['exceldownload'], 'allow' => [ 'index', 'update', 'updatepwd', 'read', 'updateimg', 'resetpassword', 'userlistbystructid', 'groups', 'groupsdel', 'tobeusers', 'structureuserlist', 'getuserlist', 'usernameedit', 'import', 'setparent', 'loginRecord', 'userstar', 'querylist', 'starlist', 'copyrole', 'subordinate' ] ]; Hook::listen('check_auth',$action); $request = Request::instance(); $a = strtolower($request->action()); if (!in_array($a, $action['permission'])) { parent::_initialize(); } } /** * 员工列表 * @param * @return */ public function index() { $userModel = model('User'); $param = $this->param; $data = $userModel->getDataList($param); return resultArray(['data' => $data]); } /** * 员工详情 * @param * @return */ public function read() { $userModel = model('User'); $param = $this->param; $userInfo = $this->userInfo; if (!$param['id']) $param['id'] = $userInfo['id']; $data = $userModel->getDataById($param['id']); if (!$data) { return resultArray(['error' => $userModel->getError()]); } $data['serverUserInfo'] = $this->queryLoginUser(); return resultArray(['data' => $data]); } /** * 员工创建 * @param * @return */ public function save() { $userModel = model('User'); $param = $this->param; $userInfo = $this->userInfo; $data = $userModel->createData($param); if (!$data) { return resultArray(['error' => $userModel->getError()]); } return resultArray(['data' => '添加成功']); } /** * 员工编辑 * @param * @return */ public function update() { $userModel = model('User'); $param = $this->param; $userInfo = $this->userInfo; $userData = db('admin_user')->where(['id' => $param['id']])->find(); if (!$param['id']) { //修改个人信息 $param['user_id'] = $userInfo['id']; } else { //权限判断 if (!checkPerByAction('admin', 'users', 'update')) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code'=>102,'error'=>'无权操作'])); } } unset($param['username']); $data = $userModel->updateDataById($param, $param['id']); if (!$data) { return resultArray(['error' => $userModel->getError()]); } $param['userInfo'] = $userData; $resSync = model('Sync')->syncData($param); return resultArray(['data' => '编辑成功']); } //批量设置密码 public function updatePwd() { //权限判断 if (!checkPerByAction('admin', 'users', 'update')) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code'=>102,'error'=>'无权操作'])); } $param = $this->param; if ($param['password'] && is_array($param['id'])) { $userModel = model('User'); $ret = $userModel->updatePwdById($param); if ($ret) { return resultArray(['data'=>true]); } else { return resultArray(['error'=>$userModel->getError()]); } } else { return resultArray(['error'=>'参数错误']); } } /** * 员工状态 * @param status 0禁用,1启用,2禁止登陆,3未激活 * @return */ public function enables() { $userModel = model('User'); $param = $this->param; if (!is_array($param['id'])) { $ids[] = $param['id']; } else { $ids = $param['id']; } //顶级管理员不能修改 foreach ($ids as $k=>$v) { if ((int)$v == 1 && $param['status'] == '0') { unset($ids[$k]); } } $data = $userModel->enableDatas($ids, $param['status']); if (!$data) { return resultArray(['error' => $userModel->getError()]); } return resultArray(['data' => '操作成功']); } /** * 获取权限范围内的员工数组 * @param * @return */ public function getUserList() { $userModel = model('User'); $param = $this->param; $by = $param['by'] ? : ''; $user_id = $param['user_id'] ? : ''; $where = []; $belowIds = []; if ($param['m'] && $param['c'] && $param['a']) { if ($param['m'] == 'oa' && $param['c'] == 'task') { $belowIds = getSubUserId(true, 1); } else { $belowIds = $userModel->getUserByPer($param['m'], $param['c'], $param['a']); } $where['user.id'] = ['in',$belowIds]; } else { if ($by == 'sub') { $userInfo = $this->userInfo; $adminIds = $userModel->getAdminId(); if (in_array($userInfo['id'],$adminIds)) { $belowIds = getSubUserId(true, 1); } else { //下属id $belowIds = getSubUserId(); } $where['user.id'] = ['in',$belowIds]; } elseif ($by == 'parent') { if ($user_id == 1) { $where['user.id'] = 0; } else { $unUserId[] = $user_id; $subUserId = getSubUser($user_id); $unUserId = $subUserId ? array_merge($subUserId,$unUserId) : $unUserId; } $where['user.id'] = ['not in',$unUserId]; } else { $belowIds = getSubUserId(true, 1); $where['user.id'] = ['in',$belowIds]; } } $userList = db('admin_user') ->alias('user') ->where($where) ->where('user.status>0 and user.type=1') ->join('__ADMIN_STRUCTURE__ structure', 'structure.id = user.structure_id', 'LEFT') ->field('user.id,user.realname,user.thumb_img,structure.name as s_name') ->select(); # 角色数据 $groupList = db('admin_access')->alias('access') ->join('__ADMIN_GROUP__ group', 'group.id = access.group_id', 'LEFT') ->field('group.id, group.title, access.user_id')->select(); $groupArray = []; foreach ($groupList AS $key => $value) { $groupArray[$value['user_id']]['roleId'][] = $value['id']; $groupArray[$value['user_id']]['roleName'][] = $value['title']; } foreach ($userList as $k=>$v) { $userList[$k]['username'] = $v['realname']; $userList[$k]['thumb_img'] = $v['thumb_img'] ? getFullPath($v['thumb_img']) : ''; # 员工新增角色ID和角色名称字段 $userList[$k]['roleId'] = !empty($groupArray[$v['id']]['roleId']) ? implode(',', $groupArray[$v['id']]['roleId']) : ''; $userList[$k]['roleName'] = !empty($groupArray[$v['id']]['roleName']) ? implode(',', $groupArray[$v['id']]['roleName']) : ''; # 单独处理admin管理员的角色ID和角色名称字段 if ($v['id'] == 1 && (empty($groupArray[$v['id']]['roleId']) || empty($groupArray[$v['id']]['roleName']))) { $userList[$k]['roleId'] = '1'; $userList[$k]['roleName'] = '超级管理员角色'; } } return resultArray(['data' => $userList ? : []]); } /** * 修改头像 * @param * @return */ public function updateImg() { $fileModel = model('File'); $param = $this->param; $userInfo = $this->userInfo; //处理图片 header('Access-Control-Allow-Origin: *'); header('Access-Control-Allow-Methods: POST'); header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept"); $param['file'] = request()->file('file'); $resImg = $fileModel->updateByField($param['file'], 'User', $param['id'], 'img', 'thumb_img', 150, 150); if (!$resImg) { return resultArray(['error' => $fileModel->getError()]); } return resultArray(['data' => '上传成功']); } /** * 重置密码 * @param * @return */ public function resetPassword() { $param = $this->param; $userInfo = $this->userInfo; $userModel = model('User'); if (empty($param['new_pwd']) || empty($param['old_pwd'])) return resultArray(['error' => '密码不能为空！']); if ($param['id'] && (int)$param['id'] !== $userInfo['id']) { //权限判断 if (!checkPerByAction('admin', 'users', 'update')) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code'=>102,'error'=>'无权操作'])); } $user_id = $param['id']; if (!$param['new_pwd']) { $this->error = '请输入重置密码'; return false; } $userInfo = $userModel->getDataById($user_id); if (user_md5($param['new_pwd'], $userInfo['salt'], $userInfo['username']) == $userInfo['password']) { $this->error = '密码没改变'; return false; } if (db('admin_user')->where('id', $user_id)->setField('password', user_md5($param['new_pwd'], $userInfo['salt'], $userInfo['username']))) { $syncData = []; $syncModel = new \app\admin\model\Sync(); $syncData['user_id'] = $userInfo['id']; $syncData['salt'] = $userInfo['salt']; $syncData['password'] = user_md5($param['new_pwd'], $userInfo['salt'], $userInfo['username']); $resSync = $syncModel->syncData($syncData); return resultArray(['data' => '密码重置成功']); } else { return resultArray(['error' => '密码重置失败，请重试']); } } else { $userModel = model('User'); $old_pwd = $param['old_pwd']; $new_pwd = $param['new_pwd']; $data = $userModel->updatePaw($userInfo, $old_pwd, $new_pwd); if (!$data) { return resultArray(['error' => $userModel->getError()]); } return resultArray(['data' => $data]); } } /** * 员工角色关系 * @param * @return */ public function groups() { //权限判断 if (!checkPerByAction('admin', 'groups', 'update')) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code'=>102,'error'=>'无权操作'])); } $param = $this->param; if (!$param['users'] && !$param['structures']) { return resultArray(['error' => '请选择员工']); } if (!$param['groups']) { return resultArray(['error' => '请选择角色']); } $userModel = model('User'); //部门下所有员工 $userArr = []; if (is_array($param['structures'])) { foreach ($param['structures'] as $v) { $userArr[] = $userModel->getSubUserByStr($v); } } if ($userArr) $userArr = call_user_func_array('array_merge', $userArr); //数组合并 if ($userArr && $param['users']) { $userIds = array_merge($userArr, $param['users']); } elseif ($userArr) { $userIds = $userArr; } else { $userIds = $param['users']; } $userIds = array_unique($userIds); $groups = $param['groups']; $accessModel = model('Access'); $resData = true; foreach ($userIds as $k=>$v) { //角色员工关系处理 $res = $accessModel->userGroup($v, $param['groups']); if (!$res) { $resData = false; } } // if ($resData == false) { // return resultArray(['error' => '操作失败，请重试']); // } return resultArray(['data' => '创建成功']); } /** * 员工角色关系（删除） * @param * @return */ public function groupsDel() { //权限判断 if (!checkPerByAction('admin', 'groups', 'update')) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code'=>102,'error'=>'无权操作'])); } $param = $this->param; if (!$param['user_id']) { return resultArray(['error' => '请选择员工']); } if (!$param['group_id']) { return resultArray(['error' => '参数错误']); } # 员工至少保留一个角色 $count = db('admin_access')->where(['user_id' => $param['user_id']])->count(); if ($count == 1) return resultArray(['error' => '员工至少保留一个角色！']); $res = db('admin_access')->where(['user_id' => $param['user_id'],'group_id' => $param['group_id']])->delete(); if (!$res) { return resultArray(['error' => '操作失败，请重试']); } return resultArray(['data' => '删除成功']); } /** * [structureUserList 部门员工混合数据] * @param * @return */ public function structureUserList() { $structure_list = db('admin_structure')->select(); $structureList = getSubObj(0, $structure_list, '', 1); foreach ($structureList as $k=>$v) { $userList = []; $userList = db('admin_user')->where(['structure_id' => $v['id'],'status' => array('in',['1','3'])])->field('id,realname')->select(); $structureList[$k]['userList'] = $userList; } return $structureList; } //人资员工导入 public function tobeusers(){ $userModel = model('User'); $param = $this->param; $flag = $userModel->beusers($param); if ($flag) { return resultArray(['data'=>$flag]); } else { return resultArray(['error'=>$userModel->getError()]); } } //根据部门ID获取员工列表 public function userListByStructId() { $usermodel = model('User'); $param = $this->param; $structure_id = $param['structure_id']?:''; $ret = $usermodel->getUserListByStructureId($structure_id) ? : []; return resultArray(['data'=>$ret]); } /** * 员工账号修改 * @param * @return */ public function usernameEdit() { //权限判断 if (!checkPerByAction('admin', 'users', 'update')) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code'=>102,'error'=>'无权操作'])); } $param = $this->param; $userInfo = $this->userInfo; //权限判断 if ($param['id'] == 1) { return resultArray(['error' => '管理员账号暂不能修改']); } $adminTypes = adminGroupTypes($userInfo['id']); if (!in_array(3,$adminTypes) && !in_array(1,$adminTypes) && !in_array(2,$adminTypes)) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code'=>102,'error'=>'无权操作'])); } if (!$param['id'] || !$param['username'] || !$param['password']) { return resultArray(['error' => '参数错误！']); } if (db('admin_user')->where(['id' => ['neq',$param['id']],'username' => $param['username']])->find()) { return resultArray(['error' => '手机号码已存在！']); } $userData = db('admin_user')->where(['id' => $param['id']])->field('username,salt,password')->find(); $data = []; $data['username'] = $param['username']; $data['password'] = user_md5($param['password'], $userData['salt'], $param['username']); $data['userInfo'] = $userData; $data['mobile'] = $param['username']; $resSync = model('Sync')->syncData($data); if ($resSync) { unset($data['userInfo']); $res = db('admin_user')->where(['id' => $param['id']])->update($data); return resultArray(['data' => '修改成功！']); } else { return resultArray(['error' => '修改失败，请重试！']); } } /** * 登录记录 */ public function loginRecord() { if (!checkPerByAction('admin', 'loginRecord', 'index')) { header('Content-Type:application/json; charset=utf-8'); exit(json_encode(['code' => 102, 'error' => '无权操作'])); } $loginRecordModel = new LoginRecord(); $where = []; getWhereUserByParam($where, 'create_user_id'); getWhereTimeByParam($where, 'create_time'); $limit = $this->param['limit'] ?: 15; $data = $loginRecordModel ->where($where) ->order(['create_time' => 'DESC']) ->paginate($limit) ->each(function ($val) { $val['username'] = $val->create_user_info['realname']; $val['type_name'] = $val->type_name; }) ->toArray(); return resultArray([ 'data' => [ 'list' => $data['data'], 'dataCount' => $data['total'] ], ]); } /** * 员工导入模板下载 * @author Michael_xu * @param string $save_path 本地保存路径 用于错误数据导出，在 Admin\Model\Excel::batchImportData()调用 * @return */ public function excelDownload($save_path = '') { $param = $this->param; $userInfo = $this->userInfo; $excelModel = new \app\admin\model\Excel(); // 导出的字段列表 $field_list = UserModel::$import_field_list; $excelModel->excelImportDownload($field_list, 'admin_user', $save_path); } /** * 员工导入 */ public function import() { // 仅允许超管，系统管理员，部门与员工管理员 导入 if (false === UserModel::checkUserGroup([1, 2, 3])) { return resultArray(['error' => '没有该权限']); } $param = $this->param; $userInfo = $this->userInfo; $excelModel = new \app\admin\model\Excel(); $param['types'] = 'admin_user'; $file = request()->file('file'); $res = $excelModel->batchImportData($file, $param, $this); $list=[]; $list[]=$excelModel->getError(); $item=$list[0]; if (!$res) { return resultArray(['data' => $item]); } Cache::clear('user_info'); return resultArray(['data' => $item]); } /** * 批量设置直属上级 * * @author Ymob * @datetime 2019-10-28 13:37:57 */ public function setParent() { // 仅允许超管，系统管理员，部门与员工管理员 批量设置 if (false === UserModel::checkUserGroup([1, 2, 3])) { return resultArray(['error' => '没有该权限']); } $parent_id = (int) $this->param['parent_id']; $parent_user = UserModel::find($parent_id); if (!$parent_user) { return resultArray(['error' => '请选择直属上级']); } $user_id_list = (array) $this->param['id_list']; if (empty($user_id_list)) { return resultArray(['error' => '请选择员工']); } if (in_array(1, $user_id_list)) { return resultArray(['error' => '超级管理员不能设置上级']); } if (in_array($parent_id, $user_id_list)) { return resultArray(['error' => '直属上级不能为员工自己']); } foreach ($user_id_list as $val) { if (in_array($parent_id, getSubUserId(true, 0, (int) $val))) { return resultArray(['error' => '直属上级不能是自己下属（包含下属的下属）']); } } $a = new UserModel; if ($a->where(['id' => ['IN', $user_id_list]])->update(['parent_id' => $parent_id])) { Cache::clear('user_info'); return resultArray(['data' => '员工直属上级设置成功']); } else { return resultArray(['error' => '员工直属上级设置失败' . $a->getError()]); } } /** * 通讯录列表 * @return mixed */ public function queryList(){ $param = $this->param; $userInfo = $this->userInfo; $param['user_id']=$userInfo['id']; $userLogic=new UserLogic(); $data=$userLogic->getDataList($param); return resultArray(['data' => $data]); } /** * 关注的通讯录列表 * @return mixed */ public function starList(){ $param = $this->param; $userInfo = $this->userInfo; $param['user_id']=$userInfo['id']; $userLogic=new UserLogic(); $data=$userLogic->queryList($param); return resultArray(['data' => $data]); } /** * 设置关注 * */ public function userStar() { $userInfo = $this->userInfo; $userId = $userInfo['id']; $targetId = $this->param['target_id']; $type = $this->param['type']; if (empty($userId) || empty($targetId) || empty($type)) return resultArray(['error' => '缺少必要参数！']); if (!$this->setStar($type, $userId, $targetId)) { return resultArray(['error' => '设置关注失败！']); } return resultArray(['data' => '设置关注成功！']); } /** * 复制员工角色 * * @return \think\response\Json */ public function copyRole() { $param = $this->param; if (empty($param['user_id']) && empty($param['structure_id'])) return resultArray(['error' => '请选择员工或部门！']); if (empty($param['group_id'])) return resultArray(['error' => '请选择角色！']); $userModel = new User(); if (!$userModel->copyRole($param)) return resultArray(['error' => '操作失败！']); return resultArray(['data' => '操作成功！']); } /** * 获取下属（全部层级） * */ public function subordinate() { $userId = $this->userInfo['id']; # 获取下属的ID $subIds = getSubUserId(false, 0, $userId); $data = Db::name('admin_user')->field(['id', 'realname', 'thumb_img as img'])->whereIn('id', $subIds)->select(); foreach ($data AS $key => $value) { $data[$key]['img'] = !empty($data[$key]['img']) ? getFullPath($data[$key]['img']) : ''; } return resultArray(['data' => $data]); } /** * 获取当前登录人信息 * */ public function queryLoginUser() { $resData = []; $wkcode = file_get_contents(CONF_PATH.'license.dat'); if ($wkcode) { $resCheckData = checkWkCode($wkcode); if ($resCheckData) { $resData = object_to_array(json_decode($resCheckData)); } } return $resData; } }