首頁 探索 說明
註冊 登入
zhengchengwu
/
renren
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
人人商城
11 提交歷史
1 分支列表
分支: master
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
renren/web/source/account/auth.ctrl.php

auth.ctrl.php 7.4KB
永久連結 文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185 
  1. <?php

  2. /**

  3.  * [WeEngine System] Copyright (c) 2014 WE7.CC

  4.  * WeEngine is NOT a free software, it under the license terms, visited http://www.we7.cc/ for more details.

  5.  */

  6. defined('IN_IA') or exit('Access Denied');

  7. 

  8. load()->func('communication');

  9. load()->classs('weixin.platform');

  10. load()->model('account');

  11. set_time_limit(0);

  12. 

  13. $dos = array('ticket', 'forward', 'test', 'confirm');

  14. $do = in_array($do, $dos) ? $do : 'forward';

  15. 

  16. $account_platform = new WeiXinPlatform();

  17. 

  18. $setting = setting_load('platform');

  19. if ($do == 'forward') {

  20. 	if (empty($_GPC['auth_code'])) {

  21. 		itoast('授权登录失败,请重试', url('account/manage'), 'error');

  22. 	}

  23. 	$auth_info = $account_platform->getAuthInfo($_GPC['auth_code']);

  24. 	if (is_error($auth_info)) {

  25. 		itoast('授权登录新建公众号失败:' . $auth_info['message'], url('account/manage'), 'error');

  26. 	}

  27. 	$auth_refresh_token = $auth_info['authorization_info']['authorizer_refresh_token'];

  28. 	$auth_appid = $auth_info['authorization_info']['authorizer_appid'];

  29. 

  30. 	$account_info = $account_platform->getAccountInfo($auth_appid);

  31. 	if (is_error($account_info)) {

  32. 		itoast('授权登录新建公众号失败:' . $account_info['message'], url('account/manage'), 'error');

  33. 	}

  34. 	if (!empty($_GPC['test'])) {

  35. 		echo "此为测试平台接入返回结果:<br/> 公众号名称:{$account_info['authorizer_info']['nick_name']} <br/> 接入状态:成功";

  36. 		exit;

  37. 	}

  38. 	if ($account_info['authorizer_info']['service_type_info']['id'] == '0' || $account_info['authorizer_info']['service_type_info']['id'] == '1') {

  39. 		if ($account_info['authorizer_info']['verify_type_info']['id'] > '-1') {

  40. 			$level = '3';

  41. 		} else {

  42. 			$level = '1';

  43. 		}

  44. 	} elseif ($account_info['authorizer_info']['service_type_info']['id'] == '2') {

  45. 		if ($account_info['authorizer_info']['verify_type_info']['id'] > '-1') {

  46. 			$level = '4';

  47. 		} else {

  48. 			$level = '2';

  49. 		}

  50. 	}

  51. 	if (!empty($account_info['authorizer_info']['user_name'])) {

  52. 		$account_found = pdo_get('account_wechats', array('original' => $account_info['authorizer_info']['user_name']));

  53. 		if (!empty($account_found)) {

  54. 			message('公众号已经在系统中接入,是否要更改为授权接入方式? <div><a class="btn btn-primary" href="' . url('account/auth/confirm', array('level' => $level, 'auth_refresh_token' => $auth_refresh_token, 'auth_appid' => $auth_appid, 'acid' => $account_found['acid'], 'uniacid' => $account_found['uniacid'])) . '">是</a> &nbsp;&nbsp;<a class="btn btn-default" href="index.php">否</a></div>', '', 'tips');

  55. 		}

  56. 	}

  57. 	$account_insert = array(

  58. 		'name' => $account_info['authorizer_info']['nick_name'],

  59. 		'description' => '',

  60. 		'groupid' => 0,

  61. 	);

  62. 	if(!pdo_insert('uni_account', $account_insert)) {

  63. 		itoast('授权登录新建公众号失败,请重试', url('account/manage'), 'error');

  64. 	}

  65. 	$uniacid = pdo_insertid();

  66. 	$template = pdo_fetch('SELECT id,title FROM ' . tablename('site_templates') . " WHERE name = 'default'");

  67. 	$style_insert = array(

  68. 		'uniacid' => $uniacid,

  69. 		'templateid' => $template['id'],

  70. 		'name' => $template['title'] . '_' . random(4),

  71. 	);

  72. 	pdo_insert('site_styles', $style_insert);

  73. 	$styleid = pdo_insertid();

  74. 

  75. 	$multi_insert = array(

  76. 		'uniacid' => $uniacid,

  77. 		'title' => $account_insert['name'],

  78. 		'styleid' => $styleid,

  79. 	);

  80. 	pdo_insert('site_multi', $multi_insert);

  81. 	$multi_id = pdo_insertid();

  82. 

  83. 	$unisetting_insert = array(

  84. 		'creditnames' => iserializer(array(

  85. 			'credit1' => array('title' => '积分', 'enabled' => 1),

  86. 			'credit2' => array('title' => '余额', 'enabled' => 1)

  87. 		)),

  88. 		'creditbehaviors' => iserializer(array(

  89. 			'activity' => 'credit1',

  90. 			'currency' => 'credit2'

  91. 		)),

  92. 		'uniacid' => $uniacid,

  93. 		'default_site' => $multi_id,

  94. 		'sync' => iserializer(array('switch' => 0, 'acid' => '')),

  95. 	);

  96. 	pdo_insert('uni_settings', $unisetting_insert);

  97. 	pdo_insert('mc_groups', array('uniacid' => $uniacid, 'title' => '默认会员组', 'isdefault' => 1));

  98. 

  99. 	$account_index_insert = array(

  100. 		'uniacid' => $uniacid,

  101. 		'type' => ACCOUNT_OAUTH_LOGIN,

  102. 		'hash' => random(8),

  103. 		'isconnect' => 1

  104. 	);

  105. 	pdo_insert('account', $account_index_insert);

  106. 	$acid = pdo_insertid();

  107. 

  108. 	$subaccount_insert = array(

  109. 		'acid' => $acid,

  110. 		'uniacid' => $uniacid,

  111. 		'name' => $account_insert['name'],

  112. 		'account' => $account_info['authorizer_info']['alias'],

  113. 		'original' => $account_info['authorizer_info']['user_name'],

  114. 		'level' => $level,

  115. 		'key' => $auth_appid,

  116. 		'auth_refresh_token' => $auth_refresh_token,

  117. 		'encodingaeskey' => $account_platform->encodingaeskey,

  118. 		'token' => $account_platform->token,

  119. 	);

  120. 	pdo_insert('account_wechats', $subaccount_insert);

  121. 	if(is_error($acid)) {

  122. 		itoast('授权登录新建公众号失败,请重试', url('account/manage'), 'error');

  123. 	}

  124. 	if (user_is_vice_founder()) {

  125. 		uni_user_account_role($uniacid, $_W['uid'], ACCOUNT_MANAGE_NAME_VICE_FOUNDER);

  126. 	}

  127. 	if (empty($_W['isfounder'])) {

  128. 		uni_user_account_role($uniacid, $_W['uid'], ACCOUNT_MANAGE_NAME_OWNER);

  129. 		if (!empty($_W['user']['owner_uid'])) {

  130. 			uni_user_account_role($uniacid, $_W['user']['owner_uid'], ACCOUNT_MANAGE_NAME_VICE_FOUNDER);

  131. 		}

  132. 	}

  133. 	pdo_update('uni_account', array('default_acid' => $acid), array('uniacid' => $uniacid));

  134. 	$headimg = ihttp_request($account_info['authorizer_info']['head_img']);

  135. 	$qrcode = ihttp_request($account_info['authorizer_info']['qrcode_url']);

  136. 	file_put_contents(IA_ROOT . '/attachment/headimg_'.$acid.'.jpg', $headimg['content']);

  137. 	file_put_contents(IA_ROOT . '/attachment/qrcode_'.$acid.'.jpg', $qrcode['content']);

  138. 

  139. 	cache_build_account($uniacid);

  140. 	cache_delete(cache_system_key('proxy_wechatpay_account:'));

  141. 	cache_clean(cache_system_key('user_accounts'));

  142. 	itoast('授权登录成功', url('account/manage', array('type' => '3')), 'success');

  143. } elseif ($do == 'confirm') {

  144. 	$auth_refresh_token = $_GPC['auth_refresh_token'];

  145. 	$auth_appid = $_GPC['auth_appid'];

  146. 	$level = intval($_GPC['level']);

  147. 	$acid = intval($_GPC['acid']);

  148. 	$uniacid = intval($_GPC['uniacid']);

  149. 

  150. 	pdo_update('account_wechats', array(

  151. 		'auth_refresh_token' => $auth_refresh_token,

  152. 		'encodingaeskey' => $account_platform->encodingaeskey,

  153. 		'token' => $account_platform->token,

  154. 		'level' => $level,

  155. 		'key' => $auth_appid,

  156. 	), array('acid' => $acid));

  157. 	pdo_update('account', array('isconnect' => '1', 'type' => ACCOUNT_OAUTH_LOGIN, 'isdeleted' => 0), array('acid' => $acid));

  158. 

  159. 	cache_delete("uniaccount:{$uniacid}");

  160. 	cache_delete("unisetting:{$uniacid}");

  161. 	cache_delete("accesstoken:{$acid}");

  162. 	cache_delete("jsticket:{$acid}");

  163. 	cache_delete("cardticket:{$acid}");

  164. 	cache_delete("account:auth:refreshtoken:{$acid}");

  165. 	itoast('更改公众号授权接入成功', url('account/post', array('acid' => $acid, 'uniacid' => $uniacid)), 'success');

  166. } elseif ($do == 'ticket') {

  167. 	$post = file_get_contents('php://input');

  168. 	WeUtility::logging('debug', 'account-ticket' . $post);

  169. 	$encode_ticket = isimplexml_load_string($post, 'SimpleXMLElement', LIBXML_NOCDATA);

  170. 	if (empty($post) || empty($encode_ticket)) {

  171. 		exit('fail');

  172. 	}

  173. 	$decode_ticket = aes_decode($encode_ticket->Encrypt, $setting['platform']['encodingaeskey']);

  174. 	$ticket_xml = isimplexml_load_string($decode_ticket, 'SimpleXMLElement', LIBXML_NOCDATA);

  175. 	if (empty($ticket_xml)) {

  176. 		exit('fail');

  177. 	}

  178. 	if (!empty($ticket_xml->ComponentVerifyTicket) && $ticket_xml->InfoType == 'component_verify_ticket') {

  179. 		cache_write('account:ticket', strval($ticket_xml->ComponentVerifyTicket));

  180. 	}

  181. 	exit('success');

  182. } elseif ($do == 'test') {

  183. 	$authurl = $account_platform->getAuthLoginUrl();

  184. 	echo '<a href="'.$authurl.'%26test=1"><img src="https://open.weixin.qq.com/zh_CN/htmledition/res/assets/res-design-download/icon_button3_2.png" /></a>';

  185. }