108 lines
3.8 KiB
PHP
108 lines
3.8 KiB
PHP
<?php
|
||
// +----------------------------------------------------------------------
|
||
// | likeadmin快速开发前后端分离管理后台(PHP版)
|
||
// +----------------------------------------------------------------------
|
||
// | 欢迎阅读学习系统程序代码,建议反馈是我们前进的动力
|
||
// | 开源版本可自由商用,可去除界面版权logo
|
||
// | gitee下载:https://gitee.com/likeshop_gitee/likeadmin
|
||
// | github下载:https://github.com/likeshop-github/likeadmin
|
||
// | 访问官网:https://www.likeadmin.cn
|
||
// | likeadmin团队 版权所有 拥有最终解释权
|
||
// +----------------------------------------------------------------------
|
||
// | author: likeadminTeam
|
||
// +----------------------------------------------------------------------
|
||
|
||
namespace app\api\validate;
|
||
|
||
use app\common\cache\UserAccountSafeCache;
|
||
use app\common\enum\LoginEnum;
|
||
use app\common\enum\notice\NoticeEnum;
|
||
use app\common\enum\user\UserTerminalEnum;
|
||
use app\common\enum\YesNoEnum;
|
||
use app\common\service\ConfigService;
|
||
use app\common\service\sms\SmsDriver;
|
||
use app\common\validate\BaseValidate;
|
||
use app\common\model\user\User;
|
||
use think\facade\Config;
|
||
|
||
/**
|
||
* 账号密码登录校验
|
||
* Class LoginValidate
|
||
* @package app\api\validate
|
||
*/
|
||
class LoginAccountValidate extends BaseValidate
|
||
{
|
||
|
||
protected $rule = [
|
||
'terminal' => 'require|in:' . UserTerminalEnum::WECHAT_MMP . ',' . UserTerminalEnum::WECHAT_OA . ','
|
||
. UserTerminalEnum::H5 . ',' . UserTerminalEnum::PC . ',' . UserTerminalEnum::IOS .
|
||
',' . UserTerminalEnum::ANDROID,
|
||
'account' => 'require',
|
||
'password' => 'require|checkPassword',
|
||
];
|
||
|
||
|
||
protected $message = [
|
||
'terminal.require' => 'network.parameterAbnormality',//终端参数缺失
|
||
'terminal.in' => 'network.parameterAbnormality',//终端参数状态值不正确
|
||
'account.require' => 'network.parameterAbnormality',//请输入账号
|
||
'password.require' => 'network.parameterAbnormality',//请输入密码
|
||
];
|
||
|
||
|
||
/**
|
||
* @notes 登录密码校验
|
||
* @param $password
|
||
* @param $other
|
||
* @param $data
|
||
* @return bool|string
|
||
* @author 段誉
|
||
* @date 2022/9/15 14:39
|
||
*/
|
||
public function checkPassword($password, $other, $data)
|
||
{
|
||
//账号安全机制,连续输错后锁定,防止账号密码暴力破解
|
||
$userAccountSafeCache = new UserAccountSafeCache();
|
||
if (!$userAccountSafeCache->isSafe()) {
|
||
return 'network.pwdErrorLimit';
|
||
//密码连续' . $userAccountSafeCache->count . '次输入错误,请' . $userAccountSafeCache->minute . '分钟后重试
|
||
}
|
||
|
||
$where = [];
|
||
|
||
$login_way = $data['login_way'];//0邮箱1手机号
|
||
if($login_way == 1){
|
||
$where = ['country_code' => $data['country_code']];
|
||
}
|
||
|
||
$userInfo = User::where($where)
|
||
->where(['account' => $data['account']])
|
||
->field(['password,is_disable,is_open'])
|
||
->findOrEmpty();
|
||
|
||
if ($userInfo->isEmpty()) {
|
||
$userAccountSafeCache->record();
|
||
return 'login.accountNoExist';//用户不存在
|
||
}
|
||
|
||
if ($userInfo['is_open'] === YesNoEnum::NO) {
|
||
$userAccountSafeCache->record();
|
||
return 'login.accountNoExist';//用户未启用
|
||
}
|
||
|
||
if ($userInfo['is_disable'] === YesNoEnum::YES) {
|
||
$userAccountSafeCache->record();
|
||
return 'login.accountLocked';//用户已禁用
|
||
}
|
||
|
||
$passwordSalt = Config::get('project.unique_identification');
|
||
if ($userInfo['password'] !== create_password($password, $passwordSalt)) {
|
||
$userAccountSafeCache->record();
|
||
return 'login.passwordError';//密码错误
|
||
}
|
||
|
||
$userAccountSafeCache->relieve();
|
||
|
||
return true;
|
||
}
|
||
} |