xny/app/controller/api/Auth.php

<?php

// +----------------------------------------------------------------------
// | CRMEB [ CRMEB赋能开发者，助力企业发展 ]
// +----------------------------------------------------------------------
// | Copyright (c) 2016~2024 https://www.crmeb.com All rights reserved.
// +----------------------------------------------------------------------
// | Licensed CRMEB并不是自由软件，未经许可不能去掉CRMEB相关版权
// +----------------------------------------------------------------------
// | Author: CRMEB Team <admin@crmeb.com>
// +----------------------------------------------------------------------


namespace app\controller\api;


use app\common\model\store\order\StoreOrder;
use app\common\model\user\AwardLake;
use app\common\model\user\GiftLevel;
use app\common\model\user\OilLevel;
use app\common\repositories\store\order\StoreGroupOrderRepository;
use app\common\repositories\store\order\StoreOrderRepository;
use app\common\repositories\store\order\StoreRefundOrderRepository;
use app\common\repositories\system\notice\SystemNoticeConfigRepository;
use app\common\repositories\user\AwardIntegralPriceRepository;
use app\common\repositories\user\UserOrderRepository;
use app\common\repositories\user\UserRechargeRepository;
use app\common\repositories\user\UserRepository;
use app\common\repositories\user\UserSignRepository;
use app\common\repositories\wechat\RoutineQrcodeRepository;
use app\common\repositories\wechat\WechatUserRepository;
use app\controller\api\user\User;
use app\validate\api\ChangePasswordValidate;
use app\validate\api\UserAuthValidate;
use crmeb\basic\BaseController;
use crmeb\services\MiniProgramService;
use crmeb\services\SmsService;
use crmeb\services\WechatService;
use crmeb\services\WechatTemplateMessageService;
use Exception;
use Firebase\JWT\JWT;
use Gregwar\Captcha\CaptchaBuilder;
use Gregwar\Captcha\PhraseBuilder;
use Overtrue\Socialite\AccessToken;
use Symfony\Component\HttpFoundation\Request;
use think\db\exception\DataNotFoundException;
use think\db\exception\DbException;
use think\db\exception\ModelNotFoundException;
use think\exception\ValidateException;
use think\facade\Cache;
use think\facade\Log;
use think\facade\Queue;
use crmeb\jobs\SendSmsJob;

/**
 * Class Auth
 * @package app\controller\api
 * @author xaboy
 * @day 2020-05-06
 */
class Auth extends BaseController
{
    public function test()
    {
//        $data = [
//            'tempId' => '',
//            'id' => '',
//        ];
//        Queue::push(SendSmsJob::class,$data);
//        $status = app()->make(SystemNoticeConfigRepository::class)->getNoticeStatusByConstKey($data['tempId']);
//        if ($status['notice_sms'] == 1) {
//            SmsService::sendMessage($data);
//        }
//        if ($status['notice_wechat'] == 1) {
//            app()->make(WechatTemplateMessageService::class)->sendTemplate($data);
//        }
//        if ($status['notice_routine'] == 1) {
//            app()->make(WechatTemplateMessageService::class)->subscribeSendTemplate($data);
//        }
        $achievement = StoreOrder::where('uid', 1)->where('paid', 1)->where('product_type',5)->whereNotIn('status',-1)->sum('pay_price');

        var_dump($achievement);die();
    }
    public function autoSend(){
        $make = app()->make(AwardLake::class);
        $res=$make->autoSend();
        return app('json')->success('发送成功');
    }

    /**
     * @param UserRepository $repository
     * @return mixed
     * @throws DbException
     * @author xaboy
     * @day 2020/6/1
     */
    public function login(UserRepository $repository)
    {
        $account = $this->request->param('account');
        $auth_token = $this->request->param('auth_token');
        if (Cache::get('api_login_freeze_' . $account))
            return app('json')->fail('账号或密码错误次数太多，请稍后在尝试');
        if (!$account)
            return app('json')->fail('请输入账号');
        $user = $repository->accountByUser($this->request->param('account'));
//        if($auth_token && $user){
//            return app('json')->fail('用户已存在');
//        }
        if (!$user) $this->loginFailure($account);
        if (!password_verify($pwd = (string)$this->request->param('password'), $user['pwd'])) $this->loginFailure($account);
        $auth = $this->parseAuthToken($auth_token);
        if ($auth && !$user['wechat_user_id']) {
            $repository->syncBaseAuth($auth, $user);
        }
        $user = $repository->mainUser($user);
        $pid = $this->request->param('spread', 0);
        $repository->bindSpread($user, intval($pid));

        $tokenInfo = $repository->createToken($user);
        $repository->loginAfter($user);

        return app('json')->success($repository->returnToken($user, $tokenInfo));
    }

    /**
     * 登录尝试次数限制
     * @param $account
     * @param int $number
     * @param int $n
     * @author Qinii
     * @day 7/6/21
     */
    public function loginFailure($account, $number = 5, $n = 3)
    {
        $key = 'api_login_failuree_' . $account;
        $numb = Cache::get($key) ?? 0;
        $numb++;
        if ($numb >= $number) {
            $fail_key = 'api_login_freeze_' . $account;
            Cache::set($fail_key, 1, 15 * 60);
            throw new ValidateException('账号或密码错误次数太多，请稍后在尝试');

        } else {
            Cache::set($key, $numb, 5 * 60);

            $msg = '账号或密码错误';
            $_n = $number - $numb;
            if ($_n <= $n) {
                $msg .= ',还可尝试' . $_n . '次';
            }
            throw new ValidateException($msg);
        }
    }


    /**
     * @return mixed
     * @author xaboy
     * @day 2020/6/1
     */
    public function userInfo()
    {
        $user = $this->request->userInfo()->hidden(['label_id', 'group_id', 'pwd', 'addres', 'card_id', 'last_time', 'last_ip', 'create_time', 'mark', 'status', 'spread_uid', 'spread_time', 'real_name', 'birthday', 'brokerage_price']);
        $user->append(['service', 'topService', 'total_collect_product', 'total_collect_store', 'total_coupon', 'total_visit_product', 'total_unread', 'total_recharge', 'lock_integral', 'total_integral', 'staffs']);
        $data = $user->toArray();
        $data['total_consume'] = $user['pay_price'];
        $promoter = get_extension_info($user);
        $promoter['isShow'] = false;
        if ($promoter['isPromoter']) {
            $promoter['isShow'] = true;
        } else {
            if (!in_array($promoter['promoter_type'],[1,2])) {
                $promoter['isShow'] = true;
            }
        }
        $data['promoter'] = $promoter;
        if (systemConfig('member_status'))
            $data['member_icon'] = $this->request->userInfo()->member->brokerage_icon ?? '';
        if ($data['is_svip'] == 3)
            $data['svip_endtime'] = date('Y-m-d H:i:s', strtotime("+100 year"));

        $day = date('Y-m-d', time());
        $key = 'sign_' . $user['uid'] . '_' . $day;
        $data['sign_status'] = false;
        if (Cache::get($key)) {
            $data['sign_status'] = true;
        } else {
            $nu = app()->make(UserSignRepository::class)->getSign($user->uid, $day);
            if ($nu) {
                $data['sign_status'] = true;
                Cache::set($key, true, new \DateTime($day . ' 23:59:59'));
            }
        }
        $data['staff_mer'] = $data['staffs'] ? array_column($data['staffs'], 'mer_id') : [];
        $data['oil_level_name']='无';
        if ($data['oil_level']>0){
            $data['oil_level_name']=OilLevel::where('id',$data['oil_level'])->value('name');
        }
        $data['gift_level_name'] = '无';
        if ($data['gift_level'] > 0) {
            $data['gift_level_name'] = GiftLevel::where('id', $data['gift_level'])->value('name');
        }
        $data['brokerage_price'] = \app\common\model\user\User::where('uid', $user['uid'])->value('brokerage_price');

        $integral_prcie =app()->make(AwardIntegralPriceRepository::class)->awardIntegralPrice();
        $data['integral_prcie'] =$integral_prcie['price'];
        return app('json')->success($data);
    }

    /**
     * @param UserRepository $repository
     * @return mixed
     * @author xaboy
     * @day 2020/6/1
     */
    public function logout(UserRepository $repository)
    {
        $repository->clearToken($this->request->token());
        return app('json')->success('退出登录');
    }

    /**
     * @return mixed
     * @throws DataNotFoundException
     * @throws DbException
     * @throws ModelNotFoundException
     * @author xaboy
     * @day 2020-05-11
     */
    public function auth()
    {
        if (systemConfig('is_phone_login') === '1') {
            return app('json')->fail('请绑定手机号');
        }

        $request = $this->request;
        $oauth = WechatService::create()->getApplication()->oauth;
        $oauth->setRequest(new Request($request->get(), $request->post(), [], [], [], $request->server(), $request->getContent()));
        try {
            $wechatInfo = $oauth->user()->getOriginal();
        } catch (Exception $e) {
            return app('json')->fail('授权失败[001]', ['message' => $e->getMessage()]);
        }
        if (!isset($wechatInfo['nickname'])) {
            return app('json')->fail('授权失败[002]');
        }
        /** @var WechatUserRepository $make */
        $make = app()->make(WechatUserRepository::class);
        $user = $make->syncUser($wechatInfo['openid'], $wechatInfo);
        if (!$user)
            return app('json')->fail('授权失败[003]');
        /** @var UserRepository $make */
        $userRepository = app()->make(UserRepository::class);
        $user[1] = $userRepository->mainUser($user[1]);

        $pid = $this->request->param('spread', 0);
        $userRepository->bindSpread($user[1], intval($pid));

        $tokenInfo = $userRepository->createToken($user[1]);
        $userRepository->loginAfter($user[1]);

        return app('json')->success($userRepository->returnToken($user[1], $tokenInfo));
    }

    /**
     * @return mixed
     * @throws DataNotFoundException
     * @throws DbException
     * @throws ModelNotFoundException
     * @author xaboy
     * @day 2020-05-11
     */
    public function mpAuth()
    {
        list($code, $post_cache_key) = $this->request->params([
            'code',
            'cache_key',
        ], true);

        if (systemConfig('is_phone_login') === '1') {
            return app('json')->fail('请绑定手机号');
        }

        $userInfoCong = Cache::get('eb_api_code_' . $code);
        if (!$code && !$userInfoCong)
            return app('json')->fail('授权失败,参数有误');
        $miniProgramService = MiniProgramService::create();
        if ($code && !$userInfoCong) {
            try {
                $userInfoCong = $miniProgramService->getUserInfo($code);
                Cache::set('eb_api_code_' . $code, $userInfoCong, 86400);
            } catch (Exception $e) {
                return app('json')->fail('获取session_key失败，请检查您的配置！', ['line' => $e->getLine(), 'message' => $e->getMessage()]);
            }
        }

        $data = $this->request->params([
            ['spread_spid', 0],
            ['spread_code', ''],
            ['iv', ''],
            ['encryptedData', ''],
        ]);

        try {
            //解密获取用户信息
            $userInfo = $miniProgramService->encryptor($userInfoCong['session_key'], $data['iv'], $data['encryptedData']);
        } catch (Exception $e) {
            if ($e->getCode() == '-41003') return app('json')->fail('获取会话密匙失败');
            throw $e;
        }
        if (!$userInfo) return app('json')->fail('openid获取失败');
        if (!isset($userInfo['openId'])) $userInfo['openId'] = $userInfoCong['openid'] ?? '';
        $userInfo['unionId'] = $userInfoCong['unionid'] ?? $userInfo['unionId'] ?? '';
        if (!$userInfo['openId']) return app('json')->fail('openid获取失败');

        /** @var WechatUserRepository $make */
        $make = app()->make(WechatUserRepository::class);
        $user = $make->syncRoutineUser($userInfo['openId'], $userInfo);
        if (!$user)
            return app('json')->fail('授权失败');
        /** @var UserRepository $make */
        $userRepository = app()->make(UserRepository::class);
        $user[1] = $userRepository->mainUser($user[1]);
        $code = intval($data['spread_code']['id'] ?? $data['spread_code']);
        //获取是否有扫码进小程序
        if ($code && ($info = app()->make(RoutineQrcodeRepository::class)->getRoutineQrcodeFindType($code))) {
            $data['spread_spid'] = $info['third_id'];
        }
        $userRepository->bindSpread($user[1], intval($data['spread_spid']));
        $tokenInfo = $userRepository->createToken($user[1]);
        $userRepository->loginAfter($user[1]);

        return app('json')->success($userRepository->returnToken($user[1], $tokenInfo));
    }

    public function getCaptcha()
    {
        $codeBuilder = new CaptchaBuilder(null, new PhraseBuilder(4));
        $key = uniqid(microtime(true), true);
        Cache::set('api_captche' . $key, $codeBuilder->getPhrase(), 300);
        $captcha = $codeBuilder->build()->inline();
        return app('json')->success(compact('key', 'captcha'));
    }

    protected function checkCaptcha($uni, string $code): bool
    {
        $cacheName = 'api_captche' . $uni;
        if (!Cache::has($cacheName)) return false;
        $key = Cache::get($cacheName);
        $res = strtolower($key) == strtolower($code);
        if ($res) Cache::delete($cacheName);
        return $res;
    }

    public function verify(UserAuthValidate $validate)
    {
        $data = $this->request->params(['phone', ['type', 'login'], ['captchaType', 'clickWord'], ['captchaVerification', ''], 'token']);
        //二次验证
        try {
            aj_captcha_check_two($data['captchaType'], $data['captchaVerification']);
        } catch (\Throwable $e) {
            return app('json')->fail($e->getMessage());
        }
        $validate->sceneVerify()->check($data);
        $sms_limit_key = 'sms_limit_' . $data['phone'];
        $limit = Cache::get($sms_limit_key) ? Cache::get($sms_limit_key) : 0;
        $sms_limit = systemConfig('sms_limit');
        if ($sms_limit && $limit > $sms_limit) {
            return app('json')->fail('请求太频繁请稍后再试');
        }
        //if(!env('APP_DEBUG', false)){
        try {
            $sms_code = str_pad(random_int(1, 9999), 4, 0, STR_PAD_LEFT);
            $sms_time = systemConfig('sms_time') ? systemConfig('sms_time') : 30;
            SmsService::create()->send($data['phone'], 'VERIFICATION_CODE', ['code' => $sms_code, 'time' => $sms_time]);
        } catch (Exception $e) {
            return app('json')->fail($e->getMessage());
        }
        //}else{
        //    $sms_code =  1234;
        //    $sms_time = 5;
        //}
        $sms_key = app()->make(SmsService::class)->sendSmsKey($data['phone'], $data['type']);
        Cache::set($sms_key, $sms_code, $sms_time * 60);
        Cache::set($sms_limit_key, $limit + 1, 60);
        //'短信发送成功'
        return app('json')->success('短信发送成功');
    }


    public function smsLogin(UserAuthValidate $validate, UserRepository $repository)
    {
        $data = $this->request->params(['phone', 'sms_code', 'spread', 'auth_token', ['user_type', 'h5']]);
        $validate->sceneSmslogin()->check($data);
        $sms_code = app()->make(SmsService::class)->checkSmsCode($data['phone'], $data['sms_code'], 'login');
        if (!$sms_code) return app('json')->fail('验证码不正确');
        $user = $repository->accountByUser($data['phone']);
        if (!$user) $user = $repository->getWhere(['phone' => $data['phone']]);
        $auth = $this->parseAuthToken($data['auth_token']);
        //有auth说明是绑定手机号
        if ($auth && $user && $user['wechat_user_id'] && $user['wechat_user_id'] !== $auth['id'])
            return app('json')->fail('该手机号已被绑定');
        if (!$user) $user = $repository->registr($data['phone'], null, $data['user_type']);
        if ($auth && !$user['wechat_user_id']) {
            $repository->syncBaseAuth($auth, $user);
        }
        $user = $repository->mainUser($user);
        $repository->bindSpread($user, intval($data['spread']));
        $tokenInfo = $repository->createToken($user);
        $repository->loginAfter($user);

        return app('json')->success($repository->returnToken($user, $tokenInfo));
    }

    public function changePassword(ChangePasswordValidate $validate, UserRepository $repository)
    {
        $data = $this->request->params(['phone', 'sms_code', 'pwd']);
        $validate->check($data);
        $user = $repository->accountByUser($data['phone']);
        if (!$user) return app('json')->fail('用户不存在');
        $sms_code = app()->make(SmsService::class)->checkSmsCode($data['phone'], $data['sms_code'], 'change_pwd');
        if (!$sms_code)
            return app('json')->fail('验证码不正确');
        $user->pwd = $repository->encodePassword($data['pwd']);
        $user->save();
        return app('json')->success('修改成功');
    }

    public function spread(UserRepository $userRepository)
    {
        $data = $this->request->params([
            ['spread_spid', 0],
            ['spread_code', null],
        ]);
        if (isset($data['spread_code']['id']) && ($info = app()->make(RoutineQrcodeRepository::class)->getRoutineQrcodeFindType($data['spread_code']['id']))) {
            $data['spread_spid'] = $info['third_id'];
        }
        $userRepository->bindSpread($this->request->userInfo(), intval($data['spread_spid']));
        return app('json')->success();
    }

    /**
     * 注册账号
     * @param UserAuthValidate $validate
     * @param UserRepository $repository
     * @return \think\response\Json
     * @author Qinii
     * @day 5/27/21
     */
    public function register(UserAuthValidate $validate, UserRepository $repository)
    {
        $data = $this->request->params(['phone', 'sms_code', 'spread', 'pwd', 'auth_token', ['user_type', 'h5']]);
        $validate->check($data);
        $sms_code = app()->make(SmsService::class)->checkSmsCode($data['phone'], $data['sms_code'], 'login');
//        if (!$sms_code)
//            return app('json')->fail('验证码不正确');
        $user = $repository->accountByUser($data['phone']);
        if ($user) return app('json')->fail('用户已存在');
        $auth = $this->parseAuthToken($data['auth_token']);
        $user = $repository->registr($data['phone'], $data['pwd'], $data['user_type']);
        if ($auth) {
            $repository->syncBaseAuth($auth, $user);
        }
        $user = $repository->mainUser($user);
        $repository->bindSpread($user, intval($data['spread']));

        $tokenInfo = $repository->createToken($user);
        $repository->loginAfter($user);

        return app('json')->success($repository->returnToken($user, $tokenInfo));
    }

    private function parseAuthToken($authToken)
    {
        $auth = Cache::get('u_try' . $authToken);
        $auth && Cache::delete('u_try' . $authToken);
        return $auth;
    }

    private function authInfo($auth, $createUser = false)
    {
        if (!in_array($auth['type'] ?? '', ['wechat', 'routine', 'apple', 'app_wechat']) || !isset($auth['auth']))
            throw new ValidateException('授权信息类型有误');
        $data = $auth['auth'];
        if ($auth['type'] === 'routine') {
            $code = $data['code'] ?? '';
            $userInfoCong = Cache::get('eb_api_code_' . $code);
            if (!$code && !$userInfoCong)
                throw new ValidateException('授权失败,参数有误');
            $miniProgramService = MiniProgramService::create();
            if ($code && !$userInfoCong) {
                try {
                    $userInfoCong = $miniProgramService->getUserInfo($code);
                    Cache::set('eb_api_code_' . $code, $userInfoCong, 86400);
                } catch (Exception $e) {
                    throw new ValidateException('获取session_key失败，请检查您的配置！' . $e->getMessage());
                }
            }
//            try {
//                //解密获取用户信息
//                $userInfo = $miniProgramService->encryptor($userInfoCong['session_key'], $data['iv'], $data['encryptedData']);
//            } catch (Exception $e) {
//                if ($e->getCode() == '-41003') throw new ValidateException('获取会话密匙失败'.$e->getMessage());
//                throw $e;
//            }
            $userInfo = [];
//            if (!$userInfo) throw new ValidateException('openid获取失败');
            if (!isset($userInfo['openId'])) $userInfo['openId'] = $userInfoCong['openid'] ?? '';
            $userInfo['unionId'] = $userInfoCong['unionid'] ?? $userInfo['unionId'] ?? '';
            if (!$userInfo['openId']) throw new ValidateException('openid获取失败');

            /** @var WechatUserRepository $make */
            $make = app()->make(WechatUserRepository::class);
            $user = $make->syncRoutineUser($userInfo['openId'], $userInfo, $createUser);
            if (!$user)
                throw new ValidateException('授权失败');
            return $user;
        } else if ($auth['type'] === 'wechat') {
            $request = $this->request;
            $oauth = WechatService::create()->getApplication()->oauth;
            $oauth->setRequest(new Request($data, $data, [], [], [], $request->server(), $request->getContent()));
            try {
                $wechatInfo = $oauth->user()->getOriginal();
            } catch (Exception $e) {
                throw new ValidateException('授权失败[001]');
            }
            if (!isset($wechatInfo['nickname'])) {
                throw new ValidateException('授权失败[002]');
            }
            /** @var WechatUserRepository $make */
            $make = app()->make(WechatUserRepository::class);

            $user = $make->syncUser($wechatInfo['openid'], $wechatInfo, false, $createUser);
            if (!$user)
                throw new ValidateException('授权失败[003]');
            return $user;
        } else if ($auth['type'] === 'app_wechat') {
            $oauth = WechatService::create()->getApplication()->oauth;
            try {
                $wechatInfo = $oauth->user(new AccessToken(['access_token' => $data['code'], 'openid' => $data['openid']]))->getOriginal();
            } catch (Exception $e) {
                throw new ValidateException('授权失败[001]' . $e->getMessage());
            }
            $user = app()->make(WechatUserRepository::class)->syncAppUser($wechatInfo['unionid'], $wechatInfo, 'App', $createUser);
            if (!$user)
                throw new ValidateException('授权失败');
            return $user;
        } else if ($auth['type'] === 'apple') {
            $identityToken = $data['userInfo']['identityToken'];
            $tks = explode('.', $identityToken);
            if (count($tks) != 3) {
                throw new ValidateException('Wrong number of segments');
            }
            list($headb64, $bodyb64, $cryptob64) = $tks;
            if (null === ($payload = JWT::jsonDecode(JWT::urlsafeB64Decode($bodyb64)))) {
                throw new ValidateException('Invalid header encoding');
            }
            if ($payload->sub != $data['openId']) {
                throw new ValidateException('授权失败');
            }
            $user = app()->make(WechatUserRepository::class)->syncAppUser($data['openId'], [
                'nickName' => (string)$data['nickname'] ?: '用户' . strtoupper(substr(md5(time()), 0, 12))
            ], 'App', $createUser);
            if (!$user)
                throw new ValidateException('授权失败');
            return $user;
        }
    }

    /**
     * @return \think\response\Json
     * @author Qinii
     * @day 2023/11/9
     */
    public function authLogin()
    {
        $auth = $this->request->param('auth');
        $users = $this->authInfo($auth, !systemConfig('is_phone_login'));
        if (!$users)
            return app('json')->fail('授权失败');
        $authInfo = $users[0];
        $userRepository = app()->make(UserRepository::class);
        $user = $users[1] ?? $userRepository->wechatUserIdBytUser($authInfo['wechat_user_id']);
        $code = (int)($auth['auth']['spread_code']['id'] ?? $auth['auth']['spread_code'] ?? '');
        //获取是否有扫码进小程序
        if ($code && ($info = app()->make(RoutineQrcodeRepository::class)->getRoutineQrcodeFindType($code))) {
            $auth['auth']['spread'] = $info['third_id'];
        }
        if (!$user) {
            $uni = uniqid(true, false) . random_int(1, 100000000);
            $key = 'U' . md5(time() . $uni);
            Cache::set('u_try' . $key, ['id' => $authInfo['wechat_user_id'], 'type' => $authInfo['user_type'], 'spread' => $auth['auth']['spread'] ?? 0], 3600);
            $wechat_phone_switch = systemConfig('wechat_phone_switch');
            return app('json')->status(201, compact('key','wechat_phone_switch'));
        }

        if ($auth['auth']['spread'] ?? 0) {
            $userRepository->bindSpread($user, (int)($auth['auth']['spread']));
        }
        $tokenInfo = $userRepository->createToken($user);
        $userRepository->loginAfter($user);
        return app('json')->status(200, $userRepository->returnToken($user, $tokenInfo));
    }

    /**
     * 查询小程序是否需要绑定手机好 以及绑定手机号的方式
     * @return \think\response\Json
     * @author Qinii
     * @day 2023/11/10'
     */
    public function mpLoginType()
    {
        $code = $this->request->param('code');
        if (!$code)  return app('json')->fail('请获取code参数');
        $spread = $this->request->param('spread',0);
        $data = app()->make(WechatUserRepository::class)->mpLoginType($code,$spread);
        return app('json')->success($data);
    }


    /**
     * App微信登陆
     * @param Request $request
     * @return mixed
     */
    public function appAuth()
    {
        $data = $this->request->params(['userInfo']);

        if (systemConfig('is_phone_login') === '1') {
            return app('json')->fail('请绑定手机号');
        }

        $user = app()->make(WechatUserRepository::class)->syncAppUser($data['userInfo']['unionId'], $data['userInfo']);
        if (!$user)
            return app('json')->fail('授权失败');
        /** @var UserRepository $make */
        $userRepository = app()->make(UserRepository::class);
        $user[1] = $userRepository->mainUser($user[1]);
        $tokenInfo = $userRepository->createToken($user[1]);
        $userRepository->loginAfter($user[1]);

        return app('json')->success($userRepository->returnToken($user[1], $tokenInfo));
    }

    public function getMerCertificate($merId)
    {
        $merId = (int)$merId;
        $data = $this->request->params(['key', 'code']);
        if (!$this->checkCaptcha($data['key'], $data['code']))
            return app('json')->fail('验证码输入有误');
        $certificate = merchantConfig($merId, 'mer_certificate') ?: [];
        if (!count($certificate))
            return app('json')->fail('该商户未上传证书');
        return app('json')->success($certificate);
    }

    public function appleAuth()
    {
        $data = $this->request->params(['openId', 'nickname']);

        if (systemConfig('is_phone_login') === '1') {
            return app('json')->fail('请绑定手机号');
        }

        $user = app()->make(WechatUserRepository::class)->syncAppUser($data['openId'], [
            'nickName' => (string)$data['nickname'] ?: '用户' . strtoupper(substr(md5(time()), 0, 12))
        ], 'apple');
        if (!$user)
            return app('json')->fail('授权失败');
        /** @var UserRepository $make */
        $userRepository = app()->make(UserRepository::class);
        $user[1] = $userRepository->mainUser($user[1]);
        $tokenInfo = $userRepository->createToken($user[1]);
        $userRepository->loginAfter($user[1]);
        return app('json')->success($userRepository->returnToken($user[1], $tokenInfo));
    }

    /**
     * 注销账号
     */
    public function cancel()
    {
        $userRepository = app()->make(UserRepository::class);
        $user = $this->request->userInfo();
        $order = app()->make(StoreOrderRepository::class)->search(['uid' => $user['uid'], 'paid' => 1])->where('StoreOrder.status', 0)->count();
        $refund = app()->make(StoreRefundOrderRepository::class)->search(['uid' => $user['uid'], 'type' => 1])->count();
        $key = $this->request->param('key');
        $flag = false;
        if ($user->now_money > 0 || $user->integral > 0 || $order > 0 || $refund > 0) {
            $flag = true;
            if (!$key) {
                $uni = uniqid(true, false) . random_int(1, 100000000);
                $key = 'L' . md5(time() . $uni);
                Cache::set('u_out' . $user['uid'], $key, 600);
                return app('json')->status(201, '该账号下有未完成业务，注销后不可恢复，您确定继续注销？', compact('key'));
            }
        }
        if ($flag && (!$key || (Cache::get('u_out' . $user['uid']) != $key))) {
            return app('json')->fail('操作超时');
        }
        $userRepository->cancel($user);
        $userRepository->clearToken($user);
        return app('json')->status(200, '注销成功');
    }

    /**
     *  通过小程序组件，获取小程序绑定手机号
     * @return \think\response\Json
     * @author Qinii
     * @day 2023/11/9
     */
    public function mpPhone()
    {
        $code = $this->request->param('code');
        $auth_token = $this->request->param('auth_token');
        $iv = $this->request->param('iv');
        $encryptedData = $this->request->param('encryptedData');
        $miniProgramService = MiniProgramService::create();
        $userInfoCong = Cache::get('eb_api_code_' . $code);
        if (!$code && !$userInfoCong)
            throw new ValidateException('授权失败,参数有误');
        if ($code && !$userInfoCong) {
            try {
                $userInfoCong = $miniProgramService->getUserInfo($code);
                Cache::set('eb_api_code_' . $code, $userInfoCong, 86400);
            } catch (Exception $e) {
                throw new ValidateException('获取session_key失败，请检查您的配置！');
            }
        }
        $session_key = $userInfoCong['session_key'];

        $data = $miniProgramService->encryptor($session_key, $iv, $encryptedData);
        $userRepository = app()->make(UserRepository::class);

        $phone = $data['purePhoneNumber'];
        $user = $userRepository->accountByUser($phone);
//        if($user && $auth_token){
//            return app('json')->fail('用户已存在');
//        }
        $auth = $this->parseAuthToken($auth_token);
        if ($user && $auth) {
            $userRepository->syncBaseAuth($auth, $user);
        } else if (!$user) {
            if (!$auth) {
                return app('json')->fail('操作超时');
            }
            $wechatUser = app()->make(WechatUserRepository::class)->get($auth['id']);
            $user = $userRepository->syncWechatUser($wechatUser, 'routine');
            $user->phone = $phone;
            $user->account = $phone;
            $user->save();
            if ($auth['spread']) {
                $userRepository->bindSpread($user,(int)$auth['spread']);
            }
        }
        $tokenInfo = $userRepository->createToken($user);
        $userRepository->loginAfter($user);
        return app('json')->success($userRepository->returnToken($user, $tokenInfo));
    }

    /**
     * @return mixed
     */
    public function ajcaptcha()
    {
        $captchaType = $this->request->param('captchaType', 'clickWord');
        if (!$captchaType) return app('json')->fail('请输入类型');
        return app('json')->success(aj_captcha_create($captchaType));
    }

    /**
     * 一次验证
     * @return mixed
     */
    public function ajcheck()
    {
        $token = $this->request->param('token', '');
        $pointJson = $this->request->param('pointJson', '');
        $captchaType = $this->request->param('captchaType', 'clickWord');
        try {
            aj_captcha_check_one($captchaType, $token, $pointJson);
            return app('json')->success();
        } catch (\Throwable $e) {
            return app('json')->fail($e->getMessage());
        }
    }

}