elf
/
cf-platform
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '17a7045036'
${ noResults }
cf-platform/Application/Home/Controller/SafeController.class.php

320 lines
12 KiB
PHTML
Raw Normal View History Unescape Escape

安全中心
5 years ago
<?php
/*
* To change this license header, choose License Headers in Project Properties.
* To change this template file, choose Tools | Templates
* and open the template in the editor.
*/
namespace Home\Controller;
use Think\Controller;
use Base\Repository\PromoteRepository;
/**
* 扩展控制器
* 用于调度各个扩展的URL访问需求
*/
class SafeController extends BaseController{
public function setSafeIndex() {
$id = get_pid();
$safePwd = M('promote','tab_')->where(['id'=>$id])->field('second_pwd')->find();
if(empty($safePwd['second_pwd'])) {
return $this->display();
}else {
return $this->display("verifySafePwd");
}
}
public function setSafePassword() {
$password = $_REQUEST['password'];
$confirmpassword = $_REQUEST['confirm_password'];
if($password == "") {
$this->error("新密码不能为空");
}
if($confirmpassword == "") {
$this->error("确认密码不能为空");
}
if($password !== $confirmpassword) {
$this->error("两次密码不一致,请确认!");
}
$this->checkPaswwordFormat($confirmpassword);
$data['second_pwd'] = $this->think_ucenter_md5($confirmpassword, UC_AUTH_KEY);
$id = get_pid();
$updateRs = M("promote","tab_")->where(['id'=>$id])->save($data);
if($updateRs) {
$this->success("安全密码设置成功");
}
}
public function think_ucenter_md5($str, $key = 'ThinkUCenter')
{
return '' === $str ? '' : md5(sha1($str) . $key);
}
public function checkPaswwordFormat($confirmpwd) {
if(strlen($confirmpwd) < 6 || strlen($confirmpwd) > 24) {
$this->error("密码至少6位数,最多24位");
}
if(preg_match("/^\d*$/",$confirmpwd))
{
$this->error("密码必须包含字母,强度:弱");
}
if(preg_match("/^[a-z]*$/i",$confirmpwd))
{
$this->error("密码必须包含数字,强度:中");
}
if(!preg_match("/^[a-z\d]*$/i",$confirmpwd))
{
$this->error("密码只能包含数字和字母,强度:强");
}
}
public function modifyPwdIndex() {
if($_POST) {
$oldpwd = $_POST['oldpwd'];
$safepwd = $_POST['safepwd'];
if(empty($oldpwd)) {
$this->error("旧密码不能为空");
}
if(empty($safepwd)) {
$this->error("安全密码不能为空");
}
$id = get_pid();
$safePwd = M('promote','tab_')->where(['id'=>$id])->field('second_pwd')->find();
if($safePwd['second_pwd'] == $this->think_ucenter_md5($oldpwd, UC_AUTH_KEY)){
$data['second_pwd'] = $this->think_ucenter_md5($safepwd, UC_AUTH_KEY);
$updateRs = M("promote","tab_")->where(['id'=>$id])->save($data);
if($updateRs) {
$this->success("修改成功");
}else {
$this->error("修改失败,请重新操作");
}
}
else {
$this->error('旧密码错误,请确认');
}
}
$this->display();
}
public function verifySafePwd() {
if($_POST) {
$password = $_POST['safepwd'];
if($password == "" || $password == NULL) {
$this->error("密码不能为空");
}
$id = get_pid();
$safePwd = M('promote','tab_')->where(['id'=>$id])->field('second_pwd')->find();
if($safePwd['second_pwd'] == $this->think_ucenter_md5($password, UC_AUTH_KEY)){
$this->success("登陆成功,即将跳转",U('modifyPwdIndex'));
}
else {
$this->error('密码错误,请重新输入密码');
}
}
$this->display();
}
//修改登陆密码
public function modifyLoginPassword() {
if($_POST) {
$oldpwd = $_POST['oldpwd'];
$newpwd = $_POST['newpwd'];
$id = get_pid();
$pwd = M('promote','tab_')->where(['id'=>$id])->field('password')->find();
$password = $pwd["password"];
if($oldpwd != "0" && empty($oldpwd)) {
$this->error("旧密码不能为空");
return false;
}
if($newpwd != "0" && empty($newpwd)) {
$this->error("新密码不能为空");
return false;
}
if($this->think_ucenter_md5($oldpwd, UC_AUTH_KEY) !== $password) {
$this->error("请输入正确旧密码");
return false;
}
$this->checkPaswwordFormat($newpwd);
$data['password'] = $this->think_ucenter_md5($newpwd, UC_AUTH_KEY);
$updateRs = M('promote','tab_')->where(['id'=>$id])->save($data);
if($updateRs) {
$this->success("修改成功");
}else {
$this->error("修改失败");
return false;
}
}
$this->display();
}
//修改用户信息
public function modifyBaseInfo() {
if($_POST) {
$username = $_REQUEST['username']; //真实姓名
$id_card = $_REQUEST["id_card"]; //身份证号码
$tel = $_REQUEST['tel'];
$address = $_REQUEST['s_province'].$_REQUEST['s_city'].$_REQUEST['s_county']; //省市县
$contactAddress = $_REQUEST['address']; //具体地址
// $userAddress = $address.'('.$contactAddress.')';
$userAddress[0] = $_REQUEST['s_province'].','.$_REQUEST['s_city'].','.$_REQUEST['s_county'];
$userAddress[1] = $contactAddress;
$email = $_REQUEST['email'];
$account_type = $_REQUEST['account_type']; //账户类型
$bank_name = $_REQUEST["bank_name"]; //开户银行
$bank_account = $_REQUEST['bank_account']; //银行账户名
$bank_card = $_REQUEST['bank_card']; //银行账号
$idcarpic = $_REQUEST['idcarpic'];
$businesspic = $_REQUEST['businesspic'];
$agreementpic = $_REQUEST['agreementpic'];
if(empty($_REQUEST['agree'])) {
$this->error("请先认真阅读协议,然后勾选协议");
return false;
}
if(empty($username)) {
$this->error("真实姓名不能为空");
return false;
}
if(empty($tel)) {
$this->error("手机号码不能为空");
return false;
}
$pattern = "/^1[3|5|7|8]\\d{9}$/i";
if(!preg_match($pattern, $tel)) {
$this->error("手机号码格式不合法");
return false;
}
if(empty($id_card)) {
$this->error("身份证号码不能为空");
return false;
}
if(empty($idcarpic)) {
$this->error("身份证证件照不能为空");
return false;
}
if(!is_idcard($id_card)) {
$this->error('证件号码错误');
return false;
}
if(empty($address)) {
$this->error("城市地址不能为空");
return false;
}
if(empty($contactAddress)) {
$this->error("联系地址不能为空");
}
if(empty($email)) {
$this->error("邮箱不能为空");
return false;
}
$patternemail = "/^([0-9A-Za-z\\-_\\.]+)@([0-9a-z]+\\.[a-z]{2,3}(\\.[a-z]{2})?)$/i";
if (!preg_match($patternemail, $email)) {
$this->error('邮箱地址错误');
return false;
}
if(empty($account_type)) {
$this->error("账户类型不能为空");
return false;
}
if(empty($bank_name)) {
$this->error("开户银行不能为空");
return false;
}
if(empty($bank_account)) {
$this->error("银行户名不能为空");
return false;
}
$bank_account_pattern = "/^[\x{4e00}-\x{9fa5}]{2,}$/u";
if (!preg_match($bank_account_pattern, $bank_account)) {
$this->error('银行卡开户人姓名错误');
return false;
}
if(empty($bank_card)) {
$this->error("卡号不能为空");
return false;
}
$bank_card_pattern = "/^\d{10,19}$/u";
if (!preg_match($bank_card_pattern, $bank_card)) {
$this->error('卡号格式错误');
return false;
}
$id = get_pid();
$data["real_name"] = $username;
$data['mobile_phone'] = $tel;
$data['idcard'] = $id_card;
$data['address'] = json_encode($userAddress,FALSE);
$data['email'] = $email;
$data['account_type'] = $account_type;
$data['bank_name'] = $bank_name;
$data['bank_account'] = $bank_account;
$data['bank_card'] = $bank_card;
$data['idcarpic'] = $idcarpic;
$data['businesspic'] = $businesspic;
$data['agreementpic'] = $agreementpic;
if($account_type == "公司") {
$data['account_type'] = 1;
}else {
$data['account_type'] = 2;
}
$updateRs = M("promote","tab_")->where(['id'=>$id])->save($data);
if($updateRs) {
$this->success("更新信息成功");
}else {
$this->error("更新信息失败");
}
}else {
$id = get_PID();
$result = M("promote","tab_")->where(['id'=>$id])->select();
$promoteInfo = $result[0];
$idcarpic = $promoteInfo['idcarpic'];
$businesspic = $promoteInfo['businesspic'];
$agreementpic = $promoteInfo['agreementpic'];
$account_type = $promoteInfo['account_type'];
$address = $promoteInfo["address"];
if(!empty($idcarpic)) {
$idcarpicArr = explode(',', $idcarpic);
$str = '';
foreach ($idcarpicArr as $key => $value) {
$promoteInfo['valuedata'][$key] =$value;
}
}
if(!empty($businesspic)) {
$businesspicArr = explode(',', $businesspic);
$str = '';
foreach ($businesspicArr as $key1 => $value1) {
$promoteInfo['valuedata1'][$key1] =$value1;
}
}
if(!empty($agreementpic)) {
$agreementpicArr = explode(',', $agreementpic);
$str = '';
foreach ($agreementpicArr as $key2 => $value2) {
$promoteInfo['valuedata2'][$key2] =$value2;
}
}
if($account_type == 1) {
$promoteInfo['complanystatus'] = true;
$promoteInfo['personalstatus'] = false;
}else {
$promoteInfo['personalstatus'] = true;
$promoteInfo['complanystatus'] = false;
}
if(!empty(json_decode($address))) {
$addressArr = explode(',', json_decode($address)[0]);
$promoteInfo['addressdata'] = $addressArr;
}
$promoteInfo['address'] = json_decode($address);
$this->assign('promoteinfo', $promoteInfo);
}
$this->display();
}
}