public static function do_login_action()
{
// 拦截
self::method('post');
try {
// 校验
$checker = new lazy_checker(p());
$checker->check('name', array('change_to' => 'string', 'cannot_be' => array('', '用户不能为空')));
$checker->check('pass', array('change_to' => 'string', 'cannot_be' => array('', '密码不能为空')));
// 执行
$member = member_model::get_one(array('name' => $checker->name));
if ($member === null) {
$checker->failed('name', '用户名不正确');
}
if (!$member->is_valid_pass($checker->pass)) {
$checker->failed('pass', '密码不正确');
}
visitor::set_role('member', $member->id, p_has('remember') ? 30 * 86400 : 0, []);
// 成功
self::json_result(true, '登录成功', 0, url('site/admin'));
} catch (check_failed $e) {
// 失败
self::json_result(false, $e->get_reasons());
}
}
public static function do_register_action()
{
self::method('post');
try {
$checker = new lazy_checker(p());
$checker->check('name', array('change_to' => 'string', 'cannot_be' => array('', '用户名不能为空'), 'char_size' => array(3, user_model::name_len, '用户名的长度为%d-%d个字符'), 'callback' => function ($name) {
if (user_model::get_one(array('name' => $name)) !== null) {
return '该用户已被注册';
}
}));
$checker->check('pass', array('change_to' => 'string', 'cannot_be' => array('', '密码不能为空'), 'char_size' => array(6, -1, '密码长度必须大于等于%d个字符')));
if (p_str('re_pass') !== $checker->pass) {
$checker->failed('pass', '两次输入的密码不一致');
}
$salt = random_sha1();
$pass = user_model::get_crypted_pass($checker->pass, $salt);
$user = array('name' => $checker->name, 'pass' => $pass, 'salt' => $salt, 'register_time' => clock::get_stamp());
$user_id = user_model::add($user);
visitor::set_role('user', $user_id, 0, array('name' => $user['name']));
online_service::refresh_online_count();
self::json_result(true, '', 0, url('site/index'));
} catch (check_failed $e) {
self::json_result(false, $e->get_reasons());
}
}
public static function new_action()
{
// 拦截
self::method('post');
$post_id = g_int('post_id');
$post = post_model::get_by_id($post_id);
self::forward_404_if($post === null, '文章不存在,无法评论');
try {
// 校验
$checker = new lazy_checker(p());
$checker->check('captcha', array('should_be' => array(setting_model::get_by_id(setting_model::id_captcha_answer)->value, '验证码不正确')));
$checker->del('captcha');
$checker->check_model_rules('comment');
$comment = $checker->get_all();
if (!visitor::has_role('member') && member_model::get_one(array('name' => $comment['author'])) !== null) {
$checker->failed('author', '您不能使用管理员的昵称');
}
// 执行
$comment['post_id'] = $post_id;
$comment['pub_time'] = clock::get_stamp();
comment_model::add($comment);
post_model::inc_by_id(array('comment_count' => 1), $post_id);
setting_model::inc_by_id(array('value' => 1), setting_model::id_comment_count);
// 成功
self::json_result(true, '评论成功', 0, url('post/show?id=' . $post_id));
} catch (check_failed $e) {
// 失败
self::json_result(false, $e->get_reasons());
}
}
public static function do_login_action()
{
self::method('post');
try {
$checker = new lazy_checker(p());
$checker->check('name', array('change_to' => 'string', 'cannot_be' => array('', '用户名不能为空')));
$checker->check('pass', array('change_to' => 'string', 'cannot_be' => array('', '密码不能为空')));
$admin = admin_model::get_one(array('name' => $checker->name));
if ($admin === null) {
$checker->failed('name', '用户不存在。');
} else {
if (!$admin->is_valid_pass($checker->pass)) {
$checker->failed('pass', '密码不正确');
} else {
visitor::set_role('admin', $admin->id, p_has('remember') ? 30 * 86400 : 0, array('name' => $admin->name));
self::json_result(true, '', 0, url('admin-site/index'));
}
}
} catch (check_failed $e) {
self::json_result(false, $e->get_reasons());
}
}
