mirror of
https://github.com/netcccyun/dnsmgr.git
synced 2024-11-16 11:42:35 +08:00
189 lines
7.3 KiB
PHP
189 lines
7.3 KiB
PHP
<?php
|
|
|
|
namespace app\controller;
|
|
|
|
use app\BaseController;
|
|
use think\facade\Db;
|
|
use think\facade\View;
|
|
use think\facade\Request;
|
|
|
|
class User extends BaseController
|
|
{
|
|
|
|
public function user()
|
|
{
|
|
if (!checkPermission(2)) return $this->alert('error', '无权限');
|
|
$list = Db::name('domain')->select();
|
|
$domains = [];
|
|
foreach ($list as $row) {
|
|
$domains[] = $row['name'];
|
|
}
|
|
View::assign('domains', $domains);
|
|
return view();
|
|
}
|
|
|
|
public function user_data()
|
|
{
|
|
if (!checkPermission(2)) return json(['total' => 0, 'rows' => []]);
|
|
$kw = input('post.kw', null, 'trim');
|
|
$offset = input('post.offset/d');
|
|
$limit = input('post.limit/d');
|
|
|
|
$select = Db::name('user');
|
|
if (!empty($kw)) {
|
|
$select->whereLike('id|username', $kw);
|
|
}
|
|
$total = $select->count();
|
|
$rows = $select->order('id', 'desc')->limit($offset, $limit)->select();
|
|
|
|
return json(['total' => $total, 'rows' => $rows]);
|
|
}
|
|
|
|
public function user_op()
|
|
{
|
|
if (!checkPermission(2)) return $this->alert('error', '无权限');
|
|
$act = input('param.act');
|
|
if ($act == 'get') {
|
|
$id = input('post.id/d');
|
|
$row = Db::name('user')->where('id', $id)->find();
|
|
if (!$row) {
|
|
return json(['code' => -1, 'msg' => '用户不存在']);
|
|
}
|
|
$row['permission'] = Db::name('permission')->where('uid', $id)->column('domain');
|
|
return json(['code' => 0, 'data' => $row]);
|
|
} elseif ($act == 'add') {
|
|
$username = input('post.username', null, 'trim');
|
|
$password = input('post.password', null, 'trim');
|
|
$is_api = input('post.is_api/d');
|
|
$apikey = input('post.apikey', null, 'trim');
|
|
$level = input('post.level/d');
|
|
if (empty($username) || empty($password)) {
|
|
return json(['code' => -1, 'msg' => '用户名或密码不能为空']);
|
|
}
|
|
if ($is_api == 1 && empty($apikey)) {
|
|
return json(['code' => -1, 'msg' => 'API密钥不能为空']);
|
|
}
|
|
if (Db::name('user')->where('username', $username)->find()) {
|
|
return json(['code' => -1, 'msg' => '用户名已存在']);
|
|
}
|
|
$uid = Db::name('user')->insertGetId([
|
|
'username' => $username,
|
|
'password' => password_hash($password, PASSWORD_DEFAULT),
|
|
'is_api' => $is_api,
|
|
'apikey' => $apikey,
|
|
'level' => $level,
|
|
'regtime' => date('Y-m-d H:i:s'),
|
|
'status' => 1,
|
|
]);
|
|
if ($level == 1) {
|
|
$permission = input('post.permission/a');
|
|
if (!empty($permission)) {
|
|
$data = [];
|
|
foreach ($permission as $domain) {
|
|
$data[] = ['uid' => $uid, 'domain' => $domain];
|
|
}
|
|
Db::name('permission')->insertAll($data);
|
|
}
|
|
}
|
|
return json(['code' => 0, 'msg' => '添加用户成功!']);
|
|
} elseif ($act == 'edit') {
|
|
$id = input('post.id/d');
|
|
$row = Db::name('user')->where('id', $id)->find();
|
|
if (!$row) return json(['code' => -1, 'msg' => '用户不存在']);
|
|
$username = input('post.username', null, 'trim');
|
|
$is_api = input('post.is_api/d');
|
|
$apikey = input('post.apikey', null, 'trim');
|
|
$level = input('post.level/d');
|
|
$repwd = input('post.repwd', null, 'trim');
|
|
if (empty($username)) {
|
|
return json(['code' => -1, 'msg' => '用户名不能为空']);
|
|
}
|
|
if ($is_api == 1 && empty($apikey)) {
|
|
return json(['code' => -1, 'msg' => 'API密钥不能为空']);
|
|
}
|
|
if (Db::name('user')->where('username', $username)->where('id', '<>', $id)->find()) {
|
|
return json(['code' => -1, 'msg' => '用户名已存在']);
|
|
}
|
|
if ($level == 1 && ($id == 1000 || $id == $this->request->user['id'])) {
|
|
$level = 2;
|
|
}
|
|
Db::name('user')->where('id', $id)->update([
|
|
'username' => $username,
|
|
'is_api' => $is_api,
|
|
'apikey' => $apikey,
|
|
'level' => $level,
|
|
]);
|
|
Db::name('permission')->where(['uid' => $id])->delete();
|
|
if ($level == 1) {
|
|
$permission = input('post.permission/a');
|
|
if (!empty($permission)) {
|
|
$data = [];
|
|
foreach ($permission as $domain) {
|
|
$data[] = ['uid' => $id, 'domain' => $domain];
|
|
}
|
|
Db::name('permission')->insertAll($data);
|
|
}
|
|
}
|
|
if (!empty($repwd)) {
|
|
Db::name('user')->where('id', $id)->update(['password' => password_hash($repwd, PASSWORD_DEFAULT)]);
|
|
}
|
|
return json(['code' => 0, 'msg' => '修改用户成功!']);
|
|
} elseif ($act == 'set') {
|
|
$id = input('post.id/d');
|
|
$status = input('post.status/d');
|
|
if ($id == 1000) {
|
|
return json(['code' => -1, 'msg' => '此用户无法修改状态']);
|
|
}
|
|
if ($id == $this->request->user['id']) {
|
|
return json(['code' => -1, 'msg' => '当前登录用户无法修改状态']);
|
|
}
|
|
Db::name('user')->where('id', $id)->update(['status' => $status]);
|
|
return json(['code' => 0]);
|
|
} elseif ($act == 'del') {
|
|
$id = input('post.id/d');
|
|
if ($id == 1000) {
|
|
return json(['code' => -1, 'msg' => '此用户无法删除']);
|
|
}
|
|
if ($id == $this->request->user['id']) {
|
|
return json(['code' => -1, 'msg' => '当前登录用户无法删除']);
|
|
}
|
|
Db::name('user')->where('id', $id)->delete();
|
|
return json(['code' => 0]);
|
|
}
|
|
return json(['code' => -3]);
|
|
}
|
|
|
|
public function log()
|
|
{
|
|
return view();
|
|
}
|
|
|
|
public function log_data()
|
|
{
|
|
$uid = input('post.uid', null, 'trim');
|
|
$kw = input('post.kw', null, 'trim');
|
|
$domain = input('post.domain', null, 'trim');
|
|
$offset = input('post.offset/d');
|
|
$limit = input('post.limit/d');
|
|
|
|
$select = Db::name('log');
|
|
if ($this->request->user['type'] == 'domain') {
|
|
$select->where('domain', $this->request->user['name']);
|
|
} elseif ($this->request->user['level'] == 1) {
|
|
$select->where('uid', $this->request->user['id']);
|
|
} elseif (!empty($uid)) {
|
|
$select->where('uid', $uid);
|
|
}
|
|
if (!empty($kw)) {
|
|
$select->whereLike('action|data', '%' . $kw . '%');
|
|
}
|
|
if (!empty($domain)) {
|
|
$select->where('domain', $domain);
|
|
}
|
|
$total = $select->count();
|
|
$rows = $select->order('id', 'desc')->limit($offset, $limit)->select();
|
|
|
|
return json(['total' => $total, 'rows' => $rows]);
|
|
}
|
|
}
|