\Phpcmf\Controllers\ApiOauth

Class Controller

Summary

Methods

Properties

Constants

__construct()
init_file()
session()
get_cache()
_module_init()
_json()
_jsonp()
_require_array()
_admin_msg()
_msg()
get_attachment()
_member_option()
_member_auth_value()
_member_value()
_module_member_value()
_module_member_category()
_is_admin_auth()
_is_mobile()
get_instance()
initController()
index()
wxbang()
wxmp()
xcx()

$uid
$admin
$member
$module
$member_cache
$member_authid
$site
$site_info
$site_domain
$is_hcategory
$session
$is_mobile
$temp

No constants found

cachePage()
goto_404_page()
_html_msg()
_is_admin_login()
_api_auth()
_app_clink()
_app_cbottom()
_main_table()
forceHTTPS()
loadHelpers()
validate()

$is_module_init
$cmf_version
$helpers
$request
$response
$logger
$forceHTTPS
$validator

N/A

No private methods found

$instance
$load_init

N/A

File: src/Core/Controllers/Api/Oauth.php
Package: Default
Class hierarchy: \CodeIgniter\Controller

\Phpcmf\Common

\Phpcmf\Controllers\Api\Oauth

Properties

$uid

$uid :

Type

$admin

$admin :

Type

$member

$member :

Type

$module

$module :

Type

$member_cache

$member_cache :

Type

$member_authid

$member_authid :

Type

$site

$site :

Type

$site_info

$site_info :

Type

$site_domain

$site_domain :

Type

$is_hcategory

$is_hcategory :

Type

$session

$session :

Type

$is_mobile

$is_mobile :

Type

$temp

$temp :

Type

$is_module_init

$is_module_init :

Type

$cmf_version

$cmf_version :

Type

$helpers

$helpers : array

An array of helpers to be automatically loaded upon class instantiation.

Type

array

$request

$request : \CodeIgniter\HTTP\IncomingRequest

Instance of the main Request object.

Type

\CodeIgniter\HTTP\IncomingRequest

$response

$response : \CodeIgniter\HTTP\Response

Instance of the main response object.

Type

\CodeIgniter\HTTP\Response

$logger

$logger : \CodeIgniter\Log\Logger

Instance of logger to use.

Type

\CodeIgniter\Log\Logger

$forceHTTPS

$forceHTTPS : integer

Whether HTTPS access should be enforced for all methods in this controller.

Type

integer — Number of seconds to set HSTS header

$validator

$validator : \CodeIgniter\Validation\Validation

Once validation has been run, will hold the Validation instance.

Type

\CodeIgniter\Validation\Validation

$instance

$instance :

Type

$load_init

$load_init :

Type

Methods

__construct()

__construct(  $params)

初始化共享控制器

Parameters

$params

init_file()

init_file(  $namespace)

插件目录初始化文件

Parameters

$namespace

session()

session()

开启session

get_cache()

get_cache(  $params)

读取缓存

Parameters

$params

_module_init()

_module_init(  $dirname = '',   $siteid = SITE_ID)

Parameters

	$dirname
	$siteid

_json()

_json(  $code,   $msg,   $data = array())

统一返回json格式并退出程序

Parameters

	$code
	$msg
	$data

_jsonp()

_jsonp(  $code,   $msg,   $data = array())

统一返回jsonp格式并退出程序

Parameters

	$code
	$msg
	$data

_require_array()

_require_array(  $file)

加载数组配置文件

Parameters

$file

_admin_msg()

_admin_msg(  $code,   $msg,   $url = '',   $time = 3)

后台提示信息

Parameters

	$code
	$msg
	$url
	$time

_msg()

_msg(  $code,   $msg,   $url = '',   $time = 3)

前台提示信息

Parameters

	$code
	$msg
	$url
	$time

get_attachment()

get_attachment(  $id)

附件信息

Parameters

$id

_member_option()

_member_option(  $call = 1)

后台登录判断

Parameters

$call

_member_auth_value()

_member_auth_value(  $authid,   $name)

获取用户组权限的积分及统计参数累计

Parameters

	$authid
	$name

_member_value()

_member_value(  $authid,   $value)

获取网站用户的积分及统计参数累计

Parameters

	$authid
	$value

_module_member_value()

_module_member_value(  $catid,   $dir,   $auth,   $authid = array(0))

获取模块栏目的积分及统计参数累计

Parameters

	$catid
	$dir
	$auth
	$authid

_module_member_category()

_module_member_category(  $category,   $dir,   $auth)

判断模块栏目是否具有用户操作权限

Parameters

	$category
	$dir
	$auth

_is_admin_auth()

_is_admin_auth(  $uri = '')

判断后台uri是否具有操作权限

Parameters

$uri

_is_mobile()

_is_mobile()

是否移动端访问访问

get_instance()

get_instance()

Get the CI singleton

initController()

initController(\CodeIgniter\HTTP\RequestInterface  $request, \CodeIgniter\HTTP\ResponseInterface  $response, \Psr\Log\LoggerInterface  $logger)

Constructor.

Parameters

\CodeIgniter\HTTP\RequestInterface	$request
\CodeIgniter\HTTP\ResponseInterface	$response
\Psr\Log\LoggerInterface	$logger

Throws

\CodeIgniter\HTTP\Exceptions\HTTPException

index()

index()

快捷登录

wxbang()

wxbang()

wxmp()

wxmp()

xcx()

xcx()

cachePage()

cachePage(integer  $time)

Provides a simple way to tie into the main CodeIgniter class and tell it how long to cache the current page for.

Parameters

integer

$time

goto_404_page()

goto_404_page(  $msg)

引用404页面

Parameters

$msg

_html_msg()

_html_msg(  $code,   $msg,   $url = '',   $note = '')

生成静态时的跳转提示

Parameters

	$code
	$msg
	$url
	$note

_is_admin_login()

_is_admin_login()

后台登录判断

_api_auth()

_api_auth()

Api认证匹配

_app_clink()

_app_clink()

插件的clink值

_app_cbottom()

_app_cbottom()

插件的cbottom值

_main_table()

_main_table()

获取可用后table区域

forceHTTPS()

forceHTTPS(integer  $duration = 31536000)

A convenience method to use when you need to ensure that a single method is reached only via HTTPS. If it isn't, then a redirect will happen back to this method and HSTS header will be sent to have modern browsers transform requests automatically.

Parameters

integer

$duration

The number of seconds this link should be considered secure for. Only with HSTS header. Default value is 1 year.

Throws

\CodeIgniter\HTTP\Exceptions\HTTPException

loadHelpers()

loadHelpers()

Handles "auto-loading" helper files.

validate()

validate(array|string  $rules, array  $messages = array()) : boolean

A shortcut to performing validation on input data. If validation is not successful, a $errors property will be set on this class.

Parameters

array\|string	$rules
array	$messages	An array of custom error messages

Returns

boolean

<?php namespace Phpcmf\Controllers\Api;

/**
 * http://www.kaiqibao.net
 * 本文件是框架系统文件，二次开发时不可以修改本文件
 **/


// 快捷登录接口
class Oauth extends \Phpcmf\Common
{

    /**
     * 快捷登录
     */
    public function index() {

        $name = dr_safe_replace(\Phpcmf\Service::L('input')->get('name'));
        $type = dr_safe_replace(\Phpcmf\Service::L('input')->get('type'));
        $back = dr_safe_replace(\Phpcmf\Service::L('input')->get('back'));
        $action = dr_safe_replace(\Phpcmf\Service::L('input')->get('action'));

        // 非授权登录时必须验证登录状态
        if ($type != 'login' && !$this->uid) {
            $this->_msg(0, dr_lang('你还没有登录'));
        }

        // 请求参数
        $appid = $this->member_cache['oauth'][$name]['id'];
        $appkey = $this->member_cache['oauth'][$name]['value'];
        $callback_url = ROOT_URL.'index.php?s=api&c=oauth&m=index&action=callback&name='.$name.'&type='.$type.'&back='.$back;

        switch ($name) {

            case 'weixin':

                if ($action == 'callback') {
                    // 表示回调返回
                    if (isset($_REQUEST['code'])) {
                        // 获取access_token
                        $url = 'https://api.weixin.qq.com/sns/oauth2/access_token?appid='.$appid.'&secret='.$appkey.'&code='.$_REQUEST['code'].'&grant_type=authorization_code';
                        $token = json_decode(dr_catcher_data($url), true);
                        if (!$token) {
                            $this->_msg(0, dr_lang('无法获取到远程信息'));
                        } elseif ($token['errmsg']) {
                            $this->_msg(0, $token['errmsg']);
                        }
                        // 获取用户信息
                        $url = 'https://api.weixin.qq.com/sns/userinfo?access_token='.$token['access_token'].'&openid='.$token['openid'];
                        $user = json_decode(dr_catcher_data($url), true);
                        if (!$user) {
                            $this->_msg(0, dr_lang('无法获取到用户信息'));
                        } elseif ($user['errmsg']) {
                            $this->_msg(0, $user['errmsg']);
                        }
                        $rt = \Phpcmf\Service::M('member')->insert_oauth($this->uid, $type, [
                            'oid' => $token['openid'],
                            'oauth' => 'weixin',
                            'avatar' => $user['headimgurl'],
                            'unionid' => (string)$user['unionid'],
                            'nickname' => dr_emoji2html($user['nickname']),
                            'expire_at' => SYS_TIME,
                            'access_token' => 0,
                            'refresh_token' => $token['refresh_token'],
                        ], null,  $back);
                        if (!$rt['code']) {
                            $this->_msg(0, $rt['msg']);exit;
                        } else {
                            dr_redirect($rt['msg']);
                        }
                    } else {
                        $this->_msg(0, dr_lang('回调参数code不存在'));exit;
                    }
                } else {
                    // 跳转授权页面
                    $url = 'https://open.weixin.qq.com/connect/qrconnect?appid='.$appid.'&redirect_uri='.urlencode($callback_url).'&response_type=code&scope=snsapi_login&state=STATE#wechat_redirect';
                    dr_redirect($url);
                }
                break;

            case 'qq':

                define("CLASS_PATH", FCPATH."ThirdParty/Qq/");
                require FCPATH.'ThirdParty/Qq/QC.class.php';
                $qc = new \QC();
                if ($action == 'callback') {
                    // 表示回调返回
                    if (isset($_REQUEST['code'])) {
                        $rt = $qc->qq_callback($appid, $appkey, $callback_url, $_REQUEST['code']);
                        if (is_array($rt)) {
                            // 回调成功
                            $open = $qc->get_openid($rt['access_token']);
                            !is_array($open) && exit($this->_msg(0, $open)); // 获取失败
                            $user = $qc->init($appid, $rt['access_token'], $open['openid'])->get_user_info();
                            if (is_array($user)) {
                                // 入库oauth表
                                $rt = \Phpcmf\Service::M('member')->insert_oauth($this->uid, $type, [
                                    'oid' => $open['openid'],
                                    'oauth' => 'qq',
                                    'avatar' => $user['figureurl_qq_2'] ? $user['figureurl_qq_2'] : $user['figureurl_qq_1'],
                                    'unionid' => (string)$user['unionid'],
                                    'nickname' => dr_emoji2html($user['nickname']),
                                    'expire_at' => SYS_TIME,
                                    'access_token' => 0,
                                    'refresh_token' => $rt['refresh_token'],
                                ], null,  $back);
                                if (!$rt['code']) {
                                    $this->_msg(0, $rt['msg']);exit;
                                } else {
                                    dr_redirect($rt['msg']);
                                }
                            } else {
                                $this->_msg(0, dr_lang('获取QQ用户信息失败: '.$user));exit;
                            }
                        } else {
                            $this->_msg(0, $rt);exit;
                        }
                    } else {
                        $this->_msg(0, dr_lang('回调参数code不存在'));exit;
                    }
                } else {
                    // 跳转授权页面
                    $rt = $qc->qq_login($appid, $callback_url);
                    !$rt = $this->_msg(0, dr_lang('授权执行失败'));
                }
                break;


            case 'weibo':

                define("WB_AKEY", $appid);
                define("WB_SKEY", $appkey);
                require FCPATH.'ThirdParty/Weibo/saetv2.ex.class.php';
                $o = new \SaeTOAuthV2(WB_AKEY, WB_SKEY);
                if ($action == 'callback') {
                    // 表示回调返回
                    if (isset($_REQUEST['code'])) {
                        $keys = [];
                        $keys['code'] = $_REQUEST['code'];
                        $keys['redirect_uri'] = $callback_url;
                        $token = $o->getAccessToken('code', $keys);
                        if (is_array($token)) {
                            // 回调成功
                            $c = new \SaeTClientV2(WB_AKEY, WB_SKEY, $token['access_token']);
                            $user = $c->show_user_by_id($token['uid']); //根据ID获取用户等基本信息
                            if ($user) {
                                // 入库oauth表
                                $rt = \Phpcmf\Service::M('member')->insert_oauth($this->uid, $type, [
                                    'oid' => $token['uid'],
                                    'oauth' => 'weibo',
                                    'avatar' => $user['avatar_large'] ? $user['avatar_large'] : $user['profile_image_url'],
                                    'unionid' => '',
                                    'nickname' => dr_emoji2html($user['name']),
                                    'expire_at' => SYS_TIME,
                                    'access_token' => 0,
                                    'refresh_token' => '',
                                ], null, $back);
                                if (!$rt['code']) {
                                    $this->_msg(0, $rt['msg']);exit;
                                } else {
                                    dr_redirect($rt['msg']);
                                }
                            } else {
                                $this->_msg(0, dr_lang('获取微博用户信息失败'));exit;
                            }
                        } else {
                            // 回调失败
                            $this->_msg(0, $token);exit;
                        }
                    } else {
                        $this->_msg(0, dr_lang('回调参数code不存在'));exit;
                    }
                } else {
                    // 跳转授权页面
                    dr_redirect($o->getAuthorizeURL($callback_url));
                }
                break;

            case 'wechat':
                // 微信公众号
                if (!dr_is_app('weixin')) {
                    $this->_msg(0, dr_lang('没有安装微信应用插件'));
                }
                //

                \Phpcmf\Service::C()->init_file('weixin');
                $rt = \Phpcmf\Service::M('user', 'weixin')->qrcode_bang($this->member);
                if (!$rt['code']) {
                    $this->_msg(0, $rt['msg']);
                } else {
                    // 获取返回页面
                    $url = \Phpcmf\Service::L('Security')->xss_clean($back ? urldecode($back) : $_SERVER['HTTP_REFERER']);
                    if (!$url || strpos($url, 'login') !== false ) {
                        $url = $this->uid ? dr_member_url('account/oauth') : dr_member_url('home/index');
                    }

                    $notify_url = '/index.php?s=api&c=oauth&m=wxbang&ep='.$rt['data']['action_info']['scene']['scene_str'];
                    if (strpos($url, 'is_admin_call')) {
                        // 后台回话
                        $notify_url.= '&is_admin_call='.urlencode($url);
                    }

                    \Phpcmf\Service::V()->admin();
                    \Phpcmf\Service::V()->assign([
                        'back_url' => $url,
                        'qrcode_url' => $rt['msg'],
                        'notify_url' => $notify_url,
                    ]);
                    \Phpcmf\Service::V()->display('api_weixin_bang.html');
                }
                // 跳转微信公众号
                break;

            default:
                exit('未定义的接口');

        }
    }

    // 微信公众号绑定
    public function wxbang() {

        if (!$this->uid) {
            $ep = dr_safe_replace($_GET['ep']);
            $rt = \Phpcmf\Service::M()->table('member_oauth')->where('refresh_token', $ep)->where('uid>0')->where('oauth', 'wechat')->getRow();
            if ($rt) {
                // 为他登录
                // 存储cookie
                $this->uid = $rt['uid'];
                $this->member = \Phpcmf\Service::M('member')->get_member($this->uid);
                \Phpcmf\Service::M('member')->save_cookie($this->member);
                // 存储后台回话
                if (isset($_GET['is_admin_call'])) {
                    \Phpcmf\Service::M('auth')->save_login_auth('wechat', $this->uid);
                    $this->_json(1, 'ok', [
                        'url' => urldecode($_GET['is_admin_call']).'&uid='.$this->uid,
                        'sso' => \Phpcmf\Service::M('member')->sso($this->member, 1),
                    ]);
                } else {
                    $this->_json(1, 'ok', [
                        'sso' => \Phpcmf\Service::M('member')->sso($this->member, 1),
                    ]);
                }

            }
        } else {
            $rt = \Phpcmf\Service::M()->table('member_oauth')->where('uid', $this->uid)->where('oauth', 'wechat')->getRow();
        }

        if (!$rt) {
            $this->_json(0, '');
        } else {
            // 绑定成功更新头像
            list($cache_path) = dr_avatar_path();
            if (!is_file($cache_path.$this->uid.'.jpg')) {
                // 没有头像下载头像
                $img = dr_catcher_data($rt['avatar']);
                if (strlen($img) > 20) {
                    @file_put_contents($cache_path.$this->uid.'.jpg', $img);
                }
            }
            // 存储后台回话
            if (isset($_GET['is_admin_call'])) {
                \Phpcmf\Service::M('auth')->save_login_auth('wechat', $this->uid);
                $this->_json($rt['access_token'] ? 0 : 1, 'ok', [
                    'url' => urldecode($_GET['is_admin_call']).'&uid='.$this->uid,
                    'sso' => \Phpcmf\Service::M('member')->sso($this->member, 1),
                ]);
            } else {
                $this->_json($rt['access_token'] ? 0 : 1, 'ok', $rt);
            }


        }
    }

    // 微信公众号登录
    public function wxmp() {

        exit;
    }

    // 微信小程序登录
    public function xcx() {


    }
}