public function change_site()
{
$siteid = isset($_GET['siteid']) ? intval($_GET['siteid']) : '';
if (empty($siteid)) {
$this->error('参数错误', 'Index/index');
}
set_siteid($siteid);
$this->redirect('Index/index');
}
public function change_site()
{
$siteid = I('get.siteid');
if (empty($siteid)) {
$this->error('参数错误', 'Index/index');
}
set_siteid($siteid);
$this->redirect('Index/index');
}
public function change_site()
{
if (!$_SESSION[C('USER_AUTH_KEY')]) {
$this->assign('jumpUrl', __GROUP__ . C('USER_AUTH_GATEWAY'));
$this->assign('waitSecond', 1);
$this->error(L('admin_login'));
}
$siteid = isset($_GET['siteid']) ? intval($_GET['siteid']) : '';
if (empty($siteid)) {
$this->error('参数错误', 'Index/index');
}
set_siteid($siteid);
$this->redirect('Index/index');
}
public function checkLogin($username, $password, $verify)
{
$this->jumpUrl = __MODULE__ . C('USER_AUTH_GATEWAY');
if (empty($username) || empty($password) || empty($verify)) {
$this->errorCode = 10001;
$this->errorMessage = '用户名|密码|验证码都必须!';
return false;
}
if (session('verify') != md5($verify)) {
$this->errorCode = 10001;
$this->errorMessage = '验证码错误!';
return false;
}
// 生成认证条件
$map = array();
// 支持使用绑定帐号登录
$map['account'] = $username;
$map["status"] = array('gt', 0);
$authInfo = RBAC::authenticate($map);
$allow_try_error_time = C('ALLOW_TRY_ERROR_TIME', null, 5);
if ($authInfo['try_time'] >= $allow_try_error_time) {
$this->errorCode = 10002;
$this->errorMessage = '登录失败次数过多,帐号已被禁用,请与管理员联系!';
return false;
}
model('User')->where(array('id' => $authInfo['id']))->save(array('try_time' => array('exp', '`try_time` + 1')));
$data = array();
$data['ip'] = get_client_ip();
$data['date'] = date("Y-m-d H:i:s");
$data['username'] = $username;
$data['module'] = MODULE_NAME;
$data['action'] = ACTION_NAME;
$data['querystring'] = U(MODULE_NAME . '/' . ACTION_NAME);
//使用用户名、密码和状态的方式进行认证
if (false === $authInfo) {
$data['status'] = 0;
model("Log")->add($data);
$this->errorCode = 10003;
$this->errorMessage = '帐号不存在或已禁用!';
return false;
} else {
if ($authInfo['password'] != md5($password)) {
$data['status'] = 0;
model("Log")->add($data);
$this->errorCode = 10003;
$this->errorMessage = '密码错误!你还有' . ($allow_try_error_time - 1 - $authInfo['try_time']) . '尝试次机会';
return false;
}
// 保存Session
session('user_info', $authInfo);
session(C('USER_AUTH_KEY'), $authInfo['id']);
session('lastLoginTime', $authInfo['last_login_time']);
if ($authInfo['role_id'] == 1) {
session('administrator', true);
}
//保存登录信息
model('User')->where(array('id' => $authInfo['id']))->save(array('last_login_time' => time(), 'last_login_ip' => $data['id'], 'try_time' => 0));
//保存日志
$data['status'] = 1;
$data['userid'] = $authInfo['id'];
model("Log")->add($data);
// 存储访问权限
RBAC::saveAccessList();
// 设置默认站点
$sites = logic('site')->getAccessibleSites();
$current_site = current($sites);
set_siteid($current_site['id']);
return true;
}
}
