Home Explore Help
Register Sign In
liujq
/
ysh
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
ysh
/
server
/
app
/
admin
/
controller
/
Auth.php

Auth.php 6.7 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. <?php
    2. 

  2. // +----------------------------------------------------------------------
    3. 

  3. // | A3Mall
    4. 

  4. // +----------------------------------------------------------------------
    5. 

  5. // | Copyright (c) 2020 http://www.a3-mall.com All rights reserved.
    6. 

  6. // +----------------------------------------------------------------------
    7. 

  7. // | Author: xzncit <158373108@qq.com>
    8. 

  8. // +----------------------------------------------------------------------
    9. 

  9. namespace app\admin\controller;
    10. 

  10. 

  11. use think\facade\Db;
    12. 

  12. use think\facade\Request;
    13. 

  13. use think\facade\Session;
    14. 

  14. use think\facade\View;
    15. 

  15. 

  16. class Auth extends Base {
    17. 

  17. 

  18.     public function initialize(){
    19. 

  19.         try{
    20. 

  20.             $this->checkAccess();
    21. 

  21.         }catch (\Exception $e){
    22. 

  22.             $code = $e->getCode();
    23. 

  23.             if(Request::isAjax()){
    24. 

  24.                 exit(json_encode(["msg"=>$e->getMessage(),"code"=>$code],JSON_UNESCAPED_UNICODE));
    25. 

  25.             }
    26. 

  26. 

  27.             switch($code){
    28. 

  28.                 case -999:
    29. 

  29.                     $this->error($e->getMessage());
    30. 

  30.                     break;
    31. 

  31.                 case -1000:
    32. 

  32.                      $this->redirect(createUrl('login/index'));
    33. 

  33.                     break;
    34. 

  34.             }
    35. 

  35.         }
    36. 

  36. 

  37.         View::assign("sidebar",$this->sidebar());
    38. 

  38.     }
    39. 

  39. 

  40.     public function sidebar(){
    41. 

  41.         $result = Db::name("system_menu")->where(["status"=>0,"pid"=>0])->order("sort","ASC")->select()->toArray();
    42. 

  42.         $controller = Request::controller(true);
    43. 

  43.         $action = Request::action(true);
    44. 

  44. 

  45.         $data = Db::name("system_menu")
    46. 

  46.             ->where('status=0 AND ((controller="'.$controller.'" AND method="'.$action.'") OR (controller="'.$controller.'" AND FIND_IN_SET("'.$action.'",active)))')
    47. 

  47.             ->find();
    48. 

  48. 

  49.         while (!empty($data) && $data["pid"] != 0){
    50. 

  50.             $data = Db::name("system_menu")
    51. 

  51.                 ->where(["status"=>0,"id"=>$data["pid"]])
    52. 

  52.                 ->find();
    53. 

  53.         }
    54. 

  54. 

  55.         if(empty($data)){
    56. 

  56.             return ;
    57. 

  57.         }
    58. 

  58. 

  59.         foreach($result as $key=>$value){
    60. 

  60.             $result[$key]["active"] = ($data["id"] == $value["id"]) ? true : false;
    61. 

  61.             $result[$key]["url"] = createUrl($value["controller"].'/'.$value['method']);
    62. 

  62.         }
    63. 

  63. 

  64.         $menu = Db::name("system_menu")->where(["status"=>0,"pid"=>$data["id"]])->order("sort ASC")->select()->toArray();
    65. 

  65.         foreach($menu as $key=>$value){
    66. 

  66.             $menu[$key]["url"] = url($value["controller"].'/'.$value['method']);
    67. 

  67.             $menu[$key]["children"] = Db::name("system_menu")->where(["status"=>0,"pid"=>$value["id"]])->order("sort ASC")->select()->toArray();
    68. 

  68.             foreach($menu[$key]["children"] as $k=>$v){
    69. 

  69.                 $menu[$key]["children"][$k]["active"] = (($controller.$action == $v["controller"].$v['method']) || ($controller == $v["controller"] && (!empty($v['active']) && in_array($action,explode(",", $v['active'])))));
    70. 

  70.                 if(!isset($menu[$key]["active"]) || !$menu[$key]["active"]){
    71. 

  71.                     $menu[$key]["active"] = $menu[$key]["children"][$k]["active"] ? true : false;
    72. 

  72.                 }
    73. 

  73. 

  74.                 $menu[$key]["children"][$k]['url'] = (string)url($v["controller"].'/'.$v['method']);
    75. 

  75.                 $menu[$key]["children"][$k]["children"] = Db::name("system_menu")->where(["status"=>0,"pid"=>$v["id"]])->order("sort ASC")->select()->toArray();
    76. 

  76.                 foreach($menu[$key]["children"][$k]["children"] as $index=>$item){
    77. 

  77.                     $menu[$key]["children"][$k]["children"][$index]['url'] = (string)url($item["controller"].'/'.$item['method']);
    78. 

  78.                     $menu[$key]["children"][$k]["children"][$index]["active"] = (($controller.$action == $item["controller"].$item['method']) || ($controller == $item["controller"] && (!empty($item['active']) && in_array($action,explode(",", $item['active'])))));
    79. 

  79. 

  80.                     if(!$menu[$key]["children"][$k]["active"]){
    81. 

  81.                         $menu[$key]["children"][$k]["active"] = $menu[$key]["children"][$k]["children"][$index]["active"] && $menu[$key]["children"][$k]["id"] == $item["pid"];
    82. 

  82.                     }
    83. 

  83. 

  84.                     if(!$menu[$key]["active"]){
    85. 

  85.                         $menu[$key]["active"] = $menu[$key]["children"][$k]["active"] && $menu[$key]["id"] == $v["pid"];
    86. 

  86.                     }
    87. 

  87.                 }
    88. 

  88.             }
    89. 

  89.         }
    90. 

  90. 

  91.         return ["top"=>$this->filterMenu($result),"menu"=>$this->filterMenu($menu)];
    92. 

  92.     }
    93. 

  93. 

  94.     private function filterMenu($data){
    95. 

  95.         $user = Db::name("system_users")->where("id",Session::get("system_user_id"))->find();
    96. 

  96.         $manage = Db::name("system_manage")->where("id",$user["role_id"])->find();
    97. 

  97.         if($manage["purview"] == '-1'){
    98. 

  98.             return $data;
    99. 

  99.         }
    100. 

  100. 

  101.         $purview = json_decode($manage["purview"],true);
    102. 

  102.         $array = [];
    103. 

  103.         $keys = array_keys($purview);
    104. 

  104.         foreach($data as $key=>$value){
    105. 

  105.             // 如果children为空,顶部菜单
    106. 

  106.             if(empty($value["children"])){
    107. 

  107.                 $method = isset($purview[$value["controller"]]) ? array_flip($purview[$value["controller"]]) : [];
    108. 

  108.                 if(in_array($value["controller"],$keys) && in_array($value["method"],$method)){
    109. 

  109.                     $array[$key] = $value;
    110. 

  110.                 }
    111. 

  111.             }else{ // 左侧菜单
    112. 

  112.                 $menu = [];
    113. 

  113.                 foreach($value["children"] as $k=>$v){
    114. 

  114.                     $method = isset($purview[$v["controller"]]) ? array_flip($purview[$v["controller"]]) : [];
    115. 

  115.                     if(in_array($v["controller"],$keys) && in_array($v["method"],$method)){
    116. 

  116.                         $menu[$k] = $v;
    117. 

  117.                     }
    118. 

  118.                 }
    119. 

  119. 

  120.                 if(!empty($menu)){
    121. 

  121.                     $array[$key] = $value;
    122. 

  122.                     $array[$key]["children"] = $menu;
    123. 

  123.                 }
    124. 

  124.             }
    125. 

  125.         }
    126. 

  126. 

  127.         return $array;
    128. 

  128.     }
    129. 

  129. 

  130.     private function checkAccess(){
    131. 

  131.         if(!Session::has("system_user_id")){
    132. 

  132.             throw new \Exception("您还没有登录,请先登录。",-1000);
    133. 

  133.         }
    134. 

  134. 

  135.         $user = Db::name("system_users")->where("id",Session::get("system_user_id"))->find();
    136. 

  136.         $manage = Db::name("system_manage")->where("id",$user["role_id"])->find();
    137. 

  137.         $user['title'] = $manage['title'];
    138. 

  138.         $user['purview'] = $manage['purview'];
    139. 

  139.         Session::set("users",$user);
    140. 

  140. 

  141.         $controller = Request::controller(true);
    142. 

  142.         $action = Request::action(true);
    143. 

  143. 

  144.         if($user["purview"] == '-1'){
    145. 

  145.             return true;
    146. 

  146.         }
    147. 

  147. 

  148.         if($controller == 'platform.index' && $action == 'index'){
    149. 

  149.             return true;
    150. 

  150.         }
    151. 

  151. 

  152.         $purview = json_decode($user["purview"],true);
    153. 

  153.         if(!empty($purview[$controller][$action])){
    154. 

  154.             return true;
    155. 

  155.         }
    156. 

  156. 

  157.         if(in_array($controller,["common.ajax","common.uploadfiy","common.material","common.index","common.wechat"])){
    158. 

  158.             return true;
    159. 

  159.         }
    160. 

  160. 

  161.         throw new \Exception("您无权限执行此操作",-999);
    162. 

  162.     }
    163. 

  163. }
    164.