public function act_addPlatIds() { $infos = isset($_POST['infos']) ? $_POST['infos'] : ''; $uid = isset($_POST['uid']) ? intval($_POST['uid']) : 0; if (empty($uid)) { self::$errCode = 402; self::$errMsg = '被修改人id有误!'; return; } $insertData = array(); if (!empty($infos)) { $datas = explode(',', $infos); foreach ($datas as $data) { $idInfo = explode('*', $data); $insertData[$idInfo[1]][] = $idInfo[0]; } } if (empty($insertData)) { $data = ''; } else { $data = json_encode($insertData); } if (UserCompetenceModel::insertPlatData($uid, $data)) { self::$errCode = 0; self::$errMsg = '权限设置成功'; return true; } else { self::$errCode = 403; self::$errMsg = '权限设置失败'; return false; } }
public static function updateUserCompetence($nameList, $smsnum) { self::initDB(); $successnum = 0; $success = array(); $error = array(); //设置批量修改记录标志变量 foreach ($nameList as $from) { $table = "`power_global_user`"; //获取用户的global_user_id $filed = "global_user_id"; $where = " global_user_status = 1 AND global_user_is_delete = 0 AND (global_user_login_name = '{$from}' OR global_user_name = '{$from}') LIMIT 1 "; $ret = self::selectOneTable($table, $filed, $where); if (!$ret[0]['global_user_id']) { self::$errCode = "1057"; self::$errMsg = "获取用户资料失败"; return false; } $from = $ret[0]['global_user_id']; $username = $ret[0]['global_user_name']; $field = "num"; $sql = "SELECT {$field} FROM `" . C('PREFIX') . self::$tabsmspower . "` WHERE 1 AND `global_user_id` = '{$from}' AND `is_delete` = 0 LIMIT 1 "; $query = self::$dbConn->query($sql); $sumnum = self::$dbConn->fetch_array_all($query); //查询在nt_sms_power中是否有sms_num记录 if ($sumnum) { //存在记录则更新 $field = "num"; $sql = "UPDATE " . C('PREFIX') . self::$tabsmspower . " SET num = '{$smsnum}' WHERE global_user_id = '{$from}'"; $query = self::$dbConn->query($sql); if ($query) { $affectedrows = self::$dbConn->affected_rows(); $successnum++; array_push($success, $username); } else { array_push($error, $username); } } else { //不存在记录则插入 $data = array("global_user_id" => $from, "num" => $smsnum, "is_delete" => "0"); $def = array2sql($data); //将数组转为SET后面的sql语句 $def = "INSERT INTO `" . C('PREFIX') . self::$tabsmspower . "` SET " . $def; $query = self::$dbConn->query($def); if ($query) { $successnum++; array_push($success, $username); } else { array_push($error, $username); } } } if ($successnum === count($nameList)) { return array("ret" => "ok", "success" => $success); } else { return array("ret" => "no", "errorUser" => $error, "success" => $success); } }
public function act_updateUserCompetence() { function removeEmpty($v) { if (trim($v) !== '') { return true; } } $nameList = urldecode($_GET['nameList']); $nameList = explode(",", $nameList); $nameList = array_filter($nameList, "removeEmpty"); $smsnum = trim($_GET['smsnum']); return UserCompetenceModel::updateUserCompetence($nameList, $smsnum); }
public function view_showUserCompense() { $shipArr = array(); $platformAccountList = CommonModel::getPlatformAccountList(); //获取平台及对应账号 $shipingtyplist = CommonModel::getShipingTypeList(); //运输方式列表 $uid = $_GET['uid']; $shipArr = UserCompetenceModel::showCompetenceVisibleShip($uid); $powerAccountList = UserCompetenceModel::showCompetenceVisibleAccount($uid); //获取权限对应账号 $powerPlatformList = UserCompetenceModel::getCompetenceVisiblePlat($uid); //获取权限对应平台 $this->smarty->assign('uid', $uid); $this->smarty->assign('shipArr', $shipArr); $this->smarty->assign('shipingtypelist', $shipingtyplist); $this->smarty->assign('platformAccountList', $platformAccountList); $this->smarty->assign('powerAccountList', $powerAccountList); $this->smarty->assign('powerPlatformList', $powerPlatformList); $this->smarty->display("showUserCompense.htm"); }
/** * UserCompetenceModel::showCompetence($uid) * 查看用户权限 * @param int $uid 用户id * @return array */ public static function showCompetence($uid) { self::initDB(); $sql = "SELECT * FROM " . self::$prefix . self::$table_user . " WHERE user_id = {$uid}"; $query = self::$dbConn->query($sql); if ($query) { $affectedrows = self::$dbConn->affected_rows(); if ($affectedrows) { $ret = self::$dbConn->fetch_array_all($query); return $ret; } else { self::$errCode = "10000"; self::$errMsg = "尚未数据,暂不能修改"; return false; } } else { self::$errCode = "10001"; self::$errMsg = "获取数据失败"; return false; } }
/** *核查登入者是否为采购 *@author wxb *@date 2013/11/21 */ public function checkPower() { $purid = $_SESSION[C('USER_AUTH_SYS_ID')]; //采购员ID $comid = $_SESSION[C('USER_COM_ID')]; //公司ID $res = UserCompetenceModel::showCompetence($purid); $purArr = explode(',', $res[0]['power_ids']); if (!in_array($purid, $purArr)) { //过滤只能采购员才能生产采购订单 $result['msg'] = 'noPower'; return $result; } return true; }
/** * UserCompetenceAct::show() * 查看用户颗粒权限 * @return array */ public function show() { $ajaxAcc = commonAct::ajaxAccess(); if (!$ajaxAcc) { self::$errCode = "1002"; self::$errMsg = "您无用户颗粒查看权限!"; return false; } $userid = isset($_POST["userid"]) ? intval($_POST["userid"]) : 0; if (empty($userid)) { self::$errCode = "1001"; self::$errMsg = "用户ID参数非法"; return false; } $res = UserCompetenceModel::showCompetence($userid); self::$errCode = UserCompetenceModel::$errCode; self::$errMsg = UserCompetenceModel::$errMsg; return $res; }
/** * UserCompetenceAct::act_delUserCompetence() * 删除用户开放授权 * @param int $gid 开放权限ID * @return bool */ public function act_delUserCompetence() { $gid = isset($_POST["id"]) ? intval(trim($_POST["id"])) : 0; $act = isset($_REQUEST["act"]) ? post_check($_REQUEST["act"]) : ""; $mod = isset($_REQUEST["mod"]) ? post_check($_REQUEST["mod"]) : ""; if (!AuthUser::checkLogin($mod, $act)) { self::$errCode = 30001; self::$errMsg = "对不起,您无数据删除权限!"; return false; } if (empty($gid) || !is_numeric($gid)) { self::$errCode = 30000; self::$errMsg = "开放用户权限ID有误!"; return false; } $res = UserCompetenceModel::delUserCompetence($gid); self::$errCode = UserCompetenceModel::$errCode; self::$errMsg = UserCompetenceModel::$errMsg; return $res; }
/** * UserCompetenceModel::listAccount() * 列出某个或全部平台用户帐号 * @param int $pid 平台ID * @return array */ public static function listAccount($pfid) { self::initDB(); if ($pfid == 0) { $sql = "SELECT id,account FROM " . self::$table_account . " WHERE is_delete = 0"; } else { $sql = "SELECT id,account FROM " . self::$table_account . " WHERE platformId = {$pfid} AND is_delete = 0"; } //echo $sql; $query = self::$dbConn->query($sql); if ($query) { $ret = self::$dbConn->fetch_array_all($query); return $ret; } else { self::$errCode = "1060"; self::$errMsg = "获取数据失败"; return false; } }
/** * UserCompetenceModel::getCompetenceById() * 获取某个用户开放权限ID信息 * @param integer $gid 权限ID * @return array */ public static function getCompetenceById($gid) { self::initDB(); $sql = "SELECT * FROM `" . self::$prefix . self::$table . "` WHERE gid = {$gid}"; $query = self::$dbConn->query($sql); if ($query) { return self::$dbConn->fetch_array($query); } else { self::$errCode = 10000; self::$errMsg = "执行SQL语句出错"; return false; } }
/** * UserCompetenceAct::act_listAcc() * 列出某个平台或所有平台帐号 * @return array */ public function act_listAcc() { if (isset($_GET["pfid"])) { $pfid = intval($_GET["pfid"]); } else { self::$errCode = "1001"; self::$errMsg = "平台ID参数非法"; return false; } $result = UserCompetenceModel::listAccount($pfid); self::$errCode = UserCompetenceModel::$errCode; self::$errMsg = UserCompetenceModel::$errMsg; return $result; }
/** * UserModel::userLogin() * 用户登录走开放系统 * add by 管拥军 2013-08-21 * @return bool */ public static function userLogin($username, $password, $version) { if (strpos($username, 'sailvan.com') === false) { return "fail"; exit; } $paramArr = array('method' => 'power.user.login.get', 'format' => 'json', 'v' => '1.0', 'username' => C('OPEN_SYS_USER'), 'user_name' => $username, 'pwd' => rawurlencode($password), 'version' => $version, 'sysName' => C('AUTH_SYSNAME'), 'sysToken' => C('AUTH_SYSTOKEN')); $loginInfo = callOpenSystem($paramArr); unset($paramArr); //如果开放系统登录超时,走本地登录 if (empty($loginInfo)) { self::initDB(); $pwd = md5(md5(rawurldecode(rawurlencode($password)))); $sql = "SELECT a.user_company,a.user_id,a.user_token,b.global_user_company,b.global_user_id,b.global_user_name FROM power_user AS a\n\t\t\t\t\t\tLEFT JOIN power_global_user AS b ON a.user_email = b.global_user_email\n\t\t\t\t\t\tWHERE a.user_pwd = '{$pwd}' AND a.user_email = '{$username}' AND a.user_system_id = 8 AND b.global_user_is_delete = 0\n\t\t\t\t\t\tLIMIT 1"; $query = self::$dbConn->query($sql); if (!$query) { return false; } $res = self::$dbConn->fetch_array($query); $_SESSION['userToken'] = $res['user_token']; $_SESSION['sysUserId'] = $res['global_user_id']; //统一用户系统ID $_SESSION['userId'] = $res['user_id']; //分系统用户ID $_SESSION['userName'] = $res['global_user_name']; $_SESSION['companyId'] = $res['global_user_company']; //读取用户细颗粒权限 $competences = UserCompetenceModel::getCompetenceById($_SESSION['sysUserId']); $_SESSION['competences'] = json_decode($competences['competence'], true); return "ok"; } else { $loginInfo = json_decode($loginInfo); if (isset($loginInfo->errCode)) { echo $loginInfo->errMsg; self::$errCode = $loginInfo->errCode; self::$errMsg = $loginInfo->errMsg; return false; } $_SESSION['userToken'] = $loginInfo->userToken; $_SESSION['sysUserId'] = $loginInfo->globalUserId; //统一用户系统ID $_SESSION['userId'] = $loginInfo->userId; //分系统用户ID $_SESSION['userName'] = $loginInfo->userCnName; $_SESSION['companyId'] = $loginInfo->company; //读取用户细颗粒权限 $competences = UserCompetenceModel::getCompetenceById($_SESSION['sysUserId']); $_SESSION['competences'] = json_decode($competences['competence'], true); return "ok"; } }
public static function getCompetenceVisiblePlat($uid) { self::initDB(); $sql = "SELECT * FROM wh_userCompetence where globalUserId={$uid}"; $query = self::$dbConn->query($sql); if ($query) { $data = array(); $ret = self::$dbConn->fetch_array($query); if (!empty($ret)) { $data = array(); if (!empty($ret['visiblePlatformAccount'])) { $visible_platform_account = json_decode($ret['visiblePlatformAccount'], true); foreach ($visible_platform_account as $key => $value) { $visible_account[] = $key; } $data = array_filter($visible_account); } } return $data; } else { self::$errCode = "401"; self::$errMsg = "获取数据失败"; return false; } }