q792602257/qlg.tsgz.moe
0
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
qlg.tsgz.moe/hyhproject/home2/controller/Users.php
root f0ef89dfbb Init Repo
2019-09-06 23:53:10 +08:00

975 lines
31 KiB
PHP
Executable File
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<?php
namespace wstmart\home\controller;
use wstmart\common\model\Users as MUsers;
use wstmart\common\model\LogSms;
/**
* ============================================================================
* 用户控制器
*/
class Users extends Base{
protected $beforeActionList = [
'checkAuth' => ['except'=>'getverify,login,logout,regist,toregist,checklogin,getphoneverifycode,checkloginkey,checkemail,checkfindkey,protocol,forgetpass,forgetpasst,resetpass,forgetpasss,forgetpassf,findpass,getfindphone,checkfindphone,getfindemail,tologinbox']
];
/**
* 去登录
*/
public function login(){
$USER = session('WST_USER');
//如果已经登录了则直接跳去用户中心
if(!empty($USER) && !empty($USER['userId'])){
$this->redirect("users/index");
}
$loginName = cookie("loginName");
if(!empty($loginName)){
$this->assign('loginName',cookie("loginName"));
}else{
$this->assign('loginName','');
}
return $this->fetch('user_login');
}
/**
* 用户退出
*/
public function logout(){
session('WST_USER',null);
setcookie("loginPwd", null);
session('WST_HO_CURRENTURL', null);
hook('afterUserLogout');
return WSTReturn("退出成功",1);
}
/**
* 用户注册
*
*/
public function regist(){
$USER = session('WST_USER');
//如果已经登录了则直接跳去用户中心
if(!empty($USER) && $USER['userId']!=''){
$this->redirect("users/index");
}
$loginName = cookie("loginName");
if(!empty($loginName)){
$this->assign('loginName',cookie("loginName"));
}else{
$this->assign('loginName','');
}
return $this->fetch('regist');
}
/**
* 新用户注册
*/
public function toRegist(){
$m = new MUsers();
$rs = $m->regist();
$rs['url'] = session('WST_HO_CURRENTURL');
return $rs;
}
/**
* 验证登录
*
*/
public function checkLogin(){
$m = new MUsers();
$rs = $m->checkLogin();
$rs['url'] = session('WST_HO_CURRENTURL');
return $rs;
}
/**
* 获取验证码
*/
public function getPhoneVerifyCode(){
$userPhone = input("post.userPhone");
$rs = array();
if(!WSTIsPhone($userPhone)){
return WSTReturn("手机号格式不正确!");
exit();
}
$m = new MUsers();
$rs = $m->checkUserPhone($userPhone,(int)session('WST_USER.userId'));
if($rs["status"]!=1){
return WSTReturn("手机号已存在!");
exit();
}
$phoneVerify = rand(100000,999999);
$rv = ['status'=>-1,'msg'=>'短信发送失败'];
$tpl = WSTMsgTemplates('PHONE_USER_REGISTER_VERFIY');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$params = ['tpl'=>$tpl,'params'=>['MALL_NAME'=>WSTConf("CONF.mallName"),'VERFIY_CODE'=>$phoneVerify,'VERFIY_TIME'=>10]];
$m = new LogSms();
$rv = $m->sendSMS(0,$userPhone,$params,'getPhoneVerify',$phoneVerify);
}
if($rv['status']==1){
session('VerifyCode_userPhone',$phoneVerify);
session('VerifyCode_userPhone_Time',time());
}
return $rv;
}
/**
* 判断手机或邮箱是否存在
*/
public function checkLoginKey(){
$m = new MUsers();
if(input("post.loginName"))$val=input("post.loginName");
if(input("post.userPhone"))$val=input("post.userPhone");
if(input("post.userEmail"))$val=input("post.userEmail");
$userId = (int)session('WST_USER.userId');
$rs = WSTCheckLoginKey($val,$userId);
if($rs["status"]==1){
return array("ok"=>"");
}else{
return array("error"=>$rs["msg"]);
}
}
/**
* 判断邮箱是否存在
*/
public function checkEmail(){
$data = $this->checkLoginKey();
if(isset($data['error']))$data['error'] = '对不起,该邮箱已存在';
return $data;
}
/**
* 判断用户名是否存在/忘记密码
*/
public function checkFindKey(){
$m = new MUsers();
$userId = (int)session('WST_USER.userId');
$rs = WSTCheckLoginKey(input("post.loginName"),$userId);
if($rs["status"]==1){
return array("error"=>"该用户不存在!");
}else{
return array("ok"=>"");
}
}
/**
* 跳到用户注册协议
*/
public function protocol(){
return $this->fetch("user_protocol");
}
/**
* 用户中心
*/
public function index(){
session('WST_MENID0',0);
session('WST_MENUID30',0);
// 待付款 待收货 待评价
$info = model('home/Users')->getStatusNum();
$this->assign($info);
$m = new MUsers();
$data = $m->getById((int)session('WST_USER.userId'));
$this->assign('data',$data);
return $this->fetch('users/index');
}
/**
* 跳去修改个人资料
*/
public function edit(){
$m = new MUsers();
//获取用户信息
$userId = (int)session('WST_USER.userId');
$data = $m->getById($userId);
$this->assign('data',$data);
return $this->fetch('users/user_edit');
}
/**
* 跳去修改密码页
*/
public function editPass(){
$m = new MUsers();
//获取用户信息
$userId = (int)session('WST_USER.userId');
$data = $m->getById($userId);
$this->assign('data',$data);
return $this->fetch('users/security/user_pass');
}
/**
* 修改密码
*/
public function passedit(){
$userId = (int)session('WST_USER.userId');
$m = new MUsers();
$rs = $m->editPass($userId);
return $rs;
}
/**
* 修改
*/
public function toEdit(){
$m = new MUsers();
$rs = $m->edit();
return $rs;
}
/**
* 安全设置页
*/
public function security(){
//获取用户信息
$m = new MUsers();
$data = $m->getById((int)session('WST_USER.userId'));
if($data['userPhone']!='')$data['userPhone'] = WSTStrReplace($data['userPhone'],'*',3);
if($data['userEmail']!='')$data['userEmail'] = WSTStrReplace($data['userEmail'],'*',2,'@');
$this->assign('data',$data);
return $this->fetch('users/security/index');
}
/**
* 修改邮箱页
*/
public function editEmail(){
hook('homeControllerUsersEditEmail');
//获取用户信息
$userId = (int)session('WST_USER.userId');
$m = new MUsers();
$data = $m->getById($userId);
if($data['userEmail']!='')$data['userEmail'] = WSTStrReplace($data['userEmail'],'*',2,'@');
$this->assign('data',$data);
$process = 'One';
$this->assign('process',$process);
if($data['userEmail']){
return $this->fetch('users/security/user_edit_email');
}else{
return $this->fetch('users/security/user_email');
}
}
/**
* 发送验证邮件/绑定邮箱
*/
public function getEmailVerify(){
$userEmail = input('post.userEmail');
if(!$userEmail){
return WSTReturn('请输入邮箱!',-1);
}
$code = input("post.verifyCode");
$process = input("post.process");
if(!WSTVerifyCheck($code)){
return WSTReturn('验证码错误!',-1);
}
$rs = WSTCheckLoginKey($userEmail,(int)session('WST_USER.userId'));
if($rs["status"]!=1){
return WSTReturn("邮箱已存在!");
exit();
}
$code = rand(0,999999);
$sendRs = ['status'=>-1,'msg'=>'邮件发送失败'];
$tpl = WSTMsgTemplates('EMAIL_BIND');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$find = ['${LOGIN_NAME}','${SEND_TIME}','${VERFIY_CODE}','${VERFIY_TIME}'];
$replace = [session('WST_USER.loginName'),date('Y-m-d H:i:s'),$code,30];
$sendRs = WSTSendMail($userEmail,'绑定邮箱',str_replace($find,$replace,$tpl['content']));
}
if($sendRs['status']==1){
// 绑定的邮箱
session('email.val',$userEmail);
// 验证码
session("email.key", $code);
// 发起绑定邮箱的时间;
session('email.time',time());
return WSTReturn("发送成功",1);
}else{
return WSTReturn($sendRs['msg'],-1);
}
}
/**
* 绑定邮箱
*/
public function emailEdit(){
$USER = session('WST_USER');
if(empty($USER) && $USER['userId']==''){
$this->redirect("home/users/login");
}
$bindTime = session('email.time');
$code = session('email.key');
$bindEmail = session('email.val');
if(time()>floatval($bindTime)+30*60)$this->error('验证码已失效!');
$rs = WSTCheckLoginKey($bindEmail,(int)session('WST_USER.userId'));
if($rs["status"]!=1){
$this->error('邮箱已存在!');
exit();
}
$secretCode = input('secretCode');
if($code!=$secretCode)return WSTReturn('校验码错误',-1);
$m = new MUsers();
$rs = $m->editEmail((int)session('WST_USER.userId'),$bindEmail);
if($rs['status'] == 1){
// 清空session
session('email',null);
return WSTReturn('验证通过',1);
}
$this->error('绑定邮箱失败');
}
/**
* 完成邮箱绑定
*/
public function doneEmailBind(){
$this->assign('process','Three');
return $this->fetch('users/security/user_email');
}
/**
* 发送验证邮件/修改邮箱
*/
public function getEmailVerifyt(){
$m = new MUsers();
$data = $m->getById(session('WST_USER.userId'));
$userEmail = $data['userEmail'];
if(!$userEmail){
return WSTReturn('请输入邮箱!',-1);
}
$code = input("post.verifyCode");
if(!WSTVerifyCheck($code)){
return WSTReturn('验证码错误!',-1);
}
$code = rand(0,999999);
$sendRs = ['status'=>-1,'msg'=>'邮件发送失败'];
$tpl = WSTMsgTemplates('EMAIL_EDIT');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$find = ['${LOGIN_NAME}','${SEND_TIME}','${VERFIY_CODE}','${VERFIY_TIME}'];
$replace = [session('WST_USER.loginName'),date('Y-m-d H:i:s'),$code,30];
$sendRs = WSTSendMail($userEmail,'绑定邮箱',str_replace($find,$replace,$tpl['content']));
}
if($sendRs['status']==1){
// 修改的用户
session('email.uId',(int)session('WST_USER.userId'));
// 绑定的邮箱
session('email.val',$userEmail);
// 验证码
session("email.key", $code);
// 发起绑定邮箱的时间;
session('email.time',time());
return WSTReturn("发送成功",1);
}else{
return WSTReturn($sendRs['msg'],-1);
}
}
/**
* 修改邮箱
*/
public function emailEditt(){
$USER = session('WST_USER');
if(empty($USER) && $USER['userId']!=''){
$this->redirect("home/users/login");
}
$bindTime = session('email.time');
$code = session('email.key');
$bindEmail = session('email.val');
$uId = (int)session('email.uId');
if(time()>floatval($bindTime)+30*60)$this->error('验证码已失效!');
$rs = WSTCheckLoginKey($bindEmail,(int)session('WST_USER.userId'));
if($rs["status"]!=1){
$this->error('邮箱已存在!');
exit();
}
$secretCode = input('secretCode');
if($code!=$secretCode)return WSTReturn('校验码错误',-1);
$m = new MUsers();
$data = $m->getById($uId);
if($data['userId']==session('WST_USER.userId')){
return WSTReturn('验证通过',1);
}
$this->error('无效的用户!');
}
/**
* 修改邮箱第二步
*/
public function editEmail2(){
$this->assign('process','Two');
return $this->fetch('users/security/user_edit_email');
}
/**
* 修改邮箱第三步
*/
public function editEmail3(){
$this->assign('process','Three');
return $this->fetch('users/security/user_edit_email');
}
/**
* 修改手机页
*/
public function editPhone(){
//获取用户信息
$userId = (int)session('WST_USER.userId');
$m = new MUsers();
$data = $m->getById($userId);
if($data['userPhone']!='')$data['userPhone'] = WSTStrReplace($data['userPhone'],'*',3);
$this->assign('data',$data);
$process = 'One';
$this->assign('process',$process);
if($data['userPhone']){
return $this->fetch('users/security/user_edit_phone');
}else{
return $this->fetch('users/security/user_phone');
}
}
/**
* 跳到发送手机验证
*/
public function toApply(){
return $this->fetch("user_verify_phone");
}
/**
* 绑定手机/获取验证码
*/
public function getPhoneVerifyo(){
$userPhone = input("post.userPhone");
if(!WSTIsPhone($userPhone)){
return WSTReturn("手机号格式不正确!");
exit();
}
$rs = array();
$m = new MUsers();
$rs = WSTCheckLoginKey($userPhone,(int)session('WST_USER.userId'));
if($rs["status"]!=1){
return WSTReturn("手机号已存在!");
exit();
}
$data = $m->getById(session('WST_USER.userId'));
$phoneVerify = rand(100000,999999);
$rv = ['status'=>-1,'msg'=>'短信发送失败'];
$tpl = WSTMsgTemplates('PHONE_EDIT');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$params = ['tpl'=>$tpl,'params'=>['LOGIN_NAME'=>$data['loginName'],'VERFIY_CODE'=>$phoneVerify,'VERFIY_TIME'=>10]];
$m = new LogSms();
$rv = $m->sendSMS(0,$userPhone,$params,'getPhoneVerifyo',$phoneVerify);
}
if($rv['status']==1){
$USER = [];
$USER['userPhone'] = $userPhone;
$USER['phoneVerify'] = $phoneVerify;
session('Verify_info',$USER);
session('Verify_userPhone_Time',time());
return WSTReturn('短信发送成功!',1);
}
return $rv;
}
/**
* 绑定手机
*/
public function getPhoneVerifyb(){
$userPhone = input("post.userPhone");
if(!WSTIsPhone($userPhone)){
return WSTReturn("手机号格式不正确!");
exit();
}
$rs = array();
$m = new MUsers();
$rs = WSTCheckLoginKey($userPhone,(int)session('WST_USER.userId'));
if($rs["status"]!=1){
return WSTReturn("手机号已存在!");
exit();
}
$data = $m->getById(session('WST_USER.userId'));
$phoneVerify = rand(100000,999999);
$rv = ['status'=>-1,'msg'=>'短信发送失败'];
$tpl = WSTMsgTemplates('PHONE_BIND');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$params = ['tpl'=>$tpl,'params'=>['LOGIN_NAME'=>$data['loginName'],'VERFIY_CODE'=>$phoneVerify,'VERFIY_TIME'=>10]];
$m = new LogSms();
$rv = $m->sendSMS(0,$userPhone,$params,'getPhoneVerifyb',$phoneVerify);
}
if($rv['status']==1){
$USER = [];
$USER['userPhone'] = $userPhone;
$USER['phoneVerify'] = $phoneVerify;
session('Verify_info',$USER);
session('Verify_userPhone_Time',time());
return WSTReturn('短信发送成功!',1);
}
return $rv;
}
/**
* 绑定手机
*/
public function phoneEdito(){
$phoneVerify = input("post.Checkcode");
$process = input("post.process");
$timeVerify = session('Verify_userPhone_Time');
if(!session('Verify_info.phoneVerify') || time()>floatval($timeVerify)+10*60){
return WSTReturn("地址已失效,请重新验证身份!");
exit();
}
if($phoneVerify==session('Verify_info.phoneVerify')){
$m = new MUsers();
$rs = $m->editPhone((int)session('WST_USER.userId'),session('Verify_info.userPhone'));
if($process=='Two'){
$rs['process'] = $process;
}else{
$rs['process'] = '0';
}
return $rs;
}
return WSTReturn("校验码不一致,请重新输入!");
}
public function editPhoneSu(){
$pr = input("get.pr");
$process = 'Three';
$this->assign('process',$process);
if($pr == 'Two'){
return $this->fetch('users/security/user_edit_phone');
}else{
return $this->fetch('users/security/user_phone');
}
}
/**
* 修改手机/获取验证码
*/
public function getPhoneVerifyt(){
$m = new MUsers();
$data = $m->getById(session('WST_USER.userId'));
$userPhone = $data['userPhone'];
$phoneVerify = rand(100000,999999);
$rv = ['status'=>-1,'msg'=>'短信发送失败'];
$tpl = WSTMsgTemplates('PHONE_EDIT');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$params = ['tpl'=>$tpl,'params'=>['LOGIN_NAME'=>$data['loginName'],'VERFIY_CODE'=>$phoneVerify,'VERFIY_TIME'=>10]];
$m = new LogSms();
$rv = $m->sendSMS(0,$userPhone,$params,'getPhoneVerifyt',$phoneVerify);
}
if($rv['status']==1){
$USER = [];
$USER['userPhone'] = $userPhone;
$USER['phoneVerify'] = $phoneVerify;
session('Verify_info2',$USER);
session('Verify_userPhone_Time2',time());
return WSTReturn('短信发送成功!',1);
}
return $rv;
}
/**
* 修改手机
*/
public function phoneEditt(){
$phoneVerify = input("post.Checkcode");
$timeVerify = session('Verify_userPhone_Time2');
if(!session('Verify_info2.phoneVerify') || time()>floatval($timeVerify)+10*60){
return WSTReturn("校验码已失效,请重新发送!");
exit();
}
if($phoneVerify==session('Verify_info2.phoneVerify')){
return WSTReturn("验证成功",1);
}
return WSTReturn("校验码不一致,请重新输入!",-1);
}
public function editPhoneSut(){
$process = 'Two';
$this->assign('process',$process);
if(session('Verify_info2.phoneVerify')){
return $this->fetch('users/security/user_edit_phone');
}
$this->error('地址已失效,请重新验证身份');
}
/**
* 处理图像裁剪
*/
// public function editUserPhoto(){
// $imageSrc = trim(input('post.photoSrc'),'/');
// $image = \image\Image::open($imageSrc);
// $x = (int)input('post.x');
// $y = (int)input('post.y');
// $w = (int)input('post.w',150);
// $h = (int)input('post.h',150);
// $rs = $image->crop($w, $h, $x, $y, 150, 150)->save($imageSrc);
// if($rs){
// return WSTReturn('',1,$imageSrc);
// exit;
// }
// return WSTReturn('发生未知错误.',-1);
// }
/**
* 处理图像裁剪 修改适应oss mark 201080612 by zl
*/
public function editUserPhoto(){
$imageSrc = trim(input('post.photoSrc'),'/');
//判断图片是否缩放了
$res = strpos($imageSrc,'?x-oss-process=');
$x = (int)input('post.x');
$y = (int)input('post.y');
$w = (int)input('post.w',150);
$h = (int)input('post.h',150);
//判断是否缩放 如果缩放了就不加'?x-oss-process='
if($res){
$imageSrc=$imageSrc.',image/crop,x_'.$x.',y_'.$y.',w_'.$w.',h_'.$h.',image/resize,w_150,h_150';
}else{
$imageSrc=$imageSrc.'?x-oss-process=image/crop,x_'.$x.',y_'.$y.',w_'.$w.',h_'.$h.',image/resize,w_150,h_150';
}
return WSTReturn('',1,$imageSrc);
}
/****************************************************** 忘记密码 **********************************************************/
/**
* 忘记支付密码
*/
public function backPayPass(){
$m = new MUsers();
$userId = (int)session('WST_USER.userId');
$user = $m->getById($userId);
$userPhone = $user['userPhone'];
$user['userPhone'] = WSTStrReplace($user['userPhone'],'*',3);
$user['phoneType'] = empty($userPhone)?0:1;
$backType = (int)session('Type_backPaypwd');
$timeVerify = session('Verify_backPaypwd_Time');
$process = 'One';
$this->assign('data', $user);
$this->assign('process', $process);
return $this->fetch('users/security/user_edit_pay');
}
/**
* 忘记支付密码:发送短信
*/
public function getphoneverifypay(){
$m = new MUsers();
$data = $m->getById(session('WST_USER.userId'));
$userPhone = $data['userPhone'];
$phoneVerify = rand(100000,999999);
$rv = ['status'=>-1,'msg'=>'短信发送失败'];
$tpl = WSTMsgTemplates('PHONE_FOTGET_PAY');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$params = ['tpl'=>$tpl,'params'=>['LOGIN_NAME'=>$data['loginName'],'VERFIY_CODE'=>$phoneVerify,'VERFIY_TIME'=>10]];
$m = new LogSms();
$rv = $m->sendSMS(0,$userPhone,$params,'getPhoneVerifyt',$phoneVerify);
}
if($rv['status']==1){
$USER = [];
$USER['userPhone'] = $userPhone;
$USER['phoneVerify'] = $phoneVerify;
session('Verify_backPaypwd_info',$USER);
session('Verify_backPaypwd_Time',time());
return WSTReturn('短信发送成功!',1);
}
return $rv;
}
/**
* 忘记支付密码:验证
*/
public function payEditt(){
$payVerify = input("post.Checkcode");
$timeVerify = session('Verify_backPaypwd_Time');
if(!session('Verify_backPaypwd_info.phoneVerify') || time()>floatval($timeVerify)+10*60){
return WSTReturn("校验码已失效,请重新发送!");
exit();
}
if($payVerify==session('Verify_backPaypwd_info.phoneVerify')){
return WSTReturn("验证成功",1);
}
return WSTReturn("校验码不一致,请重新输入!",-1);
}
public function editPaySut(){
$process = 'Two';
$this->assign('process',$process);
if(session('Verify_backPaypwd_info.phoneVerify')){
return $this->fetch('users/security/user_edit_pay');
}
$this->error('地址已失效,请重新验证身份');
}
/**
* 忘记支付密码:设置
*/
public function payEdito(){
$process = input("post.process");
$timeVerify = session('Verify_backPaypwd_Time');
if(!session('Verify_backPaypwd_info.phoneVerify') || time()>floatval($timeVerify)+10*60){
return WSTReturn("地址已失效,请重新验证身份!");
exit();
}
$m = new MUsers();
$rs = $m->resetbackPay();
if($process=='Two'){
$rs['process'] = $process;
}else{
$rs['process'] = '0';
}
return $rs;
}
/**
* 忘记支付密码:完成
*/
public function editPaySu(){
$pr = input("get.pr");
$process = 'Three';
$this->assign('process',$process);
if($pr == 'Two'){
return $this->fetch('users/security/user_edit_pay');
}else{
return $this->fetch('users/security/user_pay_pass');
}
}
/**
* 忘记密码
*/
public function forgetPass(){
return $this->fetch('forget_pass');
}
public function forgetPasst(){
if(time()<floatval(session('findPass.findTime'))+30*60){
$userId = session('findPass.userId');
$m = new MUsers();
$info = $m->getById($userId);
if($info['userPhone']!='')$info['userPhone'] = WSTStrReplace($info['userPhone'],'*',3);
if($info['userEmail']!='')$info['userEmail'] = WSTStrReplace($info['userEmail'],'*',2,'@');
$this->assign('forgetInfo',$info);
return $this->fetch('forget_pass2');
}else{
$this->error('页面已过期!');
}
}
// 重置密码
public function resetPass(){
if(!session('findPass')){
$this->error('连接已失效!',url('home/users/index'));
}
if(time()>floatval(session('REST_Time'))+30*60)$this->error('连接已失效!');
return $this->fetch('forget_pass3');
}
// 验证校验码
public function forgetPasss(){
if(!session('findPass')){
$this->error('连接已失效!');
}
if(time()>floatval(session('REST_Time'))+30*60)$this->error('连接已失效!');
$USER = session('findPass');
if(empty($USER) && $USER['userId']!=''){
$this->error('请在同一浏览器操作!');
}
$USER = session('findPass');
if(empty($USER) && $USER['userId']!=''){
$this->expire('请在同一浏览器操作!');
}
$uId = session('findPass.userId');
$key = session("findPass.key");
// 验证邮箱中的验证码
$secretCode = input('secretCode');
if($key==$secretCode){
session('REST_userId',$uId);
session('REST_success','1');
return WSTReturn('验证成功',1);
}else{
return WSTReturn('校验码错误',-1);
}
}
public function forgetPassf(){
return $this->fetch('forget_pass4');
}
/**
* 找回密码
*/
public function findPass(){
//禁止缓存
header('Cache-Control:no-cache,must-revalidate');
header('Pragma:no-cache');
$code = input("post.verifyCode");
$step = input("post.step/d");
switch ($step) {
case 1:#第一步,验证身份
if(!WSTVerifyCheck($code)){
return WSTReturn('验证码错误!',-1);
}
$loginName = input("post.loginName");
$rs = WSTCheckLoginKey($loginName);
if($rs["status"]==1){
return WSTReturn("用户名不存在!");
exit();
}
$m = new MUsers();
$info = $m->checkAndGetLoginInfo($loginName);
if ($info != false) {
session('findPass',array('userId'=>$info['userId'],'loginName'=>$loginName,'userPhone'=>$info['userPhone'],'userEmail'=>$info['userEmail'],'loginSecret'=>$info['loginSecret'],'findTime'=>time()));
return WSTReturn("操作成功",1);
}else return WSTReturn("用户名不存在!");
break;
case 2:#第二步,验证方式
if (session('findPass.loginName') != null ){
if(input("post.modes")==1){
if ( session('findPass.userPhone') == null) {
return WSTReturn('你没有预留手机号码,请通过邮箱方式找回密码!',-1);
}
$phoneVerify = input("post.Checkcode");
if(!$phoneVerify){
return WSTReturn('校验码不能为空!',-1);
}
return $this->checkfindPhone($phoneVerify);
}else{
if (session('findPass.userEmail')==null) {
return WSTReturn('你没有预留邮箱,请通过手机号码找回密码!',-1);
}
if(!WSTVerifyCheck($code)){
return WSTReturn('验证码错误!',-1);
}
return $this->getfindEmail();
}
}else $this->error('页面已过期!');
break;
case 3:#第三步,设置新密码
$resetPass = session('REST_success');
if($resetPass != 1)$this->error("页面已失效!");
$loginPwd = input("post.loginPwd");
$repassword = input("post.repassword");
$decrypt_data = WSTRSA($loginPwd);
$decrypt_data2 = WSTRSA($repassword);
if($decrypt_data['status']==1 && $decrypt_data2['status']==1){
$loginPwd = $decrypt_data['data'];
$repassword = $decrypt_data2['data'];
}else{
return WSTReturn('设置失败');
}
if ($loginPwd == $repassword) {
$m = new MUsers();
$rs = $m->resetPass();
if($rs['status']==1){
return $rs;
}else{
return $rs;
}
}else return WSTReturn('两次密码不同!',-1);
break;
default:
$this->error('页面已过期!');
break;
}
}
/**
* 手机验证码获取
*/
public function getfindPhone(){
session('WST_USER',session('findPass.userId'));
if(session('findPass.userPhone')==''){
return WSTReturn('你没有预留手机号码,请通过邮箱方式找回密码!',-1);
}
$phoneVerify = rand(100000,999999);
session('WST_USER',null);
$rv = ['status'=>-1,'msg'=>'短信发送失败'];
$tpl = WSTMsgTemplates('PHONE_FOTGET');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$params = ['tpl'=>$tpl,'params'=>['VERFIY_CODE'=>$phoneVerify,'VERFIY_TIME'=>10]];
$m = new LogSms();
$rv = $m->sendSMS(0,session('findPass.userPhone'),$params,'getPhoneVerify',$phoneVerify);
}
if($rv['status']==1){
// 记录发送短信的时间,用于验证是否过期
session('REST_Time',time());
$USER = [];
$USER['phoneVerify'] = $phoneVerify;
$USER['time'] = time();
session('findPhone',$USER);
return WSTReturn('短信发送成功!',1);
}
return $rv;
}
/**
* 手机验证码检测
* -1 错误1正确
*/
public function checkfindPhone($phoneVerify){
if(!session('findPhone.phoneVerify') || time()>floatval(session('findPhone.time'))+10*60){
return WSTReturn("校验码已失效,请重新发送!");
exit();
}
if (session('findPhone.phoneVerify') == $phoneVerify ) {
$fuserId = session('findPass.userId');
if(!empty($fuserId)){
session('REST_userId',$fuserId);
session('REST_success','1');
$rs['status'] = 1;
$rs['url'] = url('home/users/resetPass');
return $rs;
}
return WSTReturn('无效用户',-1);
}
return WSTReturn('校验码错误!',-1);
}
/**
* 发送验证邮件/找回密码
*/
public function getfindEmail(){
$code = rand(0,999999);
$sendRs = ['status'=>-1,'msg'=>'邮件发送失败'];
$tpl = WSTMsgTemplates('EMAIL_FOTGET');
if( $tpl['tplContent']!='' && $tpl['status']=='1'){
$find = ['${LOGIN_NAME}','${SEND_TIME}','${VERFIY_CODE}','${VERFIY_TIME}'];
$replace = [session('findPass.loginName'),date('Y-m-d H:i:s'),$code,30];
$sendRs = WSTSendMail(session('findPass.userEmail'),'密码重置',str_replace($find,$replace,$tpl['content']));
}
if($sendRs['status']==1){
$uId = session('findPass.userId');
session("findPass.key", $code);
// 发起重置密码的时间;
session('REST_Time',time());
return WSTReturn("发送成功",1);
}else{
return WSTReturn($sendRs['msg'],-1);
}
}
/**
* 加载登录小窗口
*/
public function toLoginBox(){
return $this->fetch('box_login');
}
/**
* 跳去修改支付密码页
*/
public function editPayPass(){
$m = new MUsers();
//获取用户信息
$userId = (int)session('WST_USER.userId');
$data = $m->getById($userId);
$this->assign('data',$data);
return $this->fetch('users/security/user_pay_pass');
}
/**
* 修改支付密码
*/
public function payPassEdit(){
$userId = (int)session('WST_USER.userId');
$m = new MUsers();
$rs = $m->editPayPass($userId);
return $rs;
}
/**
* 获取用户金额
*/
public function getUserMoney(){
$m = new MUsers();
$rs = $m->getFieldsById((int)session('WST_USER.userId'),'userMoney,lockMoney,rechargeMoney,payPwd');
$rs['isSetPayPwd'] = ($rs['payPwd']=='')?0:1;
$rs['isDraw'] = ((float)WSTConf('CONF.drawCashUserLimit')<=$rs['userMoney'])?1:0;
unset($rs['payPwd']);
return WSTReturn('',1,$rs);
}
}
Reference in New Issue View Git Blame Copy Permalink