private function _userAdd()
{
if ($this->_isPost()) {
if ($_POST['password'] != $_POST['pwd_confirm']) {
$this->_utilMsg->showMsg('密码不一致', -1);
}
$rolesList = implode(',', $_POST['roles']);
$addArr = array('service_id' => $_POST['service_id'], 'department_id' => $_POST['department_id'], 'roles' => $rolesList, 'user_name' => $_POST['user_name'], 'password' => md5($_POST['password']), 'nick_name' => $_POST['nick_name'], 'date_created' => CURRENT_TIME, 'date_updated' => CURRENT_TIME);
if ($this->_utilRbac->createUser($addArr)) {
$this->_utilMsg->showMsg('添加用户成功', 1, Tools::url(CONTROL, ACTION));
} else {
$this->_utilMsg->showMsg('添加用户失败', -2);
}
} else {
$departmentList = $this->_modelDepartment->findAll();
$departmentList = $this->_modelDepartment->getTtwoArrConvertOneArr($departmentList, 'Id', 'name');
$rolesList = $this->_modelRoles->findAll();
$rolesList = $this->_modelRoles->getTtwoArrConvertOneArr($rolesList, 'role_value', 'role_name');
$this->_view->assign('rolesList', $rolesList);
$this->_view->assign('departmentList', $departmentList);
$this->_utilMsg->createNavBar();
$this->_view->set_tpl(array('body' => 'User/UserAdd.html'));
$this->_view->display();
}
}
/**
* 登录
*/
public function actionLogin()
{
//获取passport发过来的参数
$uname = $_GET['uname'];
//用户名
$password = $_GET['pwd'];
//密码
$sign = $_GET['sign'];
//签名
$sys = $_GET['sys'];
//子系统标识名
$pwds = $this->_authcode($password, 'DECODE', self::$_API_KEY);
//加密后的密码
$destime = $this->_authcode($_GET['desTime'], 'DECODE', self::$_API_KEY);
$sign2 = md5($uname . $pwds . $destime . self::$_MD5_KEY);
$check_uname_url = "http://pass.uwan.com/validate.aspx?uname=" . urlencode($uname) . "&destime=" . urlencode($_GET['desTime']) . "&despwd=" . urlencode($password) . "&sys=" . $sys;
$apply = file_get_contents($check_uname_url);
if ($apply == "1") {
//passport验证成功
if ($sign == $sign2) {
//签名正确
//本系统进行用户验证
$uname = strtolower($uname);
//小写
$userInfo = $this->_modelUser->findByUserName($uname);
if (!is_array($userInfo)) {
//用户不存在
//创建最低权限用户
$user = array();
$user['org_id'] = 0;
//组ID
$user['department_id'] = 0;
//部门ID
$user['roles'] = 'guest';
//角色
$user['nick_name'] = $uname;
//昵称
$user['user_name'] = $uname;
//用户名
$user['password'] = md5($password);
$user['date_created'] = time();
//创建时间
$user['date_updated'] = $user['date_created'];
//更新时间
$user['order_vip_level'] = '0,1,2,3,4,5,6';
if (!$this->_utilRbac->createUser($user)) {
//创建用户失败
echo "validate('" . $sys . "'," . self::$_API_FAILED . ");";
exit;
}
}
//设置成已登录
$this->_utilRbac->setLogin($uname);
$utilOnline = $this->_getGlobalData('Util_Online', 'object');
$utilOnline->setOnlineUser($uname);
//设置在线用户
Tools::setHeadP3P();
//header ( 'P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"' );
echo "validate('" . $sys . "'," . self::$_API_SUCCESS . ");";
} else {
//登录失败
echo "validate('" . $sys . "'," . self::$_API_FAILED . ");";
exit;
}
} else {
//验证失败
echo "validate('" . $sys . "'," . self::$_API_FAILED . ");";
exit;
}
}
