Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
zmcoding
/
station-test-api
Obserwuj 1
Polub 0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: 748103a5cf
Gałęzie Tagi
station-test...
/
catch
/
xw1
/
controller
/
Index.php

Index.php 9.5 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274 
  1. <?php
    2. 

  2. /*
    3. 

  3.  * @Description: 微信公众号接口
    4. 

  4.  * @Version: 2.0
    5. 

  5.  * @Autor: 李康
    6. 

  6.  * @Date: 2022-01-24 11:11:15
    7. 

  7.  * @LastEditors: 李康
    8. 

  8.  * @LastEditTime: 2022-01-25 15:49:18
    9. 

  9.  */
    10. 

  10. 

  11. namespace catchAdmin\xw1\controller;
    12. 

  12. 

  13. use app\Request;
    14. 

  14. use catchAdmin\msg\model\Msg;
    15. 

  15. use catchAdmin\permissions\model\Users;
    16. 

  16. use catcher\base\CatchController;
    17. 

  17. use catcher\CatchResponse;
    18. 

  18. use think\facade\Db;
    19. 

  19. 

  20. 

  21. class Index extends CatchController
    22. 

  22. {
    23. 

  23.     
    24. 

  24.     //注册信息
    25. 

  25.     /**
    26. 

  26.      * Undocumented function
    27. 

  27.      *
    28. 

  28.      * @param Request $request
    29. 

  29.      * @username 手机号
    30. 

  30.      * @smsCode  手机验证码
    31. 

  31.      * @password  密码
    32. 

  32.      * @confirmPassword  重复密码
    33. 

  33.      * 
    34. 

  34.      * @return void
    35. 

  35.      */
    36. 

  36.     public  function register(Request $request){
    37. 

  37.         header('Access-Control-Allow-Origin: *');
    38. 

  38.          
    39. 

  39.         // 通过手机号和短信验证码注册
    40. 

  40.         $data = $request->param();
    41. 

  41.          
    42. 

  42.         if(!$data['username']){
    43. 

  43.             return CatchResponse::fail('手机号码不能为空');
    44. 

  44.         }
    45. 

  45.         if(!$data['smsCode']){
    46. 

  46.             return CatchResponse::fail('短信验证码不能为空');
    47. 

  47.         }
    48. 

  48.         if(! $data['password']){
    49. 

  49.             return CatchResponse::fail('密码不能为空');
    50. 

  50.         }
    51. 

  51.         if(! $data['confirmPassword']){
    52. 

  52.             return CatchResponse::fail('请输入确认密码');
    53. 

  53.         }
    54. 

  54.         if ($data['password'] != $data['confirmPassword']) {
    55. 

  55.             return CatchResponse::fail('两次密码不一致');
    56. 

  56.         }
    57. 

  57.          
    58. 

  58.         // 号码是否已注册
    59. 

  59.         $userinfo = Db::name('users')->where(['username'=>$data['username']])->find();
    60. 

  60.         if ($userinfo) {
    61. 

  61.             return CatchResponse::fail('该号码已注册');
    62. 

  62.         }
    63. 

  63.         // 验证码有效性
    64. 

  64.         $res = $this->isValidSmsCode($data['username'], $data['smsCode']);
    65. 

  65.         if (!$res['success']) {
    66. 

  66.             return CatchResponse::fail($res['message']);
    67. 

  67.         }
    68. 

  68.         //设置转换密码
    69. 

  69.         $user=new Users();
    70. 

  70.         $savePwd = $user->setPasswordAttr($data['password']);
    71. 

  71.         $saveData = [
    72. 

  72.             'username' => $data['username'],
    73. 

  73.             'password' => $savePwd
    74. 

  74.         ];
    75. 

  75.        
    76. 

  76.         $userid = Db::name('users')->insert($saveData);
    77. 

  77.         if(!$userid){
    78. 

  78.             return CatchResponse::fail('注册失败');
    79. 

  79.         }
    80. 

  80.        
    81. 

  81.         return CatchResponse::success('注册成功');
    82. 

  82.          
    83. 

  83.     }
    84. 

  84.     //重置密码
    85. 

  85.     /**
    86. 

  86.      * Undocumented function
    87. 

  87.      *
    88. 

  88.      * @param Request $request
    89. 

  89.      * @username 手机号
    90. 

  90.      * @smsCode 手机验证码
    91. 

  91.      * @password 密码
    92. 

  92.      * @confirmPassword  重复密码
    93. 

  93.      * @
    94. 

  94.      * @return void
    95. 

  95.      */
    96. 

  96.     public function resetPassword(Request $request)
    97. 

  97.     {
    98. 

  98.         header('Access-Control-Allow-Origin: *');
    99. 

  99. 

  100.             // 通过手机号和短信验证码注册
    101. 

  101.             $data = $request->param();
    102. 

  102. 

  103.             if(!$data['username']){
    104. 

  104.                 return CatchResponse::fail('手机号码不能为空');
    105. 

  105.             }
    106. 

  106.             if(!$data['smsCode']){
    107. 

  107.                 return CatchResponse::fail('短信验证码不能为空');
    108. 

  108.             }
    109. 

  109.             if(! $data['password']){
    110. 

  110.                 return CatchResponse::fail('密码不能为空');
    111. 

  111.             }
    112. 

  112.             if(! $data['confirmPassword']){
    113. 

  113.                 return CatchResponse::fail('确认密码不能为空');
    114. 

  114.             }
    115. 

  115.             if ($data['password'] != $data['confirmPassword']) {
    116. 

  116.                 return CatchResponse::fail('两次密码不一致');
    117. 

  117.             }
    118. 

  118. 

  119.             // 判断角色、号码是否已注册
    120. 

  120.             $userinfo = Users::where('username',$data['username'])->find();
    121. 

  121.             if (empty($userinfo)) {
    122. 

  122.                 return CatchResponse::fail('该号码未注册');
    123. 

  123.             }
    124. 

  124.             // 验证码有效性
    125. 

  125.             $res = $this->isValidSmsCode($data['username'], $data['smsCode']);
    126. 

  126.             if (!$res['success']) {
    127. 

  127.                 return CatchResponse::fail($res['message']);
    128. 

  128.             }
    129. 

  129.             // 重置密码
    130. 

  130.             $user=new Users();
    131. 

  131.             $savePwd = $user->setPasswordAttr($data['password']);
    132. 

  132.             $cond = ['id' => $userinfo['id']];
    133. 

  133.             $res = Users::where($cond)->update(["password"=>$savePwd]);
    134. 

  134.             if($res === false){
    135. 

  135.                 return CatchResponse::fail('重置失败');
    136. 

  136.             }
    137. 

  137.             return CatchResponse::success('重置成功');
    138. 

  138. 

  139. 

  140. 

  141.     }
    142. 

  142. 

  143.     /**
    144. 

  144.      * @username 手机号
    145. 

  145.      * isReset  是否重置密码 1代表重置 0未重置
    146. 

  146.      */
    147. 

  147. 

  148.     //发送短信验证码
    149. 

  149.     public  function sendSmsCode(Request $request){
    150. 

  150.         header('Access-Control-Allow-Origin: *');
    151. 

  151.          
    152. 

  152.         $postData = $request->param();
    153. 

  153.          //判断账号和密码是否存在
    154. 

  154.        
    155. 

  155.         if (!$postData['username']) {
    156. 

  156.             return CatchResponse::fail('手机号不存在');
    157. 

  157.         }
    158. 

  158.         if (!preg_match('/^1[3456789]\d{9}$/', $postData['username'])) {
    159. 

  159.             return CatchResponse::fail('手机号格式不存在');
    160. 

  160.         }
    161. 

  161.          
    162. 

  162.         // 是否重置密码
    163. 

  163.         //1代表重置
    164. 

  164.         //0 未重置
    165. 

  165.         $isReset = $postData['isReset'];
    166. 

  166.          
    167. 

  167.         // 号码是否已注册
    168. 

  168.         $userinfo = Users::where('username',$postData['username'])->find();
    169. 

  169.         // 重置密码时
    170. 

  170.         if ($isReset && empty($userinfo)) {
    171. 

  171.            return CatchResponse::fail('该号码未注册');
    172. 

  172.         } elseif (!$isReset && $userinfo) {
    173. 

  173.             return CatchResponse::fail('该号码已注册');
    174. 

  174.         }
    175. 

  175.         $sms_code_mode = Db::name('sms_verification_code'); // 短信验证码模型
    176. 

  176.         // 防盗刷IP地址检测
    177. 

  177.         $todayTime = strtotime(date('Y-m-d'));
    178. 

  178.         $where = ['access_ip' => $_SERVER['REMOTE_ADDR'], 'created_at' => ['GT', $todayTime]];
    179. 

  179.         $count = $sms_code_mode->where($where)->count();
    180. 

  180.         if ($count >= 10) {
    181. 

  181.             return CatchResponse::fail('已达到当日获取次数上限');
    182. 

  182.         }
    183. 

  183.          
    184. 

  184.         // 获取短信配置
    185. 

  185.         $rlyunId = Db::name('sms_config')->where(['name' => 'rlyun'])->value('id');
    186. 

  186.         $smsConfig = Db::name('sms_config')->where(['pid' => $rlyunId])->column('key,value');
    187. 

  187.         $test=null;
    188. 

  188.         foreach ($smsConfig as $key=>$value) {
    189. 

  189.             $test[$value['key']]=$value['value'];
    190. 

  190.         }
    191. 

  191.         $smsConfig=$test;
    192. 

  192.         if (empty($smsConfig)) {
    193. 

  193.             return CatchResponse::fail('获取短信配置失败');
    194. 

  194.         }
    195. 

  195.         // 获取短信验证码模板信息
    196. 

  196.         $where = ['operator' => 'rlyun', 'code' => 'verification_code'];
    197. 

  197.         $tmpInfo = Db::name('sms_template')->where($where)->find();
    198. 

  198.         if (empty($tmpInfo)) {
    199. 

  199.             return  CatchResponse::fail('获取短信验证码模板信息失败');
    200. 

  200.         }
    201. 

  201.         // 生成验证码
    202. 

  202.         $code = rand(0, 9999);
    203. 

  203.         $code = str_pad($code, 4, '0',STR_PAD_LEFT);
    204. 

  204.         // 保存验证码
    205. 

  205.         $time = time();
    206. 

  206.         $saveData = [
    207. 

  207.             'mobile' => $postData['username'],
    208. 

  208.             'code' => $code,
    209. 

  209.             'access_ip' => $_SERVER['REMOTE_ADDR'],
    210. 

  210.             'created_at' => $time,
    211. 

  211.             'updated_at' => $time,
    212. 

  212.         ];
    213. 

  213.         Db::startTrans(); // 开启事务
    214. 

  214.         // createAdd($saveData);
    215. 

  215.         $res = $sms_code_mode->insert($saveData);
    216. 

  216.         if ($res === false) {
    217. 

  217.             Db::rollback();
    218. 

  218.             return CatchResponse::fail('发送失败,请稍后重试');
    219. 

  219.         }
    220. 

  220.          
    221. 

  221.         // 发送短信验证码
    222. 

  222.         $content = str_replace('{1}', $code, $tmpInfo['content']);
    223. 

  223.         $content = str_replace('{2}', '5分钟', $content);
    224. 

  224.         $contentData = [
    225. 

  225.             'tplno' => $tmpInfo['identify'],
    226. 

  226.             'tpldata' => [ $code, '5分钟' ],
    227. 

  227.             //'tpldata' => $content, // error test
    228. 

  228.             'info' => $content,
    229. 

  229.         ];
    230. 

  230.         $res = send_sms_with_config($postData['username'], $contentData, $smsConfig,array());
    231. 

  231.         if (!$res['success']) {
    232. 

  232.             Db::rollback();
    233. 

  233.             Db::name('sms_send_log')->insert($res['data']);
    234. 

  234.             return  CatchResponse::fail($res['message'] ?: '发送失败');
    235. 

  235.         }
    236. 

  236.         Db::commit();
    237. 

  237.         return CatchResponse::success($res['message']);
    238. 

  238.     }
    239. 

  239.     //校验密码
    240. 

  240.     private  function isValidSmsCode( $mobile, $code ){
    241. 

  241.         if (!$mobile) {
    242. 

  242.             return ['success' => false, 'message' => '手机号码不存在'];
    243. 

  243.         }
    244. 

  244.         if (!$code) {
    245. 

  245.             return ['success' => false, 'message' => '验证码不存在'];
    246. 

  246.         }
    247. 

  247.         // 根据手机号码和验证码查询最后一次验证码
    248. 

  248.         $sms_verification_code_model = Db::name('sms_verification_code');
    249. 

  249.         $cond = [ 'mobile' => $mobile, 'code' => $code ];
    250. 

  250.         $info = $sms_verification_code_model->where($cond)->order('created_at', 'desc')->find();
    251. 

  251.         // 不存在
    252. 

  252.         if (empty($info)) {
    253. 

  253.             return ['success' => false, 'message' => '验证失败,请确保手机号码和验证码输入无误'];
    254. 

  254.         }
    255. 

  255.         // 超过时间(暂定5分钟)
    256. 

  256.         $valid_time = 60 * 5;
    257. 

  257.         if (time() - $info['created_at'] > $valid_time) {
    258. 

  258.             return ['success' => false, 'message' => '验证码已失效'];
    259. 

  259.         }
    260. 

  260.         // 超过使用次数(暂定3次)
    261. 

  261.         if ($info['use_times'] >= 3) {
    262. 

  262.             return ['success' => false, 'message' => '验证码已失效'];
    263. 

  263.         }
    264. 

  264.         // 可以使用,使用次数+1
    265. 

  265.         $cond = ['id' => $info['id']];
    266. 

  266.         $user_times=$sms_verification_code_model->where($cond)->value('use_times');
    267. 

  267.         $res = $sms_verification_code_model->where($cond)->update(['use_times'=>$user_times+1]);
    268. 

  268.         if ($res === false) {
    269. 

  269.             return ['success' => false, 'message' => '操作失败,请重试'];
    270. 

  270.         }
    271. 

  271.         return ['success' => true, 'message' => '验证码有效'];
    272. 

  272.     }
    273. 

  273. }
    274. 

  274.