// +---------------------------------------------------------------------- namespace app\controller\api; use app\common\repositories\store\DepositRepository; use app\common\repositories\system\CacheRepository; use app\common\repositories\user\DepositRecordDailyRepository; use app\common\repositories\user\LotteryRecordRepository; use app\common\repositories\store\LotteryRepository; use app\common\repositories\store\order\StoreGroupOrderRepository; use app\common\repositories\store\order\StoreOrderRepository; use app\common\repositories\store\order\StoreRefundOrderRepository; use app\common\repositories\system\HuitongRepository; use app\common\repositories\system\notice\SystemNoticeConfigRepository; use app\common\repositories\system\notice\SystemNoticeRepository; use app\common\repositories\user\UserAssetsLogRepository; use app\common\repositories\user\UserAssetsRepository; use app\common\repositories\user\UserGroupDailyRepository; use app\common\repositories\user\UserGroupRepository; use app\common\repositories\user\UserOrderRepository; use app\common\repositories\user\UserRechargeRepository; use app\common\repositories\user\UserRepository; use app\common\repositories\user\UserSignRepository; use app\common\repositories\wechat\RoutineQrcodeRepository; use app\common\repositories\wechat\WechatUserRepository; use app\validate\api\ChangePasswordValidate; use app\validate\api\UserAuthValidate; use crmeb\basic\BaseController; use crmeb\services\MiniProgramService; use crmeb\services\SmsService; use crmeb\services\WechatService; use crmeb\services\WechatTemplateMessageService; use Exception; use Firebase\JWT\JWT; use Gregwar\Captcha\CaptchaBuilder; use Gregwar\Captcha\PhraseBuilder; use Overtrue\Socialite\AccessToken; use Symfony\Component\HttpFoundation\Request; use think\db\exception\DataNotFoundException; use think\db\exception\DbException; use think\db\exception\ModelNotFoundException; use think\exception\ValidateException; use think\facade\Cache; use think\facade\Log; use think\facade\Queue; use crmeb\jobs\SendSmsJob; /** * Class Auth * @package app\controller\api * @author xaboy * @day 2020-05-06 */ class Auth extends BaseController { public function test() { // $data = [ // 'tempId' => '', // 'id' => '', // ]; // Queue::push(SendSmsJob::class,$data); // $status = app()->make(SystemNoticeConfigRepository::class)->getNoticeStatusByConstKey($data['tempId']); // if ($status['notice_sms'] == 1) { // SmsService::sendMessage($data); // } // if ($status['notice_wechat'] == 1) { // app()->make(WechatTemplateMessageService::class)->sendTemplate($data); // } // if ($status['notice_routine'] == 1) { // app()->make(WechatTemplateMessageService::class)->subscribeSendTemplate($data); // } // app(UserAssetsLogRepository::class)->shareAward(1); // app(DepositRecordDailyRepository::class)->runDaily(); event('pay_success_user_recharge', array('order_sn' => 'wxu2024041817195114')); return app('json')->success(); } /** * @param UserRepository $repository * @return mixed * @throws DbException * @author xaboy * @day 2020/6/1 */ public function login(UserRepository $repository) { $account = $this->request->param('account'); $auth_token = $this->request->param('auth_token'); if (Cache::get('api_login_freeze_' . $account)) return app('json')->fail('账号或密码错误次数太多,请稍后在尝试'); if (!$account) return app('json')->fail('请输入账号'); $user = $repository->accountByUser($this->request->param('account')); // if($auth_token && $user){ // return app('json')->fail('用户已存在'); // } if (!$user) $this->loginFailure($account); if (!password_verify($pwd = (string)$this->request->param('password'), $user['pwd'])) $this->loginFailure($account); $auth = $this->parseAuthToken($auth_token); if ($auth && !$user['wechat_user_id']) { $repository->syncBaseAuth($auth, $user); } $user = $repository->mainUser($user); $pid = $this->request->param('spread', 0); $repository->bindSpread($user, intval($pid)); $tokenInfo = $repository->createToken($user); $repository->loginAfter($user); return app('json')->success($repository->returnToken($user, $tokenInfo)); } /** * TODO 登录尝试次数限制 * @param $account * @param int $number * @param int $n * @author Qinii * @day 7/6/21 */ public function loginFailure($account, $number = 5, $n = 3) { $key = 'api_login_failuree_' . $account; $numb = Cache::get($key) ?? 0; $numb++; if ($numb >= $number) { $fail_key = 'api_login_freeze_' . $account; Cache::set($fail_key, 1, 15 * 60); throw new ValidateException('账号或密码错误次数太多,请稍后在尝试'); } else { Cache::set($key, $numb, 5 * 60); $msg = '账号或密码错误'; $_n = $number - $numb; if ($_n <= $n) { $msg .= ',还可尝试' . $_n . '次'; } throw new ValidateException($msg); } } /** * @return mixed * @author xaboy * @day 2020/6/1 */ public function userInfo() { $user = $this->request->userInfo()->hidden(['label_id', 'pwd', 'addres', 'card_id', 'last_time', 'last_ip', 'create_time', 'mark', 'status', 'spread_uid', 'spread_time', 'real_name', 'birthday', 'brokerage_price']); $user->append(['service', 'topService', 'total_collect_product', 'total_collect_store', 'total_coupon', 'total_visit_product', 'total_unread', 'total_recharge', 'lock_integral', 'total_integral']); $data = $user->toArray(); $data['total_consume'] = $user['pay_price']; $data['extension_status'] = systemConfig('extension_status'); if (systemConfig('member_status')) $data['member_icon'] = $this->request->userInfo()->member->brokerage_icon ?? ''; if ($data['is_svip'] == 3) $data['svip_endtime'] = date('Y-m-d H:i:s', strtotime("+100 year")); $day = date('Y-m-d', time()); $key = 'sign_' . $user['uid'] . '_' . $day; $data['sign_status'] = false; if (Cache::get($key)) { $data['sign_status'] = true; } else { $nu = app()->make(UserSignRepository::class)->getSign($user->uid, $day); if ($nu) { $data['sign_status'] = true; Cache::set($key, true, new \DateTime($day . ' 23:59:59')); } } $groupRepository = app(UserGroupRepository::class); $groupData = $groupRepository->getList([], 1, 10); $groupList = array_column($groupData['list']->toArray(), 'group_name', 'group_id'); $data['group_name'] = $groupList[$data['group_id']] ?? ''; // 用户资产 $assets = app(UserAssetsRepository::class)->assets($data['uid']); $data['assets'] = $assets; // $data['service'] = null; // $data['topService'] = null; return app('json')->success($data); } public function noticeList() { [$page, $limit] = $this->getPage(); $where = array('type' => 5); return app('json')->success(app(SystemNoticeRepository::class)->getList($where, $page, $limit)); } public function lotteryData(){ $lotteryList = app(LotteryRepository::class)->getList([]); $rule = app(CacheRepository::class)->getResult("the_lottery_rule2"); return app('json')->success(array('list' => $lotteryList, 'rule' => $rule)); } public function depositData(){ $ret = app(DepositRepository::class)->getList(['status' => 1], 1, 10); return app('json')->success($ret['list']); } /** * notes 兑换配置 * @return mixed * @create 2024/3/19 22:20 * @update 2024/3/19 22:20 * @author zhangkxiang * @editor */ public function exchangeConfig(){ $config = app(UserAssetsRepository::class)->getConfig(); $data = [ 'integralToDiamond' => $config['integralToDiamond'], 'diamondToStock' => $config['diamondToStock'] ]; return app('json')->success($data); } public function assetsLog(){ $uid = 3; // $uid = 3; $page = $this->request->param('page', 1); $limit = $this->request->param('limit', 10); $asset_type = $this->request->param('asset_type', 1); $change_type = $this->request->param('change_type'); $where = array(); $where[] = array('asset_type','=',$asset_type); if($change_type) $where[] = array('type','=',$change_type); $where[] = array('status','in',[UserAssetsLogRepository::STATUS_GET, UserAssetsLogRepository::STATUS_WITHDRAW, UserAssetsLogRepository::STATUS_USE]); return app('json')->success(app(UserAssetsLogRepository::class)->list($uid, $where, $page, $limit)); } public function integralToDiamond(){ $count = $this->request->param('count', 1); $uid = 3; try { app(UserAssetsRepository::class)->consumeToShare($uid, $count); }catch (\Exception $e){ return app('json')->fail($e->getMessage()); } return app('json')->success(); } public function diamondToStock(){ $count = $this->request->param('count', 1); $uid = 1; try { app(UserAssetsRepository::class)->diamondToStock($uid, $count); }catch (\Exception $e){ return app('json')->fail($e->getMessage().$e->getFile().$e->getLine()); } return app('json')->success(); } public function toHuitong(){ $count = $this->request->param('count', 1); $phone = $this->request->param('phoneTo', "13166665555"); $smsCode = $this->request->param('smsCode', 0156); $type = $this->request->param('type', 'intention'); $uid = 3; Log::info("code: {$smsCode}, type: {$type}"); $checkSms = app()->make(SmsService::class)->checkSmsCode('18362705640', $smsCode, $type); if (!$smsCode || !$checkSms) return app('json')->fail('验证码不正确'); try { app(UserAssetsRepository::class)->sendHuitong($uid, $phone, $count); }catch (\Exception $e){ return app('json')->fail($e->getMessage()); } return app('json')->success(); } /** * @param UserRepository $repository * @return mixed * @author xaboy * @day 2020/6/1 */ public function logout(UserRepository $repository) { $repository->clearToken($this->request->token()); return app('json')->success('退出登录'); } /** * @return mixed * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException * @author xaboy * @day 2020-05-11 */ public function auth() { if (systemConfig('is_phone_login') === '1') { return app('json')->fail('请绑定手机号'); } $request = $this->request; $oauth = WechatService::create()->getApplication()->oauth; $oauth->setRequest(new Request($request->get(), $request->post(), [], [], [], $request->server(), $request->getContent())); try { $wechatInfo = $oauth->user()->getOriginal(); } catch (Exception $e) { return app('json')->fail('授权失败[001]', ['message' => $e->getMessage()]); } if (!isset($wechatInfo['nickname'])) { return app('json')->fail('授权失败[002]'); } /** @var WechatUserRepository $make */ $make = app()->make(WechatUserRepository::class); $user = $make->syncUser($wechatInfo['openid'], $wechatInfo); if (!$user) return app('json')->fail('授权失败[003]'); /** @var UserRepository $make */ $userRepository = app()->make(UserRepository::class); $user[1] = $userRepository->mainUser($user[1]); $pid = $this->request->param('spread', 0); $userRepository->bindSpread($user[1], intval($pid)); $tokenInfo = $userRepository->createToken($user[1]); $userRepository->loginAfter($user[1]); return app('json')->success($userRepository->returnToken($user[1], $tokenInfo)); } /** * @return mixed * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException * @author xaboy * @day 2020-05-11 */ public function mpAuth() { list($code, $post_cache_key) = $this->request->params([ 'code', 'cache_key', ], true); if (systemConfig('is_phone_login') === '1') { return app('json')->fail('请绑定手机号'); } $userInfoCong = Cache::get('eb_api_code_' . $code); if (!$code && !$userInfoCong) return app('json')->fail('授权失败,参数有误'); $miniProgramService = MiniProgramService::create(); if ($code && !$userInfoCong) { try { $userInfoCong = $miniProgramService->getUserInfo($code); Cache::set('eb_api_code_' . $code, $userInfoCong, 86400); } catch (Exception $e) { return app('json')->fail('获取session_key失败,请检查您的配置!', ['line' => $e->getLine(), 'message' => $e->getMessage()]); } } $data = $this->request->params([ ['spread_spid', 0], ['spread_code', ''], ['iv', ''], ['encryptedData', ''], ]); try { //解密获取用户信息 $userInfo = $miniProgramService->encryptor($userInfoCong['session_key'], $data['iv'], $data['encryptedData']); } catch (Exception $e) { if ($e->getCode() == '-41003') return app('json')->fail('获取会话密匙失败'); throw $e; } if (!$userInfo) return app('json')->fail('openid获取失败'); if (!isset($userInfo['openId'])) $userInfo['openId'] = $userInfoCong['openid'] ?? ''; $userInfo['unionId'] = $userInfoCong['unionid'] ?? $userInfo['unionId'] ?? ''; if (!$userInfo['openId']) return app('json')->fail('openid获取失败'); /** @var WechatUserRepository $make */ $make = app()->make(WechatUserRepository::class); $user = $make->syncRoutineUser($userInfo['openId'], $userInfo); if (!$user) return app('json')->fail('授权失败'); /** @var UserRepository $make */ $userRepository = app()->make(UserRepository::class); $user[1] = $userRepository->mainUser($user[1]); $code = intval($data['spread_code']['id'] ?? $data['spread_code']); //获取是否有扫码进小程序 if ($code && ($info = app()->make(RoutineQrcodeRepository::class)->getRoutineQrcodeFindType($code))) { $data['spread_spid'] = $info['third_id']; } $userRepository->bindSpread($user[1], intval($data['spread_spid'])); $tokenInfo = $userRepository->createToken($user[1]); $userRepository->loginAfter($user[1]); return app('json')->success($userRepository->returnToken($user[1], $tokenInfo)); } public function getCaptcha() { $codeBuilder = new CaptchaBuilder(null, new PhraseBuilder(4)); $key = uniqid(microtime(true), true); Cache::set('api_captche' . $key, $codeBuilder->getPhrase(), 300); $captcha = $codeBuilder->build()->inline(); return app('json')->success(compact('key', 'captcha')); } protected function checkCaptcha($uni, string $code): bool { $cacheName = 'api_captche' . $uni; if (!Cache::has($cacheName)) return false; $key = Cache::get($cacheName); $res = strtolower($key) == strtolower($code); if ($res) Cache::delete($cacheName); return $res; } public function verify(UserAuthValidate $validate) { $data = $this->request->params(['phone', ['type', 'login'], ['captchaType', ''], ['captchaVerification', ''], 'token']); //二次验证 try { aj_captcha_check_two($data['captchaType'], $data['captchaVerification']); } catch (\Throwable $e) { return app('json')->fail($e->getMessage()); } $validate->sceneVerify()->check($data); $sms_limit_key = 'sms_limit_' . $data['phone']; $limit = Cache::get($sms_limit_key) ? Cache::get($sms_limit_key) : 0; $sms_limit = systemConfig('sms_limit'); if ($sms_limit && $limit > $sms_limit) { return app('json')->fail('请求太频繁请稍后再试'); } // if(!env('APP_DEBUG', false)){ try { $sms_code = str_pad(random_int(1, 9999), 4, 0, STR_PAD_LEFT); $sms_time = systemConfig('sms_time') ? systemConfig('sms_time') : 30; SmsService::create()->send($data['phone'], 'VERIFICATION_CODE', ['code' => $sms_code, 'time' => $sms_time]); } catch (Exception $e) { return app('json')->fail($e->getMessage()); } // }else{ // $sms_code = 1234; // $sms_time = 5; // } $sms_key = app()->make(SmsService::class)->sendSmsKey($data['phone'], $data['type']); Cache::set($sms_key, $sms_code, $sms_time * 60); Cache::set($sms_limit_key, $limit + 1, 60); //'短信发送成功' return app('json')->success('短信发送成功'); } public function smsLogin(UserAuthValidate $validate, UserRepository $repository) { $data = $this->request->params(['phone', 'sms_code', 'spread', 'auth_token', ['user_type', 'h5']]); $validate->sceneSmslogin()->check($data); $sms_code = app()->make(SmsService::class)->checkSmsCode($data['phone'], $data['sms_code'], 'login'); if (!$sms_code) return app('json')->fail('验证码不正确'); $user = $repository->accountByUser($data['phone']); if (!$user) $user = $repository->getWhere(['phone' => $data['phone']]); $auth = $this->parseAuthToken($data['auth_token']); //有auth说明是绑定手机号 if ($auth && $user && $user['wechat_user_id'] && $user['wechat_user_id'] !== $auth['id']) return app('json')->fail('该手机号已被绑定'); if (!$user) $user = $repository->registr($data['phone'], null, $data['user_type']); if ($auth && !$user['wechat_user_id']) { $repository->syncBaseAuth($auth, $user); } $user = $repository->mainUser($user); $repository->bindSpread($user, intval($data['spread'])); $tokenInfo = $repository->createToken($user); $repository->loginAfter($user); return app('json')->success($repository->returnToken($user, $tokenInfo)); } public function changePassword(ChangePasswordValidate $validate, UserRepository $repository) { $data = $this->request->params(['phone', 'sms_code', 'pwd']); $validate->check($data); $user = $repository->accountByUser($data['phone']); if (!$user) return app('json')->fail('用户不存在'); $sms_code = app()->make(SmsService::class)->checkSmsCode($data['phone'], $data['sms_code'], 'change_pwd'); if (!$sms_code) return app('json')->fail('验证码不正确'); $user->pwd = $repository->encodePassword($data['pwd']); $user->save(); return app('json')->success('修改成功'); } public function spread(UserRepository $userRepository) { $data = $this->request->params([ ['spread_spid', 0], ['spread_code', null], ]); if (isset($data['spread_code']['id']) && ($info = app()->make(RoutineQrcodeRepository::class)->getRoutineQrcodeFindType($data['spread_code']['id']))) { $data['spread_spid'] = $info['third_id']; } $userRepository->bindSpread($this->request->userInfo(), intval($data['spread_spid'])); return app('json')->success(); } /** * TODO 注册账号 * @param UserAuthValidate $validate * @param UserRepository $repository * @return \think\response\Json * @author Qinii * @day 5/27/21 */ public function register(UserAuthValidate $validate, UserRepository $repository) { $data = $this->request->params(['phone', 'sms_code', 'spread', 'pwd', 'auth_token', ['user_type', 'h5']]); $validate->check($data); $sms_code = app()->make(SmsService::class)->checkSmsCode($data['phone'], $data['sms_code'], 'login'); if (!$sms_code) return app('json')->fail('验证码不正确'); $user = $repository->accountByUser($data['phone']); if ($user) return app('json')->fail('用户已存在'); $auth = $this->parseAuthToken($data['auth_token']); $user = $repository->registr($data['phone'], $data['pwd'], $data['user_type']); if ($auth) { $repository->syncBaseAuth($auth, $user); } $user = $repository->mainUser($user); $repository->bindSpread($user, intval($data['spread'])); $tokenInfo = $repository->createToken($user); $repository->loginAfter($user); return app('json')->success($repository->returnToken($user, $tokenInfo)); } private function parseAuthToken($authToken) { $auth = Cache::get('u_try' . $authToken); $auth && Cache::delete('u_try' . $authToken); return $auth; } private function authInfo($auth, $createUser = false) { if (!in_array($auth['type'] ?? '', ['wechat', 'routine', 'apple', 'app_wechat']) || !isset($auth['auth'])) throw new ValidateException('授权信息类型有误'); $data = $auth['auth']; if ($auth['type'] === 'routine') { $code = $data['code'] ?? ''; $userInfoCong = Cache::get('eb_api_code_' . $code); if (!$code && !$userInfoCong) throw new ValidateException('授权失败,参数有误'); $miniProgramService = MiniProgramService::create(); if ($code && !$userInfoCong) { try { $userInfoCong = $miniProgramService->getUserInfo($code); Cache::set('eb_api_code_' . $code, $userInfoCong, 86400); } catch (Exception $e) { throw new ValidateException('获取session_key失败,请检查您的配置!' . $e->getMessage()); } } // try { // //解密获取用户信息 // $userInfo = $miniProgramService->encryptor($userInfoCong['session_key'], $data['iv'], $data['encryptedData']); // } catch (Exception $e) { // if ($e->getCode() == '-41003') throw new ValidateException('获取会话密匙失败'.$e->getMessage()); // throw $e; // } $userInfo = []; // if (!$userInfo) throw new ValidateException('openid获取失败'); if (!isset($userInfo['openId'])) $userInfo['openId'] = $userInfoCong['openid'] ?? ''; $userInfo['unionId'] = $userInfoCong['unionid'] ?? $userInfo['unionId'] ?? ''; if (!$userInfo['openId']) throw new ValidateException('openid获取失败'); /** @var WechatUserRepository $make */ $make = app()->make(WechatUserRepository::class); $user = $make->syncRoutineUser($userInfo['openId'], $userInfo, $createUser); if (!$user) throw new ValidateException('授权失败'); return $user; } else if ($auth['type'] === 'wechat') { $request = $this->request; $oauth = WechatService::create()->getApplication()->oauth; $oauth->setRequest(new Request($data, $data, [], [], [], $request->server(), $request->getContent())); try { $wechatInfo = $oauth->user()->getOriginal(); } catch (Exception $e) { throw new ValidateException('授权失败[001]'); } if (!isset($wechatInfo['nickname'])) { throw new ValidateException('授权失败[002]'); } /** @var WechatUserRepository $make */ $make = app()->make(WechatUserRepository::class); $user = $make->syncUser($wechatInfo['openid'], $wechatInfo, false, $createUser); if (!$user) throw new ValidateException('授权失败[003]'); return $user; } else if ($auth['type'] === 'app_wechat') { $oauth = WechatService::create()->getApplication()->oauth; try { $wechatInfo = $oauth->user(new AccessToken(['access_token' => $data['code'], 'openid' => $data['openid']]))->getOriginal(); } catch (Exception $e) { throw new ValidateException('授权失败[001]' . $e->getMessage()); } $user = app()->make(WechatUserRepository::class)->syncAppUser($wechatInfo['unionid'], $wechatInfo, 'App', $createUser); if (!$user) throw new ValidateException('授权失败'); return $user; } else if ($auth['type'] === 'apple') { $identityToken = $data['userInfo']['identityToken']; $tks = explode('.', $identityToken); if (count($tks) != 3) { throw new ValidateException('Wrong number of segments'); } list($headb64, $bodyb64, $cryptob64) = $tks; if (null === ($payload = JWT::jsonDecode(JWT::urlsafeB64Decode($bodyb64)))) { throw new ValidateException('Invalid header encoding'); } if ($payload->sub != $data['openId']) { throw new ValidateException('授权失败'); } $user = app()->make(WechatUserRepository::class)->syncAppUser($data['openId'], [ 'nickName' => (string)$data['nickname'] ?: '用户' . strtoupper(substr(md5(time()), 0, 12)) ], 'App', $createUser); if (!$user) throw new ValidateException('授权失败'); return $user; } } /** * @return \think\response\Json * @author Qinii * @day 2023/11/9 */ public function authLogin() { $auth = $this->request->param('auth'); $users = $this->authInfo($auth, systemConfig('is_phone_login') !== '1'); if (!$users) return app('json')->fail('授权失败'); $authInfo = $users[0]; $userRepository = app()->make(UserRepository::class); $user = $users[1] ?? $userRepository->wechatUserIdBytUser($authInfo['wechat_user_id']); $code = (int)($auth['auth']['spread_code']['id'] ?? $auth['auth']['spread_code'] ?? ''); //获取是否有扫码进小程序 if ($code && ($info = app()->make(RoutineQrcodeRepository::class)->getRoutineQrcodeFindType($code))) { $auth['auth']['spread'] = $info['third_id']; } if (!$user) { $uni = uniqid(true, false) . random_int(1, 100000000); $key = 'U' . md5(time() . $uni); Cache::set('u_try' . $key, ['id' => $authInfo['wechat_user_id'], 'type' => $authInfo['user_type'], 'spread' => $auth['auth']['spread'] ?? 0], 3600); $wechat_phone_switch = systemConfig('wechat_phone_switch'); return app('json')->status(201, compact('key','wechat_phone_switch')); } if ($auth['auth']['spread'] ?? 0) { $userRepository->bindSpread($user, (int)($auth['auth']['spread'])); } $tokenInfo = $userRepository->createToken($user); $userRepository->loginAfter($user); return app('json')->status(200, $userRepository->returnToken($user, $tokenInfo)); } /** * 查询小程序是否需要绑定手机好 以及绑定手机号的方式 * @return \think\response\Json * @author Qinii * @day 2023/11/10' */ public function mpLoginType() { $code = $this->request->param('code'); if (!$code) return app('json')->fail('请获取code参数'); $spread = $this->request->param('spread',0); $data = app()->make(WechatUserRepository::class)->mpLoginType($code,$spread); return app('json')->success($data); } /** * App微信登陆 * @param Request $request * @return mixed */ public function appAuth() { $data = $this->request->params(['userInfo']); if (systemConfig('is_phone_login') === '1') { return app('json')->fail('请绑定手机号'); } $user = app()->make(WechatUserRepository::class)->syncAppUser($data['userInfo']['unionId'], $data['userInfo']); if (!$user) return app('json')->fail('授权失败'); /** @var UserRepository $make */ $userRepository = app()->make(UserRepository::class); $user[1] = $userRepository->mainUser($user[1]); $tokenInfo = $userRepository->createToken($user[1]); $userRepository->loginAfter($user[1]); return app('json')->success($userRepository->returnToken($user[1], $tokenInfo)); } public function getMerCertificate($merId) { $merId = (int)$merId; $data = $this->request->params(['key', 'code']); if (!$this->checkCaptcha($data['key'], $data['code'])) return app('json')->fail('验证码输入有误'); $certificate = merchantConfig($merId, 'mer_certificate') ?: []; if (!count($certificate)) return app('json')->fail('该商户未上传证书'); return app('json')->success($certificate); } public function appleAuth() { $data = $this->request->params(['openId', 'nickname']); if (systemConfig('is_phone_login') === '1') { return app('json')->fail('请绑定手机号'); } $user = app()->make(WechatUserRepository::class)->syncAppUser($data['openId'], [ 'nickName' => (string)$data['nickname'] ?: '用户' . strtoupper(substr(md5(time()), 0, 12)) ], 'apple'); if (!$user) return app('json')->fail('授权失败'); /** @var UserRepository $make */ $userRepository = app()->make(UserRepository::class); $user[1] = $userRepository->mainUser($user[1]); $tokenInfo = $userRepository->createToken($user[1]); $userRepository->loginAfter($user[1]); return app('json')->success($userRepository->returnToken($user[1], $tokenInfo)); } /** * 注销账号 */ public function cancel() { $userRepository = app()->make(UserRepository::class); $user = $this->request->userInfo(); $order = app()->make(StoreOrderRepository::class)->search(['uid' => $user['uid'], 'paid' => 1])->where('StoreOrder.status', 0)->count(); $refund = app()->make(StoreRefundOrderRepository::class)->search(['uid' => $user['uid'], 'type' => 1])->count(); $key = $this->request->param('key'); $flag = false; if ($user->now_money > 0 || $user->integral > 0 || $order > 0 || $refund > 0) { $flag = true; if (!$key) { $uni = uniqid(true, false) . random_int(1, 100000000); $key = 'L' . md5(time() . $uni); Cache::set('u_out' . $user['uid'], $key, 600); return app('json')->status(201, '该账号下有未完成业务,注销后不可恢复,您确定继续注销?', compact('key')); } } if ($flag && (!$key || (Cache::get('u_out' . $user['uid']) != $key))) { return app('json')->fail('操作超时'); } $userRepository->cancel($user); $userRepository->clearToken($user); return app('json')->status(200, '注销成功'); } /** * 通过小程序组件,获取小程序绑定手机号 * @return \think\response\Json * @author Qinii * @day 2023/11/9 */ public function mpPhone() { $code = $this->request->param('code'); $auth_token = $this->request->param('auth_token'); $iv = $this->request->param('iv'); $encryptedData = $this->request->param('encryptedData'); $miniProgramService = MiniProgramService::create(); $userInfoCong = Cache::get('eb_api_code_' . $code); if (!$code && !$userInfoCong) throw new ValidateException('授权失败,参数有误'); if ($code && !$userInfoCong) { try { $userInfoCong = $miniProgramService->getUserInfo($code); Cache::set('eb_api_code_' . $code, $userInfoCong, 86400); } catch (Exception $e) { throw new ValidateException('获取session_key失败,请检查您的配置!'); } } $session_key = $userInfoCong['session_key']; $data = $miniProgramService->encryptor($session_key, $iv, $encryptedData); $userRepository = app()->make(UserRepository::class); $phone = $data['purePhoneNumber']; $user = $userRepository->accountByUser($phone); // if($user && $auth_token){ // return app('json')->fail('用户已存在'); // } $auth = $this->parseAuthToken($auth_token); if ($user && $auth) { $userRepository->syncBaseAuth($auth, $user); } else if (!$user) { if (!$auth) { return app('json')->fail('操作超时'); } $wechatUser = app()->make(WechatUserRepository::class)->get($auth['id']); $user = $userRepository->syncWechatUser($wechatUser, 'routine'); $user->phone = $phone; $user->account = $phone; $user->save(); if ($auth['spread']) { $userRepository->bindSpread($user,(int)$auth['spread']); } } $tokenInfo = $userRepository->createToken($user); $userRepository->loginAfter($user); return app('json')->success($userRepository->returnToken($user, $tokenInfo)); } /** * @return mixed */ public function ajcaptcha() { $captchaType = $this->request->get('captchaType'); if (!$captchaType) return app('json')->fail('请输入类型'); return app('json')->success(aj_captcha_create($captchaType)); } /** * 一次验证 * @return mixed */ public function ajcheck() { $token = $this->request->param('token', ''); $pointJson = $this->request->param('pointJson', ''); $captchaType = $this->request->param('captchaType', ''); try { aj_captcha_check_one($captchaType, $token, $pointJson); return app('json')->success(); } catch (\Throwable $e) { return app('json')->fail(400336); } } }