c1e74d8e68
- 按 docs/renew-code-comment.md 将 PHP 文件头改为带边框的 Author 注释\n- 注释中的 crmeb.com 替换为 uj345.cn(代码字符串中的外链未改)\n- 新增 docs/renew-code-comment.md 说明 Made-with: Cursor
110 lines
3.3 KiB
PHP
110 lines
3.3 KiB
PHP
<?php
|
|
// +----------------------------------------------------------------------
|
|
// | Author: ScottPan Team
|
|
// +----------------------------------------------------------------------
|
|
|
|
declare (strict_types=1);
|
|
|
|
namespace app\services\user;
|
|
|
|
use app\services\BaseServices;
|
|
use app\dao\user\UserAuthDao;
|
|
use app\services\work\WorkClientServices;
|
|
use crmeb\exceptions\AuthException;
|
|
use crmeb\services\CacheService;
|
|
use crmeb\services\wechat\config\WorkConfig;
|
|
use crmeb\utils\JwtAuth;
|
|
use think\annotation\Inject;
|
|
|
|
/**
|
|
*
|
|
* Class UserAuthServices
|
|
* @package app\services\user
|
|
* @mixin UserAuthDao
|
|
*/
|
|
class UserAuthServices extends BaseServices
|
|
{
|
|
|
|
/**
|
|
* @var UserAuthDao
|
|
*/
|
|
#[Inject]
|
|
protected UserAuthDao $dao;
|
|
|
|
/**
|
|
* 获取授权信息
|
|
* @param $token
|
|
* @return array
|
|
* @throws \Psr\SimpleCache\InvalidArgumentException\
|
|
*/
|
|
public function parseToken($token): array
|
|
{
|
|
$md5Token = is_null($token) ? '' : md5($token);
|
|
|
|
if ($token === 'undefined') {
|
|
throw new AuthException('请登录', 410000);
|
|
}
|
|
if (!$token || !$tokenData = CacheService::getTokenBucket($md5Token))
|
|
throw new AuthException('请登录', 410000);
|
|
|
|
if (!is_array($tokenData) || empty($tokenData) || !isset($tokenData['uid'])) {
|
|
throw new AuthException('请登录', 410000);
|
|
}
|
|
|
|
/** @var JwtAuth $jwtAuth */
|
|
$jwtAuth = app()->make(JwtAuth::class);
|
|
//设置解析token
|
|
[$id, $type, $auth] = $jwtAuth->parseToken($token);
|
|
try {
|
|
$jwtAuth->verifyToken();
|
|
} catch (\Throwable $e) {
|
|
if (!request()->isCli()) CacheService::clearToken($md5Token);
|
|
throw new AuthException('登录已过期,请重新登录', 410001);
|
|
}
|
|
|
|
/** @var UserServices $userService */
|
|
$userService = app()->make(UserServices::class);
|
|
$user = $userService->getUserCacheInfo($id);
|
|
if (!$user) throw new AuthException('用户不存在,请重新登陆', 410001);
|
|
if (!$user['status'])
|
|
throw new AuthException('您已被禁止登录,请联系管理员', 410002);
|
|
|
|
if (!$user || $user->uid != $tokenData['uid']) {
|
|
if (!request()->isCli()) CacheService::clearToken($md5Token);
|
|
throw new AuthException('登录状态有误,请重新登录', 410002);
|
|
}
|
|
|
|
//有密码在检测
|
|
if ($user['pwd'] != md5('123456') && $auth !== md5($user['pwd'])) {
|
|
throw new AuthException('登录已过期,请重新登录', 410001);
|
|
}
|
|
|
|
$tokenData['type'] = $type;
|
|
return compact('user', 'tokenData');
|
|
}
|
|
|
|
/**
|
|
* 获取企业客户
|
|
* @param string $userid
|
|
* @return array
|
|
*/
|
|
public function parseClient(string $userid)
|
|
{
|
|
/** @var WorkConfig $workConfig */
|
|
$workConfig = app()->make(WorkConfig::class);
|
|
$corpId = $workConfig->corpId;
|
|
if (!$corpId) {
|
|
throw new AuthException('请先配置企业微信');
|
|
}
|
|
/** @var WorkClientServices $service */
|
|
$service = app()->make(WorkClientServices::class);
|
|
$clientInfo = $service->get(['corp_id' => $corpId, 'external_userid' => $userid]);
|
|
if (!$clientInfo) {
|
|
throw new AuthException('客户信息不存在');
|
|
}
|
|
|
|
return $clientInfo->toArray();
|
|
}
|
|
|
|
}
|