ouyang/dnsmgr
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
44defa48fa99b51b2e8080133a8fe2a763edd9d9
dnsmgr/app/controller/User.php
net909 44defa48fa Initial
2024-04-03 20:51:10 +08:00

164 lines
6.8 KiB
PHP
Raw Blame History

<?php
namespace app\controller;
use app\BaseController;
use think\facade\Db;
use think\facade\View;
use think\facade\Request;
class User extends BaseController
{
public function user(){
if(!checkPermission(2)) return $this->alert('error', '无权限');
$list = Db::name('domain')->select();
$domains = [];
foreach($list as $row){
$domains[] = $row['name'];
}
View::assign('domains', $domains);
return view();
}
public function user_data(){
if(!checkPermission(2)) return json(['total'=>0, 'rows'=>[]]);
$kw = input('post.kw', null, 'trim');
$offset = input('post.offset/d');
$limit = input('post.limit/d');
$select = Db::name('user');
if(!empty($kw)){
$select->whereLike('id|username', $kw);
}
$total = $select->count();
$rows = $select->order('id','desc')->limit($offset, $limit)->select();
return json(['total'=>$total, 'rows'=>$rows]);
}
public function user_op(){
if(!checkPermission(2)) return $this->alert('error', '无权限');
$act = input('param.act');
if($act == 'get'){
$id = input('post.id/d');
$row = Db::name('user')->where('id', $id)->find();
if(!$row) return json(['code'=>-1, 'msg'=>'用户不存在']);
$row['permission'] = Db::name('permission')->where('uid', $id)->column('domain');
return json(['code'=>0, 'data'=>$row]);
}elseif($act == 'add'){
$username = input('post.username', null, 'trim');
$password = input('post.password', null, 'trim');
$is_api = input('post.is_api/d');
$apikey = input('post.apikey', null, 'trim');
$level = input('post.level/d');
if(empty($username) || empty($password)) return json(['code'=>-1, 'msg'=>'用户名或密码不能为空']);
if($is_api ==1 && empty($apikey)) return json(['code'=>-1, 'msg'=>'API密钥不能为空']);
if(Db::name('user')->where('username', $username)->find()){
return json(['code'=>-1, 'msg'=>'用户名已存在']);
}
$uid = Db::name('user')->insertGetId([
'username' => $username,
'password' => password_hash($password, PASSWORD_DEFAULT),
'is_api' => $is_api,
'apikey' => $apikey,
'level' => $level,
'regtime' => date('Y-m-d H:i:s'),
'status' => 1,
]);
if($level == 1){
$permission = input('post.permission/a');
if(!empty($permission)){
$data = [];
foreach($permission as $domain){
$data[] = ['uid'=>$uid, 'domain'=>$domain];
}
Db::name('permission')->insertAll($data);
}
}
return json(['code'=>0, 'msg'=>'添加用户成功!']);
}elseif($act == 'edit'){
$id = input('post.id/d');
$row = Db::name('user')->where('id', $id)->find();
if(!$row) return json(['code'=>-1, 'msg'=>'用户不存在']);
$username = input('post.username', null, 'trim');
$is_api = input('post.is_api/d');
$apikey = input('post.apikey', null, 'trim');
$level = input('post.level/d');
$repwd = input('post.repwd', null, 'trim');
if(empty($username)) return json(['code'=>-1, 'msg'=>'用户名不能为空']);
if($is_api ==1 && empty($apikey)) return json(['code'=>-1, 'msg'=>'API密钥不能为空']);
if(Db::name('user')->where('username', $username)->where('id', '<>', $id)->find()){
return json(['code'=>-1, 'msg'=>'用户名已存在']);
}
if($level == 1 && ($id == 1000 || $id == request()->user['id'])) $level = 2;
Db::name('user')->where('id', $id)->update([
'username' => $username,
'is_api' => $is_api,
'apikey' => $apikey,
'level' => $level,
]);
Db::name('permission')->where(['uid'=>$id])->delete();
if($level == 1){
$permission = input('post.permission/a');
if(!empty($permission)){
$data = [];
foreach($permission as $domain){
$data[] = ['uid'=>$id, 'domain'=>$domain];
}
Db::name('permission')->insertAll($data);
}
}
if(!empty($repwd)){
Db::name('user')->where('id', $id)->update(['password'=>password_hash($repwd, PASSWORD_DEFAULT)]);
}
return json(['code'=>0, 'msg'=>'修改用户成功!']);
}elseif($act == 'set'){
$id = input('post.id/d');
$status = input('post.status/d');
if($id == 1000) return json(['code'=>-1, 'msg'=>'此用户无法修改状态']);
if($id == request()->user['id']) return json(['code'=>-1, 'msg'=>'当前登录用户无法修改状态']);
Db::name('user')->where('id', $id)->update(['status'=>$status]);
return json(['code'=>0]);
}elseif($act == 'del'){
$id = input('post.id/d');
if($id == 1000) return json(['code'=>-1, 'msg'=>'此用户无法删除']);
if($id == request()->user['id']) return json(['code'=>-1, 'msg'=>'当前登录用户无法删除']);
Db::name('user')->where('id', $id)->delete();
return json(['code'=>0]);
}
return json(['code'=>-3]);
}
public function log(){
return view();
}
public function log_data(){
$uid = input('post.uid', null, 'trim');
$kw = input('post.kw', null, 'trim');
$domain = input('post.domain', null, 'trim');
$offset = input('post.offset/d');
$limit = input('post.limit/d');
$select = Db::name('log');
if(request()->user['type'] == 'domain'){
$select->where('domain', request()->user['name']);
}elseif(request()->user['level'] == 1){
$select->where('uid', request()->user['id']);
}elseif(!empty($uid)){
$select->where('uid', $uid);
}
if(!empty($kw)){
$select->whereLike('action|data', '%'.$kw.'%');
}
if(!empty($domain)){
$select->where('domain', $domain);
}
$total = $select->count();
$rows = $select->order('id','desc')->limit($offset, $limit)->select();
return json(['total'=>$total, 'rows'=>$rows]);
}
}
Reference in New Issue View Git Blame Copy Permalink