goeast_serve/app/Http/Controllers/Manager/Login.php

<?php

namespace App\Http\Controllers\Manager;

use App\Models\Manager\AdminUser;
use App\Http\Requests\Manager\Login as Request;
use App\Models\Manager\AuthRule;
use App\Facades\Servers\Encrypts\AccessToken;
use App\Models\Manager\Personnel\User as UserModel;
use App\Facades\Servers\Sms\VerifyCode as Sms;
use Illuminate\Support\Facades\Cache;

/**
 * 管理后台登录控制器
 * @author 唐远望
 * @version   1.0
 * @date      2025-12-02
 *
 * */
class Login extends Manager
{

	/**
	 * 登录方法				/manager/login/index
	 * @author 唐远望
	 * @version   1.0
	 * @date      2025-12-02
	 * @param string 	username	登录账号
	 * @param string 	password	登录密码
	 * 
	 * */
	public function index(Request $Request, AdminUser $AdminUser, UserModel $UserModel)
	{
		// 验证规则
		$Request->scene('login')->validate();
		// 接收数据
		$username    = $Request->input('username', '');
		// 接收数据
		$password    = $Request->input('password', '');
		if (strtolower($username) == 'admin') {
			// 查询用户
			$admin    	= $AdminUser->orWhere('username', $username)->first(['uid', 'username', 'phone', 'status', 'password', 'insert_time', 'update_time']);
			// 用户不存在
			if (!$admin)	return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
			// 用户不存在
			if ($admin['status']) 				return json_send(['code' => 'error', 'msg' => '该账号已停用']);
			// 转数组
			$admin    	= $admin->toArray();
			// 比对密码
			if (md5($password) != $admin['password']) return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
			// 登录
			$accessToken 						= $AdminUser->Login($admin['uid'], 'manager');
			// 比对密码
			if (isset($accessToken['error'])) 	return json_send(['code' => 'error', 'msg' => '登录失败', 'data' => $accessToken['data']]);
			// 获取权限列表
			$accessToken['username']			= $admin['username'];
			$accessToken['is_system_admin']			= 1;
			// 获取权限列表
		} else {
			$admin    	= $UserModel->where('User_code', $username)->first(['company_id', 'id as uid', 'name as username', 'mobile as phone', 'status', 'password', 'insert_time', 'update_time']);
			// 用户不存在
			if (!$admin)	return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
			// 用户不存在
			if ($admin['status']) 				return json_send(['code' => 'error', 'msg' => '该账号已停用']);
			// 转数组
			$admin    	= $admin->toArray();
			// 比对密码
			if (md5($password) != $admin['password']) return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
			// 登录
			$accessToken 						= $UserModel->Login($admin['uid'], $admin['company_id'], 'manager');
			// 比对密码
			if (isset($accessToken['error'])) 	return json_send(['code' => 'error', 'msg' => '登录失败', 'data' => $accessToken['data']]);
			// 获取权限列表
			$accessToken['username']			= $admin['username'];
			$accessToken['is_system_admin']			= 0;
		}

		// 表单令牌
		return    	json_send(['code' => 'success', 'msg' => '登录成功', 'data' => $accessToken]);
	}


	/**
	 * 获取用户页面权限	  /manager/login/auth_rules'
	 * @author 唐远望
	 * @version   1.0
	 * @date      2026-01-30
	 * @param string 	username	登录账号
	 * @param string 	password	登录密码
	 * 
	 */
	public function auth_rules(Request $Request, AuthRule $AuthRule)
	{
		$access_token = $Request->input('access_token', '');
		if (!isset($access_token)) return json_send(['code' => 'error', 'msg' => '缺少参数']);
		$auth_rules = [];
		if ($access_token['is_admin'] == 0) {
			$auth_rules = '';
		} else {
			$auth_rules = $AuthRule->getAuthList($access_token['uid'], '1', 'manager');
		}
		return    	json_send(['code' => 'success', 'msg' => '获取成功', 'data' => $auth_rules]);
	}



	/**
	 * 登录方法				/manager/login/out
	 * @author 唐远望
	 * @version   1.0
	 * @date      2025-12-02
	 * @param string 	username	登录账号
	 * @param string 	password	登录密码
	 * 
	 * */
	public function out(Request $Request, AdminUser $AdminUser, UserModel $UserModel)
	{
		$token  = $Request->input('access_token_manager', '');
		// 解码
		$userInfo                       = AccessToken::decode($token);
		// 验证规则
		$uid     	= $userInfo['uid'];
		$is_admin   = $userInfo['is_admin'];
		if ($is_admin == '1') {
			// 退出登录
			$AdminUser->LoginOut($uid, 'manager');
		} else {
			$UserModel->LoginOut($uid, 'manager');
		}

		// 表单令牌
		return    	json_send(['code' => 'success', 'msg' => '退出成功', 'data' => '']);
	}


	/**
	 * 手机号码登录			/manager/login/mobile
	 * @author 唐远望
	 * @version   1.0
	 * @date      2025-12-04
	 * @param string 	mobile		手机号码
	 * @param string 	password	登录密码
	 * 
	 */
	public function mobile(Request $Request, AuthRule $AuthRule, UserModel $UserModel)
	{
		// 验证规则
		$Request->scene('mobile')->validate();
		// 接收数据
		$phone    = $Request->input('phone', '');
		// 接收数据
		$password    = $Request->input('password', '');
		// 查询用户
		$admin    	= $UserModel->where('mobile', $phone)->first(['company_id', 'id as uid', 'name as username', 'mobile as phone', 'status', 'password', 'insert_time', 'update_time']);
		// 用户不存在
		if (!$admin)	return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
		// 用户不存在
		if ($admin['status']) 				return json_send(['code' => 'error', 'msg' => '该账号已停用']);
		// 转数组
		$admin    	= $admin->toArray();
		// 比对密码
		if (md5($password) != $admin['password']) return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
		// 登录
		$accessToken 						= $UserModel->Login($admin['uid'], $admin['company_id'], 'manager');
		// 比对密码
		if (isset($accessToken['error'])) 	return json_send(['code' => 'error', 'msg' => '登录失败', 'data' => $accessToken['data']]);
		// 获取权限列表
		$accessToken['username']			= $admin['username'];
		$accessToken['is_system_admin']			= 0;
		// 表单令牌
		return    	json_send(['code' => 'success', 'msg' => '登录成功', 'data' => $accessToken]);
	}

	/**
	 * 发送验证码
	 * @author 唐远望
	 * @version   1.0
	 * @date      2026-01-15
	 * @param string 	phone		手机号码
	 * 
	 */
	public function send_code(Request $Request, UserModel $UserModel)
	{
		// 验证规则
		$Request->scene('send_code')->validate();
		// 接收数据
		$mobile		 = request('phone', '');
		if (!$mobile)	return json_send(['code' => 'error', 'msg' => '请先填写手机号']);
		// 获取数据
		$session	= Cache::get('loginSmsCode_' . $mobile);
		// 如果有数据，并且验证码创建的时间在一分钟之内
		if ($session && time() - $session['create_time'] < 60) return json_send(['code' => 'error', 'msg' => '请稍后再试']);
		// 查询用户
		$admin		= $UserModel->query()->where('mobile', $mobile)->first(['status']);
		if ($admin && $admin['status'])    return json_send(['code' => 'error', 'msg' => '用户已被停用']);
		$code 		= strval(rand(100000, 999999));
		$result    = Sms::sendCode($mobile, $code);
		if (isset($result['error']))	return json_send(['code' => 'error', 'msg' => $result['error']]);
		$session 	= ['code' => $code, 'mobile' => $mobile, 'create_time' => time()];
		Cache::put('loginSmsCode_' . $mobile, $session, 120);
		return							json_send(['code' => 'success', 'msg' => '发送成功', 'data' => '']);
	}

	/**
	 * 邮箱登录			/manager/login/email
	 * @author 唐远望
	 * @version   1.0
	 * @date      2025-12-04
	 * @param string 	email		邮箱号码
	 * @param string 	password	登录密码
	 * 
	 */
	public function email(Request $Request, UserModel $UserModel)
	{
		// 验证规则
		$Request->scene('email')->validate();
		// 接收数据
		$email    = $Request->input('email', '');
		// 接收数据
		$password    = $Request->input('password', '');
		// 查询用户
		$admin    	= $UserModel->where('email', $email)->first(['company_id', 'id as uid', 'name as username', 'mobile as phone', 'status', 'password', 'insert_time', 'update_time']);
		// 用户不存在
		if (!$admin)	return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
		// 用户不存在
		if ($admin['status']) 				return json_send(['code' => 'error', 'msg' => '该账号已停用']);
		// 转数组
		$admin    	= $admin->toArray();
		// 比对密码
		if (md5($password) != $admin['password']) return json_send(['code' => 'error', 'msg' => '密码错误或账号不存在']);
		// 登录
		$accessToken 						= $UserModel->Login($admin['uid'], $admin['company_id'], 'manager');
		// 比对密码
		if (isset($accessToken['error'])) 	return json_send(['code' => 'error', 'msg' => '登录失败', 'data' => $accessToken['data']]);
		// 获取权限列表
		$accessToken['username']			= $admin['username'];
		$accessToken['is_system_admin']			= 0;
		// 表单令牌
		return    	json_send(['code' => 'success', 'msg' => '登录成功', 'data' => $accessToken]);
	}

	/**
	 * 手机验证码登录			/manager/login/mobile_code
	 * @author 唐远望
	 * @version   1.0
	 * @date      2026-01-15
	 * @param string 	mobile		手机号码
	 * @param string 	code	验证码
	 * 
	 */
	public function mobile_code(Request $Request, UserModel $UserModel)
	{
		// 验证规则
		$Request->scene('mobile_code')->validate();
		// 接收数据
		$phone    = $Request->input('phone', '');
		// 接收数据
		$code    = $Request->input('code', '');
		// 获取数据
		$session	= Cache::get('loginSmsCode_' . $phone);
		if (!$session)                     return json_send(['code' => 'error', 'msg' => '请先获取手机号验证码']);
		if ($session['code'] != $code || $session['mobile'] != $phone) return json_send(['code' => 'error', 'msg' => '验证码错误']);
		// 查询用户
		$admin    	= $UserModel->where('mobile', $phone)->first(['company_id', 'id as uid', 'name as username', 'mobile as phone', 'status', 'password', 'insert_time', 'update_time']);
		// 用户不存在
		if (!$admin)	return json_send(['code' => 'error', 'msg' => '账号不存在']);
		// 用户不存在
		if ($admin['status']) 				return json_send(['code' => 'error', 'msg' => '该账号已停用']);
		// 转数组
		$admin    	= $admin->toArray();
		// 登录
		$accessToken 						= $UserModel->Login($admin['uid'], $admin['company_id'], 'manager');
		// 比对密码
		if (isset($accessToken['error'])) 	return json_send(['code' => 'error', 'msg' => '登录失败', 'data' => $accessToken['data']]);
		// 获取权限列表
		$accessToken['username']			= $admin['username'];
		$accessToken['is_system_admin']			= 0;
		// 表单令牌
		return    	json_send(['code' => 'success', 'msg' => '登录成功', 'data' => $accessToken]);
	}
}