$v){ //说明数值有变动 //$params[$k] 去掉两端空格 $params[$k] = trim($v); if($row[$k]!=$params[$k]){ //当修改参数不在允许修改的字段中 if(!in_array($k,$this->no_auth_fields)){ $this->have_auth = true;break; } } } return $this->have_auth; } protected function checkAssemblyParameters(){ if(!$this->qSwitch)return false; //得到所有get参数 $get = $this->request->get(); //得到当前model所有字段 $fields = $this->model->getTableFields(); // $commonFields = (new Field())->getCommonFields(); // var_dump($commonFields); $fieldLists = $fields; // foreach ($commonFields as $commonField) { // if (!in_array($commonField['column_name'], $fields)) { // $fieldLists[] = $commonField; // } // } $q_fields = []; foreach ($get as $kay=>$getField) { if (in_array($kay, $fieldLists)) { $q_fields[$kay] = $getField; } } //将q_fields塞入模板中 foreach ($q_fields as $k=>$v) { //渲染站点配置 $this->assign('q_'.$k, $v); } foreach ($this->qFields as $k) { //渲染站点配置 if(!isset($q_fields[$k]))$this->assign('q_'.$k, ""); } } /** * 引入后台控制器的traits */ use \app\manystore\library\traits\Backend; public function _initialize() { //移除HTML标签 $this->request->filter('trim,strip_tags,htmlspecialchars'); $modulename = $this->request->module(); $controllername = Loader::parseName($this->request->controller()); $actionname = strtolower($this->request->action()); $path = str_replace('.', '/', $controllername) . '/' . $actionname; // 定义是否Addtabs请求 !defined('IS_ADDTABS') && define('IS_ADDTABS', input("addtabs") ? true : false); // 定义是否Dialog请求 !defined('IS_DIALOG') && define('IS_DIALOG', input("dialog") ? true : false); // 定义是否AJAX请求 !defined('IS_AJAX') && define('IS_AJAX', $this->request->isAjax()); $this->auth = Auth::instance(); // 设置当前请求的URI $this->auth->setRequestUri($path); // 检测是否需要验证登录 if (!$this->auth->match($this->noNeedLogin)) { //检测是否登录 if (!$this->auth->isLogin()) { Hook::listen('manystore_nologin', $this); $url = Session::get('referer'); $url = $url ? $url : $this->request->url(); if ($url == '/') { $this->redirect('index/login', [], 302, ['referer' => $url]); exit; } $this->error(__('Please login first'), url('index/login', ['url' => $url])); } // 判断是否需要验证权限 if (!$this->auth->match($this->noNeedRight)) { // 判断控制器和方法判断是否有对应权限 if (!$this->auth->check($path)) { Hook::listen('manystore_nopermission', $this); $this->error(__('You have no permission'), ''); } } } if(!defined('SHOP_ID')){ define('SHOP_ID', $this->auth->shop_id); } $manystoreShop = ManystoreShop::where("id",$this->auth->shop_id)->find(); if($manystoreShop){ $url = Session::get('referer'); $url = $url ? $url : $this->request->url(); if($manystoreShop["status"] !=1) { $this->error(__('账号正处于审核中,无法进行任何操作!!'), url('index/login', ['url' => $url])); } $manystore = Manystore::where("id",$this->auth->id)->find(); if($manystore) { if($manystore["status"]!="normal") $this->error(__('账号正处于审核中,无法进行任何操作!!'), url('index/login', ['url' => $url])); } } if(!defined('SHOP_USER_ID')) { define('SHOP_USER_ID', $manystoreShop->user_id ?? 0); } if(!defined('SHOP_AUTH_TYPE_TEXT')) { define('SHOP_AUTH_TYPE_TEXT', $manystoreShop->type_text ?? "个人认证"); } if(!defined('STORE_ID')) { define('STORE_ID', $this->auth->id); } // 非选项卡时重定向 if (!$this->request->isPost() && !IS_AJAX && !IS_ADDTABS && !IS_DIALOG && input("ref") == 'addtabs') { $url = preg_replace_callback("/([\?|&]+)ref=addtabs(&?)/i", function ($matches) { return $matches[2] == '&' ? $matches[1] : ''; }, $this->request->url()); if (Config::get('url_domain_deploy')) { if (stripos($url, $this->request->server('SCRIPT_NAME')) === 0) { $url = substr($url, strlen($this->request->server('SCRIPT_NAME'))); } $url = url($url, '', false); } $this->redirect('index/index', [], 302, ['referer' => $url]); exit; } // 设置面包屑导航数据 $breadcrumb = $this->auth->getBreadCrumb($path); array_pop($breadcrumb); $this->view->breadcrumb = $breadcrumb; // 如果有使用模板布局 if ($this->layout) { $this->view->engine->layout('layout/' . $this->layout); } $manystoreConfig = new ManystoreConfig(); config('manystore_config',$manystoreConfig->manystore_config()); // 语言检测 $lang = $this->request->langset(); $lang = preg_match("/^([a-zA-Z\-_]{2,10})\$/i", $lang) ? $lang : 'zh-cn'; $site = Config::get("site"); $upload = \app\common\model\Config::upload(); // 上传信息配置后 Hook::listen("upload_config_init", $upload); // 配置信息 $config = [ 'site' => array_intersect_key($site, array_flip(['name', 'indexurl', 'cdnurl', 'version', 'timezone', 'languages'])), 'upload' => $upload, 'modulename' => $modulename, 'controllername' => $controllername, 'actionname' => $actionname, 'jsname' => 'manystore/' . str_replace('.', '/', $controllername), 'moduleurl' => rtrim(url("/{$modulename}", '', false), '/'), 'language' => $lang, 'referer' => Session::get("referer"), 'shop_id' => $this->auth->shop_id, 'store_id' => $this->auth->id, 'shop_user_id' => $manystoreShop->user_id ??0, 'auth_type_text' => $manystoreShop->type_text ?? "个人认证", ]; $config = array_merge($config, Config::get("view_replace_str")); Config::set('upload', array_merge(Config::get('upload'), $upload)); // 配置信息后 Hook::listen("config_init", $config); //加载当前控制器语言包 $this->loadlang($controllername); //渲染站点配置 $this->assign('site', $site); //渲染配置信息 $this->assign('config', $config); //渲染权限对象 $this->assign('auth', $this->auth); //渲染管理员对象 $this->assign('manystore', Session::get('manystore')); $this->assign('shop_id', $this->auth->shop_id); $this->assign('store_id', $this->auth->id); $this->assign('shop_user_id', $manystoreShop->user_id ??0 ); $this->assign( 'auth_type_text' , $manystoreShop->type_text ?? "个人认证"); // if(!defined('SHOP_ID')){ // define('SHOP_ID', $this->auth->shop_id); // } // // if(!defined('STORE_ID')) { // define('STORE_ID', $this->auth->id); // } $this->checkAssemblyParameters(); } /** * 加载语言文件 * @param string $name */ protected function loadlang($name) { $name = Loader::parseName($name); $name = preg_match("/^([a-zA-Z0-9_\.\/]+)\$/i", $name) ? $name : 'index'; $lang = $this->request->langset(); $lang = preg_match("/^([a-zA-Z\-_]{2,10})\$/i", $lang) ? $lang : 'zh-cn'; Lang::load(APP_PATH . $this->request->module() . '/lang/' . $lang . '/' . str_replace('.', '/', $name) . '.php'); } /** * 渲染配置信息 * @param mixed $name 键名或数组 * @param mixed $value 值 */ protected function assignconfig($name, $value = '') { $this->view->config = array_merge($this->view->config ? $this->view->config : [], is_array($name) ? $name : [$name => $value]); } /** * 生成查询所需要的条件,排序方式 * @param mixed $searchfields 快速查询的字段 * @param boolean $relationSearch 是否关联查询 * @return array */ protected function buildparams($searchfields = null, $relationSearch = null) { $searchfields = is_null($searchfields) ? $this->searchFields : $searchfields; $relationSearch = is_null($relationSearch) ? $this->relationSearch : $relationSearch; $search = $this->request->get("search", ''); $filter = $this->request->get("filter", ''); $op = $this->request->get("op", '', 'trim'); $sort = $this->request->get("sort", !empty($this->model) && $this->model->getPk() ? $this->model->getPk() : 'id'); $order = $this->request->get("order", "DESC"); $offset = $this->request->get("offset/d", 0); $limit = $this->request->get("limit/d", 999999); //新增自动计算页码 $page = $limit ? intval($offset / $limit) + 1 : 1; if ($this->request->has("page")) { $page = $this->request->get("page/d", 1); } $this->request->get([config('paginate.var_page') => $page]); $filter = (array)json_decode($filter, true); $op = (array)json_decode($op, true); $filter = $filter ? $filter : []; $where = []; $alias = []; $bind = []; $name = ''; $aliasName = ''; if (!empty($this->model) && $this->relationSearch) { $name = $this->model->getTable(); $alias[$name] = Loader::parseName(basename(str_replace('\\', '/', get_class($this->model)))); $aliasName = $alias[$name] . '.'; } $sortArr = explode(',', $sort); foreach ($sortArr as $index => & $item) { $item = stripos($item, ".") === false ? $aliasName . trim($item) : $item; } unset($item); $sort = implode(',', $sortArr); if($this->shopIdAutoCondition){ $where[] = [$aliasName.'shop_id','eq',SHOP_ID]; } if ($search) { $searcharr = is_array($searchfields) ? $searchfields : explode(',', $searchfields); foreach ($searcharr as $k => &$v) { $v = stripos($v, ".") === false ? $aliasName . $v : $v; } unset($v); $where[] = [implode("|", $searcharr), "LIKE", "%{$search}%"]; } $index = 0; foreach ($filter as $k => $v) { if (!preg_match('/^[a-zA-Z0-9_\-\.]+$/', $k)) { continue; } $sym = isset($op[$k]) ? $op[$k] : '='; if (stripos($k, ".") === false) { $k = $aliasName . $k; } $v = !is_array($v) ? trim($v) : $v; $sym = strtoupper(isset($op[$k]) ? $op[$k] : $sym); //null和空字符串特殊处理 if (!is_array($v)) { if (in_array(strtoupper($v), ['NULL', 'NOT NULL'])) { $sym = strtoupper($v); } if (in_array($v, ['""', "''"])) { $v = ''; $sym = '='; } } switch ($sym) { case '=': case '<>': $where[] = [$k, $sym, (string)$v]; break; case 'LIKE': case 'NOT LIKE': case 'LIKE %...%': case 'NOT LIKE %...%': $where[] = [$k, trim(str_replace('%...%', '', $sym)), "%{$v}%"]; break; case '>': case '>=': case '<': case '<=': $where[] = [$k, $sym, intval($v)]; break; case 'FINDIN': case 'FINDINSET': case 'FIND_IN_SET': $v = is_array($v) ? $v : explode(',', str_replace(' ', ',', $v)); $findArr = array_values($v); foreach ($findArr as $idx => $item) { $bindName = "item_" . $index . "_" . $idx; $bind[$bindName] = $item; $where[] = "FIND_IN_SET(:{$bindName}, `" . str_replace('.', '`.`', $k) . "`)"; } break; case 'IN': case 'IN(...)': case 'NOT IN': case 'NOT IN(...)': $where[] = [$k, str_replace('(...)', '', $sym), is_array($v) ? $v : explode(',', $v)]; break; case 'BETWEEN': case 'NOT BETWEEN': $arr = array_slice(explode(',', $v), 0, 2); if (stripos($v, ',') === false || !array_filter($arr)) { continue 2; } //当出现一边为空时改变操作符 if ($arr[0] === '') { $sym = $sym == 'BETWEEN' ? '<=' : '>'; $arr = $arr[1]; } elseif ($arr[1] === '') { $sym = $sym == 'BETWEEN' ? '>=' : '<'; $arr = $arr[0]; } $where[] = [$k, $sym, $arr]; break; case 'RANGE': case 'NOT RANGE': $v = str_replace(' - ', ',', $v); $arr = array_slice(explode(',', $v), 0, 2); if (stripos($v, ',') === false || !array_filter($arr)) { continue 2; } //当出现一边为空时改变操作符 if ($arr[0] === '') { $sym = $sym == 'RANGE' ? '<=' : '>'; $arr = $arr[1]; } elseif ($arr[1] === '') { $sym = $sym == 'RANGE' ? '>=' : '<'; $arr = $arr[0]; } $tableArr = explode('.', $k); if (count($tableArr) > 1 && $tableArr[0] != $name && !in_array($tableArr[0], $alias) && !empty($this->model)) { //修复关联模型下时间无法搜索的BUG $relation = Loader::parseName($tableArr[0], 1, false); $alias[$this->model->$relation()->getTable()] = $tableArr[0]; } $where[] = [$k, str_replace('RANGE', 'BETWEEN', $sym) . ' TIME', $arr]; break; case 'NULL': case 'IS NULL': case 'NOT NULL': case 'IS NOT NULL': $where[] = [$k, strtolower(str_replace('IS ', '', $sym))]; break; default: break; } $index++; } if (!empty($this->model)) { $this->model->alias($alias); } $model = $this->model; $where = function ($query) use ($where, $alias, $bind, &$model) { if (!empty($model)) { $model->alias($alias); $model->bind($bind); } foreach ($where as $k => $v) { if (is_array($v)) { call_user_func_array([$query, 'where'], $v); } else { $query->where($v); } } }; return [$where, $sort, $order, $offset, $limit, $page, $alias, $bind]; } /** * Selectpage的实现方法 * * 当前方法只是一个比较通用的搜索匹配,请按需重载此方法来编写自己的搜索逻辑,$where按自己的需求写即可 * 这里示例了所有的参数,所以比较复杂,实现上自己实现只需简单的几行即可 * */ protected function selectpage() { //设置过滤方法 $this->request->filter(['trim', 'strip_tags', 'htmlspecialchars']); //搜索关键词,客户端输入以空格分开,这里接收为数组 $word = (array)$this->request->request("q_word/a"); //当前页 $page = $this->request->request("pageNumber"); //分页大小 $pagesize = $this->request->request("pageSize"); //搜索条件 $andor = $this->request->request("andOr", "and", "strtoupper"); //排序方式 $orderby = (array)$this->request->request("orderBy/a"); //显示的字段 $field = $this->request->request("showField"); //主键 $primarykey = $this->request->request("keyField"); //主键值 $primaryvalue = $this->request->request("keyValue"); //搜索字段 $searchfield = (array)$this->request->request("searchField/a"); //自定义搜索条件 $custom = (array)$this->request->request("custom/a"); //是否返回树形结构 $istree = $this->request->request("isTree", 0); $ishtml = $this->request->request("isHtml", 0); if ($istree) { $word = []; $pagesize = 999999; } $order = []; foreach ($orderby as $k => $v) { $order[$v[0]] = $v[1]; } $field = $field ? $field : 'name'; //如果有primaryvalue,说明当前是初始化传值 if ($primaryvalue !== null) { $where = [$primarykey => ['in', $primaryvalue]]; $pagesize = 999999; } else { $where = function ($query) use ($word, $andor, $field, $searchfield, $custom) { $logic = $andor == 'AND' ? '&' : '|'; $searchfield = is_array($searchfield) ? implode($logic, $searchfield) : $searchfield; $searchfield = str_replace(',', $logic, $searchfield); $word = array_filter(array_unique($word)); if (count($word) == 1) { $query->where($searchfield, "like", "%" . reset($word) . "%"); } else { $query->where(function ($query) use ($word, $searchfield) { foreach ($word as $index => $item) { $query->whereOr(function ($query) use ($item, $searchfield) { $query->where($searchfield, "like", "%{$item}%"); }); } }); } if ($custom && is_array($custom)) { foreach ($custom as $k => $v) { if (is_array($v) && 2 == count($v)) { $query->where($k, trim($v[0]), $v[1]); } else { $query->where($k, '=', $v); } } } }; } if($this->shopIdAutoCondition){ $this->model->where(array('shop_id'=>SHOP_ID)); } $list = []; $total = $this->model->where($where)->count(); if ($total > 0) { if($this->shopIdAutoCondition){ $this->model->where(array('shop_id'=>SHOP_ID)); } $fields = is_array($this->selectpageFields) ? $this->selectpageFields : ($this->selectpageFields && $this->selectpageFields != '*' ? explode(',', $this->selectpageFields) : []); //如果有primaryvalue,说明当前是初始化传值,按照选择顺序排序 if ($primaryvalue !== null && preg_match("/^[a-z0-9_\-]+$/i", $primarykey)) { $primaryvalue = array_unique(is_array($primaryvalue) ? $primaryvalue : explode(',', $primaryvalue)); $primaryvalue = implode(',', $primaryvalue); $this->model->orderRaw("FIELD(`{$primarykey}`, {$primaryvalue})"); } else { $this->model->order($order); } $datalist = $this->model->where($where) ->page($page, $pagesize) ->select(); foreach ($datalist as $index => $item) { unset($item['password'], $item['salt']); if ($this->selectpageFields == '*') { $result = [ $primarykey => isset($item[$primarykey]) ? $item[$primarykey] : '', $field => isset($item[$field]) ? $item[$field] : '', ]; } else { $result = array_intersect_key(($item instanceof Model ? $item->toArray() : (array)$item), array_flip($fields)); } $result['pid'] = isset($item['pid']) ? $item['pid'] : (isset($item['parent_id']) ? $item['parent_id'] : 0); $list[] = $result; } if ($istree && !$primaryvalue) { $tree = Tree::instance(); $tree->init(collection($list)->toArray(), 'pid'); $list = $tree->getTreeList($tree->getTreeArray(0), $field); if (!$ishtml) { foreach ($list as &$item) { $item = str_replace(' ', ' ', $item); } unset($item); } } } //这里一定要返回有list这个字段,total是可选的,如果total<=list的数量,则会隐藏分页按钮 return json(['list' => $list, 'total' => $total]); } /** * 刷新Token */ protected function token() { $token = $this->request->post('__token__'); //验证Token if (!Validate::is($token, "token", ['__token__' => $token])) { $this->error(__('Token verification error'), '', ['__token__' => $this->request->token()]); } //刷新Token $this->request->token(); } /** * 设置商家关联关系 */ protected function setShopAutoRelation(){ if($this->model){ $fields = $this->model->getQuery()->getTableInfo('','fields'); if(!isset($this->storeIdFieldAutoFill)){ $this->storeIdFieldAutoFill = in_array("store_id",$fields); } if(!isset($this->shopIdAutoCondition)){ $this->shopIdAutoCondition = in_array("shop_id",$fields); } } } }