// +---------------------------------------------------------------------- namespace app\services\system\admin; use app\services\BaseServices; use crmeb\services\CacheService; use think\exception\ValidateException; /** * 密码、登录次数验证 * Class AdminAuthServices * @package app\services\system\admin */ class LoginAuthServices extends BaseServices { /** * 验证登录账号是否需要锁定 * @param string $account * @param string $type * @return bool */ public function checkErrorLock(string $account, string $type = 'admin') { $loginErrorNum = $this->getErrorNum($account, $type); if ($loginErrorNum >= (int)sys_config('system_login_error_num', 3)) { throw new ValidateException('您输入的错误次数较多，已被暂时锁定，请稍后再试'); } return true; } /** * 获取登录错误次数 * @param string $account * @param string $type * @return int */ public function getErrorNum(string $account, string $type = 'admin') { $errorKey = 'system_' . $type . '_login_error_num_' . $account; /** @var CacheService $cacheServices */ $cacheServices = app()->make(CacheService::class); return (int)$cacheServices->get($errorKey); } /** * 设置登录错误次数缓存 * @param string $account * @param string $type * @return bool */ public function setErrorNum(string $account, string $type = 'admin') { $errorKey = 'system_' . $type . '_login_error_num_' . $account; $lockTime = (int)sys_config('system_login_lock_time', 5); /** @var CacheService $cacheServices */ $cacheServices = app()->make(CacheService::class); $loginErrorNum = $this->getErrorNum($account, $type); $cacheServices::set($errorKey, $loginErrorNum + 1, $lockTime); return true; } /** * 验证输入密码 * @param string $password * @return bool */ public function validatePassword(string $password) { $type = (int)sys_config('system_password_type', 3); $length = (int)sys_config('system_password_length', 3); if (!$this->checkPassword($password, $type, $length)) { throw new ValidateException($this->getMessage($type, $length)); } return true; } /** * 验证登录密码 * @param string $password * @param int $type * @param int $length * @return false|int */ function checkPassword(string $password, int $type = 3, int $length = 6) { switch ($type) { case 1:// 纯数字 $regex = '/^\d{' . $length . ',}$/'; break; case 2:// 纯字母 $regex = '/^[A-Za-z]{' . $length . ',}$/'; break; case 3:// 数字 + 纯字母 $regex = '/^(?=.*[A-Za-z])(?=.*\d)[A-Za-z\d]{' . $length . ',}$/'; break; case 4:// 数字 + 纯字母 + 特殊符号 // 使用 [\W_] 匹配所有特殊字符和下划线 $regex = '/^(?=.*[A-Za-z])(?=.*\d)(?=.*[\W_])[A-Za-z\d\W_]{' . $length . ',}$/'; break; default: $regex = '/^(?=.*[A-Za-z])(?=.*\d)[A-Za-z\d]{' . $length . ',}$/'; break; } return preg_match($regex, $password); } /** * 获取验证密码提示语 * @param int $type * @param int $length * @return string */ public function getMessage(int $type = 3, int $length = 6) { switch ($type) { case 1://纯数字 $desc = '纯数字'; break; case 2://纯字母 $desc = '纯字母'; break; case 3://数字+纯字母 $desc = '数字+纯字母'; break; case 4://数字+纯字母+特殊符号 $desc = '数字+纯字母+特殊符号'; break; default: $desc = '数字+纯字母'; break; } return '密码必须由：' . $desc . '组成,最小' . $length . '位'; } }