| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227 |
- <?php
- namespace Api\Controller;
- use Think\Controller;
- class AdminSettingController extends BaseController {
- //保存配置
- public function saveConfig(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $register_open = intval(I("register_open")) ;
- $oss_open = intval(I("oss_open")) ;
- $home_page = intval(I("home_page")) ;
- $home_item = intval(I("home_item")) ;
- $oss_setting = I("oss_setting") ;
- D("Options")->set("register_open" ,$register_open) ;
- D("Options")->set("home_page" ,$home_page) ;
- D("Options")->set("home_item" ,$home_item) ;
-
- if ($oss_open) {
- D("Options")->set("oss_setting" , json_encode( $oss_setting)) ;
- }
- D("Options")->set("oss_open" ,$oss_open) ;
- $this->sendResult(array());
- }
- //加载配置
- public function loadConfig(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $oss_open = D("Options")->get("oss_open" ) ;
- $register_open = D("Options")->get("register_open" ) ;
- $oss_setting = D("Options")->get("oss_setting" ) ;
- $home_page = D("Options")->get("home_page" ) ;
- $home_item = D("Options")->get("home_item" ) ;
- $ldap_form = json_decode($ldap_form,1);
- $oss_setting = json_decode($oss_setting,1);
-
- //如果强等于false,那就是尚未有数据。关闭注册应该是有数据且数据为字符串0
- if ($register_open === false) {
- $this->sendResult(array());
- }else{
- $array = array(
- "oss_open"=>$oss_open ,
- "register_open"=>$register_open ,
- "home_page"=>$home_page ,
- "home_item"=>$home_item ,
- "oss_setting"=>$oss_setting ,
- );
- $this->sendResult($array);
- }
- }
- //保存Ldap配置
- public function saveLdapConfig(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $ldap_open = intval(I("ldap_open")) ;
- $ldap_form = I("ldap_form") ;
-
- if ($ldap_open) {
- if (!$ldap_form['user_field']) {
- $ldap_form['user_field'] = 'cn';
- }
- if( !extension_loaded( 'ldap' ) ) {
- $this->sendError(10011,"你尚未安装php-ldap扩展。如果是普通PHP环境,请手动安装之。如果是使用之前官方docker镜像,则需要重新安装镜像。方法是:备份 /showdoc_data 整个目录,然后全新安装showdoc,接着用备份覆盖/showdoc_data 。然后递归赋予777可写权限。");
- return ;
- }
- $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
- if (!$ldap_conn) {
- $this->sendError(10011,"Can't connect to LDAP server");
- return ;
- }
- ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
- $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1
- if (!$rs) {
- $this->sendError(10011,"Can't bind to LDAP server");
- return ;
- }
- $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
- $data = ldap_get_entries($ldap_conn, $result);
-
- for ($i=0; $i<$data["count"]; $i++) {
- $ldap_user = $data[$i][$ldap_form['user_field']][0] ;
- if (!$ldap_user) {
- continue ;
- }
- //如果该用户不在数据库里,则帮助其注册
- if(!D("User")->isExist($ldap_user)){
- D("User")->register($ldap_user,$ldap_user.time());
- }
- }
- D("Options")->set("ldap_form" , json_encode( $ldap_form)) ;
- }
- D("Options")->set("ldap_open" ,$ldap_open) ;
- $this->sendResult(array());
- }
- //加载Ldap配置
- public function loadLdapConfig(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $ldap_open = D("Options")->get("ldap_open" ) ;
- $ldap_form = D("Options")->get("ldap_form" ) ;
- $ldap_form = json_decode($ldap_form,1);
-
- //如果强等于false,那就是尚未有数据。关闭注册应该是有数据且数据为字符串0
- if ($register_open === false) {
- $this->sendResult(array());
- }else{
- $array = array(
- "ldap_open"=>$ldap_open ,
- "ldap_form"=>$ldap_form ,
- );
- $this->sendResult($array);
- }
- }
- //保存Oauth2配置
- public function saveOauth2Config(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $oauth2_open = intval(I("oauth2_open")) ;
- $oauth2_form = I("oauth2_form") ;
- D("Options")->set("oauth2_form" , json_encode( $oauth2_form)) ;
- D("Options")->set("oauth2_open" ,$oauth2_open) ;
- $this->sendResult(array());
- }
- //加载Oauth2配置
- public function loadOauth2Config(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $oauth2_open = D("Options")->get("oauth2_open" ) ;
- $oauth2_form = D("Options")->get("oauth2_form" ) ;
- $oauth2_form = json_decode($oauth2_form,1);
-
- //如果强等于false,那就是尚未有数据。关闭注册应该是有数据且数据为字符串0
- if ($register_open === false) {
- $this->sendResult(array());
- }else{
- $array = array(
- "oauth2_open"=>$oauth2_open ,
- "oauth2_form"=>$oauth2_form ,
- );
- $this->sendResult($array);
- }
- }
- public function getLoginSecretKey(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $login_secret_key = D("Options")->get("login_secret_key") ;
- if(!$login_secret_key){
- $login_secret_key = md5("rgrsfsrfsrf".time().rand());
- D("Options")->set("login_secret_key",$login_secret_key) ;
- }
- $this->sendResult(array("login_secret_key"=>$login_secret_key));
- }
- public function resetLoginSecretKey(){
- $login_user = $this->checkLogin();
- $this->checkAdmin();
- $login_secret_key = md5("rgrsfsrfsrf".time().rand());
- D("Options")->set("login_secret_key",$login_secret_key) ;
- $this->sendResult(array("login_secret_key"=>$login_secret_key));
- }
- public function checkLdapLogin(){
- $username = 'admin';
- $password = '123456';
- $ldap_open = D("Options")->get("ldap_open" ) ;
- $ldap_form = D("Options")->get("ldap_form" ) ;
- $ldap_form = json_decode($ldap_form,1);
- if (!$ldap_open) {
- return ;
- }
- if (!$ldap_form['user_field']) {
- $ldap_form['user_field'] = 'cn';
- }
- $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
- if (!$ldap_conn) {
- $this->sendError(10011,"Can't connect to LDAP server");
- return ;
- }
- ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
- $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1
- if (!$rs) {
- $this->sendError(10011,"Can't bind to LDAP server");
- return ;
- }
- $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
- $data = ldap_get_entries($ldap_conn, $result);
- for ($i=0; $i<$data["count"]; $i++) {
- $ldap_user = $data[$i][$ldap_form['user_field']][0] ;
- $dn = $data[$i]["dn"] ;
- if ($ldap_user == $username) {
- //如果该用户不在数据库里,则帮助其注册
- $userInfo = D("User")->isExist($username) ;
- if(!$userInfo){
- D("User")->register($ldap_user,$ldap_user.time());
- }
- $rs2=ldap_bind($ldap_conn, $dn , $password);
- if ($rs2) {
- D("User")->updatePwd($userInfo['uid'], $password);
- $this->sendResult(array());
- return ;
- }
- }
- }
- $this->sendError(10011,"用户名或者密码错误");
- }
- }
|
