backResult as $k => $v) {
                $v['decorate_type'] == 1 && $usercar = $v['play_image'];
                $v['decorate_type'] == 2 && $userheader = $v['play_image'];
            }
        }

        //装扮
        $userinfo["usercar"] = $usercar;
        $userinfo["userheader"] = $userheader;

        //
        $userField = 'id,pay_password,openid,is_cool,is_manager,is_stealth,nickname,avatar,age_id,constellation_id,province_id,city_id,desc';
        $user = model('User')->field($userField)->where(["id" => $this->_user->id])->with(['useralipay','userbank','userauth'])->find();



        $userInfoA = model('User')->getAppendData($userinfo);
        $userInfo['age_text'] = $userInfoA['age_text'];
//        $userInfo['constellation_text'] = $userInfoA['constellation_text'];
        $userInfo['province_text'] = $userInfoA['province_text'];
        $userInfo['city_text'] = $userInfoA['city_text'];
//        $userInfo['friends_num'] = $userInfoA['friends_num'];
        $userInfo['look_num'] = $userInfoA['look_num'];
        // 是否设置密码
        $userinfo['is_setpwd'] = $data['password'] ? 1 : 0;
        $field = 'id,age_id,constellation_id,province_id,city_id,desc';
        $fieldArr = explode(',',$field);
        $fieldTextArr = ['age_text','constellation_text','province_text','city_text','friends_num','look_num'];
        $fieldArr = array_merge($fieldArr,$fieldTextArr);
        //$userData = model('User')->field($field)->with(['userauth'])->where(['id'=>$this->_user->id])->find();
        foreach ($fieldArr as $key => $value) {
            $userinfo[$value] = isset($user[$value]) ? $user[$value] : '';
        }
        $userAlipay = isset($user['useralipay']) ? $user['useralipay'] : [];
        $userBank = isset($user['userbank']) ? $user['userbank'] : [];
        $userinfo['realname'] = isset($user['userauth']['realname']) ? $user['userauth']['realname'] : '';
        $userinfo['idcard'] = isset($user['userauth']['idcard']) ? $user['userauth']['idcard'] : '';
        $userinfo['is_pay_pwd'] = !empty($user['pay_password']) ? 1 : 0;
        $userinfo['bind_wechat'] = !empty($user['openid']) ? 1 : 0;
        $userinfo['bind_alipay'] = !empty($userAlipay) ? 1 : 0;
        $userinfo['bind_bank'] = !empty($userBank) ? 1 : 0;
        $userinfo['is_cool'] = isset($user['is_cool']) ? $user['is_cool'] : 0;
        $userinfo['is_manager'] = isset($user['is_manager']) ? $user['is_manager'] : 0;
        $userinfo['is_stealth'] = isset($user['is_stealth']) ? $user['is_stealth'] : 0;

        //家族信息
        $guildField = 'g.id,g.g_id,g.user_id,g.party_id,g.name,g.image,g.desc,g.member,g.status';
        $guildWhere['gm.user_id'] = $this->_user->id;
        $guildWhere['g.status'] = 1;
        $guildInfo = model('Guild')->alias('g')->field($guildField)
            ->join('guild_member gm','gm.guild_id = g.id','LEFT')
            ->where($guildWhere)->order('id desc')->find();
        $userinfo['guild_info'] = !empty($guildInfo) ? $guildInfo : [];
        $guildStatus = -2;
        if (!empty($guildInfo)) {
            $guildStatus = (int)$guildInfo['status'];
        }
        $userinfo['guild_status'] = $guildStatus;//家族状态:公会状态:0=待审核,1=正常,-1=已解散,-2无公会



        //拥有的家族
        $userinfo['own_guild_id'] = 0;
        $own_guild_id = Db::name('guild')->where('user_id',$this->_user->id)->where('status',1)->value('id');
        if($own_guild_id){
            $userinfo['own_guild_id'] = $own_guild_id;
        }
        if ($this->power->private_messages == 1 ||$this->power->speak == 1) {
            $time = time();
            $updateArr = [];
            if ($this->power->private_messages_time < $time) {
                $updateArr['private_messages'] = 0;
                $this->power->private_messages = 0;
            }
            if ($this->power->speak_time < $time) {
                $updateArr['speak_time'] = 0;
                $this->power->speak = 0;
            }
            if (!empty($updateArr)) {
                UserPower::where(['user_id'=>$this->_user->id])->update($updateArr);
            }
        }
        if (!isset($this->power)) {
            $userPowerWhere['user_id'] = $this->_user->id;
            $userPower = model('UserPower')->where($userPowerWhere)->find();
        } else {
            $userPower = $this->power;
        }
        $userinfo['user_power'] = $userPower;


        //贡献等级
        $charm_info = Db::name('user_config_charm')->where('level',$this->charm_level)->find();
        $userinfo['charm_image'] = localpath_to_netpath($charm_info['image']);
        $userinfo['charm_color'] = $charm_info['color'];

        //财富等级
        $wealth_info = Db::name('user_config_wealth')->where('level',$this->wealth_level)->find();
        $userinfo['wealth_image'] = localpath_to_netpath($wealth_info['image']);
        $userinfo['wealth_color'] = $wealth_info['color'];

        //
        return $userinfo;
    }

    /**
     * 获取会员组别规则列表
     * @return array
     */
    public function getRuleList()
    {
        if ($this->rules) {
            return $this->rules;
        }
        $group = $this->_user->group;
        if (!$group) {
            return [];
        }
        $rules = explode(',', $group->rules);
        $this->rules = UserRule::where('status', 'normal')->where('id', 'in', $rules)->field('id,pid,name,title,ismenu')->select();
        return $this->rules;
    }

    /**
     * 获取当前请求的URI
     * @return string
     */
    public function getRequestUri()
    {
        return $this->requestUri;
    }

    /**
     * 设置当前请求的URI
     * @param string $uri
     */
    public function setRequestUri($uri)
    {
        $this->requestUri = $uri;
    }

    /**
     * 获取允许输出的字段
     * @return array
     */
    public function getAllowFields()
    {
        return $this->allowFields;
    }

    /**
     * 设置允许输出的字段
     * @param array $fields
     */
    public function setAllowFields($fields)
    {
        $this->allowFields = $fields;
    }

    /**
     * 删除一个指定会员
     * @param int $user_id 会员ID
     * @return boolean
     */
    public function delete($user_id)
    {
        $user = User::get($user_id);
        if (!$user) {
            return false;
        }
        Db::startTrans();
        try {
            // 删除会员
            User::destroy($user_id);
            // 删除会员指定的所有Token
            Token::clear($user_id);

            Hook::listen("user_delete_successed", $user);
            Db::commit();
        } catch (Exception $e) {
            Db::rollback();
            $this->setError($e->getMessage());
            return false;
        }
        return true;
    }

    /**
     * 获取密码加密后的字符串
     * @param string $password 密码
     * @param string $salt 密码盐
     * @return string
     */
    public function getEncryptPassword($password, $salt = '')
    {
        return md5(md5($password) . $salt);
    }

    /**
     * 检测当前控制器和方法是否匹配传递的数组
     *
     * @param array $arr 需要验证权限的数组
     * @return boolean
     */
    public function match($arr = [])
    {
        $request = Request::instance();
        $arr = is_array($arr) ? $arr : explode(',', $arr);
        if (!$arr) {
            return false;
        }
        $arr = array_map('strtolower', $arr);
        // 是否存在
        if (in_array(strtolower($request->action()), $arr) || in_array('*', $arr)) {
            return true;
        }

        // 没找到匹配
        return false;
    }

    /**
     * 设置会话有效时间
     * @param int $keeptime 默认为永久
     */
    public function keeptime($keeptime = 0)
    {
        $this->keeptime = $keeptime;
    }

    /**
     * 渲染用户数据
     * @param array $datalist 二维数组
     * @param mixed $fields 加载的字段列表
     * @param string $fieldkey 渲染的字段
     * @param string $renderkey 结果字段
     * @return array
     */
    public function render(&$datalist, $fields = [], $fieldkey = 'user_id', $renderkey = 'userinfo')
    {
        $fields = !$fields ? ['id', 'nickname', 'level', 'avatar'] : (is_array($fields) ? $fields : explode(',', $fields));
        $ids = [];
        foreach ($datalist as $k => $v) {
            if (!isset($v[$fieldkey])) {
                continue;
            }
            $ids[] = $v[$fieldkey];
        }
        $list = [];
        if ($ids) {
            if (!in_array('id', $fields)) {
                $fields[] = 'id';
            }
            $ids = array_unique($ids);
            $selectlist = User::where('id', 'in', $ids)->column($fields);
            foreach ($selectlist as $k => $v) {
                $list[$v['id']] = $v;
            }
        }
        foreach ($datalist as $k => &$v) {
            $v[$renderkey] = isset($list[$v[$fieldkey]]) ? $list[$v[$fieldkey]] : null;
        }
        unset($v);
        return $datalist;
    }

    /**
     * 设置错误信息
     *
     * @param $error 错误信息
     * @return Auth
     */
    public function setError($error)
    {
        $this->_error = $error;
        return $this;
    }

    /**
     * 获取错误信息
     * @return string
     */
    public function getError()
    {
        return $this->_error ? __($this->_error) : '';
    }

    public function openid_register($wechat_openid = '', $extend = [])
    {
        if ($wechat_openid && User::getByOpenid($wechat_openid)) {
            $this->setError('openid已存在');
            return false;
        }

        $ip = request()->ip();
        $time = time();

        $introcode = User::column("invite_no");

        $data = [
            'openid'   => $wechat_openid,
            'gender'   => isset($extend['gender']) ? $extend['gender'] : 1,
            'avatar' => isset($extend["avatar"]) ? $extend["avatar"] : '/assets/dc0f37f043e1e9f5240ed87e37f18740.png',
            'invite_no' => $this->getUinqueNo(6, $introcode),
            'nickname'  => get_rand_nick_name(),
        ];
        $params = array_merge($data, [
            'salt'      => Random::alnum(),
            'jointime'  => $time,
            'joinip'    => $ip,
            'logintime' => $time,
            'loginip'   => $ip,
            'prevtime'  => $time,
            'status'    => 'normal'
        ]);
        $params = array_merge($params, $extend);

        //账号注册时需要开启事务,避免出现垃圾数据
        Db::startTrans();
        try {
            $user = User::create($params, true);

            $this->_user = User::get($user->id);
            $this->_user->u_id = $this->getUinqueId(8, [$user->id]);
            $this->_user->save();

            //设置Token
            $this->_token = Random::uuid();
            Token::set($this->_token, $user->id, $this->keeptime);

            //设置登录状态
            $this->_logined = true;
            //初始化权限
            $userPowerWhere['user_id'] = $user->id;
            $userPowerData = Db::name('user_power')->where($userPowerWhere)->find();
            if (empty($userPowerData)) {
                $powerData = ['user_id' => $user->id];
                Db::name('user_power')->insertGetId($powerData);
            }
            //注册到钱包
            $wallet_data = [
                'user_id' => $user->id,
            ];
            Db::name('user_wallet')->insertGetId($wallet_data);
            //注册成功的事件
            Hook::listen("user_register_successed", $this->_user, $data);
            \app\common\model\NewBagHave::insert(["user_id" => $user->id, "createtime" => time()]);
            Db::commit();
        } catch (Exception $e) {echo '<pre>';var_dump($e->getLine());exit;
            $this->setError($e->getMessage());
            Db::rollback();
            return false;
        }
        return true;
    }
}