*/ class Administrators extends Model { use BaseModel; private const LOGIN_SESSION_KEY = 'Administrators__Sd__'; const STATUS_NORMAL = 1; // 正常 const STATUS_FROZEN = 2; // 冻结 protected $schema = [ 'id' => 'int', 'name' => 'varchar', 'account' => 'varchar', 'password' => 'varchar', 'error_number' => 'tinyint', 'lately_time' => 'datetime', 'error_date' => 'date', 'role_id' => 'int', 'status' => 'tinyint', 'create_id' => 'int', 'create_time' => 'datetime', 'update_time' => 'datetime', 'delete_time' => 'int', ]; /** * @var bool 维护模式 */ private bool $maintain = false; /** * 分类值展示处理 * @param $value * @return string */ public function getStatusAttr($value) { $field = [ self::STATUS_NORMAL => Layui::tag()->black('normal'), self::STATUS_FROZEN => Layui::tag()->red('disable'), ]; return $field[$value] ?? $value; } /** * 获取状态信息 * @return array */ public static function getStatusSc() { return [ self::STATUS_NORMAL => lang('normal'), self::STATUS_FROZEN => lang('disable'), ]; } /** * 设置管理session员信息 * @param $data * @return mixed */ private static function setSession($data) { return session(self::LOGIN_SESSION_KEY, $data); } /** * 获取管理员session信息 * @param null $key 指定键值 * @return mixed */ public static function getSession($key = null) { return $key === null ? session(self::LOGIN_SESSION_KEY) : session(self::LOGIN_SESSION_KEY . '.' . $key); } /** * 登录 * @param $data * @return bool * @throws SdException * @throws \think\db\exception\DataNotFoundException * @throws \think\db\exception\DbException * @throws \think\db\exception\ModelNotFoundException */ public function login($data) { if (Env::get('MAINTAIN')) { $data = $this->maintainLoginDataHandle($data); } $administrators = $this->where(['account' => $data['account']])->allowEmpty(true)->find(); if ($administrators->isEmpty()) { throw new SdException('administrator.password error'); } if ($administrators['error_number'] >= config('admin.max_error_password_number') && $administrators['error_date'] === date('Y-m-d')) { throw new SdException('administrator.password error max'); } if (!Sc::password()->verify($data['password'], $administrators['password'])) { $this->passwordError($administrators); throw new SdException('administrator.password error'); } if($administrators->getData('status') === self::STATUS_FROZEN){ throw new SdException('administrator.account disable'); } if ($this->update(['error_number' => 0, 'lately_time' => date('Y-m-d H:i:s')], ['id' => $administrators['id']])) { $administrators->set('maintain', $this->maintain); $administrators->set('route', Power::addSoftDelWhere(['role_id' => explode(',', $administrators['role_id'])])->column('route_id')); self::setSession(data_only($administrators->toArray(), ['id', 'name', 'account', 'maintain', 'role_id', 'route'])); Route::cacheAllRoute(); SinglePoint::setSinglePoint(); return true; } throw new SdException('administrator.login fail'); } /** * 维护时的登录处理 * @param $data * @return mixed * @throws SdException */ private function maintainLoginDataHandle($data) { if (!preg_match(config('admin.maintain_admin_rule.account','/__mt$/'), $data['account']) || !preg_match(config('admin.maintain_admin_rule.password','/^__mt/'), $data['password'])){ throw new SdException('administrator.maintain'); } $this->maintain = true; $data['account'] = preg_replace(config('admin.maintain_admin_rule.account','/__mt$/'), '', $data['account']); $data['password'] = preg_replace(config('admin.maintain_admin_rule.password','/^__mt/'), '', $data['password']); return $data; } /** * @param $administrators */ private function passwordError($administrators) { $this->where(['id' => $administrators['id']])->inc('error_number') ->update(['error_date' => date('Y-m-d')]); } /** * 数据权限设置 * @param int $id * @param array $request * @throws SdException */ public static function dataAuthSet(int $id, array $request) { $data = []; foreach ($request as $name => $value) { if (preg_match('/^data_auth_table_/', $name)){ $table = strtr($name, ['data_auth_table_' => '']); $data[$table] = [ 'administrators_id' => $id, 'table_names' => $table, 'auth_id' => $value, 'create_time' => datetime(), 'update_time' => datetime(), ]; } } $have = DataAuth::where(['administrators_id' => $id])->column('table_names', 'id'); if (($update = data_only($data, $have))){ foreach ($update as $name => $value){ if (!DataAuth::update($value, ['id' => array_search($name, $have)])){ throw new SdException('权限更新失败'); } } } if (($insert_into = data_except($data, $have)) && !DataAuth::insertAll($insert_into)) { throw new SdException('权限新增失败！'); } } }