You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
183 lines
6.5 KiB
183 lines
6.5 KiB
2 months ago
|
<?php
|
||
|
// +----------------------------------------------------------------------
|
||
|
// | CRMEB [ CRMEB赋能开发者,助力企业发展 ]
|
||
|
// +----------------------------------------------------------------------
|
||
|
// | Copyright (c) 2016~2020 https://www.crmeb.com All rights reserved.
|
||
|
// +----------------------------------------------------------------------
|
||
|
// | Licensed CRMEB并不是自由软件,未经许可不能去掉CRMEB相关版权
|
||
|
// +----------------------------------------------------------------------
|
||
|
// | Author: CRMEB Team <admin@crmeb.com>
|
||
|
// +----------------------------------------------------------------------
|
||
|
|
||
|
namespace app\services\system;
|
||
|
|
||
|
|
||
|
use app\Request;
|
||
|
use app\services\BaseServices;
|
||
|
use app\dao\system\SystemRoleDao;
|
||
|
use app\services\store\SystemStoreStaffServices;
|
||
|
use crmeb\exceptions\AuthException;
|
||
|
use crmeb\utils\ApiErrorCode;
|
||
|
use crmeb\services\CacheService;
|
||
|
|
||
|
|
||
|
/**
|
||
|
* Class SystemRoleServices
|
||
|
* @package app\services\system
|
||
|
* @mixin SystemRoleDao
|
||
|
*/
|
||
|
class SystemRoleServices extends BaseServices
|
||
|
{
|
||
|
|
||
|
/**
|
||
|
* 当前管理员权限缓存前缀
|
||
|
*/
|
||
|
const ADMIN_RULES_LEVEL = 'Admin_rules_level_';
|
||
|
|
||
|
/**
|
||
|
* SystemRoleServices constructor.
|
||
|
* @param SystemRoleDao $dao
|
||
|
*/
|
||
|
public function __construct(SystemRoleDao $dao)
|
||
|
{
|
||
|
$this->dao = $dao;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 获取权限
|
||
|
* @return mixed
|
||
|
*/
|
||
|
public function getRoleArray(array $where = [], string $field = '', string $key = '')
|
||
|
{
|
||
|
return $this->dao->getRoule($where, $field, $key);
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 获取表单所需的权限名称列表
|
||
|
* @param int $level
|
||
|
* @param int $type
|
||
|
* @param int $relation_id
|
||
|
* @return array
|
||
|
*/
|
||
|
public function getRoleFormSelect(int $level, int $type = 0, int $relation_id = 0)
|
||
|
{
|
||
|
$list = $this->getRoleArray(['level' => $level, 'type' => $type, 'relation_id' => $relation_id, 'status' => 1]);
|
||
|
$options = [];
|
||
|
foreach ($list as $id => $roleName) {
|
||
|
$options[] = ['label' => $roleName, 'value' => $id];
|
||
|
}
|
||
|
return $options;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 身份管理列表
|
||
|
* @param array $where
|
||
|
* @return array
|
||
|
*/
|
||
|
public function getRoleList(array $where)
|
||
|
{
|
||
|
[$page, $limit] = $this->getPageValue();
|
||
|
$list = $this->dao->getRouleList($where, $page, $limit);
|
||
|
$count = $this->dao->count($where);
|
||
|
/** @var SystemMenusServices $service */
|
||
|
$service = app()->make(SystemMenusServices::class);
|
||
|
foreach ($list as &$item) {
|
||
|
$item['rules'] = implode(',', array_merge($service->column(['id' => $item['rules']], 'menu_name', 'id')));
|
||
|
}
|
||
|
return compact('count', 'list');
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 后台验证权限
|
||
|
* @param Request $request
|
||
|
*/
|
||
|
public function verifiAuth(Request $request)
|
||
|
{
|
||
|
$rule = str_replace('adminapi/', '', trim(strtolower($request->rule()->getRule())));
|
||
|
if (in_array($rule, ['setting/admin/logout', 'menuslist'])) {
|
||
|
return true;
|
||
|
}
|
||
|
$method = trim(strtolower($request->method()));
|
||
|
$auth = $this->getAllRoles(2);
|
||
|
//验证访问接口是否存在
|
||
|
if (!in_array($method . '@@' . $rule, array_map(function ($item) {
|
||
|
return trim(strtolower($item['methods'])). '@@'. trim(strtolower(str_replace(' ', '', $item['api_url'])));
|
||
|
}, $auth))) {
|
||
|
return true;
|
||
|
}
|
||
|
$auth = $this->getRolesByAuth($request->adminInfo()['roles'], 2);
|
||
|
//验证访问接口是否有权限
|
||
|
if ($auth && empty(array_filter($auth, function ($item) use ($rule, $method) {
|
||
|
if (trim(strtolower($item['api_url'])) === $rule && $method === trim(strtolower($item['methods'])))
|
||
|
return true;
|
||
|
}))) {
|
||
|
throw new AuthException(ApiErrorCode::ERR_AUTH);
|
||
|
}
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 获取所有权限
|
||
|
* @param int $auth_type
|
||
|
* @param int $type
|
||
|
* @param string $cachePrefix
|
||
|
* @return array|bool|mixed|null
|
||
|
*/
|
||
|
public function getAllRoles(int $auth_type = 1, int $type = 1, string $cachePrefix = self::ADMIN_RULES_LEVEL)
|
||
|
{
|
||
|
$cacheName = md5($cachePrefix . '_' . $auth_type . '_' . $type . '_ALl' );
|
||
|
return CacheService::redisHandler('system_menus')->remember($cacheName, function () use ($auth_type, $type) {
|
||
|
/** @var SystemMenusServices $menusService */
|
||
|
$menusService = app()->make(SystemMenusServices::class);
|
||
|
return $menusService->getColumn([['auth_type', '=', $auth_type], ['type', '=', $type]], 'api_url,methods');
|
||
|
});
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 获取指定权限
|
||
|
* @param array $roles
|
||
|
* @param int $auth_type
|
||
|
* @param int $type
|
||
|
* @param string $cachePrefix
|
||
|
* @return array|bool|mixed|null
|
||
|
*/
|
||
|
public function getRolesByAuth(array $roles, int $auth_type = 1, int $type = 1, string $cachePrefix = self::ADMIN_RULES_LEVEL)
|
||
|
{
|
||
|
if (empty($roles)) return [];
|
||
|
$cacheName = md5($cachePrefix . '_' . $auth_type . '_' . $type . '_' . implode('_', $roles));
|
||
|
return CacheService::redisHandler('system_menus')->remember($cacheName, function () use ($roles, $auth_type, $type) {
|
||
|
/** @var SystemMenusServices $menusService */
|
||
|
$menusService = app()->make(SystemMenusServices::class);
|
||
|
return $menusService->getColumn([['id', 'IN', $this->getRoleIds($roles, $type == 3 ? 'cashier_rules' : 'rules')], ['auth_type', '=', $auth_type], ['type', '=', $type]], 'api_url,methods');
|
||
|
});
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 获取权限id
|
||
|
* @param array $roles
|
||
|
* @return array
|
||
|
*/
|
||
|
public function getRoleIds(array $roles, string $field = 'rules', string $key = 'id')
|
||
|
{
|
||
|
$rules = $this->dao->getColumn([['id', 'IN', $roles], ['status', '=', '1']], $field, $key);
|
||
|
return $rules ? array_unique(explode(',', implode(',', $rules))) : [];
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* 门店角色状态更改改变角色下店员、管理员状态
|
||
|
* @param int $store_id
|
||
|
* @param int $role_id
|
||
|
* @param $status
|
||
|
* @return mixed
|
||
|
*/
|
||
|
public function setStaffStatus(int $store_id, int $role_id, $status)
|
||
|
{
|
||
|
/** @var SystemStoreStaffServices $storeStaffServices */
|
||
|
$storeStaffServices = app()->make(SystemStoreStaffServices::class);
|
||
|
if ($status) {
|
||
|
return $storeStaffServices->update(['store_id' => $store_id, 'roles' => $role_id, 'is_del' => 0, 'status' => 0], ['status' => 1]);
|
||
|
} else {
|
||
|
return $storeStaffServices->update(['store_id' => $store_id, 'roles' => $role_id, 'status' => 1], ['status' => 0]);
|
||
|
}
|
||
|
}
|
||
|
}
|