You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
116 lines
3.8 KiB
116 lines
3.8 KiB
<?php
|
|
// +----------------------------------------------------------------------
|
|
// | CRMEB [ CRMEB赋能开发者,助力企业发展 ]
|
|
// +----------------------------------------------------------------------
|
|
// | Copyright (c) 2016~2020 https://www.crmeb.com All rights reserved.
|
|
// +----------------------------------------------------------------------
|
|
// | Licensed CRMEB并不是自由软件,未经许可不能去掉CRMEB相关版权
|
|
// +----------------------------------------------------------------------
|
|
// | Author: CRMEB Team <admin@crmeb.com>
|
|
// +----------------------------------------------------------------------
|
|
declare (strict_types=1);
|
|
|
|
namespace app\services\user;
|
|
|
|
use app\services\BaseServices;
|
|
use app\dao\user\UserAuthDao;
|
|
use app\services\work\WorkClientServices;
|
|
use crmeb\exceptions\AuthException;
|
|
use crmeb\services\CacheService;
|
|
use crmeb\services\wechat\config\WorkConfig;
|
|
use crmeb\utils\JwtAuth;
|
|
|
|
/**
|
|
*
|
|
* Class UserAuthServices
|
|
* @package app\services\user
|
|
* @mixin UserAuthDao
|
|
*/
|
|
class UserAuthServices extends BaseServices
|
|
{
|
|
|
|
/**
|
|
* UserAuthServices constructor.
|
|
* @param UserAuthDao $dao
|
|
*/
|
|
public function __construct(UserAuthDao $dao)
|
|
{
|
|
$this->dao = $dao;
|
|
}
|
|
|
|
/**
|
|
* 获取授权信息
|
|
* @param $token
|
|
* @return array
|
|
* @throws \Psr\SimpleCache\InvalidArgumentException
|
|
*/
|
|
public function parseToken($token): array
|
|
{
|
|
$md5Token = is_null($token) ? '' : md5($token);
|
|
|
|
if ($token === 'undefined') {
|
|
throw new AuthException('请登录', 410000);
|
|
}
|
|
if (!$token || !$tokenData = CacheService::getTokenBucket($md5Token))
|
|
throw new AuthException('请登录', 410000);
|
|
|
|
if (!is_array($tokenData) || empty($tokenData) || !isset($tokenData['uid'])) {
|
|
throw new AuthException('请登录', 410000);
|
|
}
|
|
|
|
/** @var JwtAuth $jwtAuth */
|
|
$jwtAuth = app()->make(JwtAuth::class);
|
|
//设置解析token
|
|
[$id, $type, $auth] = $jwtAuth->parseToken($token);
|
|
try {
|
|
$jwtAuth->verifyToken();
|
|
} catch (\Throwable $e) {
|
|
if (!request()->isCli()) CacheService::clearToken($md5Token);
|
|
throw new AuthException('登录已过期,请重新登录', 410001);
|
|
}
|
|
|
|
/** @var UserServices $userService */
|
|
$userService = app()->make(UserServices::class);
|
|
$user = $userService->getUserCacheInfo($id);
|
|
if (!$user) throw new AuthException('用户不存在,请重新登陆', 410001);
|
|
if (!$user['status'])
|
|
throw new AuthException('您已被禁止登录,请联系管理员', 410002);
|
|
|
|
if (!$user || $user->uid != $tokenData['uid']) {
|
|
if (!request()->isCli()) CacheService::clearToken($md5Token);
|
|
throw new AuthException('登录状态有误,请重新登录', 410002);
|
|
}
|
|
|
|
//有密码在检测
|
|
if ($user['pwd'] != md5('123456') && $auth !== md5($user['pwd'])) {
|
|
throw new AuthException('登录已过期,请重新登录', 410001);
|
|
}
|
|
|
|
$tokenData['type'] = $type;
|
|
return compact('user', 'tokenData');
|
|
}
|
|
|
|
/**
|
|
* 获取企业客户
|
|
* @param string $userid
|
|
* @return array
|
|
*/
|
|
public function parseClient(string $userid)
|
|
{
|
|
/** @var WorkConfig $workConfig */
|
|
$workConfig = app()->make(WorkConfig::class);
|
|
$corpId = $workConfig->get('corpId');
|
|
if (!$corpId) {
|
|
throw new AuthException('请先配置企业微信');
|
|
}
|
|
/** @var WorkClientServices $service */
|
|
$service = app()->make(WorkClientServices::class);
|
|
$clientInfo = $service->get(['corp_id' => $corpId, 'external_userid' => $userid]);
|
|
if (!$clientInfo) {
|
|
throw new AuthException('客户信息不存在');
|
|
}
|
|
|
|
return $clientInfo->toArray();
|
|
}
|
|
|
|
}
|
|
|