Startsida Utforska Hjälp
Registrera dig Logga in
Apq
/
maccms10
spegling av https://github.com/magicblack/maccms10.git
1
0
Fork 0
Filer Ärenden 0 Wiki
Gren: master
Grenar Taggar
maccms10
/
application
/
common
/
model
/
User.php

User.php 37 KB
Permalänk Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002 
  1. <?php
    2. 

  2. namespace app\common\model;
    3. 

  3. 

  4. use think\Db;
    5. 

  5. use think\View;
    6. 

  6. use app\common\validate\User as UserValidate;
    7. 

  7. 

  8. class User extends Base
    9. 

  9. {
    10. 

  10.     // 设置数据表(不含前缀)
    11. 

  11.     protected $name = 'user';
    12. 

  12. 

  13.     // 定义时间戳字段名
    14. 

  14.     protected $createTime = '';
    15. 

  15.     protected $updateTime = '';
    16. 

  16. 

  17.     // 自动完成
    18. 

  18.     protected $auto = [];
    19. 

  19.     protected $insert = [];
    20. 

  20.     protected $update = [];
    21. 

  21. 

  22.     public $_guest_group = 1;
    23. 

  23.     public $_def_group = 2;
    24. 

  24. 

  25.     public function countData($where)
    26. 

  26.     {
    27. 

  27.         $total = $this->where($where)->count();
    28. 

  28.         return $total;
    29. 

  29.     }
    30. 

  30. 

  31.     public function listData($where, $order, $page = 1, $limit = 20, $start = 0)
    32. 

  32.     {
    33. 

  33.         $page = $page > 0 ? (int)$page : 1;
    34. 

  34.         $limit = $limit ? (int)$limit : 20;
    35. 

  35.         $start = $start ? (int)$start : 0;
    36. 

  36.         $total = $this->where($where)->count();
    37. 

  37.         $list = Db::name('User')->where($where)->order($order)->page($page)->limit($limit)->select();
    38. 

  38.         return ['code' => 1, 'msg' => lang('data_list'), 'page' => $page, 'pagecount' => ceil($total / $limit), 'limit' => $limit, 'total' => $total, 'list' => $list];
    39. 

  39.     }
    40. 

  40. 

  41.     public function infoData($where, $field='*')
    42. 

  42.     {
    43. 

  43.         if (empty($where) || !is_array($where)) {
    44. 

  44.             return ['code' => 1001, 'msg'=>lang('param_err')];
    45. 

  45.         }
    46. 

  46.         $info = $this->field($field)->where($where)->find();
    47. 

  47.         if (empty($info)) {
    48. 

  48.             return ['code' => 1002, 'msg' => lang('obtain_err')];
    49. 

  49.         }
    50. 

  50.         $info = $info->toArray();
    51. 

  51. 

  52.         //用户组
    53. 

  53.         $group_list = model('Group')->getCache('group_list');
    54. 

  54.         $group_ids = explode(',', $info['group_id']);
    55. 

  55.         $info['group'] = $group_list[$group_ids[0]];
    56. 

  56.         $info['groups'] = [];
    57. 

  57.         foreach($group_ids as $gid){
    58. 

  58.             if(isset($group_list[$gid])){
    59. 

  59.                 $info['groups'][] = $group_list[$gid];
    60. 

  60.             }
    61. 

  61.         }
    62. 

  62. 

  63. 

  64.         $info['user_pwd'] = '';
    65. 

  65.         return ['code' => 1, 'msg' =>lang('obtain_ok'), 'info' => $info];
    66. 

  66.     }
    67. 

  67. 

  68.     public function saveData($data)
    69. 

  69.     {
    70. 

  70.         $validate = \think\Loader::validate('User');
    71. 

  71. 

  72.         if (isset($data['user_start_time']) && !is_numeric($data['user_start_time'])) {
    73. 

  73.             $data['user_start_time'] = strtotime($data['user_start_time']);
    74. 

  74.         }
    75. 

  75.         if (isset($data['user_end_time']) && !is_numeric($data['user_end_time'])) {
    76. 

  76.             $data['user_end_time'] = strtotime($data['user_end_time']);
    77. 

  77.         }
    78. 

  78. 

  79.         if (!empty($data['user_id'])) {
    80. 

  80.             if (!$validate->scene('edit')->check($data)) {
    81. 

  81.                 return ['code' => 1001, 'msg' => lang('param_err').':' . $validate->getError()];
    82. 

  82.             }
    83. 

  83. 

  84.             if (empty($data['user_pwd'])) {
    85. 

  85.                 unset($data['user_pwd']);
    86. 

  86.             } else {
    87. 

  87.                 $data['user_pwd'] = md5($data['user_pwd']);
    88. 

  88.             }
    89. 

  89.             $where = [];
    90. 

  90.             $where['user_id'] = ['eq', $data['user_id']];
    91. 

  91.             $res = $this->where($where)->update($data);
    92. 

  92.         } else {
    93. 

  93.             if (!$validate->scene('edit')->check($data)) {
    94. 

  94.                 return ['code' => 1002, 'msg' => lang('param_err').':' . $validate->getError()];
    95. 

  95.             }
    96. 

  96. 

  97.             $data['user_pwd'] = md5($data['user_pwd']);
    98. 

  98.             $res = $this->insert($data);
    99. 

  99.         }
    100. 

  100.         if (false === $res) {
    101. 

  101.             return ['code' => 1003, 'msg' => '' . $this->getError()];
    102. 

  102.         }
    103. 

  103.         return ['code' => 1, 'msg' =>lang('save_ok')];
    104. 

  104.     }
    105. 

  105. 

  106.     public function delData($where)
    107. 

  107.     {
    108. 

  108.         $res = $this->where($where)->delete();
    109. 

  109.         if ($res === false) {
    110. 

  110.             return ['code' => 1001, 'msg' => lang('del_err').':' . $this->getError()];
    111. 

  111.         }
    112. 

  112.         return ['code' => 1, 'msg'=>lang('del_ok')];
    113. 

  113.     }
    114. 

  114. 

  115.     public function fieldData($where, $col, $val)
    116. 

  116.     {
    117. 

  117.         if (!isset($col) || !isset($val)) {
    118. 

  118.             return ['code' => 1001, 'msg'=>lang('param_err')];
    119. 

  119.         }
    120. 

  120.         $data = [];
    121. 

  121.         $data[$col] = $val;
    122. 

  122.         $res = $this->where($where)->update($data);
    123. 

  123.         if ($res === false) {
    124. 

  124.             return ['code' => 1002, 'msg' => lang('set_err').':' . $this->getError()];
    125. 

  125.         }
    126. 

  126.         return ['code' => 1, 'msg' =>lang('set_ok')];
    127. 

  127.     }
    128. 

  128. 

  129.     public function register($param)
    130. 

  130.     {
    131. 

  131.         $config = config('maccms');
    132. 

  132. 

  133.         $data = [];
    134. 

  134.         $password_raw = trim($param['user_pwd']);
    135. 

  135.         $data['user_name'] = htmlspecialchars(urldecode(trim($param['user_name'])));
    136. 

  136.         $data['user_pwd'] = htmlspecialchars(urldecode(trim($param['user_pwd'])));
    137. 

  137.         $data['user_pwd2'] = htmlspecialchars(urldecode(trim($param['user_pwd2'])));
    138. 

  138.         $data['verify'] = $param['verify'];
    139. 

  139.         $uid = $param['uid'];
    140. 

  140.         $is_from_3rdparty = !empty($param['user_openid_qq']) || !empty($param['user_openid_weixin']);
    141. 

  141. 

  142. 

  143.         if ($config['user']['status'] == 0 || $config['user']['reg_open'] == 0) {
    144. 

  144.             return ['code' => 1001, 'msg' => lang('model/user/not_open_reg')];
    145. 

  145.         }
    146. 

  146.         if (empty($data['user_name']) || empty($data['user_pwd']) || empty($data['user_pwd2'])) {
    147. 

  147.             return ['code' => 1002, 'msg' => lang('model/user/input_require')];
    148. 

  148.         }
    149. 

  149.         if (!$is_from_3rdparty && !captcha_check($data['verify']) && $config['user']['reg_verify'] == 1) {
    150. 

  150.             return ['code' => 1003, 'msg' => lang('verify_err')];
    151. 

  151.         }
    152. 

  152.         if ($data['user_pwd'] != $data['user_pwd2']) {
    153. 

  153.             return ['code' => 1004, 'msg' => lang('model/user/pass_not_pass2')];
    154. 

  154.         }
    155. 

  155.         $row = $this->where('user_name', $data['user_name'])->find();
    156. 

  156.         if (!empty($row)) {
    157. 

  157.             return ['code' => 1005, 'msg' => lang('model/user/haved_reg')];
    158. 

  158.         }
    159. 

  159.         if (!preg_match("/^[a-zA-Z\d]*$/i", $data['user_name'])) {
    160. 

  160.             return ['code' => 1006, 'msg' => lang('model/user/name_contain')];
    161. 

  161.         }
    162. 

  162. 

  163.         $validate = \think\Loader::validate('User');
    164. 

  164.         if (!$validate->scene('add')->check($data)) {
    165. 

  165.             return ['code' => 1007, 'msg' => lang('param_err').':' . $validate->getError()];
    166. 

  166.         }
    167. 

  167. 

  168.         $filter = $GLOBALS['config']['user']['filter_words'];
    169. 

  169.         if(!empty($filter)) {
    170. 

  170.             $filter_arr = explode(',', $filter);
    171. 

  171.             $f_name = str_replace($filter_arr, '', $data['user_name']);
    172. 

  172.             if ($f_name != $data['user_name']) {
    173. 

  173.                 return ['code' => 1008, 'msg' =>lang('model/user/name_filter',[$filter])];
    174. 

  174.             }
    175. 

  175.         }
    176. 

  176. 

  177.         $ip = mac_get_ip_long();
    178. 

  178.         if( $GLOBALS['config']['user']['reg_num'] > 0){
    179. 

  179.             $where2=[];
    180. 

  180.             $where2['user_reg_ip'] = ['eq', $ip];
    181. 

  181.             $where2['user_reg_time'] = ['gt', strtotime('today')];
    182. 

  182.             $cc = $this->where($where2)->count();
    183. 

  183.             if($cc >= $GLOBALS['config']['user']['reg_num']){
    184. 

  184.                 return ['code' => 1009, 'msg' => lang('model/user/ip_limit',[$GLOBALS['config']['user']['reg_num']])];
    185. 

  185.             }
    186. 

  186.         }
    187. 

  187. 

  188.         $fields = [];
    189. 

  189.         $fields['user_name'] = $data['user_name'];
    190. 

  190.         $fields['user_pwd'] = md5($password_raw);
    191. 

  191.         $fields['group_id'] = $this->_def_group;
    192. 

  192.         $fields['user_points'] = intval($config['user']['reg_points']);
    193. 

  193.         $fields['user_status'] = intval($config['user']['reg_status']);
    194. 

  194.         $fields['user_reg_time'] = time();
    195. 

  195.         $fields['user_reg_ip'] = $ip;
    196. 

  196.         $fields['user_openid_qq'] = (string)$param['user_openid_qq'];
    197. 

  197.         $fields['user_openid_weixin'] = (string)$param['user_openid_weixin'];
    198. 

  198. 

  199.         if (!$is_from_3rdparty) {
    200. 

  200.             // https://github.com/magicblack/maccms10/issues/418
    201. 

  201.             if($config['user']['reg_phone_sms'] == '1'){
    202. 

  202.                 $param['type'] = 3;
    203. 

  203.                 $res = $this->check_msg($param);
    204. 

  204.                 if($res['code'] >1){
    205. 

  205.                     return $res;
    206. 

  206.                 }
    207. 

  207.                 $fields['user_phone'] = $param['to'];
    208. 

  208. 

  209.                 $update=[];
    210. 

  210.                 $update['user_phone'] = '';
    211. 

  211.                 $where2=[];
    212. 

  212.                 $where2['user_phone'] = $param['to'];
    213. 

  213. 

  214.                 $row = $this->where($where2)->find();
    215. 

  215.                 if (!empty($row)) {
    216. 

  216.                     return ['code' => 1011, 'msg' =>lang('model/user/phone_haved')];
    217. 

  217.                 }
    218. 

  218.                 //$this->where($where2)->update($update);
    219. 

  219.             }
    220. 

  220.             elseif($config['user']['reg_email_sms'] == '1'){
    221. 

  221.                 $param['type'] = 3;
    222. 

  222.                 $res = $this->check_msg($param);
    223. 

  223.                 if($res['code'] >1){
    224. 

  224.                     return $res;
    225. 

  225.                 }
    226. 

  226.                 $fields['user_email'] = $param['to'];
    227. 

  227. 

  228.                 $update=[];
    229. 

  229.                 $update['user_email'] = '';
    230. 

  230.                 $where2=[];
    231. 

  231.                 $where2['user_email'] = $param['to'];
    232. 

  232. 

  233.                 $row = $this->where($where2)->find();
    234. 

  234.                 if (!empty($row)) {
    235. 

  235.                     return ['code' => 1012, 'msg' => lang('model/user/email_haved')];
    236. 

  236.                 }
    237. 

  237.                 //$this->where($where2)->update($update);
    238. 

  238.             }
    239. 

  239.         }
    240. 

  240. 

  241.         $res = $this->insert($fields);
    242. 

  242.         if ($res === false) {
    243. 

  243.             return ['code' => 1010, 'msg' => lang('model/user/reg_err')];
    244. 

  244.         }
    245. 

  245.         $nid = $this->getLastInsID();
    246. 

  246.         $uid = intval($uid);
    247. 

  247.         if($uid > 0) {
    248. 

  248.             $where2 = [];
    249. 

  249.             $where2['user_id'] = $uid;
    250. 

  250.             $invite = $this->where($where2)->find();
    251. 

  251.             if ($invite) {
    252. 

  252.                 $where=[];
    253. 

  253.                 $where['user_id'] = $nid;
    254. 

  254.                 $update=[];
    255. 

  255.                 $update['user_pid'] = $invite['user_id'];
    256. 

  256.                 $update['user_pid_2'] = $invite['user_pid'];
    257. 

  257.                 $update['user_pid_3'] = $invite['user_pid_2'];
    258. 

  258.                 $r1 = $this->where($where)->update($update);
    259. 

  259.                 $r2 = false;
    260. 

  260.                 $config['user']['invite_reg_num'] = intval($config['user']['invite_reg_num']);
    261. 

  261. 

  262.                 if($config['user']['invite_reg_points']>0){
    263. 

  263.                     $r2 = $this->where($where2)->setInc('user_points', $config['user']['invite_reg_points']);
    264. 

  264.                 }
    265. 

  265. 

  266.                 if($r2!==false) {
    267. 

  267.                     //积分日志
    268. 

  268.                     $data = [];
    269. 

  269.                     $data['user_id'] = $uid;
    270. 

  270.                     $data['plog_type'] = 2;
    271. 

  271.                     $data['plog_points'] = $config['user']['invite_reg_points'];
    272. 

  272.                     model('Plog')->saveData($data);
    273. 

  273.                 }
    274. 

  274.             }
    275. 

  275.         }
    276. 

  276.         return ['code' => 1, 'msg' => lang('model/user/reg_ok')];
    277. 

  277.     }
    278. 

  278. 

  279.     public function regcheck($t, $str)
    280. 

  280.     {
    281. 

  281.         $where = [];
    282. 

  282.         if ($t == 'user_name') {
    283. 

  283.             $where['user_name'] = $str;
    284. 

  284.             $row = $this->where($where)->find();
    285. 

  285.             if (!empty($row)) {
    286. 

  286.                 return ['code' => 1001, 'msg' => lang('registered')];
    287. 

  287.             }
    288. 

  288.         } elseif ($t == 'user_email') {
    289. 

  289.             $where['user_email'] = $str;
    290. 

  290.             $row = $this->where($where)->find();
    291. 

  291.             if (!empty($row)) {
    292. 

  292.                 return ['code' => 1001, 'msg' =>  lang('registered')];
    293. 

  293.             }
    294. 

  294.         } elseif ($t == 'verify') {
    295. 

  295.             if (!captcha_check($str)) {
    296. 

  296.                 return ['code' => 1002, 'msg' => lang('verify_err')];
    297. 

  297.             }
    298. 

  298.         }
    299. 

  299.         return ['code' => 1, 'msg' => 'ok'];
    300. 

  300.     }
    301. 

  301. 

  302.     public function info($param)
    303. 

  303.     {
    304. 

  304.         if (empty($param['user_pwd'])) {
    305. 

  305.             return ['code' => 1001, 'msg' => lang('model/user/input_old_pass')];
    306. 

  306.         }
    307. 

  307.         $password_raw = trim($param['user_pwd']);
    308. 

  308.         $password_formatted = htmlspecialchars(urldecode(trim($param['user_pwd'])));
    309. 

  309.         if (!in_array($GLOBALS['user']['user_pwd'], [md5($password_raw), md5($password_formatted)])) {
    310. 

  310.             return ['code' => 1002, 'msg' => lang('model/user/old_pass_err')];
    311. 

  311.         }
    312. 

  312.         if ($param['user_pwd1'] != $param['user_pwd2']) {
    313. 

  313.             return ['code' => 1003, 'msg' => lang('model/user/pass_not_same_pass2')];
    314. 

  314.         }
    315. 

  315. 

  316.         $data = [];
    317. 

  317.         $data['user_id'] = $GLOBALS['user']['user_id'];
    318. 

  318.         $data['user_name'] = $GLOBALS['user']['user_name'];
    319. 

  319.         if(!empty($param['user_nick_name'])){
    320. 

  320.             $data['user_nick_name'] = htmlspecialchars(urldecode(trim($param['user_nick_name'])));
    321. 

  321.         }
    322. 

  322.         $data['user_qq'] = htmlspecialchars(urldecode(trim($param['user_qq'])));
    323. 

  323.         $data['user_question'] = htmlspecialchars(urldecode(trim($param['user_question'])));
    324. 

  324.         $data['user_answer'] = htmlspecialchars(urldecode(trim($param['user_answer'])));
    325. 

  325.         if (!empty($param['user_pwd2'])) {
    326. 

  326.             $data['user_pwd'] = trim($param['user_pwd2']);
    327. 

  327.         }
    328. 

  328.         return $this->saveData($data);
    329. 

  329.     }
    330. 

  330. 

  331.     public function login($param)
    332. 

  332.     {
    333. 

  333.         $data = [];
    334. 

  334.         $password_raw = trim($param['user_pwd']);
    335. 

  335.         $data['user_name'] = htmlspecialchars(urldecode(trim($param['user_name'])));
    336. 

  336.         $data['user_pwd'] = htmlspecialchars(urldecode(trim($param['user_pwd'])));
    337. 

  337.         $data['verify'] = $param['verify'];
    338. 

  338.         $data['openid'] = htmlspecialchars(urldecode(trim($param['openid'])));
    339. 

  339.         $data['col'] = htmlspecialchars(urldecode(trim($param['col'])));
    340. 

  340. 

  341.         if (empty($data['openid'])) {
    342. 

  342.             if (empty($data['user_name']) || empty($data['user_pwd'])) {
    343. 

  343.                 return ['code' => 1001, 'msg' => lang('model/user/input_require')];
    344. 

  344.             }
    345. 

  345.             if ($GLOBALS['config']['user']['login_verify'] ==1 && !captcha_check($data['verify'])) {
    346. 

  346.                 return ['code' => 1002, 'msg' => lang('verify_err')];
    347. 

  347.             }
    348. 

  348.             $where = [];
    349. 

  349.             $pattern = '/\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*/';
    350. 

  350.             if (!preg_match($pattern, $data['user_name'])) {
    351. 

  351.                 $where['user_name'] = ['eq', $data['user_name']];
    352. 

  352.             } else {
    353. 

  353.                 $where['user_email'] = ['eq', $data['user_name']];
    354. 

  354.             }
    355. 

  355.             // https://github.com/magicblack/maccms10/issues/781 兼容密码
    356. 

  356.             $where['user_pwd'] = [['eq', md5($password_raw)], ['eq', $data['user_pwd']], 'or'];
    357. 

  357.         } else {
    358. 

  358.             if (empty($data['openid']) || empty($data['col'])) {
    359. 

  359.                 return ['code' => 1001, 'msg' => lang('model/user/input_require')];
    360. 

  360.             }
    361. 

  361.             if (!in_array($data['col'], ['user_openid_qq', 'user_openid_weixin'])) {
    362. 

  362.                 return ['code' => 1002, 'msg' => lang('param_err') . ': col'];
    363. 

  363.             }
    364. 

  364.             $where[$data['col']] = $data['openid'];
    365. 

  365.         }
    366. 

  366.         $where['user_status'] = ['eq', 1];
    367. 

  367.         $row = $this->where($where)->find();
    368. 

  368. 

  369.         if(empty($row)) {
    370. 

  370.             return ['code' => 1003, 'msg' => lang('model/user/not_found')];
    371. 

  371.         }
    372. 

  372. 

  373.         $login_group_ids = explode(',', $row['group_id']);
    374. 

  374.         if(max($login_group_ids) > 2 &&  $row['user_end_time'] < time()) {
    375. 

  375.             $row['group_id'] = 2;
    376. 

  376.             $update['group_id'] = 2;
    377. 

  377.         }
    378. 

  378. 

  379.         $random = md5(rand(10000000, 99999999));
    380. 

  380.         $update['user_random'] = $random;
    381. 

  381.         $update['user_login_ip'] = mac_get_ip_long();
    382. 

  382.         $update['user_login_time'] = time();
    383. 

  383.         $update['user_login_num'] = $row['user_login_num'] + 1;
    384. 

  384.         $update['user_last_login_time'] = $row['user_login_time'];
    385. 

  385.         $update['user_last_login_ip'] = $row['user_login_ip'];
    386. 

  386. 

  387.         $res = $this->where($where)->update($update);
    388. 

  388.         if ($res === false) {
    389. 

  389.             return ['code' => 1004, 'msg' => lang('model/user/update_login_err')];
    390. 

  390.         }
    391. 

  391. 

  392.         //用户组
    393. 

  393.         $group_list = model('Group')->getCache('group_list');
    394. 

  394.         $group_ids = explode(',', $row['group_id']);
    395. 

  395.         $group = [];
    396. 

  396.         foreach($group_ids as $gid){
    397. 

  397.             if(isset($group_list[$gid])){
    398. 

  398.                 $group[] = $group_list[$gid];
    399. 

  399.             }
    400. 

  400.         }
    401. 

  401. 

  402.         cookie('user_id', $row['user_id'],['expire'=>2592000] );
    403. 

  403.         cookie('user_name', $row['user_name'],['expire'=>2592000] );
    404. 

  404.         cookie('group_id', $group[0]['group_id'],['expire'=>2592000] );
    405. 

  405.         cookie('group_name', $group[0]['group_name'],['expire'=>2592000] );
    406. 

  406.         cookie('user_check', md5($random . '-' .$row['user_name'] . '-' . $row['user_id'] .'-' ),['expire'=>2592000] );
    407. 

  407.         cookie('user_portrait', mac_get_user_portrait($row['user_id']),['expire'=>2592000] );
    408. 

  408. 

  409.         return ['code' => 1, 'msg' => lang('model/user/login_ok')];
    410. 

  410.     }
    411. 

  411. 

  412.     public function expire()
    413. 

  413.     {
    414. 

  414.         $where=[];
    415. 

  415.         $where['user_end_time'] = ['elt',time()];
    416. 

  416. 

  417.         $update=[];
    418. 

  418.         $update['group_id'] = '2';
    419. 

  419. 

  420.         $res = $this->where($where)->update($update);
    421. 

  421.         if ($res === false) {
    422. 

  422.             return ['code' => 101, 'msg' => lang('model/user/update_expire_err')];
    423. 

  423.         }
    424. 

  424.         return ['code' => 1, 'msg' => lang('model/user/update_expire_ok')];
    425. 

  425.     }
    426. 

  426. 

  427.     public function logout()
    428. 

  428.     {
    429. 

  429.         cookie('user_id', null);
    430. 

  430.         cookie('user_name', null);
    431. 

  431.         cookie('group_id', null);
    432. 

  432.         cookie('group_name', null);
    433. 

  433.         cookie('user_check', null);
    434. 

  434.         cookie('user_portrait', null);
    435. 

  435.         return ['code' => 1, 'msg' =>lang('model/user/logout_ok')];
    436. 

  436.     }
    437. 

  437. 

  438.     public function checkLogin()
    439. 

  439.     {
    440. 

  440.         $user_id = cookie('user_id');
    441. 

  441.         $user_name = cookie('user_name');
    442. 

  442.         $user_check = cookie('user_check');
    443. 

  443. 

  444.         $user_id = htmlspecialchars(urldecode(trim($user_id)));
    445. 

  445.         $user_name = htmlspecialchars(urldecode(trim($user_name)));
    446. 

  446.         $user_check = htmlspecialchars(urldecode(trim($user_check)));
    447. 

  447. 

  448.         if (empty($user_id) || empty($user_name) || empty($user_check)) {
    449. 

  449.             return ['code' => 1001, 'msg' => lang('model/user/not_login')];
    450. 

  450.         }
    451. 

  451. 

  452.         $where = [];
    453. 

  453.         $where['user_id'] = $user_id;
    454. 

  454.         $where['user_name'] = $user_name;
    455. 

  455.         $where['user_status'] = 1;
    456. 

  456. 

  457.         $info = $this->field('*')->where($where)->find();
    458. 

  458.         if(empty($info)) {
    459. 

  459.             return ['code' => 1002, 'msg' => lang('model/user/not_login')];
    460. 

  460.         }
    461. 

  461.         $info = $info->toArray();
    462. 

  462.         $login_check = md5($info['user_random'] . '-' . $info['user_name']. '-' . $info['user_id'] .'-' );
    463. 

  463.         if($login_check != $user_check) {
    464. 

  464.             return ['code' => 1003, 'msg' => lang('model/user/not_login')];
    465. 

  465.         }
    466. 

  466. 

  467.         $group_list = model('Group')->getCache('group_list');
    468. 

  468.         $group_ids = explode(',', $info['group_id']);
    469. 

  469.         $user_groups = [];
    470. 

  470.         $user_group_types = [];
    471. 

  471.         foreach($group_ids as $gid){
    472. 

  472.             if(isset($group_list[$gid])){
    473. 

  473.                 $user_groups[] = $group_list[$gid];
    474. 

  474.                 if (!empty($group_list[$gid]['group_type'])) {
    475. 

  475.                     $user_group_types = array_merge($user_group_types, explode(',', $group_list[$gid]['group_type']));
    476. 

  476.                 }
    477. 

  477.             }
    478. 

  478.         }
    479. 

  479. 

  480.         if (!empty($user_groups)) {
    481. 

  481.             $info['group'] = $user_groups[0];
    482. 

  482.             $info['group']['group_type'] = implode(',', array_unique(array_filter($user_group_types)));
    483. 

  483.             $info['groups'] = $user_groups;
    484. 

  484. 

  485.             $all_names = [];
    486. 

  486.             foreach($user_groups as $g){
    487. 

  487.                 $all_names[] = $g['group_name'];
    488. 

  488.             }
    489. 

  489.             $info['group']['group_name'] = implode(',', $all_names);
    490. 

  490. 

  491.         } else {
    492. 

  492.             $info['group'] = $group_list[1];
    493. 

  493.         }
    494. 

  494. 

  495.         //会员截止日期
    496. 

  496.         if (max($group_ids) > 2 && $info['user_end_time'] < time()) {
    497. 

  497.             //用户组
    498. 

  498.             $info['group'] = $group_list[2];
    499. 

  499. 

  500.             $update = [];
    501. 

  501.             $update['group_id'] = 2;
    502. 

  502. 

  503.             $res = $this->where($where)->update($update);
    504. 

  504.             if($res === false){
    505. 

  505.                 return ['code' => 1004, 'msg' => lang('model/user/update_expire_err')];
    506. 

  506.             }
    507. 

  507. 

  508.             $info['group_id'] = 2;
    509. 

  509.             $info['groups'] = [$group_list[2]];
    510. 

  510.             cookie('group_id', $info['group']['group_id'], ['expire'=>2592000] );
    511. 

  511.             cookie('group_name', $info['group']['group_name'],['expire'=>2592000] );
    512. 

  512.         }
    513. 

  513. 

  514. 

  515.         return ['code' => 1, 'msg' => lang('model/user/haved_login'), 'info' => $info];
    516. 

  516.     }
    517. 

  517. 

  518.     public function resetPwd()
    519. 

  519.     {
    520. 

  520. 

  521.     }
    522. 

  522. 

  523.     public function findpass($param)
    524. 

  524.     {
    525. 

  525.         $data = [];
    526. 

  526.         $password_raw = trim($param['user_pwd']);
    527. 

  527.         $data['user_name'] = htmlspecialchars(urldecode(trim($param['user_name'])));
    528. 

  528.         $data['user_question'] = htmlspecialchars(urldecode(trim($param['user_question'])));
    529. 

  529.         $data['user_answer'] = htmlspecialchars(urldecode(trim($param['user_answer'])));
    530. 

  530.         $data['user_pwd'] = htmlspecialchars(urldecode(trim($param['user_pwd'])));
    531. 

  531.         $data['user_pwd2'] = htmlspecialchars(urldecode(trim($param['user_pwd2'])));
    532. 

  532.         $data['verify'] = $param['verify'];
    533. 

  533. 

  534.         if (empty($data['user_name']) || empty($data['user_question']) || empty($data['user_answer']) || empty($data['user_pwd']) || empty($data['user_pwd2']) || empty($data['verify'])) {
    535. 

  535.             return ['code' => 1001, 'msg' => lang('param_err')];
    536. 

  536.         }
    537. 

  537. 

  538.         if (!captcha_check($data['verify'])) {
    539. 

  539.             return ['code' => 1002, 'msg' => lang('verify_err')];
    540. 

  540.         }
    541. 

  541. 

  542.         if ($data['user_pwd'] != $data['user_pwd2']) {
    543. 

  543.             return ['code' => 1003, 'msg' => lang('model/user/pass_not_same_pass2')];
    544. 

  544.         }
    545. 

  545. 

  546. 

  547.         $where = [];
    548. 

  548.         $where['user_name'] = $data['user_name'];
    549. 

  549.         $where['user_question'] = $data['user_question'];
    550. 

  550.         $where['user_answer'] = $data['user_answer'];
    551. 

  551. 

  552.         $info = $this->where($where)->find();
    553. 

  553.         if (empty($info)) {
    554. 

  554.             return ['code' => 1004, 'msg' => lang('model/user/findpass_not_found')];
    555. 

  555.         }
    556. 

  556. 

  557.         $update = [];
    558. 

  558.         $update['user_pwd'] = md5($password_raw);
    559. 

  559. 

  560.         $where = [];
    561. 

  561.         $where['user_id'] = $info['user_id'];
    562. 

  562.         $res = $this->where($where)->update($update);
    563. 

  563. 

  564.         if (false === $res) {
    565. 

  565.             return ['code' => 1005, 'msg' => '' . $this->getError()];
    566. 

  566.         }
    567. 

  567.         return ['code' => 1, 'msg' => lang('model/user/findpass_ok')];
    568. 

  568. 

  569.     }
    570. 

  570. 

  571.     public function popedom($type_id, $popedom, $group_ids = 1)
    572. 

  572.     {
    573. 

  573.         $group_list = model('Group')->getCache();
    574. 

  574.         $group_ids = explode(',', $group_ids);
    575. 

  575.         
    576. 

  576.         foreach($group_ids as $group_id) {
    577. 

  577.             if(!isset($group_list[$group_id])) {
    578. 

  578.                 continue;
    579. 

  579.             }
    580. 

  580.             $group_info = $group_list[$group_id];
    581. 

  581.             
    582. 

  582.             if (strpos(',' . $group_info['group_type'], ',' . $type_id . ',') !== false && !empty($group_info['group_popedom'][$type_id][$popedom]) !== false) {
    583. 

  583.                 return true;
    584. 

  584.             }
    585. 

  585.         }
    586. 

  586.         return false;
    587. 

  587.     }
    588. 

  588. 

  589.     public function upgrade($param)
    590. 

  590.     {
    591. 

  591.         $group_id = intval($param['group_id']);
    592. 

  592.         $long = $param['long'];
    593. 

  593.         $points_long = ['day'=>86400,'week'=>86400*7,'month'=>86400*30,'year'=>86400*365];
    594. 

  594. 

  595.         if (!array_key_exists($long, $points_long)) {
    596. 

  596.             return ['code'=>1001,'msg'=>'非法操作'];
    597. 

  597.         }
    598. 

  598. 

  599.         if($group_id <3){
    600. 

  600.             return ['code'=>1002,'msg'=>lang('model/user/select_diy_group_err')];
    601. 

  601.         }
    602. 

  602. 

  603.         $group_list = model('Group')->getCache();
    604. 

  604.         $group_info = $group_list[$group_id];
    605. 

  605.         if(empty($group_info)){
    606. 

  606.             return ['code'=>1003,'msg'=>lang('model/user/group_not_found')];
    607. 

  607.         }
    608. 

  608. 

  609.         if($group_info['group_status'] == 0){
    610. 

  610.             return ['code'=>1004,'msg'=>lang('model/user/group_is_close')];
    611. 

  611.         }
    612. 

  612. 

  613.         $point = $group_info['group_points_'.$long];
    614. 

  614.         if($GLOBALS['user']['user_points'] < $point){
    615. 

  615.             return ['code'=>1005,'msg'=>lang('model/user/potins_not_enough')];
    616. 

  616.         }
    617. 

  617. 

  618.         $sj = $points_long[$long];
    619. 

  619.         $end_time = time() + $sj;
    620. 

  620.         if($GLOBALS['user']['user_end_time'] > time() ){
    621. 

  621.             $end_time = $GLOBALS['user']['user_end_time'] + $sj;
    622. 

  622.         }
    623. 

  623. 

  624.         $where = [];
    625. 

  625.         $where['user_id'] = $GLOBALS['user']['user_id'];
    626. 

  626.         
    627. 

  627.         $data = [];
    628. 

  628.         $data['user_points'] = $GLOBALS['user']['user_points'] - $point;
    629. 

  629.         $data['user_end_time'] = $end_time;
    630. 

  630.         $data['group_id'] = $group_id;
    631. 

  631. 

  632.         $res = $this->where($where)->update($data);
    633. 

  633.         if($res===false){
    634. 

  634.             return ['code'=>1009,'msg'=>lang('model/user/update_group_err')];
    635. 

  635.         }
    636. 

  636. 

  637.         //积分日志
    638. 

  638.         $data = [];
    639. 

  639.         $data['user_id'] = $GLOBALS['user']['user_id'];
    640. 

  640.         $data['plog_type'] = 7;
    641. 

  641.         $data['plog_points'] = $point;
    642. 

  642.         model('Plog')->saveData($data);
    643. 

  643.         //分销日志
    644. 

  644.         $this->reward($point);
    645. 

  645. 

  646.         cookie('group_id', $group_info['group_id'],['expire'=>2592000] );
    647. 

  647.         cookie('group_name', $group_info['group_name'],['expire'=>2592000] );
    648. 

  648. 

  649.         return ['code'=>1,'msg'=>lang('model/user/update_group_ok')];
    650. 

  650.     }
    651. 

  651. 

  652.     public function check_msg($param)
    653. 

  653.     {
    654. 

  654.         $param['to'] = htmlspecialchars(urldecode(trim($param['to'])));
    655. 

  655.         $param['code'] = htmlspecialchars(urldecode(trim($param['code'])));
    656. 

  656.         if(!in_array($param['ac'],['email','phone']) || empty($param['to']) || empty($param['code']) || empty($param['type'])){
    657. 

  657.             return ['code'=>9001,'msg'=>lang('param_err')];
    658. 

  658.         }
    659. 

  659.         // https://github.com/magicblack/maccms10/issues/792 邮箱增加黑白名单校验
    660. 

  660.         if ($param['ac'] == 'email' && in_array($param['type'], [1, 3])) {
    661. 

  661.             $result = UserValidate::validateEmail($param['to']);
    662. 

  662.             if ($result['code'] > 1) {
    663. 

  663.                 return $result;
    664. 

  664.             }
    665. 

  665.         }
    666. 

  666.         //msg_type  1绑定2找回3注册
    667. 

  667.         $stime = strtotime('-5 min');
    668. 

  668.         if($param['ac']=='email' && intval($GLOBALS['config']['email']['time'])>0){
    669. 

  669.             $stime = strtotime('-'.$GLOBALS['config']['email']['time'].' min');
    670. 

  670.         }
    671. 

  671. 

  672.         $where=[];
    673. 

  673.         $where['user_id'] = intval($GLOBALS['user']['user_id']);
    674. 

  674.         $where['msg_time'] = ['gt',$stime];
    675. 

  675.         $where['msg_code'] = ['eq',$param['code']];
    676. 

  676.         $where['msg_type'] = ['eq', $param['type'] ];
    677. 

  677.         $res = model('msg')->infoData($where);
    678. 

  678.         if($res['code'] >1){
    679. 

  679.             return ['code'=>9002,'msg'=>lang('model/user/msg_not_found')];
    680. 

  680.         }
    681. 

  681.         return  ['code'=>1,'msg'=>'ok'];
    682. 

  682.     }
    683. 

  683. 

  684.     public function send_msg($param)
    685. 

  685.     {
    686. 

  686.         $param['to'] = htmlspecialchars(urldecode(trim($param['to'])));
    687. 

  687.         $param['code'] = htmlspecialchars(urldecode(trim($param['code'])));
    688. 

  688. 

  689.         $type_arr = [
    690. 

  690.             1=>['des'=>lang('bind'),'flag'=>'bind'],
    691. 

  691.             2=>['des'=>lang('findpass'),'flag'=>'findpass'],
    692. 

  692.             3=>['des'=>lang('register'),'flag'=>'reg'],
    693. 

  693.         ];
    694. 

  694.         if(!in_array($param['ac'],['email','phone']) || !isset($type_arr[$param['type']]) || empty($param['to'])  || empty($param['type'])){
    695. 

  695.             return ['code'=>9001,'msg'=>lang('param_err')];
    696. 

  696.         }
    697. 

  697.         // https://github.com/magicblack/maccms10/issues/792 邮箱增加黑白名单校验
    698. 

  698.         if ($param['ac'] == 'email' && in_array($param['type'], [1, 3])) {
    699. 

  699.             $result = UserValidate::validateEmail($param['to']);
    700. 

  700.             if ($result['code'] > 1) {
    701. 

  701.                 return $result;
    702. 

  702.             }
    703. 

  703.         }
    704. 

  704. 

  705.         $type_des = $type_arr[$param['type']]['des'];
    706. 

  706.         $type_flag = $type_arr[$param['type']]['flag'];
    707. 

  707. 

  708. 

  709.         $to = $param['to'];
    710. 

  710.         $code = mac_get_rndstr(6,'num');
    711. 

  711.         $r=0;
    712. 

  712. 

  713.         $stime = strtotime('-5 min');
    714. 

  714.         if($param['ac']=='email' && intval($GLOBALS['config']['email']['time'])>0){
    715. 

  715.             $stime = strtotime('-'.$GLOBALS['config']['email']['time'].' min');
    716. 

  716.         }
    717. 

  717.         $where=[];
    718. 

  718.         $where['user_id'] = intval($GLOBALS['user']['user_id']);
    719. 

  719.         $where['msg_time'] = ['gt',$stime];
    720. 

  720.         $where['msg_type'] = ['eq', $param['type'] ];
    721. 

  721.         $where['msg_to'] = ['eq', $param['to'] ];
    722. 

  722.         $res = model('msg')->infoData($where);
    723. 

  723.         if($res['code'] ==1){
    724. 

  724.             return ['code'=>9002,'msg'=>lang('model/user/do_not_send_frequently')];
    725. 

  725.         }
    726. 

  726.         $res_msg= ','.lang('please_try_again');
    727. 

  727.         if($param['ac']=='email'){
    728. 

  728.             $title = $GLOBALS['config']['email']['tpl']['user_'.$type_flag.'_title'];
    729. 

  729.             $msg = $GLOBALS['config']['email']['tpl']['user_'.$type_flag.'_body'];
    730. 

  730.             View::instance()->assign(['code'=>$code,'time'=>$GLOBALS['config']['email']['time']]);
    731. 

  731.             $title =  View::instance()->display($title);
    732. 

  732.             $msg =  View::instance()->display($msg);
    733. 

  733.             $msg = htmlspecialchars_decode($msg);
    734. 

  734.             $res_send = mac_send_mail($to, $title, $msg);
    735. 

  735.             $res_code = $res_send['code'];
    736. 

  736.             $res_msg = $res_send['msg'];
    737. 

  737.         }
    738. 

  738.         else{
    739. 

  739.             $msg = $GLOBALS['config']['sms']['content'];
    740. 

  740.             $msg = str_replace(['[用户]','[类型]','[时长]','[验证码]'],[$GLOBALS['user']['user_name'],$type_des,'5',$code],$msg);
    741. 

  741.             $res_send = mac_send_sms($to,$code,$type_flag,$type_des,$msg);
    742. 

  742.             $res_code = $res_send['code'];
    743. 

  743.             $res_msg = $res_send['msg'];
    744. 

  744.         }
    745. 

  745.         
    746. 

  746.         if($res_code==1){
    747. 

  747.             $data=[];
    748. 

  748.             $data['user_id'] = intval($GLOBALS['user']['user_id']);
    749. 

  749.             $data['msg_type'] = $param['type'];
    750. 

  750.             $data['msg_status'] = 0;
    751. 

  751.             $data['msg_to'] = $to;
    752. 

  752.             $data['msg_code'] = $code;
    753. 

  753.             $data['msg_content'] = $msg;
    754. 

  754.             $data['msg_time'] = time();
    755. 

  755.             $res = model('msg')->saveData($data);
    756. 

  756. 

  757.             return ['code'=>1,'msg'=>lang('model/user/msg_send_ok')];
    758. 

  758.         }
    759. 

  759.         else{
    760. 

  760.             return ['code'=>9009,'msg'=>lang('model/user/msg_send_err').':'.$res_msg];
    761. 

  761.         }
    762. 

  762.     }
    763. 

  763. 

  764.     public function bind($param)
    765. 

  765.     {
    766. 

  766.         $param['type'] = 1;
    767. 

  767.         $res = $this->check_msg($param);
    768. 

  768.         if($res['code'] >1){
    769. 

  769.             return ['code'=>$res['code'],'msg'=>$res['msg']];
    770. 

  770.         }
    771. 

  771. 

  772.         $update=[];
    773. 

  773.         $update2=[];
    774. 

  774.         $where2=[];
    775. 

  775.         if($param['ac']=='email') {
    776. 

  776.             $update['user_email'] = $param['to'];
    777. 

  777.             $update2['user_email'] = '';
    778. 

  778.             $where2['user_email'] = $param['to'];
    779. 

  779.         }
    780. 

  780.         else{
    781. 

  781.             $update['user_phone'] = $param['to'];
    782. 

  782.             $update2['user_phone'] = '';
    783. 

  783.             $where2['user_phone'] = $param['to'];
    784. 

  784.         }
    785. 

  785.         $this->where($where2)->update($update2);
    786. 

  786. 

  787.         $where=[];
    788. 

  788.         $where['user_id'] = $GLOBALS['user']['user_id'];
    789. 

  789.         $res = $this->where($where)->update($update);
    790. 

  790.         if($res===false){
    791. 

  791.             return ['code'=>2003,'msg'=>lang('model/user/update_bind_err')];
    792. 

  792.         }
    793. 

  793.         return ['code'=>1,'msg'=>lang('model/user/update_bind_ok')];
    794. 

  794.     }
    795. 

  795. 

  796.     public function unbind($param)
    797. 

  797.     {
    798. 

  798.         if(!in_array($param['ac'],['email','phone']) ){
    799. 

  799.             return ['code'=>2001,'msg'=>lang('param_err')];
    800. 

  800.         }
    801. 

  801.         $col = 'user_email';
    802. 

  802.         if($param['ac']=='phone'){
    803. 

  803.             $col = 'user_phone';
    804. 

  804.         }
    805. 

  805.         $update=[];
    806. 

  806.         $update[$col] = '';
    807. 

  807.         $where=[];
    808. 

  808.         $where['user_id'] = $GLOBALS['user']['user_id'];
    809. 

  809.         $res = $this->where($where)->update($update);
    810. 

  810.         if($res===false){
    811. 

  811.             return ['code'=>2002,'msg'=>lang('model/user/update_bind_err')];
    812. 

  812.         }
    813. 

  813.         return ['code'=>1,'msg'=>lang('model/user/update_unbind_ok')];
    814. 

  814.     }
    815. 

  815. 

  816.     public function bindmsg($param)
    817. 

  817.     {
    818. 

  818.         $param['type'] = 1;
    819. 

  819.         return $this->send_msg($param);
    820. 

  820.     }
    821. 

  821. 

  822.     public function findpass_msg($param)
    823. 

  823.     {
    824. 

  824.         $param['type'] = 2;
    825. 

  825.         return $this->send_msg($param);
    826. 

  826.     }
    827. 

  827. 

  828.     public function reg_msg($param)
    829. 

  829.     {
    830. 

  830.         $param['type'] = 3;
    831. 

  831.         return $this->send_msg($param);
    832. 

  832.     }
    833. 

  833. 

  834. 

  835.     public function findpass_reset($param)
    836. 

  836.     {
    837. 

  837.         $to = htmlspecialchars(urldecode(trim($param['user_email'])));
    838. 

  838.         if(empty($to)){
    839. 

  839.             $to = htmlspecialchars(urldecode(trim($param['to'])));
    840. 

  840.         }
    841. 

  841. 

  842.         $password_raw = trim($param['user_pwd']);
    843. 

  843.         $param['code'] = htmlspecialchars(urldecode(trim($param['code'])));
    844. 

  844.         $param['user_pwd'] = htmlspecialchars(urldecode(trim($param['user_pwd'])));
    845. 

  845.         $param['user_pwd2'] = htmlspecialchars(urldecode(trim($param['user_pwd2'])));
    846. 

  846. 

  847. 

  848.         if (strlen($param['user_pwd']) < 6) {
    849. 

  849.             return ['code' => 2002, 'msg' => lang('model/user/pass_length_err')];
    850. 

  850.         }
    851. 

  851.         if ($param['user_pwd'] != $param['user_pwd2']) {
    852. 

  852.             return ['code' => 2003, 'msg' => lang('model/user/pass_not_same_pass2')];
    853. 

  853.         }
    854. 

  854. 

  855.         $param['type'] = 2;
    856. 

  856.         $res = $this->check_msg($param);
    857. 

  857.         if($res['code'] >1){
    858. 

  858.             return ['code'=>$res['code'],'msg'=>$res['msg']];
    859. 

  859.         }
    860. 

  860. 

  861.         if($param['ac']=='email') {
    862. 

  862. 

  863.             $pattern = '/\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*/';
    864. 

  864.             if(!preg_match( $pattern, $to)){
    865. 

  865.                 return ['code'=>2005,'msg'=>lang('model/user/email_format_err')];
    866. 

  866.             }
    867. 

  867. 

  868.             $where = [];
    869. 

  869.             $where['user_email'] = $to;
    870. 

  870.             $user = $this->where($where)->find();
    871. 

  871.             if (!$user) {
    872. 

  872.                 return ['code' => 2006, 'msg' => lang('model/user/email_err')];
    873. 

  873.             }
    874. 

  874.         }
    875. 

  875.         else{
    876. 

  876.             $pattern = "/^1{1}\d{10}$/";
    877. 

  877.             if(!preg_match($pattern,$to)){
    878. 

  878.                 return ['code'=>2007,'msg'=>lang('model/user/phone_format_err')];
    879. 

  879.             }
    880. 

  880. 

  881.             $where = [];
    882. 

  882.             $where['user_phone'] = $to;
    883. 

  883.             $user = $this->where($where)->find();
    884. 

  884.             if (!$user) {
    885. 

  885.                 return ['code' => 2008, 'msg' =>lang('model/user/phone_err')];
    886. 

  886.             }
    887. 

  887.         }
    888. 

  888. 

  889.         $update = [];
    890. 

  890.         $update['user_pwd'] = md5($password_raw);
    891. 

  891.         $res = $this->where($where)->update($update);
    892. 

  892.         if($res===false){
    893. 

  893.             return ['code'=>2009,'msg'=>lang('model/user/pass_reset_err')];
    894. 

  894.         }
    895. 

  895.         return ['code'=>1,'msg'=>lang('model/user/pass_reset_ok')];
    896. 

  896.     }
    897. 

  897. 

  898.     public function visit($param)
    899. 

  899.     {
    900. 

  900.         $param['uid'] = abs(intval($param['uid']));
    901. 

  901.         if ($param['uid'] == 0) {
    902. 

  902.             return ['code' => 101, 'msg' =>lang('model/user/id_err')];
    903. 

  903.         }
    904. 

  904. 

  905.         $ip = mac_get_ip_long();
    906. 

  906.         $max_cc = $GLOBALS['config']['user']['invite_visit_num'];
    907. 

  907.         if(empty($max_cc)){
    908. 

  908.             $max_cc=1;
    909. 

  909.         }
    910. 

  910.         $todayunix = strtotime("today");
    911. 

  911.         $where = [];
    912. 

  912.         $where['user_id'] = $param['uid'];
    913. 

  913.         $where['visit_ip'] = $ip;
    914. 

  914.         $where['visit_time'] = ['gt', $todayunix];
    915. 

  915.         $cc = model('visit')->where($where)->count();
    916. 

  916.         if ($cc>= $max_cc){
    917. 

  917.             return ['code' => 102, 'msg' => lang('model/user/visit_tip')];
    918. 

  918.         }
    919. 

  919. 

  920.         $data = [];
    921. 

  921.         $data['user_id'] = $param['uid'];
    922. 

  922.         $data['visit_ip'] = $ip;
    923. 

  923.         $data['visit_time'] = time();
    924. 

  924.         $data['visit_ly'] = htmlspecialchars(mac_get_refer());
    925. 

  925.         $res = model('visit')->saveData($data);
    926. 

  926. 

  927.         if ($res['code'] > 1) {
    928. 

  928.             return ['code' => 103, 'msg' => lang('model/user/visit_err')];
    929. 

  929.         }
    930. 

  930. 

  931.         $res = $this->where('user_id', $param['uid'])->setInc('user_points', intval($GLOBALS['config']['user']['invite_visit_points']));
    932. 

  932.         if($res) {
    933. 

  933.             //积分日志
    934. 

  934.             $data = [];
    935. 

  935.             $data['user_id'] = $param['uid'];
    936. 

  936.             $data['plog_type'] = 3;
    937. 

  937.             $data['plog_points'] = intval($GLOBALS['config']['user']['invite_visit_points']);
    938. 

  938.             model('Plog')->saveData($data);
    939. 

  939.         }
    940. 

  940. 

  941.         return ['code'=>1,'msg'=>lang('model/user/visit_ok')];
    942. 

  942.     }
    943. 

  943. 

  944.     public function reward($fee_points=0)
    945. 

  945.     {
    946. 

  946.         //三级分销
    947. 

  947.         if($fee_points>0 && $GLOBALS['config']['user']['reward_status'] == '1'){
    948. 

  948. 

  949.             if(!empty($GLOBALS['config']['user']['reward_ratio']) && !empty($GLOBALS['user']['user_pid'])){
    950. 

  950.                 $points = floor($fee_points / 100 * $GLOBALS['config']['user']['reward_ratio']);
    951. 

  951.                 if($points>0){
    952. 

  952.                     $where=[];
    953. 

  953.                     $where['user_id'] = $GLOBALS['user']['user_pid'];
    954. 

  954.                     $r = model('User')->where($where)->setInc('user_points',$points);
    955. 

  955.                     if($r){
    956. 

  956.                         $data = [];
    957. 

  957.                         $data['user_id'] = $GLOBALS['user']['user_pid'];
    958. 

  958.                         $data['plog_type'] = 4;
    959. 

  959.                         $data['plog_points'] = $points;
    960. 

  960.                         $data['plog_remarks'] = lang('model/user/reward_tip',[$GLOBALS['user']['user_id'],$GLOBALS['user']['user_name'],$fee_points,$points]);
    961. 

  961.                         model('Plog')->saveData($data);
    962. 

  962.                     }
    963. 

  963.                 }
    964. 

  964.             }
    965. 

  965.             if(!empty($GLOBALS['config']['user']['reward_ratio_2']) && !empty($GLOBALS['user']['user_pid_2'])){
    966. 

  966.                 $points = floor($fee_points / 100 * $GLOBALS['config']['user']['reward_ratio_2']);
    967. 

  967.                 if($points>0){
    968. 

  968.                     $where=[];
    969. 

  969.                     $where['user_id'] = $GLOBALS['user']['user_pid_2'];
    970. 

  970.                     $r = model('User')->where($where)->setInc('user_points',$points);
    971. 

  971.                     if($r){
    972. 

  972.                         $data = [];
    973. 

  973.                         $data['user_id'] = $GLOBALS['user']['user_pid_2'];
    974. 

  974.                         $data['plog_type'] = 5;
    975. 

  975.                         $data['plog_points'] = $points;
    976. 

  976.                         $data['plog_remarks'] =lang('model/user/reward_tip',[$GLOBALS['user']['user_id'],$GLOBALS['user']['user_name'],$fee_points,$points]);
    977. 

  977.                         model('Plog')->saveData($data);
    978. 

  978.                     }
    979. 

  979.                 }
    980. 

  980.             }
    981. 

  981.             if(!empty($GLOBALS['config']['user']['reward_ratio_3']) && !empty($GLOBALS['user']['user_pid_3'])){
    982. 

  982.                 $points = floor($fee_points / 100 * $GLOBALS['config']['user']['reward_ratio_3']);
    983. 

  983.                 if($points>0){
    984. 

  984.                     $where=[];
    985. 

  985.                     $where['user_id'] = $GLOBALS['user']['user_pid_3'];
    986. 

  986.                     $r = model('User')->where($where)->setInc('user_points',$points);
    987. 

  987.                     if($r){
    988. 

  988.                         $data = [];
    989. 

  989.                         $data['user_id'] = $GLOBALS['user']['user_pid_3'];
    990. 

  990.                         $data['plog_type'] = 6;
    991. 

  991.                         $data['plog_points'] = $points;
    992. 

  992.                         $data['plog_remarks'] = lang('model/user/reward_tip',[$GLOBALS['user']['user_id'],$GLOBALS['user']['user_name'],$fee_points,$points]);
    993. 

  993.                         model('Plog')->saveData($data);
    994. 

  994.                     }
    995. 

  995.                 }
    996. 

  996.             }
    997. 

  997.         }
    998. 

  998. 

  999.         return ['code'=>1,'msg'=>lang('model/user/reward_ok')];
    1000. 

  1000.     }
    1001. 

  1001. 

  1002. }
    1003.