public function loginsubmit() { $username = I('post.username'); $password = I('post.password'); $user_group = I('post.user_group'); $verify = I('post.verify'); if (!check_verify($verify)) { $this->error('验证码输入错误!'); } $res = \Org\Util\Rbac::authenticate(array('username' => $username, 'group' => $user_group)); if (false == $res) { $this->error('帐号不存在或密码错误!'); } else { $signpassword = sign_password($password); if ($res['password'] != $signpassword) { $this->error('用户名或密码错误!'); } } $member = M('Member')->where(array('id' => $res['id']))->find(); //更新活动时间 M('Member')->where(array('id' => $res['id']))->save(array('timeupdate' => date('Y-m-d H:i:s'), 'lastip' => get_client_ip())); session('member', $member); cookie('login', true); if ($res['username'] == C('SPECIAL_USER')) { session(C('ADMIN_AUTH_KEY'), true); } session(C('USER_AUTH_KEY'), $res['id']); // 缓存访问权限 \Org\Util\Rbac::saveAccessList(); $this->success('登陆成功!'); }
function useredit() { $password = I('password'); $time = time('Y-m-d H:i:s'); $basicinfo = array('username' => I('username'), 'realname' => I('realname'), 'group' => I('groupid'), 'mobile' => I('mobile'), 'mome' => I('memo'), 'timeupdate' => $time, 'member_id' => session('member.id')); if (!empty($password)) { $basicinfo['password'] = sign_password(I('password')); } $result = $this->where(array('id' => I('id')))->save($basicinfo); return $result; }