public function loginsubmit()
{
$username = I('post.username');
$password = I('post.password');
$user_group = I('post.user_group');
$verify = I('post.verify');
if (!check_verify($verify)) {
$this->error('验证码输入错误!');
}
$res = \Org\Util\Rbac::authenticate(array('username' => $username, 'group' => $user_group));
if (false == $res) {
$this->error('帐号不存在或密码错误!');
} else {
$signpassword = sign_password($password);
if ($res['password'] != $signpassword) {
$this->error('用户名或密码错误!');
}
}
$member = M('Member')->where(array('id' => $res['id']))->find();
//更新活动时间
M('Member')->where(array('id' => $res['id']))->save(array('timeupdate' => date('Y-m-d H:i:s'), 'lastip' => get_client_ip()));
session('member', $member);
cookie('login', true);
if ($res['username'] == C('SPECIAL_USER')) {
session(C('ADMIN_AUTH_KEY'), true);
}
session(C('USER_AUTH_KEY'), $res['id']);
// 缓存访问权限
\Org\Util\Rbac::saveAccessList();
$this->success('登陆成功!');
}
function useredit()
{
$password = I('password');
$time = time('Y-m-d H:i:s');
$basicinfo = array('username' => I('username'), 'realname' => I('realname'), 'group' => I('groupid'), 'mobile' => I('mobile'), 'mome' => I('memo'), 'timeupdate' => $time, 'member_id' => session('member.id'));
if (!empty($password)) {
$basicinfo['password'] = sign_password(I('password'));
}
$result = $this->where(array('id' => I('id')))->save($basicinfo);
return $result;
}
