2021-01-30 20:59:12 +08:00
|
|
|
|
<?php
|
2021-07-26 17:41:59 +08:00
|
|
|
|
/**
|
|
|
|
|
|
* @copyright Copyright (c) 2021 勾股工作室
|
2021-11-24 17:17:29 +08:00
|
|
|
|
* @license https://opensource.org/licenses/Apache-2.0
|
2021-07-26 17:41:59 +08:00
|
|
|
|
* @link https://www.gougucms.com
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
2021-01-30 20:59:12 +08:00
|
|
|
|
declare (strict_types = 1);
|
|
|
|
|
|
|
|
|
|
|
|
namespace app\admin\controller;
|
|
|
|
|
|
|
|
|
|
|
|
use app\admin\BaseController;
|
|
|
|
|
|
use app\admin\model\Admin as AdminList;
|
|
|
|
|
|
use app\admin\validate\AdminCheck;
|
|
|
|
|
|
use avatars\MDAvatars;
|
|
|
|
|
|
use think\exception\ValidateException;
|
|
|
|
|
|
use think\facade\Db;
|
|
|
|
|
|
use think\facade\View;
|
|
|
|
|
|
|
|
|
|
|
|
class Admin extends BaseController
|
|
|
|
|
|
{
|
|
|
|
|
|
public function index()
|
|
|
|
|
|
{
|
2021-06-15 01:09:01 +08:00
|
|
|
|
if (request()->isAjax()) {
|
|
|
|
|
|
$param = get_params();
|
|
|
|
|
|
$where = array();
|
|
|
|
|
|
if (!empty($param['keywords'])) {
|
|
|
|
|
|
$where[] = ['id|username|nickname|desc|mobile', 'like', '%' . $param['keywords'] . '%'];
|
|
|
|
|
|
}
|
2021-08-31 23:40:54 +08:00
|
|
|
|
$where[] = ['status','>=',0];
|
2022-02-16 15:39:29 +08:00
|
|
|
|
$rows = empty($param['limit']) ? get_config('app . page_size') : $param['limit'];
|
2021-06-15 01:09:01 +08:00
|
|
|
|
$admin = AdminList::where($where)
|
|
|
|
|
|
->order('create_time asc')
|
|
|
|
|
|
->paginate($rows, false, ['query' => $param])
|
|
|
|
|
|
->each(function ($item, $key) {
|
|
|
|
|
|
$groupId = Db::name('AdminGroupAccess')->where(['uid' => $item->id])->column('group_id');
|
|
|
|
|
|
$groupName = Db::name('AdminGroup')->where('id', 'in', $groupId)->column('title');
|
|
|
|
|
|
$item->groupName = implode(',', $groupName);
|
|
|
|
|
|
$item->last_login_time = empty($item->last_login_time) ? '-' : date('Y-m-d H:i', $item->last_login_time);
|
|
|
|
|
|
});
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return table_assign(0, '', $admin);
|
2021-07-26 17:41:59 +08:00
|
|
|
|
} else {
|
2021-06-15 01:09:01 +08:00
|
|
|
|
return view();
|
2021-07-26 17:41:59 +08:00
|
|
|
|
}
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//添加
|
|
|
|
|
|
public function add()
|
2022-02-16 15:39:29 +08:00
|
|
|
|
{
|
|
|
|
|
|
if (request()->isAjax()) {
|
|
|
|
|
|
$param = get_params();
|
2021-01-30 20:59:12 +08:00
|
|
|
|
if (!empty($param['id']) && $param['id'] > 0) {
|
|
|
|
|
|
try {
|
|
|
|
|
|
validate(AdminCheck::class)->scene('edit')->check($param);
|
|
|
|
|
|
} catch (ValidateException $e) {
|
|
|
|
|
|
// 验证失败 输出错误信息
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(1, $e->getError());
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
2022-06-14 14:57:03 +08:00
|
|
|
|
if (!empty($param['edit_pwd'])) {
|
2021-01-30 20:59:12 +08:00
|
|
|
|
//重置密码
|
2022-06-14 14:57:03 +08:00
|
|
|
|
if (empty($param['edit_pwd_confirm']) or $param['edit_pwd_confirm'] !== $param['edit_pwd']) {
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(1, '两次密码不一致');
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
$param['salt'] = set_salt(20);
|
2022-06-14 14:57:03 +08:00
|
|
|
|
$param['pwd'] = set_password($param['edit_pwd'], $param['salt']);
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// 启动事务
|
|
|
|
|
|
Db::startTrans();
|
|
|
|
|
|
try {
|
|
|
|
|
|
Db::name('Admin')->where(['id' => $param['id']])->strict(false)->field(true)->update($param);
|
|
|
|
|
|
Db::name('AdminGroupAccess')->where(['uid' => $param['id']])->delete();
|
|
|
|
|
|
foreach ($param['group_id'] as $k => $v) {
|
|
|
|
|
|
//为了系统安全,只有系统所有者才可创建id为1的管理员分组
|
|
|
|
|
|
if ($v == 1 and get_login_admin('id') !== 1) {
|
2021-04-23 01:05:29 +08:00
|
|
|
|
throw new ValidateException("你没有权限创建系统所有者", 1);
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
$data[$k] = [
|
|
|
|
|
|
'uid' => $param['id'],
|
|
|
|
|
|
'group_id' => $v,
|
|
|
|
|
|
];
|
|
|
|
|
|
}
|
|
|
|
|
|
Db::name('AdminGroupAccess')->strict(false)->field(true)->insertAll($data);
|
|
|
|
|
|
if (!isset($param['thumb']) || $param['thumb'] == '') {
|
|
|
|
|
|
$char = mb_substr($param['nickname'], 0, 1, 'utf-8');
|
|
|
|
|
|
Db::name('Admin')->where('id', $param['id'])->update(['thumb' => $this->to_avatars($char)]);
|
|
|
|
|
|
}
|
|
|
|
|
|
add_log('edit', $param['id'], $param);
|
|
|
|
|
|
//清除菜单\权限缓存
|
|
|
|
|
|
clear_cache('adminMenu');
|
|
|
|
|
|
clear_cache('adminRules');
|
|
|
|
|
|
// 提交事务
|
|
|
|
|
|
Db::commit();
|
|
|
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
|
// 回滚事务
|
|
|
|
|
|
Db::rollback();
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(1, '提交失败:' . $e->getMessage());
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
} else {
|
|
|
|
|
|
try {
|
|
|
|
|
|
validate(AdminCheck::class)->scene('add')->check($param);
|
|
|
|
|
|
} catch (ValidateException $e) {
|
|
|
|
|
|
// 验证失败 输出错误信息
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(1, $e->getError());
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
$param['salt'] = set_salt(20);
|
|
|
|
|
|
$param['pwd'] = set_password($param['pwd'], $param['salt']);
|
|
|
|
|
|
// 启动事务
|
|
|
|
|
|
Db::startTrans();
|
|
|
|
|
|
try {
|
|
|
|
|
|
$uid = Db::name('Admin')->strict(false)->field(true)->insertGetId($param);
|
|
|
|
|
|
foreach ($param['group_id'] as $k => $v) {
|
|
|
|
|
|
//为了系统安全,只有系统所有者才可创建id为1的管理员分组
|
|
|
|
|
|
if ($v == 1 and get_login_admin('id') !== 1) {
|
2021-04-23 01:05:29 +08:00
|
|
|
|
throw new ValidateException("你没有权限创建系统所有者", 1);
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
$data[$k] = [
|
|
|
|
|
|
'uid' => $uid,
|
|
|
|
|
|
'group_id' => $v,
|
|
|
|
|
|
];
|
|
|
|
|
|
}
|
|
|
|
|
|
Db::name('AdminGroupAccess')->strict(false)->field(true)->insertAll($data);
|
|
|
|
|
|
if (!isset($param['thumb']) || $param['thumb'] == '') {
|
|
|
|
|
|
$char = mb_substr($param['nickname'], 0, 1, 'utf-8');
|
|
|
|
|
|
Db::name('Admin')->where('id', $uid)->update(['thumb' => $this->to_avatars($char)]);
|
|
|
|
|
|
}
|
|
|
|
|
|
add_log('add', $uid, $param);
|
|
|
|
|
|
// 提交事务
|
|
|
|
|
|
Db::commit();
|
|
|
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
|
// 回滚事务
|
|
|
|
|
|
Db::rollback();
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(1, '提交失败:' . $e->getMessage());
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
return to_assign();
|
2022-02-16 15:39:29 +08:00
|
|
|
|
}
|
|
|
|
|
|
else{
|
|
|
|
|
|
$id = empty(get_params('id')) ? 0 : get_params('id');
|
2022-08-25 17:13:28 +08:00
|
|
|
|
$department = set_recursion(get_department());
|
|
|
|
|
|
$position = Db::name('Position')->where('status', '>=', 0)->order('create_time asc')->select();
|
2022-02-16 15:39:29 +08:00
|
|
|
|
if ($id > 0) {
|
|
|
|
|
|
$admin = get_admin(get_params('id'));
|
|
|
|
|
|
View::assign('admin', $admin);
|
|
|
|
|
|
}
|
2022-08-25 17:13:28 +08:00
|
|
|
|
View::assign('department', $department);
|
|
|
|
|
|
View::assign('position', $position);
|
2022-02-16 15:39:29 +08:00
|
|
|
|
View::assign('id', $id);
|
|
|
|
|
|
return view();
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public function to_avatars($char)
|
|
|
|
|
|
{
|
|
|
|
|
|
$defaultData = array('A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N',
|
|
|
|
|
|
'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'S', 'Y', 'Z',
|
|
|
|
|
|
'0', '1', '2', '3', '4', '5', '6', '7', '8', '9',
|
|
|
|
|
|
'零', '壹', '贰', '叁', '肆', '伍', '陆', '柒', '捌', '玖', '拾',
|
|
|
|
|
|
'一', '二', '三', '四', '五', '六', '七', '八', '九', '十');
|
|
|
|
|
|
if (isset($char)) {
|
|
|
|
|
|
$Char = $char;
|
|
|
|
|
|
} else {
|
|
|
|
|
|
$Char = $defaultData[mt_rand(0, count($defaultData) - 1)];
|
|
|
|
|
|
}
|
|
|
|
|
|
$OutputSize = min(512, empty($_GET['size']) ? 36 : intval($_GET['size']));
|
|
|
|
|
|
|
|
|
|
|
|
$Avatar = new MDAvatars($Char, 256, 1);
|
|
|
|
|
|
$avatar_name = '/avatars/avatar_256_' . set_salt(10) . time() . '.png';
|
|
|
|
|
|
$path = get_config('filesystem.disks.public.url') . $avatar_name;
|
|
|
|
|
|
$res = $Avatar->Save('.' . $path, 256);
|
|
|
|
|
|
$Avatar->Free();
|
|
|
|
|
|
/*
|
|
|
|
|
|
if ($res) {
|
|
|
|
|
|
//写入到附件表
|
|
|
|
|
|
$data = [];
|
|
|
|
|
|
$data['filepath'] = $path;
|
|
|
|
|
|
$data['name'] = $Char;
|
|
|
|
|
|
$data['mimetype'] = 'image/png';
|
|
|
|
|
|
$data['fileext'] = 'png';
|
|
|
|
|
|
$data['filesize'] = 0;
|
|
|
|
|
|
$data['filename'] = $avatar_name;
|
|
|
|
|
|
$data['sha1'] = '';
|
|
|
|
|
|
$data['md5'] = '';
|
|
|
|
|
|
$data['module'] = \think\facade\App::initialize()->http->getName();
|
|
|
|
|
|
$data['action'] = app('request')->action();
|
|
|
|
|
|
$data['uploadip'] = app('request')->ip();
|
|
|
|
|
|
$data['create_time'] = time();
|
|
|
|
|
|
$data['user_id'] = get_login_admin('id') ? get_login_admin('id') : 0;
|
|
|
|
|
|
if ($data['module'] = 'admin') {
|
|
|
|
|
|
//通过后台上传的文件直接审核通过
|
|
|
|
|
|
$data['status'] = 1;
|
|
|
|
|
|
$data['admin_id'] = $data['user_id'];
|
|
|
|
|
|
$data['audit_time'] = time();
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
2022-02-16 15:39:29 +08:00
|
|
|
|
$data['use'] = 'avatar'; //附件用处
|
|
|
|
|
|
$fid = Db::name('file')->insertGetId($data);
|
|
|
|
|
|
return $fid;
|
|
|
|
|
|
}
|
|
|
|
|
|
*/
|
|
|
|
|
|
return $path;
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//查看
|
|
|
|
|
|
public function view()
|
2021-11-01 01:04:40 +08:00
|
|
|
|
{
|
|
|
|
|
|
$id = get_params('id');
|
|
|
|
|
|
$rule = get_admin_rule();
|
|
|
|
|
|
|
|
|
|
|
|
$user_groups = Db::name('AdminGroupAccess')
|
|
|
|
|
|
->alias('a')
|
|
|
|
|
|
->join("AdminGroup g", "a.group_id=g.id", 'LEFT')
|
|
|
|
|
|
->where("a.uid='{$id}' and g.status='1'")
|
|
|
|
|
|
->select()
|
|
|
|
|
|
->toArray();
|
|
|
|
|
|
$groups = $user_groups ?: [];
|
|
|
|
|
|
|
|
|
|
|
|
$rules = [];
|
|
|
|
|
|
foreach ($groups as $g) {
|
|
|
|
|
|
$rules = array_merge($rules, explode(',', trim($g['rules'], ',')));
|
|
|
|
|
|
}
|
|
|
|
|
|
$rules = array_unique($rules);
|
|
|
|
|
|
|
|
|
|
|
|
$role_rule = create_tree_list(0, $rule, $rules);
|
2022-08-25 17:13:28 +08:00
|
|
|
|
$department = get_department();
|
|
|
|
|
|
$position = Db::name('Position')->where('status', '>=', 0)->order('create_time asc')->select();
|
|
|
|
|
|
View::assign('department', $department);
|
|
|
|
|
|
View::assign('position', $position);
|
2021-11-01 01:04:40 +08:00
|
|
|
|
View::assign('role_rule', $role_rule);
|
|
|
|
|
|
View::assign('admin', get_admin($id));
|
|
|
|
|
|
add_log('view', get_params('id'));
|
2021-01-30 20:59:12 +08:00
|
|
|
|
return view('', ['admin' => get_admin(get_params('id'))]);
|
|
|
|
|
|
}
|
|
|
|
|
|
//删除
|
|
|
|
|
|
public function delete()
|
|
|
|
|
|
{
|
|
|
|
|
|
$id = get_params("id");
|
2021-08-31 23:40:54 +08:00
|
|
|
|
if($id == 1){
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(0, "超级管理员,不能删除");
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
2021-08-31 23:40:54 +08:00
|
|
|
|
$data['status'] = '-1';
|
|
|
|
|
|
$data['id'] = $id;
|
|
|
|
|
|
$data['update_time'] = time();
|
|
|
|
|
|
if (Db::name('Admin')->update($data) !== false) {
|
|
|
|
|
|
add_log('delete', $id);
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(0, "删除管理员成功");
|
2021-01-30 20:59:12 +08:00
|
|
|
|
} else {
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return to_assign(1, "删除失败");
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-06-15 01:09:01 +08:00
|
|
|
|
//管理员操作日志
|
2021-01-30 20:59:12 +08:00
|
|
|
|
public function log()
|
|
|
|
|
|
{
|
2021-06-15 01:09:01 +08:00
|
|
|
|
if (request()->isAjax()) {
|
|
|
|
|
|
$param = get_params();
|
|
|
|
|
|
$where = array();
|
|
|
|
|
|
if (!empty($param['keywords'])) {
|
2021-07-26 15:00:17 +08:00
|
|
|
|
$where[] = ['nickname|rule_menu|param_id', 'like', '%' . $param['keywords'] . '%'];
|
2021-06-15 01:09:01 +08:00
|
|
|
|
}
|
|
|
|
|
|
if (!empty($param['title_cate'])) {
|
|
|
|
|
|
$where['title'] = $param['title_cate'];
|
|
|
|
|
|
}
|
2021-07-26 15:00:17 +08:00
|
|
|
|
if (!empty($param['rule_menu'])) {
|
|
|
|
|
|
$where['rule_menu'] = $param['rule_menu'];
|
2021-06-15 01:09:01 +08:00
|
|
|
|
}
|
2022-02-16 15:39:29 +08:00
|
|
|
|
$rows = empty($param['limit']) ? get_config('app . page_size') : $param['limit'];
|
2021-07-26 15:00:17 +08:00
|
|
|
|
$content = DB::name('AdminLog')
|
|
|
|
|
|
->field("id,uid,nickname,title,content,rule_menu,ip,param_id,param,FROM_UNIXTIME(create_time,'%Y-%m-%d %H:%i:%s') create_time")
|
2021-06-15 01:09:01 +08:00
|
|
|
|
->order('create_time desc')
|
|
|
|
|
|
->where($where)
|
|
|
|
|
|
->paginate($rows, false, ['query' => $param]);
|
|
|
|
|
|
$content->toArray();
|
|
|
|
|
|
foreach ($content as $k => $v) {
|
|
|
|
|
|
$data = $v;
|
|
|
|
|
|
$param_array = json_decode($v['param'], true);
|
2022-02-12 09:16:06 +08:00
|
|
|
|
if(is_array($param_array)){
|
|
|
|
|
|
$param_value = '';
|
|
|
|
|
|
foreach ($param_array as $key => $value) {
|
|
|
|
|
|
if (is_array($value)) {
|
|
|
|
|
|
$value = implode(',', $value);
|
|
|
|
|
|
}
|
|
|
|
|
|
$param_value .= $key . ':' . $value . ' | ';
|
|
|
|
|
|
}
|
|
|
|
|
|
$data['param'] = $param_value;
|
|
|
|
|
|
}
|
|
|
|
|
|
else{
|
|
|
|
|
|
$data['param'] = $param_array;
|
|
|
|
|
|
}
|
2021-06-15 01:09:01 +08:00
|
|
|
|
$content->offsetSet($k, $data);
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
2021-09-09 08:33:05 +08:00
|
|
|
|
return table_assign(0, '', $content);
|
2021-07-26 17:41:59 +08:00
|
|
|
|
} else {
|
2021-06-15 01:09:01 +08:00
|
|
|
|
return view();
|
2021-07-26 17:41:59 +08:00
|
|
|
|
}
|
2021-01-30 20:59:12 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
