Apache 2.0 License // +---------------------------------------------------------------------- namespace app\admin\controller\system; use app\AdminController; use app\common\model\system\AdminNotice; use app\common\model\system\Jobs; use app\common\model\system\Department; use app\common\model\system\Admin as AdminModel; use app\common\model\system\AdminGroup as AdminGroupModel; use app\common\model\system\AdminAccess as AdminAccessModel; use support\Log; use support\Response; use think\db\exception\DataNotFoundException; use think\db\exception\DbException; use think\db\exception\ModelNotFoundException; use think\Exception; use think\facade\Cache; use Webman\Http\Request; /** * 管理员管理 * Class Admin * @package app\admin\controller\system */ class Admin extends AdminController { /** * 用户管理组 * @var mixed */ protected mixed $group; /** * 用户岗位 * @var mixed */ public mixed $jobs; /** * 用户部门 * @var mixed */ public mixed $department; // 初始化函数 public function __construct() { parent::__construct(); $this->model = new AdminModel(); } /** * 获取资源列表 */ public function index() { $this->jobs = Jobs::select()->toArray(); $this->group = AdminGroupModel::select()->toArray(); $this->department = Department::getListTree(); // 判断isAjax if (request()->isAjax()) { // 获取数据 $post = \request()->all(); $page = (int)request()->input('page') ?? 1; $limit = (int)request()->input('limit') ?? 10; $status = !empty($post['status']) ? $post['status'] - 1 : 1; // 生成查询条件 $where = array(); if (!empty($post['name'])) { $where[] = ['name', 'like', '%' . $post['name'] . '%']; } if (!empty($post['dep'])) { $where[] = ['department_id', 'find in set', $post['dep']]; } if (!empty($post['group_id'])) { $where[] = ['group_id', 'find in set', $post['group_id']]; } // 生成查询数据 $where[] = ['status', '=', $status]; $count = $this->model->where($where)->count(); $page = ($count <= $limit) ? 1 : $page; $list = $this->model->where($where)->order("id asc")->withoutField('pwd')->limit((int)$limit)->page((int)$page)->select()->toArray(); // 循环处理数据 foreach ($list as $key => $value) { $groupIDs = explode(',', $value['group_id']); foreach ($groupIDs as $field => $id) { // 查找组 $result = list_search($this->group, ['id' => $id]); if (!empty($result)) { $list[$key]['group'][$field] = $result; } } if (!empty($list[$key]['group'])) { $list[$key]['group'] = list_sort_by($list[$key]['group'], 'id'); } $authNodes = $this->auth->getRulesNode($value['id']); $list[$key][AUTH_RULES] = $authNodes[$this->auth->authPrivate]; $authNodes = $this->auth->getRulesNode($value['id'], AUTH_CATE); $list[$key][AUTH_CATE] = $authNodes[$this->auth->authPrivate]; } return $this->success('查询成功', null, $list, $count); } return view('/system/admin/index', [ 'jobs' => $this->jobs, 'group' => $this->group, 'department' => json_encode($this->department), ]); } /** * 添加管理员 * @return Response * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException */ public function add(): \support\Response { if (request()->isPost()) { // 验证数据 $post = request()->post(); $post = request_validate_rules($post, get_class($this->model)); if (!is_array($post)) { return $this->error($post); } $where[] = ['name', '=', $post['name']]; $where[] = ['email', '=', $post['email']]; if ($this->model->whereOr($where)->find()) { return $this->error('该用户名或邮箱已被注册！'); } // 管理员加密 $post['pwd'] = encryptPwd($post['pwd']); $post['create_ip'] = request()->getRealIp(); $data = $this->model->create($post); if (!is_empty($data->id)) { $access['admin_id'] = $data->id; $access['group_id'] = $data->group_id; AdminAccessModel::insert($access); return $this->success('添加管理员成功！'); } else { return $this->error('添加管理员失败！'); } } // 获取用户组 return view('', ['group' => $this->group]); } /** * 更新管理员 */ public function edit() { if (request()->isPost()) { $id = request()->input('id'); if (!empty($id) && is_numeric($id)) { // 验证数据 $post = request()->all(); $post = request_validate_rules($post, get_class($this->model), 'edit'); if (!is_array($post)) { return $this->error($post); } if (!empty($post['pwd'])) { $post['pwd'] = encryptPwd($post['pwd']); } else { unset($post['pwd']); } if ($this->model->update($post)) { $access['group_id'] = $post['group_id']; AdminAccessModel::where('admin_id', $id)->update($access); return $this->success('更新管理员成功！'); } else { return $this->error('更新管理员失败'); } } } } /** * 编辑权限 */ public function editRules() { if (request()->isPost()) { return $this->_update_RuleCates(); } } /** * 编辑栏目权限 */ public function editCates() { return $this->_update_RuleCates(AUTH_CATE); } /** * 更新权限函数 * @access protected * @param string $type * @return \support\Response|void */ protected function _update_RuleCates(string $type = AUTH_RULES) { if (request()->isPost()) { $admin_id = input('admin_id'); $rules = request()->post($type) ?? []; if (!empty($admin_id) && $admin_id > 0) { $access = $this->auth->getRulesNode($admin_id, $type); $rules = array_diff($rules, $access[$this->auth->authGroup]); // 权限验证 if (!$this->auth->checkRuleOrCateNodes($rules, $type, $this->auth->authPrivate)) { return $this->error('没有权限!'); } // 获取个人节点 $differ = array_diff($access[$this->auth->authPrivate], $access[$this->auth->authGroup]); $current = []; if (!$this->auth->superAdmin()) { $current = $this->auth->getRulesNode(); $current = array_diff($differ, $current[$this->auth->authPrivate]); } $rules = array_unique(array_merge($rules, $current)); $AdminAccessModel = new AdminAccessModel(); $data = [ "$type" => implode(',', $rules) ]; if ($AdminAccessModel->where('admin_id', $admin_id)->save($data)) { return $this->success('更新权限成功！'); } return $this->error('更新权限失败！'); } } } /** * 获取用户权限树 * getAdminRules * @return mixed */ public function getPermissions() { $list = []; if (\request()->isAjax()) { $type = input('type', 'menu'); $group = input('group', 0); if ($type == 'menu') { return $this->auth->getRulesMenu(); } else { try { $list = $this->auth->getRuleCatesTree($type, $group ? $this->auth->authGroup : $this->auth->authPrivate); } catch (\Exception $e) { return $this->error($e->getMessage()); } return $list; } } return $list; } /** * 模版页面 * @return Response */ public function theme(): Response { return view('/system/admin/theme'); } /** * 消息模板 * @return Response * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException */ public function bells(): Response { $list = []; $count = []; $array = ['notice', 'message', 'todo']; $type = input('type', 'notice'); if (\request()->isAjax()) { $page = input('page', 1); $limit = input('limit', 3); // 计算最大页码 $data = AdminNotice::with(['admin'])->where(['type' => $type, 'admin_id' => get_admin_id()]) ->order('id', 'desc')->paginate(['list_rows' => $limit, 'page' => $page])->toArray(); return $this->success('获取成功', '', $data); } foreach ($array as $item) { $where = [ ['type', '=', $item], ['admin_id', '=', get_admin_id()] ]; $count[$item] = AdminNotice::where($where)->where('status', 0)->count(); $list[$item] = AdminNotice::with(['admin'])->withoutField('content')->where($where)->limit(3)->order('id desc')->select()->toArray(); } return view('/system/admin/bells', [ 'list' => $list, 'count' => $count ]); } /** * 阅读消息 * @return response * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException */ public function readNotice(): Response { $id = input('id', 0); $type = input('type', 'notice'); if (!empty($id)) { $detail = AdminNotice::with(['admin'])->where(['id' => $id, 'admin_id' => get_admin_id()])->find(); if (empty($detail)) { return $this->error('404 Not Found'); } // 默认已读 if ($type !== 'todo') { $detail->status = 1; $detail->save(); } } return $this->view('/system/admin/' . $type, [ 'detail' => $detail ?? [] ]); } /** * 更新即时消息 * @return Response|void */ public function saveNotice() { if (\request()->post()) { $post = request()->post(); $post['send_id'] = get_admin_id(); $post['type'] = 'message'; $post['send_ip'] = request()->getRealIp(); $post['create_time'] = time(); try { AdminNotice::sendNotice($post, 'none'); } catch (\Exception $e) { return $this->error('发送失败：' . $e->getMessage()); } return $this->success('发送成功'); } else if (\request()->isAjax()) { $id = input('id', 0); $status = input('status', 1); try { if (empty($id)) { throw new Exception('参数错误'); } AdminNotice::where(['id' => $id, 'admin_id' => get_admin_id()])->update(['status' => $status]); } catch (Exception $e) { return $this->error('更新失败'); } return $this->success('更新成功'); } } /** * 清空消息 * @return Response|void */ public function clearNotice() { if (\request()->isAjax()) { $type = input('type', 'notice'); $where = [ ['type', '=', $type], ['status', '=', 1], ['admin_id', '=', get_admin_id()] ]; try { AdminNotice::where($where)->delete(); } catch (Exception $e) { return $this->error('清空失败'); } return $this->success('清空成功'); } } /** * 全部消息已读 * @return Response|void */ public function readAllNotice() { if (\request()->isAjax()) { $type = input('type', 'notice'); $where = [ ['type', '=', $type], ['admin_id', '=', get_admin_id()] ]; try { AdminNotice::where($where)->update(['status' => 1]); } catch (Exception $e) { return $this->error('操作失败'); } return $this->success('全部已读成功'); } } /** * 个人中心 * @param Request $request * @return mixed * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException */ public function center(Request $request): \support\Response { if (request()->isPost()) { $post = request()->post(); $post['id'] = get_admin_id(); if ($this->model->update($post)) { return $this->success(); } return $this->error(); } $title = []; $data = $this->model->find(get_admin_id()); if (!empty($data['group_id'])) { $group = AdminGroupModel::field('title') ->whereIn('id', $data['group_id']) ->select() ->toArray(); foreach ($group as $key => $value) { $title[$key] = $value['title']; } } $data['jobs'] = Jobs::where('id', $data['jobs_id'])->value('title'); $data['group'] = implode('－', $title); $data['tags'] = empty($data['tags']) ? $data['tags'] : unserialize($data['tags']); return view('/system/admin/center', [ 'data' => $data ]); } /** * 修改个人资料 */ public function modify(Request $request) { if (request()->isAjax()) { $post = request()->post(); $id = get_admin_id(); try { //code... switch ($post['field']) { case 'face': $id = $this->model->update(['id' => $id, 'face' => $post['face']]); break; case 'mood': $id = $this->model->update(['id' => $id, 'mood' => $post['mood']]); break; case 'tags': if (\is_empty($post['tags'])) { break; } $data = $this->model->field('tags')->find($id); if (!empty($data['tags'])) { $tags = unserialize($data['tags']); if (!empty($post['del'])) { foreach ($tags as $key => $value) { if ($value == $post['tags']) { unset($tags[$key]); } } } else { $merge = array($post['tags']); $tags = array_unique(array_merge($merge, $tags)); if (count($tags) > 10) { throw new \Exception('最多拥有10个标签！'); } } $tags = serialize($tags); } else { $tags = serialize(array($post['tags'])); } $id = $this->model->update(['id' => $id, 'tags' => $tags]); break; default: # code... break; } } catch (\Exception $e) { return $this->error($e->getMessage()); } return $id ? $this->success() : $this->error(); } } /** * 修改密码 * @return mixed * @throws DataNotFoundException * @throws DbException * @throws ModelNotFoundException */ public function pwd(): \support\Response { if (request()->isPost()) { $pwd = input('pwd'); $post = request()->except(['pwd']); if ($post['pass'] !== $post['repass']) { return $this->error('两次输入的密码不一样！'); } // 查找数据 $where[] = ['id', '=', get_admin_id()]; $where[] = ['pwd', '=', encryptPwd($pwd)]; $result = $this->model->where($where)->find(); if (!empty($result)) { $this->model->where($where)->update(['pwd' => encryptPwd($post['pass'])]); return $this->success('更改密码成功！'); } else { return $this->error('原始密码输入错误'); } } return view('/system/admin/pwd'); } /** * 语言配置 * @return mixed * @throws \think\Exception */ public function language() { $language = input('l'); $env = base_path() . '/.env'; $array = parse_ini_file($env, true); $array['LANG_DEFAULT_LANG'] = $language; $content = parse_array_ini($array); request()->session()->set('lang', $language); if (write_file($env, $content)) { return json(['success']); } } /** * 更改状态 * @return \support\Response */ public function status() { $id = input('id'); if ($id == 1) { return $this->error('超级管理员不能更改状态！'); } $array['id'] = $id; $array['status'] = input('status'); if ($this->model->update($array)) { return $this->success('修改成功！'); } return $this->error('修改失败,请检查您的数据！'); } /** * 删除管理员 * @return mixed * @throws \think\db\exception\DbException */ public function del() { $id = input('id'); !is_array($id) && ($id = array($id)); if (!empty($id) && is_array($id)) { // 过滤权限 if (in_array("1", $id)) { return $this->error('禁止删除超管帐号！'); } // 删除用户 if ($this->model->destroy($id)) { $arr = implode(',', $id); $where[] = ['admin_id', 'in', $arr]; AdminAccessModel::where($where)->delete(); return $this->success('删除管理员成功！'); } } return $this->error('删除管理员失败，请检查您的参数！'); } /** * 清理系统缓存 * @return \support\Response */ public function clear(): \support\Response { if (request()->isAjax()) { $type = input('type'); try { // 清理内容 if ($type == 'all' || $type == 'content') { $session = session(AdminSession); \think\facade\Cache::clear(); request()->session()->set(AdminSession, $session); } // 清理模板 if ($type == 'all' || $type == 'template') { recursive_delete(root_path('runtime/views')); } // 清理插件缓存 if ($type == 'all' || $type == 'plugin') { plugin_refresh_hooks(); } } catch (\Throwable $th) { return $this->error($th->getMessage()); } } return $this->success('清理缓存成功，请刷新页面！'); } }