Admin.php 12 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320
  1. <?php
  2. namespace app\admin\controller;
  3. use think\facade\View;
  4. use think\facade\Lang;
  5. /**
  6. * ============================================================================
  7. *
  8. * ============================================================================
  9. * 版权所有 2014-2028 浙江惠利玛产业互联网有限公司,并保留所有权利。
  10. * 网站地址: https://www.valimart.net/
  11. * ----------------------------------------------------------------------------
  12. *
  13. * ============================================================================
  14. * 控制器
  15. */
  16. class Admin extends AdminControl {
  17. public function initialize() {
  18. parent::initialize();
  19. Lang::load(base_path() . 'admin/lang/' . config('lang.default_lang') . '/admin.lang.php');
  20. }
  21. /**
  22. * 管理员列表
  23. */
  24. public function admin() {
  25. $admin_mod = model('admin');
  26. $condition = array();
  27. $admin_list = $admin_mod->getAdminList($condition, 10);
  28. View::assign('admin_list', $admin_list);
  29. View::assign('show_page', $admin_mod->page_info->render());
  30. $this->setAdminCurItem('admin');
  31. return View::fetch('admin');
  32. }
  33. /**
  34. * 管理员删除
  35. */
  36. public function admin_del() {
  37. $admin_id = intval(input('param.admin_id'));
  38. if (!empty($admin_id)) {
  39. if ($admin_id == 1) {
  40. $this->error(lang('ds_common_save_fail'));
  41. }
  42. $admin_mod = model('admin');
  43. $admin_mod->delAdmin(array(array('admin_id' ,'=', $admin_id)));
  44. $this->log(lang('ds_del') . lang('limit_admin') . '[ID:' . $admin_id . ']', 1);
  45. ds_json_encode(10000, lang('ds_common_del_succ'));
  46. } else {
  47. ds_json_encode(10001, lang('ds_common_del_fail'));
  48. }
  49. }
  50. /**
  51. * 管理员添加
  52. */
  53. public function admin_add() {
  54. $admin_model = model('admin');
  55. if (!request()->isPost()) {
  56. //得到权限组
  57. $gadmin = $admin_model->getGadminList('gname,gid');
  58. View::assign('gadmin', $gadmin);
  59. return View::fetch('admin_form');
  60. } else {
  61. $data['admin_name'] = input('post.admin_name');
  62. $data['admin_gid'] = input('post.gid');
  63. $data['admin_password'] = md5(input('post.admin_password'));
  64. if(empty(input('post.admin_password'))){
  65. $this->error(lang('admin_add_password_null'));
  66. }
  67. $admin_validate = ds_validate('admin');
  68. if (!$admin_validate->scene('admin_add')->check($data)) {
  69. $this->error($admin_validate->getError());
  70. }
  71. //判断是否重名
  72. $admin_info=$admin_model->getOneAdmin(array(array('admin_name','=',$data['admin_name'])));
  73. if($admin_info){
  74. $this->error(lang('admin_add_admin_not_exists'));
  75. }
  76. $rs = $admin_model->addAdmin($data);
  77. if ($rs) {
  78. $this->log(lang('ds_add') . lang('limit_admin') . '[' . input('post.admin_name') . ']', 1);
  79. dsLayerOpenSuccess(lang('ds_common_save_succ'));
  80. } else {
  81. $this->error(lang('ds_common_save_fail'));
  82. }
  83. }
  84. }
  85. /**
  86. * ajax操作
  87. */
  88. public function ajax() {
  89. $admin_model = model('admin');
  90. switch (input('get.branch')) {
  91. //管理人员名称验证
  92. case 'check_admin_name':
  93. $condition[]=array('admin_name','=',input('get.admin_name'));
  94. $admin_info = $admin_model->infoAdmin($condition);
  95. if (!empty($admin_info)) {
  96. exit('false');
  97. } else {
  98. exit('true');
  99. }
  100. break;
  101. //权限组名称验证
  102. case 'check_gadmin_name':
  103. $condition = array();
  104. if (is_numeric(input('param.gid'))) {
  105. $condition[]=array('gid','<>', intval(input('param.gid')));
  106. }
  107. $condition[]=array('gname','=',input('get.gname'));
  108. $info = $admin_model->getOneGadmin($condition);
  109. if (!empty($info)) {
  110. exit('false');
  111. } else {
  112. exit('true');
  113. }
  114. break;
  115. }
  116. }
  117. /**
  118. * 设置管理员权限
  119. */
  120. public function admin_edit() {
  121. $admin_id = intval(input('param.admin_id'));
  122. if (request()->isPost()) {
  123. //没有更改密码
  124. if (input('post.admin_password') != '') {
  125. $data['admin_password'] = md5(input('post.admin_password'));
  126. }
  127. $data['admin_gid'] = intval(input('post.gid'));
  128. //查询管理员信息
  129. $admin_model = model('admin');
  130. $result = $admin_model->editAdmin($data, $admin_id);
  131. if ($result) {
  132. $this->log(lang('ds_edit') . lang('limit_admin') . '[ID:' . $admin_id . ']', 1);
  133. dsLayerOpenSuccess(lang('admin_edit_success'));
  134. } else {
  135. $this->error(lang('admin_edit_fail'));
  136. }
  137. } else {
  138. //查询用户信息
  139. $admin_model = model('admin');
  140. $admin = $admin_model->getOneAdmin(array(array('admin_id' ,'=', $admin_id)));
  141. if (!is_array($admin) || count($admin) <= 0) {
  142. $this->error(lang('admin_edit_admin_error'), (string)url('admin/admin'));
  143. }
  144. View::assign('admin', $admin);
  145. //得到权限组
  146. $gadmin = $admin_model->getGadminList('gname,gid');
  147. View::assign('gadmin', $gadmin);
  148. return View::fetch('admin_form');
  149. }
  150. }
  151. /**
  152. * 取得所有权限项
  153. *
  154. * @return array
  155. */
  156. private function permission() {
  157. $limit = $this->limitList();
  158. if (is_array($limit)) {
  159. foreach ($limit as $k => $v) {
  160. if (is_array($v['child'])) {
  161. $tmp = array();
  162. foreach ($v['child'] as $key => $value) {
  163. $controller = (!empty($value['controller'])) ? $value['controller'] : $v['controller'];
  164. if (strpos($controller, '|') == false) {//controller参数不带|
  165. $limit[$k]['child'][$key]['action'] = rtrim($controller . '.' . str_replace('|', '|' . $controller . '.', $value['action']), '.');
  166. } else {//controller参数带|
  167. $tmp_str = '';
  168. if (empty($value['action'])) {
  169. $limit[$k]['child'][$key]['action'] = $controller;
  170. } elseif (strpos($value['action'], '|') == false) {//action参数不带|
  171. foreach (explode('|', $controller) as $v1) {
  172. $tmp_str .= "$v1.{$value['action']}|";
  173. }
  174. $limit[$k]['child'][$key]['action'] = rtrim($tmp_str, '|');
  175. } elseif (strpos($value['action'], '|') != false && strpos($controller, '|') != false) {//action,controller都带|,交差权限
  176. foreach (explode('|', $controller) as $v1) {
  177. foreach (explode('|', $value['action']) as $v2) {
  178. $tmp_str .= "$v1.$v2|";
  179. }
  180. }
  181. $limit[$k]['child'][$key]['action'] = rtrim($tmp_str, '|');
  182. }
  183. }
  184. }
  185. }
  186. }
  187. return $limit;
  188. } else {
  189. return array();
  190. }
  191. }
  192. /**
  193. * 权限组
  194. */
  195. public function gadmin() {
  196. $admin_model = model('admin');
  197. $gadmin_list = $admin_model->getGadminList();
  198. View::assign('gadmin_list', $gadmin_list);
  199. $this->setAdminCurItem('gadmin');
  200. return View::fetch('gadmin');
  201. }
  202. /**
  203. * 添加权限组
  204. */
  205. public function gadmin_add() {
  206. if (!request()->isPost()) {
  207. View::assign('limit', $this->permission());
  208. return View::fetch('gadmin_add');
  209. } else {
  210. $limit_str = '';
  211. $permission_array = input('post.permission/a');
  212. if (is_array($permission_array)) {
  213. $limit_str = implode('|', $permission_array);
  214. }
  215. $data['glimits'] = ds_encrypt($limit_str, MD5_KEY . md5(input('post.gname')));
  216. $data['gname'] = input('post.gname');
  217. $admin_model = model('admin');
  218. if ($admin_model->addGadmin($data)) {
  219. $this->log(lang('ds_add') . lang('limit_gadmin') . '[' . input('post.gname') . ']', 1);
  220. dsLayerOpenSuccess(lang('ds_common_save_succ'));
  221. } else {
  222. $this->error(lang('ds_common_save_fail'));
  223. }
  224. }
  225. }
  226. /**
  227. * 设置权限组权限
  228. */
  229. public function gadmin_set() {
  230. $gid = intval(input('param.gid'));
  231. $admin_model = model('admin');
  232. $ginfo = $admin_model->getOneGadmin(array(array('gid' ,'=', $gid)));
  233. if (empty($ginfo)) {
  234. $this->error(lang('admin_set_admin_not_exists'));
  235. }
  236. if (!request()->isPost()) {
  237. //解析已有权限
  238. $hlimit = ds_decrypt($ginfo['glimits'], MD5_KEY . md5($ginfo['gname']));
  239. $ginfo['glimits'] = explode('|', $hlimit);
  240. View::assign('ginfo', $ginfo);
  241. View::assign('limit', $this->permission());
  242. return View::fetch('gadmin_set');
  243. } else {
  244. $limit_str = '';
  245. $permission_array = input('post.permission/a');
  246. if (is_array($permission_array)) {
  247. $limit_str = implode('|', $permission_array);
  248. }
  249. $limit_str = ds_encrypt($limit_str, MD5_KEY . md5(input('post.gname')));
  250. $data['glimits'] = $limit_str;
  251. $data['gname'] = input('post.gname');
  252. $update = $admin_model->editGadmin(array(array('gid' ,'=', $gid)), $data);
  253. if ($update) {
  254. $this->log(lang('ds_edit') . lang('limit_gadmin') . '[' . input('post.gname') . ']', 1);
  255. dsLayerOpenSuccess(lang('ds_common_save_succ'));
  256. } else {
  257. $this->error(lang('ds_common_save_succ'));
  258. }
  259. }
  260. }
  261. /**
  262. * 组删除
  263. */
  264. public function gadmin_del() {
  265. if (is_numeric(input('param.gid'))) {
  266. $admin_model = model('admin');
  267. $admin_model->delGadmin(array(array('gid' ,'=', intval(input('param.gid')))));
  268. $this->log(lang('ds_del') . lang('limit_gadmin') . '[ID' . intval(input('param.gid')) . ']', 1);
  269. ds_json_encode(10000, lang('ds_common_op_succ'));
  270. } else {
  271. ds_json_encode(10000, lang('ds_common_op_fail'));
  272. }
  273. }
  274. /**
  275. * 获取卖家栏目列表,针对控制器下的栏目
  276. */
  277. protected function getAdminItemList() {
  278. $menu_array = array(
  279. array(
  280. 'name' => 'admin',
  281. 'text' => lang('limit_admin'),
  282. 'url' => (string)url('admin/admin')
  283. ),
  284. array(
  285. 'name' => 'admin_add',
  286. 'text' => lang('admin_add_limit_admin'),
  287. 'url' => "javascript:dsLayerOpen('" . (string)url('admin/admin_add') . "','".lang('admin_add_limit_admin')."')"
  288. ),
  289. array(
  290. 'name' => 'gadmin',
  291. 'text' => lang('limit_gadmin'),
  292. 'url' => (string)url('admin/gadmin')
  293. ),
  294. array(
  295. 'name' => 'gadmin_add',
  296. 'text' => lang('admin_add_limit_gadmin'),
  297. 'url' => "javascript:dsLayerOpen('" . (string)url('admin/gadmin_add') . "','".lang('admin_add_limit_gadmin')."')"
  298. ),
  299. );
  300. return $menu_array;
  301. }
  302. }
  303. ?>