Strona główna Odkrywaj Pomoc
Zaloguj się
Apq
/
ProxyPanel
kopia lustrzana https://github.com/ProxyPanel/ProxyPanel.git
1
0
Forkuj 0
Pliki Problemy 0 Wiki
Drzewo: 91b98b5e8d
Gałęzie Tagi
ProxyPanel
/
app
/
Http
/
Controllers
/
UserController.php

UserController.php 18 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers;
    4. 

  4. 

  5. use App\Http\Models\Article;
    6. 

  6. use App\Http\Models\Config;
    7. 

  7. use App\Http\Models\Invite;
    8. 

  8. use App\Http\Models\SsNode;
    9. 

  9. use App\Http\Models\SsNodeInfo;
    10. 

  10. use App\Http\Models\SsNodeOnlineLog;
    11. 

  11. use App\Http\Models\User;
    12. 

  12. use App\Http\Models\UserTrafficLog;
    13. 

  13. use App\Http\Models\Verify;
    14. 

  14. use App\Mail\activeUser;
    15. 

  15. use App\Mail\resetPassword;
    16. 

  16. use Illuminate\Http\Request;
    17. 

  17. use Redirect;
    18. 

  18. use Response;
    19. 

  19. use Cache;
    20. 

  20. use Mail;
    21. 

  21. 

  22. class UserController extends BaseController
    23. 

  23. {
    24. 

  24.     protected static $config;
    25. 

  25. 

  26.     function __construct()
    27. 

  27.     {
    28. 

  28.         self::$config = $this->systemConfig();
    29. 

  29.     }
    30. 

  30. 

  31.     public function index(Request $request)
    32. 

  32.     {
    33. 

  33.         if (!$request->session()->has('user')) {
    34. 

  34.             return Redirect::to('login');
    35. 

  35.         }
    36. 

  36. 

  37.         $view['articleList'] = Article::orderBy('sort', 'desc')->orderBy('id', 'desc')->paginate(5);
    38. 

  38.         $view['info'] = $request->session()->get('user');
    39. 

  39. 

  40.         return Response::view('user/index', $view);
    41. 

  41.     }
    42. 

  42. 

  43.     // 公告详情
    44. 

  44.     public function article(Request $request)
    45. 

  45.     {
    46. 

  46.         $id = $request->get('id');
    47. 

  47. 

  48.         $view['info'] = Article::where('id', $id)->first();
    49. 

  49. 

  50.         return Response::view('user/article', $view);
    51. 

  51.     }
    52. 

  52. 

  53.     // 修改个人资料
    54. 

  54.     public function profile(Request $request)
    55. 

  55.     {
    56. 

  56.         if (!$request->session()->has('user')) {
    57. 

  57.             return Redirect::to('login');
    58. 

  58.         }
    59. 

  59. 

  60.         $user = $request->session()->get('user');
    61. 

  61. 

  62.         if ($request->method() == 'POST') {
    63. 

  63.             $old_password = $request->get('old_password');
    64. 

  64.             $new_password = $request->get('new_password');
    65. 

  65.             $port = trim($request->get('port'));
    66. 

  66.             $passwd = trim($request->get('passwd'));
    67. 

  67.             $method = $request->get('method');
    68. 

  68.             $protocol = $request->get('protocol');
    69. 

  69.             $obfs = $request->get('obfs');
    70. 

  70. 

  71.             // 修改密码
    72. 

  72.             if (!empty($old_password) && !empty($new_password)) {
    73. 

  73.                 $old_password = md5(trim($old_password));
    74. 

  74.                 $new_password = md5(trim($new_password));
    75. 

  75. 

  76.                 $user = User::where('id', $user['id'])->first();
    77. 

  77.                 if ($user->password != $old_password) {
    78. 

  78.                     $request->session()->flash('errorMsg', '旧密码错误,请重新输入');
    79. 

  79. 

  80.                     return Redirect::to('user/profile#tab_1');
    81. 

  81.                 } else if ($user->password == $new_password) {
    82. 

  82.                     $request->session()->flash('errorMsg', '新密码不可与旧密码一样,请重新输入');
    83. 

  83. 

  84.                     return Redirect::to('user/profile#tab_1');
    85. 

  85.                 }
    86. 

  86. 

  87.                 $ret = User::where('id', $user['id'])->update(['password' => $new_password]);
    88. 

  88.                 if (!$ret) {
    89. 

  89.                     $request->session()->flash('errorMsg', '修改失败');
    90. 

  90. 

  91.                     return Redirect::to('user/profile#tab_1');
    92. 

  92.                 } else {
    93. 

  93.                     $request->session()->flash('successMsg', '修改成功');
    94. 

  94. 

  95.                     return Redirect::to('user/profile#tab_1');
    96. 

  96.                 }
    97. 

  97.             }
    98. 

  98. 

  99.             // 修改SS信息
    100. 

  100.             if (empty($port)) {
    101. 

  101.                 $request->session()->flash('errorMsg', '端口不能为空');
    102. 

  102. 

  103.                 return Redirect::to('user/profile#tab_2');
    104. 

  104.             }
    105. 

  105. 

  106.             if (empty($passwd)) {
    107. 

  107.                 $request->session()->flash('errorMsg', '密码不能为空');
    108. 

  108. 

  109.                 return Redirect::to('user/profile#tab_2');
    110. 

  110.             }
    111. 

  111. 

  112.             $data = [
    113. 

  113.                 //'port' => $port,
    114. 

  114.                 'passwd'   => $passwd,
    115. 

  115.                 'method'   => $method,
    116. 

  116.                 'protocol' => $protocol,
    117. 

  117.                 'obfs'     => $obfs
    118. 

  118.             ];
    119. 

  119. 

  120.             $ret = User::where('id', $user['id'])->update($data);
    121. 

  121.             if (!$ret) {
    122. 

  122.                 $request->session()->flash('errorMsg', '修改失败');
    123. 

  123. 

  124.                 return Redirect::to('user/profile#tab_2');
    125. 

  125.             } else {
    126. 

  126.                 // 更新session
    127. 

  127.                 $user = User::where('id', $user['id'])->first()->toArray();
    128. 

  128.                 $request->session()->remove('user');
    129. 

  129.                 $request->session()->put('user', $user);
    130. 

  130. 

  131.                 $request->session()->flash('successMsg', '修改成功');
    132. 

  132. 

  133.                 return Redirect::to('user/profile#tab_2');
    134. 

  134.             }
    135. 

  135.         } else {
    136. 

  136.             // 加密方式、协议、混淆
    137. 

  137.             $view['method_list'] = $this->methodList();
    138. 

  138.             $view['protocol_list'] = $this->protocolList();
    139. 

  139.             $view['obfs_list'] = $this->obfsList();
    140. 

  140.             $view['info'] = User::where('id', $user['id'])->first();
    141. 

  141. 

  142.             return Response::view('user/profile', $view);
    143. 

  143.         }
    144. 

  144.     }
    145. 

  145. 

  146.     // 节点列表
    147. 

  147.     public function nodeList(Request $request)
    148. 

  148.     {
    149. 

  149.         if (!$request->session()->has('user')) {
    150. 

  150.             return Redirect::to('login');
    151. 

  151.         }
    152. 

  152. 

  153.         $user = $request->session()->get('user');
    154. 

  154. 

  155.         $nodeList = SsNode::paginate(10);
    156. 

  156.         foreach ($nodeList as &$node) {
    157. 

  157.             // 在线人数
    158. 

  158.             $online_log = SsNodeOnlineLog::where('node_id', $node->id)->orderBy('id', 'desc')->first();
    159. 

  159.             $node->online_users = empty($online_log) ? 0 : $online_log->online_user;
    160. 

  160. 

  161.             // 已产生流量
    162. 

  162.             $u = UserTrafficLog::where('node_id', $node->id)->sum('u');
    163. 

  163.             $d = UserTrafficLog::where('node_id', $node->id)->sum('d');
    164. 

  164.             $node->transfer = $this->flowAutoShow($u + $d);
    165. 

  165. 

  166.             // 负载
    167. 

  167.             $node_info = SsNodeInfo::where('node_id', $node->id)->orderBy('id', 'desc')->first();
    168. 

  168.             $node->load = empty($node_info->load) ? 0 : $node_info->load;
    169. 

  169. 

  170.             // 生成ssr scheme
    171. 

  171.             $ssr_str = '';
    172. 

  172.             $ssr_str .= $node->server . ':' . $user['port'];
    173. 

  173.             $ssr_str .= ':' . $user['protocol'] . ':' . $user['method'];
    174. 

  174.             $ssr_str .= ':' . $user['obfs'] . ':' . base64_encode($user['passwd']);
    175. 

  175.             $ssr_str .= '/?obfsparam=' . $user['obfs_param'];
    176. 

  176.             $ssr_str .= '&=protoparam' . $user['protocol_param'];
    177. 

  177.             $ssr_str .= '&remarks=' . base64_encode('VPN');
    178. 

  178.             $ssr_str = $this->base64url_encode($ssr_str);
    179. 

  179.             $ssr_scheme = 'ssr://' . $ssr_str;
    180. 

  180. 

  181.             // 生成ss scheme
    182. 

  182.             $ss_str = '';
    183. 

  183.             $ss_str .= $user['method'] . ':' . $user['passwd'] . '@';
    184. 

  184.             $ss_str .= $node->server . ':' . $user['port'];
    185. 

  185.             $ss_str = $this->base64url_encode($ss_str) . '#' . 'VPN';
    186. 

  186.             $ss_scheme = 'ss://' . $ss_str;
    187. 

  187. 

  188.             // 生成文本配置信息
    189. 

  189.             $txt = <<<TXT
    190. 

  190. 服务器:{$node->server}
    191. 

  191. 远程端口:{$user['port']}
    192. 

  192. 本地端口:1080
    193. 

  193. 密码:{$user['passwd']}
    194. 

  194. 加密方法:{$user['method']}
    195. 

  195. 协议:{$user['protocol']}
    196. 

  196. 协议参数:{$user['protocol_param']}
    197. 

  197. 混淆方式:{$user['obfs']}
    198. 

  198. 混淆参数:{$user['obfs_param']}
    199. 

  199. 路由:绕过局域网及中国大陆地址
    200. 

  200. TXT;
    201. 

  201. 

  202.             $node->txt = $txt;
    203. 

  203.             $node->ssr_scheme = $ssr_scheme;
    204. 

  204.             $node->ss_scheme = $ss_scheme;
    205. 

  205.         }
    206. 

  206. 

  207.         $view['nodeList'] = $nodeList;
    208. 

  208. 

  209.         return Response::view('user/nodeList', $view);
    210. 

  210.     }
    211. 

  211. 

  212.     // 流量日志
    213. 

  213.     public function trafficLog(Request $request)
    214. 

  214.     {
    215. 

  215.         if (!$request->session()->has('user')) {
    216. 

  216.             return Redirect::to('login');
    217. 

  217.         }
    218. 

  218. 

  219.         $user = $request->session()->get('user');
    220. 

  220. 

  221.         // 30天内的流量
    222. 

  222.         $trafficList = \DB::select("SELECT date(from_unixtime(log_time)) AS dd, SUM(u) AS u, SUM(d) AS d FROM `user_traffic_log` WHERE `user_id` = {$user['id']} GROUP BY `dd`");
    223. 

  223.         foreach ($trafficList as $key => &$val) {
    224. 

  224.             $val->total = ($val->u + $val->d) / (1024 * 1024); // 以M为单位
    225. 

  225.         }
    226. 

  226. 

  227.         $view['trafficList'] = $trafficList;
    228. 

  228. 

  229.         return Response::view('user/trafficLog', $view);
    230. 

  230.     }
    231. 

  231. 

  232.     // 邀请码
    233. 

  233.     public function invite(Request $request)
    234. 

  234.     {
    235. 

  235.         if (!$request->session()->has('user')) {
    236. 

  236.             return Redirect::to('login');
    237. 

  237.         }
    238. 

  238. 

  239.         $user = $request->session()->get('user');
    240. 

  240. 

  241.         // 已生成的邀请码数量
    242. 

  242.         $num = Invite::where('uid', $user['id'])->count();
    243. 

  243. 

  244.         $view['num'] = self::$config['invite_num'] - $num <= 0 ? 0 : self::$config['invite_num'] - $num; // 还可以生成的邀请码数量
    245. 

  245.         $view['inviteList'] = Invite::where('uid', $user['id'])->with(['generator', 'user'])->paginate(10); // 邀请码列表
    246. 

  246. 

  247.         return Response::view('user/invite', $view);
    248. 

  248.     }
    249. 

  249. 

  250.     // 生成邀请码
    251. 

  251.     public function makeInvite(Request $request)
    252. 

  252.     {
    253. 

  253.         if (!$request->session()->has('user')) {
    254. 

  254.             return Redirect::to('login');
    255. 

  255.         }
    256. 

  256. 

  257.         $user = $request->session()->get('user');
    258. 

  258. 

  259.         // 已生成的邀请码数量
    260. 

  260.         $num = Invite::where('uid', $user['id'])->count();
    261. 

  261.         if ($num >= self::$config['invite_num']) {
    262. 

  262.             return Response::json(['status' => 'fail', 'data' => '', 'message' => '生成失败:最多只能生成' . self::$config['invite_num'] . '个邀请码']);
    263. 

  263.         }
    264. 

  264. 

  265.         $obj = new Invite();
    266. 

  266.         $obj->uid = $user['id'];
    267. 

  267.         $obj->fuid = 0;
    268. 

  268.         $obj->code = strtoupper(mb_substr(md5(microtime() . $this->makeRandStr(6)), 8, 16));
    269. 

  269.         $obj->status = 0;
    270. 

  270.         $obj->dateline = date('Y-m-d H:i:s', strtotime("+7 days"));
    271. 

  271.         $obj->save();
    272. 

  272. 

  273.         return Response::json(['status' => 'success', 'data' => '', 'message' => '生成成功']);
    274. 

  274.     }
    275. 

  275. 

  276.     // 激活账号页
    277. 

  277.     public function activeUser(Request $request)
    278. 

  278.     {
    279. 

  279.         if ($request->method() == 'POST') {
    280. 

  280.             $username = trim($request->get('username'));
    281. 

  281. 

  282.             // 是否开启账号激活
    283. 

  283.             if (!self::$config['is_active_register']) {
    284. 

  284.                 $request->session()->flash('errorMsg', '系统未开启账号激活功能,请联系管理员');
    285. 

  285. 

  286.                 return Redirect::back()->withInput();
    287. 

  287.             }
    288. 

  288. 

  289.             // 查找账号
    290. 

  290.             $user = User::where('username', $username)->first();
    291. 

  291.             if (!$user) {
    292. 

  292.                 $request->session()->flash('errorMsg', '账号不存在,请重试');
    293. 

  293. 

  294.                 return Redirect::back();
    295. 

  295.             } else if ($user->status < 0) {
    296. 

  296.                 $request->session()->flash('errorMsg', '账号已禁止登陆,无需激活');
    297. 

  297. 

  298.                 return Redirect::back();
    299. 

  299.             } else if ($user->status > 0) {
    300. 

  300.                 $request->session()->flash('errorMsg', '账号无需激活');
    301. 

  301. 

  302.                 return Redirect::back();
    303. 

  303.             }
    304. 

  304. 

  305.             // 24小时内激活次数限制
    306. 

  306.             $activeTimes = 0;
    307. 

  307.             if (Cache::has('activeUser_' . md5($username))) {
    308. 

  308.                 $activeTimes = Cache::get('activeUser_' . md5($username));
    309. 

  309.                 if ($activeTimes >= self::$config['active_times']) {
    310. 

  310.                     $request->session()->flash('errorMsg', '同一个账号24小时内只能请求激活' . self::$config['active_times'] . '次,请勿频繁操作');
    311. 

  311. 

  312.                     return Redirect::back();
    313. 

  313.                 }
    314. 

  314.             }
    315. 

  315. 

  316.             // 生成激活账号的地址
    317. 

  317.             $token = md5(self::$config['website_name'] . $username . microtime());
    318. 

  318.             $verify = new Verify();
    319. 

  319.             $verify->user_id = $user->id;
    320. 

  320.             $verify->username = $username;
    321. 

  321.             $verify->token = $token;
    322. 

  322.             $verify->status = 0;
    323. 

  323.             $verify->save();
    324. 

  324. 

  325.             // 发送邮件
    326. 

  326.             $activeUserUrl = self::$config['website_url'] . '/active/' . $token;
    327. 

  327.             Mail::to($user->username)->send(new activeUser(self::$config['website_name'], $activeUserUrl));
    328. 

  328. 

  329.             Cache::put('activeUser_' . md5($username), $activeTimes + 1, 1440);
    330. 

  330.             $request->session()->flash('successMsg', '邮件已发送,请查看邮箱');
    331. 

  331. 

  332.             return Redirect::back();
    333. 

  333.         } else {
    334. 

  334.             $view['is_active_register'] = self::$config['is_active_register'];
    335. 

  335. 

  336.             return Response::view('user/activeUser', $view);
    337. 

  337.         }
    338. 

  338.     }
    339. 

  339. 

  340.     // 激活账号
    341. 

  341.     public function active(Request $request, $token)
    342. 

  342.     {
    343. 

  343.         if (empty($token)) {
    344. 

  344.             return Redirect::to('login');
    345. 

  345.         }
    346. 

  346. 

  347.         $verify = Verify::where('token', $token)->with('user')->first();
    348. 

  348.         if (empty($verify)) {
    349. 

  349.             return Redirect::to('login');
    350. 

  350.         } else if ($verify->status == 1) {
    351. 

  351.             $request->session()->flash('errorMsg', '该链接已失效');
    352. 

  352. 

  353.             return Response::view('user/active');
    354. 

  354.         } else if ($verify->user->status != 0) {
    355. 

  355.             $request->session()->flash('errorMsg', '该账号无需激活.');
    356. 

  356. 

  357.             return Response::view('user/active');
    358. 

  358.         } else if (time() - strtotime($verify->created_at) >= 1800) {
    359. 

  359.             $request->session()->flash('errorMsg', '该链接已过期');
    360. 

  360. 

  361.             // 置为已失效
    362. 

  362.             $verify->status = 2;
    363. 

  363.             $verify->save();
    364. 

  364. 

  365.             return Response::view('user/active');
    366. 

  366.         }
    367. 

  367. 

  368.         // 更新账号状态
    369. 

  369.         $ret = User::where('id', $verify->user_id)->update(['status' => 1]);
    370. 

  370.         if (!$ret) {
    371. 

  371.             $request->session()->flash('errorMsg', '账号激活失败');
    372. 

  372. 

  373.             return Redirect::back();
    374. 

  374.         }
    375. 

  375. 

  376.         // 置为已使用
    377. 

  377.         $verify->status = 1;
    378. 

  378.         $verify->save();
    379. 

  379. 

  380.         $request->session()->flash('successMsg', '账号激活成功');
    381. 

  381. 

  382.         return Response::view('user/active');
    383. 

  383.     }
    384. 

  384. 

  385.     // 重设密码页
    386. 

  386.     public function resetPassword(Request $request)
    387. 

  387.     {
    388. 

  388.         if ($request->method() == 'POST') {
    389. 

  389.             $username = trim($request->get('username'));
    390. 

  390. 

  391.             // 是否开启重设密码
    392. 

  392.             if (!self::$config['is_reset_password']) {
    393. 

  393.                 $request->session()->flash('errorMsg', '系统未开启重置密码功能,请联系管理员');
    394. 

  394. 

  395.                 return Redirect::back()->withInput();
    396. 

  396.             }
    397. 

  397. 

  398.             // 查找账号
    399. 

  399.             $user = User::where('username', $username)->first();
    400. 

  400.             if (!$user) {
    401. 

  401.                 $request->session()->flash('errorMsg', '账号不存在,请重试');
    402. 

  402. 

  403.                 return Redirect::back();
    404. 

  404.             }
    405. 

  405. 

  406.             // 24小时内重设密码次数限制
    407. 

  407.             $resetTimes = 0;
    408. 

  408.             if (Cache::has('resetPassword_' . md5($username))) {
    409. 

  409.                 $resetTimes = Cache::get('resetPassword_' . md5($username));
    410. 

  410.                 if ($resetTimes >= self::$config['reset_password_times']) {
    411. 

  411.                     $request->session()->flash('errorMsg', '同一个账号24小时内只能重设密码' . self::$config['reset_password_times'] . '次,请勿频繁操作');
    412. 

  412. 

  413.                     return Redirect::back();
    414. 

  414.                 }
    415. 

  415.             }
    416. 

  416. 

  417.             // 生成取回密码的地址
    418. 

  418.             $token = md5(self::$config['website_name'] . $username . microtime());
    419. 

  419.             $verify = new Verify();
    420. 

  420.             $verify->user_id = $user->id;
    421. 

  421.             $verify->username = $username;
    422. 

  422.             $verify->token = $token;
    423. 

  423.             $verify->status = 0;
    424. 

  424.             $verify->save();
    425. 

  425. 

  426.             // 发送邮件
    427. 

  427.             $resetPasswordUrl = self::$config['website_url'] . '/reset/' . $token;
    428. 

  428.             Mail::to($user->username)->send(new resetPassword(self::$config['website_name'], $resetPasswordUrl));
    429. 

  429. 

  430.             Cache::put('resetPassword_' . md5($username), $resetTimes + 1, 1440);
    431. 

  431.             $request->session()->flash('successMsg', '重置成功,请查看邮箱');
    432. 

  432. 

  433.             return Redirect::back();
    434. 

  434.         } else {
    435. 

  435.             $view['is_reset_password'] = self::$config['is_reset_password'];
    436. 

  436. 

  437.             return Response::view('user/resetPassword', $view);
    438. 

  438.         }
    439. 

  439.     }
    440. 

  440. 

  441.     // 重设密码
    442. 

  442.     public function reset(Request $request, $token)
    443. 

  443.     {
    444. 

  444.         if ($request->method() == 'POST') {
    445. 

  445.             $password = trim($request->get('password'));
    446. 

  446.             $repassword = trim($request->get('repassword'));
    447. 

  447. 

  448.             if (empty($token)) {
    449. 

  449.                 return Redirect::to('login');
    450. 

  450.             } else if (empty($password) || empty($repassword)) {
    451. 

  451.                 $request->session()->flash('errorMsg', '密码不能为空');
    452. 

  452. 

  453.                 return Redirect::back();
    454. 

  454.             } else if (md5($password) != md5($repassword)) {
    455. 

  455.                 $request->session()->flash('errorMsg', '两次输入密码不一致,请重新输入');
    456. 

  456. 

  457.                 return Redirect::back();
    458. 

  458.             }
    459. 

  459. 

  460.             // 校验账号
    461. 

  461.             $verify = Verify::where('token', $token)->with('User')->first();
    462. 

  462.             if (empty($verify)) {
    463. 

  463.                 return Redirect::to('login');
    464. 

  464.             } else if ($verify->status == 1) {
    465. 

  465.                 $request->session()->flash('errorMsg', '该链接已失效');
    466. 

  466. 

  467.                 return Redirect::back();
    468. 

  468.             } else if ($verify->user->status < 0) {
    469. 

  469.                 $request->session()->flash('errorMsg', '账号已被禁用');
    470. 

  470. 

  471.                 return Redirect::back();
    472. 

  472.             } else if (md5($password) == $verify->user->password) {
    473. 

  473.                 $request->session()->flash('errorMsg', '新旧密码一样,请重新输入');
    474. 

  474. 

  475.                 return Redirect::back();
    476. 

  476.             }
    477. 

  477. 

  478.             // 更新密码
    479. 

  479.             $ret = User::where('id', $verify->user_id)->update(['password' => md5($password)]);
    480. 

  480.             if (!$ret) {
    481. 

  481.                 $request->session()->flash('errorMsg', '重设密码失败');
    482. 

  482. 

  483.                 return Redirect::back();
    484. 

  484.             }
    485. 

  485. 

  486.             // 置为已使用
    487. 

  487.             $verify->status = 1;
    488. 

  488.             $verify->save();
    489. 

  489. 

  490.             $request->session()->flash('successMsg', '新密码设置成功,请自行登录');
    491. 

  491. 

  492.             return Redirect::back();
    493. 

  493.         } else {
    494. 

  494.             if (empty($token)) {
    495. 

  495.                 return Redirect::to('login');
    496. 

  496.             }
    497. 

  497. 

  498.             $verify = Verify::where('token', $token)->with('user')->first();
    499. 

  499.             if (empty($verify)) {
    500. 

  500.                 return Redirect::to('login');
    501. 

  501.             } else if (time() - strtotime($verify->created_at) >= 1800) {
    502. 

  502.                 $request->session()->flash('errorMsg', '该链接已过期');
    503. 

  503. 

  504.                 // 置为已失效
    505. 

  505.                 $verify->status = 2;
    506. 

  506.                 $verify->save();
    507. 

  507. 

  508.                 return Response::view('user/reset');
    509. 

  509.             }
    510. 

  510. 

  511.             $view['verify'] = $verify;
    512. 

  512. 

  513.             return Response::view('user/reset', $view);
    514. 

  514.         }
    515. 

  515.     }
    516. 

  516. }
    517.