private function _userAdd() { if ($this->_isPost()) { if ($_POST['password'] != $_POST['pwd_confirm']) { $this->_utilMsg->showMsg('密码不一致', -1); } $rolesList = implode(',', $_POST['roles']); $addArr = array('service_id' => $_POST['service_id'], 'department_id' => $_POST['department_id'], 'roles' => $rolesList, 'user_name' => $_POST['user_name'], 'password' => md5($_POST['password']), 'nick_name' => $_POST['nick_name'], 'date_created' => CURRENT_TIME, 'date_updated' => CURRENT_TIME); if ($this->_utilRbac->createUser($addArr)) { $this->_utilMsg->showMsg('添加用户成功', 1, Tools::url(CONTROL, ACTION)); } else { $this->_utilMsg->showMsg('添加用户失败', -2); } } else { $departmentList = $this->_modelDepartment->findAll(); $departmentList = $this->_modelDepartment->getTtwoArrConvertOneArr($departmentList, 'Id', 'name'); $rolesList = $this->_modelRoles->findAll(); $rolesList = $this->_modelRoles->getTtwoArrConvertOneArr($rolesList, 'role_value', 'role_name'); $this->_view->assign('rolesList', $rolesList); $this->_view->assign('departmentList', $departmentList); $this->_utilMsg->createNavBar(); $this->_view->set_tpl(array('body' => 'User/UserAdd.html')); $this->_view->display(); } }
/** * 登录 */ public function actionLogin() { //获取passport发过来的参数 $uname = $_GET['uname']; //用户名 $password = $_GET['pwd']; //密码 $sign = $_GET['sign']; //签名 $sys = $_GET['sys']; //子系统标识名 $pwds = $this->_authcode($password, 'DECODE', self::$_API_KEY); //加密后的密码 $destime = $this->_authcode($_GET['desTime'], 'DECODE', self::$_API_KEY); $sign2 = md5($uname . $pwds . $destime . self::$_MD5_KEY); $check_uname_url = "http://pass.uwan.com/validate.aspx?uname=" . urlencode($uname) . "&destime=" . urlencode($_GET['desTime']) . "&despwd=" . urlencode($password) . "&sys=" . $sys; $apply = file_get_contents($check_uname_url); if ($apply == "1") { //passport验证成功 if ($sign == $sign2) { //签名正确 //本系统进行用户验证 $uname = strtolower($uname); //小写 $userInfo = $this->_modelUser->findByUserName($uname); if (!is_array($userInfo)) { //用户不存在 //创建最低权限用户 $user = array(); $user['org_id'] = 0; //组ID $user['department_id'] = 0; //部门ID $user['roles'] = 'guest'; //角色 $user['nick_name'] = $uname; //昵称 $user['user_name'] = $uname; //用户名 $user['password'] = md5($password); $user['date_created'] = time(); //创建时间 $user['date_updated'] = $user['date_created']; //更新时间 $user['order_vip_level'] = '0,1,2,3,4,5,6'; if (!$this->_utilRbac->createUser($user)) { //创建用户失败 echo "validate('" . $sys . "'," . self::$_API_FAILED . ");"; exit; } } //设置成已登录 $this->_utilRbac->setLogin($uname); $utilOnline = $this->_getGlobalData('Util_Online', 'object'); $utilOnline->setOnlineUser($uname); //设置在线用户 Tools::setHeadP3P(); //header ( 'P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"' ); echo "validate('" . $sys . "'," . self::$_API_SUCCESS . ");"; } else { //登录失败 echo "validate('" . $sys . "'," . self::$_API_FAILED . ");"; exit; } } else { //验证失败 echo "validate('" . $sys . "'," . self::$_API_FAILED . ");"; exit; } }