117 lines
3.8 KiB
PHP
117 lines
3.8 KiB
PHP
<?php
|
||
// +----------------------------------------------------------------------
|
||
// | CRMEB [ CRMEB赋能开发者,助力企业发展 ]
|
||
// +----------------------------------------------------------------------
|
||
// | Copyright (c) 2016~2020 https://www.crmeb.com All rights reserved.
|
||
// +----------------------------------------------------------------------
|
||
// | Licensed CRMEB并不是自由软件,未经许可不能去掉CRMEB相关版权
|
||
// +----------------------------------------------------------------------
|
||
// | Author: CRMEB Team <admin@crmeb.com>
|
||
// +----------------------------------------------------------------------
|
||
declare (strict_types=1);
|
||
|
||
namespace app\services\user;
|
||
|
||
use app\services\BaseServices;
|
||
use app\dao\user\UserAuthDao;
|
||
use app\services\work\WorkClientServices;
|
||
use crmeb\exceptions\AuthException;
|
||
use crmeb\services\CacheService;
|
||
use crmeb\services\wechat\config\WorkConfig;
|
||
use crmeb\utils\JwtAuth;
|
||
|
||
/**
|
||
*
|
||
* Class UserAuthServices
|
||
* @package app\services\user
|
||
* @mixin UserAuthDao
|
||
*/
|
||
class UserAuthServices extends BaseServices
|
||
{
|
||
|
||
/**
|
||
* UserAuthServices constructor.
|
||
* @param UserAuthDao $dao
|
||
*/
|
||
public function __construct(UserAuthDao $dao)
|
||
{
|
||
$this->dao = $dao;
|
||
}
|
||
|
||
/**
|
||
* 获取授权信息
|
||
* @param $token
|
||
* @return array
|
||
* @throws \Psr\SimpleCache\InvalidArgumentException
|
||
*/
|
||
public function parseToken($token): array
|
||
{
|
||
$md5Token = is_null($token) ? '' : md5($token);
|
||
|
||
if ($token === 'undefined') {
|
||
throw new AuthException('请登录', 410000);
|
||
}
|
||
if (!$token || !$tokenData = CacheService::getTokenBucket($md5Token))
|
||
throw new AuthException('请登录', 410000);
|
||
|
||
if (!is_array($tokenData) || empty($tokenData) || !isset($tokenData['uid'])) {
|
||
throw new AuthException('请登录', 410000);
|
||
}
|
||
|
||
/** @var JwtAuth $jwtAuth */
|
||
$jwtAuth = app()->make(JwtAuth::class);
|
||
//设置解析token
|
||
[$id, $type, $auth] = $jwtAuth->parseToken($token);
|
||
try {
|
||
$jwtAuth->verifyToken();
|
||
} catch (\Throwable $e) {
|
||
if (!request()->isCli()) CacheService::clearToken($md5Token);
|
||
throw new AuthException('登录已过期,请重新登录', 410001);
|
||
}
|
||
|
||
/** @var UserServices $userService */
|
||
$userService = app()->make(UserServices::class);
|
||
$user = $userService->getUserCacheInfo($id);
|
||
if (!$user) throw new AuthException('用户不存在,请重新登陆', 410001);
|
||
if (!$user['status'])
|
||
throw new AuthException('您已被禁止登录,请联系管理员', 410002);
|
||
|
||
if (!$user || $user->uid != $tokenData['uid']) {
|
||
if (!request()->isCli()) CacheService::clearToken($md5Token);
|
||
throw new AuthException('登录状态有误,请重新登录', 410002);
|
||
}
|
||
|
||
//有密码在检测
|
||
if ($user['pwd'] != md5('123456') && $auth !== md5($user['pwd'])) {
|
||
throw new AuthException('登录已过期,请重新登录', 410001);
|
||
}
|
||
|
||
$tokenData['type'] = $type;
|
||
return compact('user', 'tokenData');
|
||
}
|
||
|
||
/**
|
||
* 获取企业客户
|
||
* @param string $userid
|
||
* @return array
|
||
*/
|
||
public function parseClient(string $userid)
|
||
{
|
||
/** @var WorkConfig $workConfig */
|
||
$workConfig = app()->make(WorkConfig::class);
|
||
$corpId = $workConfig->get('corpId');
|
||
if (!$corpId) {
|
||
throw new AuthException('请先配置企业微信');
|
||
}
|
||
/** @var WorkClientServices $service */
|
||
$service = app()->make(WorkClientServices::class);
|
||
$clientInfo = $service->get(['corp_id' => $corpId, 'external_userid' => $userid]);
|
||
if (!$clientInfo) {
|
||
throw new AuthException('客户信息不存在');
|
||
}
|
||
|
||
return $clientInfo->toArray();
|
||
}
|
||
|
||
}
|