123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252 |
- <?php
- /**
- * [WeEngine System] Copyright (c) 2014 WE7.CC
- * WeEngine is NOT a free software, it under the license terms, visited http://www.we7.cc/ for more details.
- */
- defined('IN_IA') or exit('Access Denied');
- load()->func('communication');
-
- $code = $_GPC['code'];
- $scope = $_GPC['scope'];
- if (!empty($_SESSION['pay_params'])) {
- $setting = uni_setting($_W['uniacid'], array('payment'));
- $uniacid = !empty($setting['payment']['wechat']['service']) ? $setting['payment']['wechat']['service'] : $setting['payment']['wechat']['borrow'];
- $acid = pdo_getcolumn('uni_account', array('uniacid' => $uniacid), 'default_acid');
- $setting = account_fetch($acid);
- $_W['account']['oauth'] = array(
- 'key' => $setting['key'],
- 'secret' => $setting['secret'],
- 'type' => $setting['type'],
- 'level' => $setting['level'],
- 'acid' => $setting['acid'],
- );
- }
- if (empty($_W['account']['oauth']) || empty($code)) {
- exit('通信错误,请在微信中重新发起请求');
- }
- $oauth_account = WeAccount::create($_W['account']['oauth']);
- $oauth = $oauth_account->getOauthInfo($code);
-
- if (is_error($oauth) || empty($oauth['openid'])) {
- $state = 'we7sid-'.$_W['session_id'];
- $str = '';
- if(uni_is_multi_acid()) {
- $str = "&j={$_W['acid']}";
- }
- $url = "{$_W['siteroot']}app/index.php?i={$_W['uniacid']}{$str}&c=auth&a=oauth&scope=snsapi_base";
- $callback = urlencode($url);
- $forward = $oauth_account->getOauthCodeUrl($callback, $state);
- header('Location: ' . $forward);
- exit;
- }
- if (!empty($_SESSION['pay_params'])) {
- if (!empty($oauth['openid'])) {
- header("Location: ".url('mc/cash/wechat', array('payopenid' => $oauth['openid'], 'params' => $_SESSION['pay_params'])));
- exit;
- }else{
- message('非法访问.');
- }
- }
- $_SESSION['oauth_openid'] = $oauth['openid'];
- $_SESSION['oauth_acid'] = $_W['account']['oauth']['acid'];
-
- if (intval($_W['account']['level']) == 4) {
- $fan = mc_fansinfo($oauth['openid']);
- if (!empty($fan)) {
- $_SESSION['openid'] = $oauth['openid'];
- if (empty($_SESSION['uid'])) {
- if (!empty($fan['uid'])) {
- $member = mc_fetch($fan['uid'], array('uid'));
- if (!empty($member) && $member['uniacid'] == $_W['uniacid']) {
- $_SESSION['uid'] = $member['uid'];
- }
- }
- }
- } else {
- $accObj = WeAccount::create($_W['account']);
- $userinfo = $accObj->fansQueryInfo($oauth['openid']);
- if(!is_error($userinfo) && !empty($userinfo) && !empty($userinfo['subscribe'])) {
- $userinfo['nickname'] = stripcslashes($userinfo['nickname']);
- $userinfo['avatar'] = $userinfo['headimgurl'];
- $_SESSION['userinfo'] = base64_encode(iserializer($userinfo));
- $record = array(
- 'openid' => $userinfo['openid'],
- 'uid' => 0,
- 'acid' => $_W['acid'],
- 'uniacid' => $_W['uniacid'],
- 'salt' => random(8),
- 'updatetime' => TIMESTAMP,
- 'nickname' => stripslashes($userinfo['nickname']),
- 'follow' => $userinfo['subscribe'],
- 'followtime' => $userinfo['subscribe_time'],
- 'unfollowtime' => 0,
- 'unionid' => $userinfo['unionid'],
- 'tag' => base64_encode(iserializer($userinfo))
- );
- if (!isset($unisetting['passport']) || empty($unisetting['passport']['focusreg'])) {
- $email = md5($oauth['openid']).'@we7.cc';
- $email_exists_member = pdo_getcolumn('mc_members', array('email' => $email), 'uid');
- if (!empty($email_exists_member)) {
- $uid = $email_exists_member;
- } else {
- $default_groupid = pdo_fetchcolumn('SELECT groupid FROM ' .tablename('mc_groups') . ' WHERE uniacid = :uniacid AND isdefault = 1', array(':uniacid' => $_W['uniacid']));
- $data = array(
- 'uniacid' => $_W['uniacid'],
- 'email' => $email,
- 'salt' => random(8),
- 'groupid' => $default_groupid,
- 'createtime' => TIMESTAMP,
- 'password' => md5($message['from'] . $data['salt'] . $_W['config']['setting']['authkey']),
- 'nickname' => stripslashes($userinfo['nickname']),
- 'avatar' => $userinfo['headimgurl'],
- 'gender' => $userinfo['sex'],
- 'nationality' => $userinfo['country'],
- 'resideprovince' => $userinfo['province'] . '省',
- 'residecity' => $userinfo['city'] . '市',
- );
- pdo_insert('mc_members', $data);
- $uid = pdo_insertid();
- }
- $record['uid'] = $uid;
- $_SESSION['uid'] = $uid;
- }
- pdo_insert('mc_mapping_fans', $record);
- } else {
- $record = array(
- 'openid' => $oauth['openid'],
- 'nickname' => '',
- 'subscribe' => '0',
- 'subscribe_time' => '',
- 'headimgurl' => '',
- );
- }
- $_SESSION['openid'] = $oauth['openid'];
- $_W['fans'] = $record;
- $_W['fans']['from_user'] = $record['openid'];
- }
- }
- if (intval($_W['account']['level']) != 4) {
- if (!empty($oauth['unionid'])) {
- $fan = pdo_get('mc_mapping_fans', array('unionid' => $oauth['unionid'], 'uniacid' => $_W['uniacid']));
- if (!empty($fan)) {
- if (!empty($fan['uid'])) {
- $_SESSION['uid'] = intval($fan['uid']);
- }
- if (!empty($fan['openid'])) {
- $_SESSION['openid'] = strval($fan['openid']);
- }
- }
- } else {
- $mc_oauth_fan = mc_oauth_fans($oauth['openid'], $_W['acid']);
- if (empty($mc_oauth_fan) && (!empty($_SESSION['openid']) || !empty($_SESSION['uid']))) {
- $data = array(
- 'acid' => $_W['acid'],
- 'oauth_openid' => $oauth['openid'],
- 'uid' => intval($_SESSION['uid']),
- 'openid' => $_SESSION['openid']
- );
- pdo_insert('mc_oauth_fans', $data);
- }
- if (!empty($mc_oauth_fan)) {
- if (empty($_SESSION['uid']) && !empty($mc_oauth_fan['uid'])) {
- $_SESSION['uid'] = intval($mc_oauth_fan['uid']);
- }
- if (empty($_SESSION['openid']) && !empty($mc_oauth_fan['openid'])) {
- $_SESSION['openid'] = strval($mc_oauth_fan['openid']);
- }
- }
- }
- }
- if ($scope == 'userinfo' || $scope == 'snsapi_userinfo') {
- $userinfo = $oauth_account->getOauthUserInfo($oauth['access_token'], $oauth['openid']);
- if (!is_error($userinfo)) {
- $userinfo['nickname'] = stripcslashes($userinfo['nickname']);
- $userinfo['avatar'] = $userinfo['headimgurl'];
- $_SESSION['userinfo'] = base64_encode(iserializer($userinfo));
- $fan = pdo_get('mc_mapping_fans', array('openid' => $oauth['openid']));
- if (!empty($fan)) {
- $record = array();
- $record['updatetime'] = TIMESTAMP;
- $record['nickname'] = stripslashes($userinfo['nickname']);
- $record['tag'] = base64_encode(iserializer($userinfo));
- pdo_update('mc_mapping_fans', $record, array('openid' => $fan['openid'], 'acid' => $_W['acid'], 'uniacid' => $_W['uniacid']));
- if (!empty($fan['uid']) || !empty($_SESSION['uid'])) {
- $uid = $fan['uid'];
- if(empty($uid)){
- $uid = $_SESSION['uid'];
- }
- $user = mc_fetch($uid, array('nickname', 'gender', 'residecity', 'resideprovince', 'nationality', 'avatar'));
- $record = array();
- if(empty($user['nickname']) && !empty($userinfo['nickname'])) {
- $record['nickname'] = stripslashes($userinfo['nickname']);
- }
- if(empty($user['gender']) && !empty($userinfo['sex'])) {
- $record['gender'] = $userinfo['sex'];
- }
- if(empty($user['residecity']) && !empty($userinfo['city'])) {
- $record['residecity'] = $userinfo['city'] . '市';
- }
- if(empty($user['resideprovince']) && !empty($userinfo['province'])) {
- $record['resideprovince'] = $userinfo['province'] . '省';
- }
- if(empty($user['nationality']) && !empty($userinfo['country'])) {
- $record['nationality'] = $userinfo['country'];
- }
- if(empty($user['avatar']) && !empty($userinfo['headimgurl'])) {
- $record['avatar'] = $userinfo['headimgurl'];
- }
- if(!empty($record)) {
- mc_update($user['uid'], $record);
- }
- }
- } else {
- $record = array(
- 'openid' => $oauth['openid'],
- 'uid' => 0,
- 'acid' => $_W['acid'],
- 'uniacid' => $_W['uniacid'],
- 'salt' => random(8),
- 'updatetime' => TIMESTAMP,
- 'nickname' => $userinfo['nickname'],
- 'follow' => 0,
- 'followtime' => 0,
- 'unfollowtime' => 0,
- 'tag' => base64_encode(iserializer($userinfo))
- );
- if (!isset($unisetting['passport']) || empty($unisetting['passport']['focusreg'])) {
- $default_groupid = pdo_fetchcolumn('SELECT groupid FROM ' .tablename('mc_groups') . ' WHERE uniacid = :uniacid AND isdefault = 1', array(':uniacid' => $_W['uniacid']));
- $data = array(
- 'uniacid' => $_W['uniacid'],
- 'email' => md5($oauth['openid']).'@we7.cc',
- 'salt' => random(8),
- 'groupid' => $default_groupid,
- 'createtime' => TIMESTAMP,
- 'password' => md5($message['from'] . $data['salt'] . $_W['config']['setting']['authkey']),
- 'nickname' => $userinfo['nickname'],
- 'avatar' => $userinfo['headimgurl'],
- 'gender' => $userinfo['sex'],
- 'nationality' => $userinfo['country'],
- 'resideprovince' => $userinfo['province'] . '省',
- 'residecity' => $userinfo['city'] . '市',
- );
- pdo_insert('mc_members', $data);
- $uid = pdo_insertid();
- $record['uid'] = $uid;
- $_SESSION['uid'] = $uid;
- }
- pdo_insert('mc_mapping_fans', $record);
- }
- } else {
- message('微信授权获取用户信息失败,错误信息为: ' . $response['message']);
- }
- }
-
- $forward = urldecode($_SESSION['dest_url']);
- $str = '';
- if(uni_is_multi_acid()) {
- $str = "&j={$_W['acid']}";
- }
- $forward = strexists($forward, 'i=') ? $forward : "{$forward}&i={$_W['uniacid']}{$str}";
- $forward = strexists($forward, '&wxref=mp.weixin.qq.com#wechat_redirect') ? $forward : $forward . '&wxref=mp.weixin.qq.com#wechat_redirect';
- header('Location: ' . $forward);
- exit;
|