param('account'))->find(); if ($user) { if ($user->pwd !== md5($request->param('password'))) return app('json')->fail('账号或密码错误'); // if ($user->pwd === md5(123456)) // return app('json')->fail('请修改您的初始密码，再尝试登陆！'); } else { return app('json')->fail('账号或密码错误'); } if (!$user['status']) return app('json')->fail('已被禁止，请联系管理员'); // 设置推广关系 User::setSpread(intval($request->param('spread')), $user->uid); $token = UserToken::createToken($user, 'user'); if ($token) { event('UserLogin', [$user, $token]); return app('json')->success('登录成功', ['token' => $token->token, 'expires_time' => $token->expires_time]); } else return app('json')->fail('登录失败'); } /** * 退出登录 * @param Request $request */ public function logout(Request $request) { $request->tokenData()->delete(); return app('json')->success('成功'); } public function verifyCode() { $unique = password_hash(uniqid(true), PASSWORD_BCRYPT); Cache::set('sms.key.' . $unique, 0, 300); return app('json')->success(['key' => $unique]); } public function captcha(Request $request) { ob_clean(); $rep = captcha(); $key = app('session')->get('captcha.key'); $uni = $request->get('key'); if ($uni) Cache::set('sms.key.cap.' . $uni, $key, 300); return $rep; } /** * 验证验证码是否正确 * * @param $uni * @param string $code * @return bool * @throws \Psr\SimpleCache\InvalidArgumentException */ protected function checkCaptcha($uni, string $code): bool { $cacheName = 'sms.key.cap.' . $uni; if (!Cache::has($cacheName)) { return false; } $key = Cache::get($cacheName); $code = mb_strtolower($code, 'UTF-8'); $res = password_verify($code, $key); if ($res) { Cache::delete($cacheName); } return $res; } /** * 验证码发送 * @param Request $request * @return mixed */ public function verify(Request $request) { list($phone, $type // , $key, $code ) = UtilService::postMore([['phone', 0], ['type', ''], // ['key', ''], ['code', ''] ], $request, true); // $keyName = 'sms.key.' . $key; $nowKey = 'sms.' . date('YmdHi'); // if (!Cache::has($keyName)) // return app('json')->make(401, '发送验证码失败'); // // if (($num = Cache::get($keyName)) > 2) { // if (!$code) // return app('json')->make(402, '请输入验证码'); // // if (!$this->checkCaptcha($key, $code)) // return app('json')->fail('验证码输入有误'); // } $total = 1; if ($has = Cache::has($nowKey)) { $total = Cache::get($nowKey); if ($total > Config::get('sms.maxMinuteCount', 20)) return app('json')->success('已发送'); } if ($type != 'register' && $type != 'login' && $type != 'reset') { $phone = $request->user()['account']; } try { validate(RegisterValidates::class)->scene('code')->check([(mobile_check($phone) ? 'phone' : 'email') => $phone]); } catch (ValidateException $e) { return app('json')->fail($e->getError()); } if (User::checkPhone($phone) && $type == 'register') return app('json')->fail('帐号已注册'); if (!User::checkPhone($phone) && $type == 'login') return app('json')->fail('账号不存在！'); if (mobile_check($phone)) $default = Config::get('sms.default', 'aliyun'); else $default = Config::get('sms.default_email', 'email'); $defaultMaxPhoneCount = Config::get('sms.maxPhoneCount', 10); $defaultMaxIpCount = Config::get('sms.maxIpCount', 50); $maxPhoneCount = Config::get('sms.stores.' . $default . '.maxPhoneCount', $defaultMaxPhoneCount); $maxIpCount = Config::get('sms.stores.' . $default . '.maxIpCount', $defaultMaxIpCount); if (SmsRecord::where('phone', $phone)->where('add_ip', $request->ip())->whereDay('add_time')->count() >= $maxPhoneCount) { return app('json')->fail('您今日发送验证码次数已经达到上限'); } if (SmsRecord::where('add_ip', $request->ip())->whereDay('add_time')->count() >= $maxIpCount) { return app('json')->fail('此IP今日发送次数已经达到上限'); } $time = mobile_check($phone) ? 300 : 300; if (CacheService::get('code_' . $phone)) return app('json')->fail($time . '秒内有效'); $code = rand(100000, 999999); $data['code'] = $code; if (mobile_check($phone)) { //发短信 $temp = function ($item) { switch ($item) { case "register": return 'REGISTER'; case "login": return 'LOGIN'; case "reset": return 'RESET'; case "reset_2": return 'RESET_2'; case "trade": return 'TRADE'; default: return 'DEFAULT'; } }; $res = ShortLetterRepositories::AliSend($phone, $data, $temp($type)); } else { //发邮件 $res = ShortLetterRepositories::EmailSend($phone, $data); } //发短信 if ($res !== true) return app('json')->fail('验证码发送失败' . $res); CacheService::set('code_' . $phone, $code, $time); // Cache::set($keyName, $num + 1, 300); Cache::set($nowKey, $total, 61); return app('json')->success('发送成功'); } /** * H5注册新用户 * @param Request $request * @return mixed * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException */ public function register(Request $request) { list($phone, $email, $captcha, $password, $trade_password, $invite_code) = UtilService::postMore([['phone', ''], ['email', ''], ['captcha', ''], ['password', ''], ['trade_password', ''], ['invite_code', '']], $request, true); try { validate(RegisterValidates::class)->scene('register')->check(['phone' => $phone, 'email' => $email, 'captcha' => $captcha, 'password' => $password, 'trade_password' => $trade_password]); } catch (ValidateException $e) { return app('json')->fail($e->getError()); } if (!$invite_code && User::count() > 0) return app('json')->fail('请输入邀请码'); if ($invite_code) { $spread = User::where('invite_code|phone', $invite_code)->value('uid'); if (!$spread) return app('json')->fail('邀请码不存在'); } if ($phone) { // if (!$captcha) { // return app('json')->fail('请输入验证码'); // } // $verifyCode = CacheService::get('code_' . $phone); // if (!$verifyCode) // return app('json')->fail('请先获取验证码'); // $verifyCode = substr($verifyCode, 0, 6); // if ($verifyCode != $captcha) // return app('json')->fail('验证码错误'); } if (!$phone && !$email) { return app('json')->fail('请输入对应注册方式的账号'); } if (strlen(trim($password)) < 6 || strlen(trim($password)) > 16) return app('json')->fail('密码必须是在6到16位之间'); if (strlen(trim($trade_password)) < 6 || strlen(trim($trade_password)) > 6 || !is_numeric($trade_password)) return app('json')->fail('交易密码为6位数字'); // if ($password == '123456') return app('json')->fail('密码太过简单，请输入较为复杂的密码'); // if ($trade_password == '123456') return app('json')->fail('交易密码太过简单，请输入较为复杂的密码'); $spread = User::where('invite_code|phone', $invite_code)->value('uid'); $registerStatus = User::register($phone ? $phone : $email, $password, $trade_password, $spread); if ($registerStatus) return app('json')->success('注册成功'); return app('json')->fail(User::getErrorInfo('注册失败')); } /** * 密码修改 * @param Request $request * @return mixed */ public function reset(Request $request) { list($account, $captcha, $password, $password2, $type) = UtilService::postMore([['account', ''], ['captcha', ''], ['password', ''], ['password2', ''], ['type', 1]], $request, true); try { validate(RegisterValidates::class)->scene('reset')->check(['account' => $account, 'captcha' => $captcha, 'password' => $password, 'password2' => $password2]); } catch (ValidateException $e) { return app('json')->fail($e->getError()); } $verifyCode = CacheService::get('code_' . $account); if (!$verifyCode) return app('json')->fail('请先获取验证码'); $verifyCode = substr($verifyCode, 0, 6); if ($verifyCode != $captcha) return app('json')->fail('验证码错误'); if ($password != $password2) return app('json')->fail('两次输入的密码不一致'); if (strlen(trim($password)) < 6 || strlen(trim($password)) > 16) return app('json')->fail('密码必须是在6到16位之间'); // if ($password == '123456') return app('json')->fail('密码太过简单，请输入较为复杂的密码'); $resetStatus = User::reset($account, $password, $type); if ($resetStatus) return app('json')->success('修改成功'); return app('json')->fail(User::getErrorInfo('修改失败')); } /** * 手机号登录 * @param Request $request * @return mixed * @throws DataNotFoundException * @throws ModelNotFoundException * @throws \think\exception\DbException */ public function mobile(Request $request) { list($phone, $captcha, $spread) = UtilService::postMore([['phone', ''], ['captcha', ''], ['spread', 0]], $request, true); //验证手机号 try { validate(RegisterValidates::class)->scene('code')->check(['phone' => $phone]); } catch (ValidateException $e) { return app('json')->fail($e->getError()); } //验证验证码 $verifyCode = CacheService::get('code_' . $phone); if (!$verifyCode) return app('json')->fail('请先获取验证码'); $verifyCode = substr($verifyCode, 0, 6); if ($verifyCode != $captcha) return app('json')->fail('验证码错误'); //数据库查询 $user = User::where('account', $phone)->find(); if (!$user) return app('json')->fail('用户不存在'); if (!$user->status) return app('json')->fail('已被禁止，请联系管理员'); // 设置推广关系 User::setSpread($spread, $user->uid); $token = UserToken::createToken($user, 'user'); if ($token) { event('UserLogin', [$user, $token]); return app('json')->success('登录成功', ['token' => $token->token, 'expires_time' => $token->expires_time]); } else return app('json')->fail('登录失败'); } /** * H5切换登陆 * @param Request $request * @return mixed * @throws DataNotFoundException * @throws ModelNotFoundException * @throws \think\exception\DbException */ public function switch_h5(Request $request) { $from = $request->post('from', 'wechat'); $user = $request->user(); if ($from === 'h5') { $user = User::where('phone', $user['phone'])->where('user_type', '<>', 'h5')->find(); $user->login_type = 'wechat'; $user->save(); } else { //数据库查询 $user = User::where('account|phone', $user['phone'])->where('user_type', 'h5')->find(); if (!$user) return app('json')->fail('H5用户不存在,无法切换'); if (!$user->status) return app('json')->fail('已被禁止，请联系管理员'); $wechatUserInfo = WechatUser::where('uid', $request->uid())->find();//当前登陆用户信息 $wechatH5UserInfo = WechatUser::where('uid', $user->uid)->find();//H5登陆切换用户信息 if ($wechatH5UserInfo->unionid && $wechatUserInfo->unionid != $wechatH5UserInfo->unionid) return app('json')->fail('您的账号已绑定特定用户无法切换到此用户上'); if ($wechatH5UserInfo->openid && $wechatUserInfo->openid != $wechatH5UserInfo->openid) return app('json')->fail('您的账号已绑定特定用户无法切换到此用户上'); if ($wechatH5UserInfo->routine_openid && $wechatUserInfo->routine_openid != $wechatH5UserInfo->routine_openid) return app('json')->fail('您的账号已绑定特定用户无法切换到此用户上'); switch ($from) { case 'wechat': if (!$wechatH5UserInfo->openid) $wechatH5UserInfo->openid = $wechatUserInfo->openid; if (!$wechatH5UserInfo->unionid && $wechatUserInfo->unionid) $wechatH5UserInfo->unionid = $wechatUserInfo->unionid; break; case 'routine': if (!$wechatH5UserInfo->routine_openid) $wechatH5UserInfo->routine_openid = $wechatUserInfo->routine_openid; if (!$wechatH5UserInfo->unionid && $wechatUserInfo->unionid) $wechatH5UserInfo->unionid = $wechatUserInfo->unionid; break; } $wechatH5UserInfo->save(); User::where('uid', $request->uid())->update(['login_type' => 'h5']); } $token = UserToken::createToken($user, 'user'); if ($token) { event('UserLogin', [$user, $token]); return app('json')->success('登录成功', ['userInfo' => $user, 'token' => $token->token, 'expires_time' => $token->expires_time, 'time' => strtotime($token->expires_time)]); } else return app('json')->fail('登录失败'); } /** * 绑定手机号 * @param Request $request * @return mixed * @throws DataNotFoundException * @throws ModelNotFoundException * @throws \think\exception\DbException */ public function binding_phone(Request $request) { list($phone, $captcha, $step) = UtilService::postMore([ ['phone', ''], ['captcha', ''], ['step', 0] ], $request, true); //验证手机号 try { validate(RegisterValidates::class)->scene('code')->check(['phone' => $phone]); } catch (ValidateException $e) { return app('json')->fail($e->getError()); } //验证验证码 $verifyCode = CacheService::get('code_' . $phone); if (!$verifyCode) return app('json')->fail('请先获取验证码'); $verifyCode = substr($verifyCode, 0, 6); if ($verifyCode != $captcha) return app('json')->fail('验证码错误'); $userInfo = User::where('uid', $request->uid())->find(); $userPhone = $userInfo->phone; if (!$userInfo) return app('json')->fail('用户不存在'); if ($userInfo->phone) return app('json')->fail('您的账号已经绑定过手机号码！'); if (User::where('phone', $phone)->where('user_type', '<>', 'h5')->count()) return app('json')->success('此手机已经绑定，无法多次绑定！'); if (User::where('account', $phone)->where('phone', $phone)->where('user_type', 'h5')->find()) { if (!$step) return app('json')->success('H5已有账号是否绑定此账号上', ['is_bind' => 1]); $userInfo->phone = $phone; } else { $userInfo->account = $phone; $userInfo->phone = $phone; } if ($userInfo->save() || $userPhone == $phone) return app('json')->success('绑定成功'); else return app('json')->fail('绑定失败'); } }