-
Notifications
You must be signed in to change notification settings - Fork 1.1k
/
Copy pathBasicAdmin.php
116 lines (107 loc) · 4.65 KB
/
BasicAdmin.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
<?php
/**
* File: BasicAdmin.php
* Functionality: Basic Controller(再整理)
* Author: 资料空白
* Date: 2018-6-8
*/
class AdminBasicController extends BasicController
{
protected $AdminUser = array();
public $serverPrivateKey = "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";
public function init()
{
parent::init();
$sysvars = $data = array();
$data['config']=$this->config = $this->load('config')->getConfig();
$sysvars['isHttps'] = $this->isHttps = isHttps();
$sysvars['isAjax'] = $this->isAjax = isAjax();
$sysvars['isGet'] = $this->isGet = isGet();
$sysvars['isPost'] = $this->isPost = isPost();
$sysvars['currentUrl'] = stripHTML(str_replace('//', '/', $_SERVER['REQUEST_URI']));
$data['sysvars'] = $sysvars;
$AdminUser = $this->getSession('AdminUser');
if (is_array($AdminUser) AND !empty($AdminUser) AND $AdminUser['expiretime'] > time()) {
$AdminUser['expiretime'] = time() + 15 * 60;
$this->setSession('AdminUser', $AdminUser);
$data['AdminUser'] = $this->AdminUser = $AdminUser;
} else {
$this->unsetSession('AdminUser');
}
$data['csrf_token'] = $this->createCsrfToken();
$this->getView()->assign($data);
}
//消息显示
public function show_message($code = '', $msg = '', $url = '/')
{
$this->forward("Admin", 'Showmsg', 'index', array('code' => $code, 'msg' => $msg, 'url' => $url));
return FALSE;
}
//管理员登录检查
public function checkLogin()
{
if ($this->AdminUser['id'] > 0) {
} else {
jsRedirect('/admin/login');
}
}
//管理员登录
public function setLogin($AdminUser)
{
//导入数据模型
$m_admin_user = Helper::load('admin_user');
$m_admin_login_log = Helper::load('admin_login_log');
unset($AdminUser['secret'], $AdminUser['password'], $AdminUser['status']);
$AdminUser['expiretime'] = time() + 15 * 60;
Yaf\Session::getInstance()->__set('AdminUser', $AdminUser);
//新增登录日志
$m_admin_login_log->logLogin($AdminUser['id']);
return TRUE;
}
//生成JWT token
public function createToken()
{
$tokenKey = array(
"iss" => "http://zlkb.net", //jwt签发者
"aud" => 'RPC', //接收jwt的一方
"exp" => time() + 60, //过期时间
);
return JWT::encode($tokenKey, self::readRSAKey($this->serverPrivateKey), 'RS256');
}
//为JWT准备的,证书处理函数
private static function readRSAKey($key)
{
$isPrivate = strlen($key) > 500;
if ($isPrivate) {
$lastKey = chunk_split($key, 64, "\n");
$lastKey = "-----BEGIN RSA PRIVATE KEY-----\n" . $lastKey . "-----END RSA PRIVATE KEY-----\n";
return $lastKey;
} else {
$lastKey = chunk_split($key, 64, "\n");
$lastKey = "-----BEGIN PUBLIC KEY-----\n" . $lastKey . "-----END PUBLIC KEY-----\n";
return $lastKey;
}
}
//生成csrftoken 防csrf攻击
private function createCsrfToken(){
$csrf_token=$this->getSession('csrf_token');
if(!$csrf_token){
$csrf_token=$this->createToken();
$this->setSession('csrf_token',$csrf_token);
}
return $csrf_token;
}
//验证csrftoken 防csrf攻击
public function VerifyCsrfToken($csrf_token=''){
$csrf_token=$csrf_token?$csrf_token:$this->getPost('csrf_token',false);
$session_csrf_token=$this->getSession('csrf_token');
if($session_csrf_token && $session_csrf_token==$csrf_token){
if(!isAjax()){
$this->setSession('csrf_token','');
}
return true;
}else{
return false;
}
}
}