public function act_addPlatIds()
{
$infos = isset($_POST['infos']) ? $_POST['infos'] : '';
$uid = isset($_POST['uid']) ? intval($_POST['uid']) : 0;
if (empty($uid)) {
self::$errCode = 402;
self::$errMsg = '被修改人id有误!';
return;
}
$insertData = array();
if (!empty($infos)) {
$datas = explode(',', $infos);
foreach ($datas as $data) {
$idInfo = explode('*', $data);
$insertData[$idInfo[1]][] = $idInfo[0];
}
}
if (empty($insertData)) {
$data = '';
} else {
$data = json_encode($insertData);
}
if (UserCompetenceModel::insertPlatData($uid, $data)) {
self::$errCode = 0;
self::$errMsg = '权限设置成功';
return true;
} else {
self::$errCode = 403;
self::$errMsg = '权限设置失败';
return false;
}
}
public static function updateUserCompetence($nameList, $smsnum)
{
self::initDB();
$successnum = 0;
$success = array();
$error = array();
//设置批量修改记录标志变量
foreach ($nameList as $from) {
$table = "`power_global_user`";
//获取用户的global_user_id
$filed = "global_user_id";
$where = " global_user_status = 1 AND global_user_is_delete = 0 AND (global_user_login_name = '{$from}' OR global_user_name = '{$from}') LIMIT 1 ";
$ret = self::selectOneTable($table, $filed, $where);
if (!$ret[0]['global_user_id']) {
self::$errCode = "1057";
self::$errMsg = "获取用户资料失败";
return false;
}
$from = $ret[0]['global_user_id'];
$username = $ret[0]['global_user_name'];
$field = "num";
$sql = "SELECT {$field} FROM `" . C('PREFIX') . self::$tabsmspower . "` WHERE 1 AND `global_user_id` = '{$from}' AND `is_delete` = 0 LIMIT 1 ";
$query = self::$dbConn->query($sql);
$sumnum = self::$dbConn->fetch_array_all($query);
//查询在nt_sms_power中是否有sms_num记录
if ($sumnum) {
//存在记录则更新
$field = "num";
$sql = "UPDATE " . C('PREFIX') . self::$tabsmspower . " SET num = '{$smsnum}' WHERE global_user_id = '{$from}'";
$query = self::$dbConn->query($sql);
if ($query) {
$affectedrows = self::$dbConn->affected_rows();
$successnum++;
array_push($success, $username);
} else {
array_push($error, $username);
}
} else {
//不存在记录则插入
$data = array("global_user_id" => $from, "num" => $smsnum, "is_delete" => "0");
$def = array2sql($data);
//将数组转为SET后面的sql语句
$def = "INSERT INTO `" . C('PREFIX') . self::$tabsmspower . "` SET " . $def;
$query = self::$dbConn->query($def);
if ($query) {
$successnum++;
array_push($success, $username);
} else {
array_push($error, $username);
}
}
}
if ($successnum === count($nameList)) {
return array("ret" => "ok", "success" => $success);
} else {
return array("ret" => "no", "errorUser" => $error, "success" => $success);
}
}
public function act_updateUserCompetence()
{
function removeEmpty($v)
{
if (trim($v) !== '') {
return true;
}
}
$nameList = urldecode($_GET['nameList']);
$nameList = explode(",", $nameList);
$nameList = array_filter($nameList, "removeEmpty");
$smsnum = trim($_GET['smsnum']);
return UserCompetenceModel::updateUserCompetence($nameList, $smsnum);
}
public function view_showUserCompense()
{
$shipArr = array();
$platformAccountList = CommonModel::getPlatformAccountList();
//获取平台及对应账号
$shipingtyplist = CommonModel::getShipingTypeList();
//运输方式列表
$uid = $_GET['uid'];
$shipArr = UserCompetenceModel::showCompetenceVisibleShip($uid);
$powerAccountList = UserCompetenceModel::showCompetenceVisibleAccount($uid);
//获取权限对应账号
$powerPlatformList = UserCompetenceModel::getCompetenceVisiblePlat($uid);
//获取权限对应平台
$this->smarty->assign('uid', $uid);
$this->smarty->assign('shipArr', $shipArr);
$this->smarty->assign('shipingtypelist', $shipingtyplist);
$this->smarty->assign('platformAccountList', $platformAccountList);
$this->smarty->assign('powerAccountList', $powerAccountList);
$this->smarty->assign('powerPlatformList', $powerPlatformList);
$this->smarty->display("showUserCompense.htm");
}
/**
* UserCompetenceModel::showCompetence($uid)
* 查看用户权限
* @param int $uid 用户id
* @return array
*/
public static function showCompetence($uid)
{
self::initDB();
$sql = "SELECT * FROM " . self::$prefix . self::$table_user . " WHERE user_id = {$uid}";
$query = self::$dbConn->query($sql);
if ($query) {
$affectedrows = self::$dbConn->affected_rows();
if ($affectedrows) {
$ret = self::$dbConn->fetch_array_all($query);
return $ret;
} else {
self::$errCode = "10000";
self::$errMsg = "尚未数据,暂不能修改";
return false;
}
} else {
self::$errCode = "10001";
self::$errMsg = "获取数据失败";
return false;
}
}
/**
*核查登入者是否为采购
*@author wxb
*@date 2013/11/21
*/
public function checkPower()
{
$purid = $_SESSION[C('USER_AUTH_SYS_ID')];
//采购员ID
$comid = $_SESSION[C('USER_COM_ID')];
//公司ID
$res = UserCompetenceModel::showCompetence($purid);
$purArr = explode(',', $res[0]['power_ids']);
if (!in_array($purid, $purArr)) {
//过滤只能采购员才能生产采购订单
$result['msg'] = 'noPower';
return $result;
}
return true;
}
/**
* UserCompetenceAct::show()
* 查看用户颗粒权限
* @return array
*/
public function show()
{
$ajaxAcc = commonAct::ajaxAccess();
if (!$ajaxAcc) {
self::$errCode = "1002";
self::$errMsg = "您无用户颗粒查看权限!";
return false;
}
$userid = isset($_POST["userid"]) ? intval($_POST["userid"]) : 0;
if (empty($userid)) {
self::$errCode = "1001";
self::$errMsg = "用户ID参数非法";
return false;
}
$res = UserCompetenceModel::showCompetence($userid);
self::$errCode = UserCompetenceModel::$errCode;
self::$errMsg = UserCompetenceModel::$errMsg;
return $res;
}
/**
* UserCompetenceAct::act_delUserCompetence()
* 删除用户开放授权
* @param int $gid 开放权限ID
* @return bool
*/
public function act_delUserCompetence()
{
$gid = isset($_POST["id"]) ? intval(trim($_POST["id"])) : 0;
$act = isset($_REQUEST["act"]) ? post_check($_REQUEST["act"]) : "";
$mod = isset($_REQUEST["mod"]) ? post_check($_REQUEST["mod"]) : "";
if (!AuthUser::checkLogin($mod, $act)) {
self::$errCode = 30001;
self::$errMsg = "对不起,您无数据删除权限!";
return false;
}
if (empty($gid) || !is_numeric($gid)) {
self::$errCode = 30000;
self::$errMsg = "开放用户权限ID有误!";
return false;
}
$res = UserCompetenceModel::delUserCompetence($gid);
self::$errCode = UserCompetenceModel::$errCode;
self::$errMsg = UserCompetenceModel::$errMsg;
return $res;
}
/**
* UserCompetenceModel::listAccount()
* 列出某个或全部平台用户帐号
* @param int $pid 平台ID
* @return array
*/
public static function listAccount($pfid)
{
self::initDB();
if ($pfid == 0) {
$sql = "SELECT id,account FROM " . self::$table_account . " WHERE is_delete = 0";
} else {
$sql = "SELECT id,account FROM " . self::$table_account . " WHERE platformId = {$pfid} AND is_delete = 0";
}
//echo $sql;
$query = self::$dbConn->query($sql);
if ($query) {
$ret = self::$dbConn->fetch_array_all($query);
return $ret;
} else {
self::$errCode = "1060";
self::$errMsg = "获取数据失败";
return false;
}
}
/**
* UserCompetenceModel::getCompetenceById()
* 获取某个用户开放权限ID信息
* @param integer $gid 权限ID
* @return array
*/
public static function getCompetenceById($gid)
{
self::initDB();
$sql = "SELECT * FROM `" . self::$prefix . self::$table . "` WHERE gid = {$gid}";
$query = self::$dbConn->query($sql);
if ($query) {
return self::$dbConn->fetch_array($query);
} else {
self::$errCode = 10000;
self::$errMsg = "执行SQL语句出错";
return false;
}
}
/**
* UserCompetenceAct::act_listAcc()
* 列出某个平台或所有平台帐号
* @return array
*/
public function act_listAcc()
{
if (isset($_GET["pfid"])) {
$pfid = intval($_GET["pfid"]);
} else {
self::$errCode = "1001";
self::$errMsg = "平台ID参数非法";
return false;
}
$result = UserCompetenceModel::listAccount($pfid);
self::$errCode = UserCompetenceModel::$errCode;
self::$errMsg = UserCompetenceModel::$errMsg;
return $result;
}
/**
* UserModel::userLogin()
* 用户登录走开放系统
* add by 管拥军 2013-08-21
* @return bool
*/
public static function userLogin($username, $password, $version)
{
if (strpos($username, 'sailvan.com') === false) {
return "fail";
exit;
}
$paramArr = array('method' => 'power.user.login.get', 'format' => 'json', 'v' => '1.0', 'username' => C('OPEN_SYS_USER'), 'user_name' => $username, 'pwd' => rawurlencode($password), 'version' => $version, 'sysName' => C('AUTH_SYSNAME'), 'sysToken' => C('AUTH_SYSTOKEN'));
$loginInfo = callOpenSystem($paramArr);
unset($paramArr);
//如果开放系统登录超时,走本地登录
if (empty($loginInfo)) {
self::initDB();
$pwd = md5(md5(rawurldecode(rawurlencode($password))));
$sql = "SELECT a.user_company,a.user_id,a.user_token,b.global_user_company,b.global_user_id,b.global_user_name FROM power_user AS a\n\t\t\t\t\t\tLEFT JOIN power_global_user AS b ON a.user_email = b.global_user_email\n\t\t\t\t\t\tWHERE a.user_pwd = '{$pwd}' AND a.user_email = '{$username}' AND a.user_system_id = 8 AND b.global_user_is_delete = 0\n\t\t\t\t\t\tLIMIT 1";
$query = self::$dbConn->query($sql);
if (!$query) {
return false;
}
$res = self::$dbConn->fetch_array($query);
$_SESSION['userToken'] = $res['user_token'];
$_SESSION['sysUserId'] = $res['global_user_id'];
//统一用户系统ID
$_SESSION['userId'] = $res['user_id'];
//分系统用户ID
$_SESSION['userName'] = $res['global_user_name'];
$_SESSION['companyId'] = $res['global_user_company'];
//读取用户细颗粒权限
$competences = UserCompetenceModel::getCompetenceById($_SESSION['sysUserId']);
$_SESSION['competences'] = json_decode($competences['competence'], true);
return "ok";
} else {
$loginInfo = json_decode($loginInfo);
if (isset($loginInfo->errCode)) {
echo $loginInfo->errMsg;
self::$errCode = $loginInfo->errCode;
self::$errMsg = $loginInfo->errMsg;
return false;
}
$_SESSION['userToken'] = $loginInfo->userToken;
$_SESSION['sysUserId'] = $loginInfo->globalUserId;
//统一用户系统ID
$_SESSION['userId'] = $loginInfo->userId;
//分系统用户ID
$_SESSION['userName'] = $loginInfo->userCnName;
$_SESSION['companyId'] = $loginInfo->company;
//读取用户细颗粒权限
$competences = UserCompetenceModel::getCompetenceById($_SESSION['sysUserId']);
$_SESSION['competences'] = json_decode($competences['competence'], true);
return "ok";
}
}
public static function getCompetenceVisiblePlat($uid)
{
self::initDB();
$sql = "SELECT * FROM wh_userCompetence where globalUserId={$uid}";
$query = self::$dbConn->query($sql);
if ($query) {
$data = array();
$ret = self::$dbConn->fetch_array($query);
if (!empty($ret)) {
$data = array();
if (!empty($ret['visiblePlatformAccount'])) {
$visible_platform_account = json_decode($ret['visiblePlatformAccount'], true);
foreach ($visible_platform_account as $key => $value) {
$visible_account[] = $key;
}
$data = array_filter($visible_account);
}
}
return $data;
} else {
self::$errCode = "401";
self::$errMsg = "获取数据失败";
return false;
}
}
