<?php
// +----------------------------------------------------------------------
// | Description: 系统员工
// +----------------------------------------------------------------------
// | Author: Michael_xu | gengxiaoxu@5kcrm.com
// +----------------------------------------------------------------------
namespace app\admin\controller;
use app\admin\model\User;
use think\Request;
use think\Session;
use think\Hook;
use think\Cache;
use think\Db;
use app\admin\model\LoginRecord;
use app\admin\model\User as UserModel;
use app\admin\logic\UserLogic;
use app\admin\model\Admin as AdminModel;
use app\crm\traits\StarTrait;
class Users extends ApiCommon
{
use StarTrait;
/**
* 用于判断权限
* @permission 无限制
* @allow 登录员工可访问
* @other 其他根据系统设置
**/
public function _initialize()
{
$action = [
'permission' => ['exceldownload'],
'allow' => [
'index',
'update',
'updatepwd',
'read',
'updateimg',
'resetpassword',
'userlistbystructid',
'groups',
'groupsdel',
'tobeusers',
'structureuserlist',
'getuserlist',
'usernameedit',
'import',
'setparent',
'loginRecord',
'userstar',
'querylist',
'starlist',
'copyrole',
'subordinate'
]
];
Hook::listen('check_auth',$action);
$request = Request::instance();
$a = strtolower($request->action());
if (!in_array($a, $action['permission'])) {
parent::_initialize();
}
}
/**
* 员工列表
* @param
* @return
*/
public function index()
{
$userModel = model('User');
$param = $this->param;
$data = $userModel->getDataList($param);
return resultArray(['data' => $data]);
}
/**
* 员工详情
* @param
* @return
*/
public function read()
{
$userModel = model('User');
$param = $this->param;
$userInfo = $this->userInfo;
if (!$param['id']) $param['id'] = $userInfo['id'];
$data = $userModel->getDataById($param['id']);
if (!$data) {
return resultArray(['error' => $userModel->getError()]);
}
return resultArray(['data' => $data]);
}
/**
* 员工创建
* @param
* @return
*/
public function save()
{
$userModel = model('User');
$param = $this->param;
$userInfo = $this->userInfo;
$data = $userModel->createData($param);
if (!$data) {
return resultArray(['error' => $userModel->getError()]);
}
return resultArray(['data' => '添加成功']);
}
/**
* 员工编辑
* @param
* @return
*/
public function update()
{
$userModel = model('User');
$param = $this->param;
$userInfo = $this->userInfo;
$userData = db('admin_user')->where(['id' => $param['id']])->find();
if (!$param['id']) {
//修改个人信息
$param['user_id'] = $userInfo['id'];
} else {
//权限判断
if (!checkPerByAction('admin', 'users', 'update')) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code'=>102,'error'=>'无权操作']));
}
}
unset($param['username']);
$data = $userModel->updateDataById($param, $param['id']);
if (!$data) {
return resultArray(['error' => $userModel->getError()]);
}
$param['userInfo'] = $userData;
$resSync = model('Sync')->syncData($param);
return resultArray(['data' => '编辑成功']);
}
//批量设置密码
public function updatePwd()
{
//权限判断
if (!checkPerByAction('admin', 'users', 'update')) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code'=>102,'error'=>'无权操作']));
}
$param = $this->param;
if ($param['password'] && is_array($param['id'])) {
$userModel = model('User');
$ret = $userModel->updatePwdById($param);
if ($ret) {
return resultArray(['data'=>true]);
} else {
return resultArray(['error'=>$userModel->getError()]);
}
} else {
return resultArray(['error'=>'参数错误']);
}
}
/**
* 员工状态
* @param status 0禁用,1启用,2禁止登陆,3未激活
* @return
*/
public function enables()
{
$userModel = model('User');
$param = $this->param;
if (!is_array($param['id'])) {
$ids[] = $param['id'];
} else {
$ids = $param['id'];
}
//顶级管理员不能修改
foreach ($ids as $k=>$v) {
if ((int)$v == 1 && $param['status'] == '0') {
unset($ids[$k]);
}
}
$data = $userModel->enableDatas($ids, $param['status']);
if (!$data) {
return resultArray(['error' => $userModel->getError()]);
}
return resultArray(['data' => '操作成功']);
}
/**
* 获取权限范围内的员工数组
* @param
* @return
*/
public function getUserList()
{
$userModel = model('User');
$param = $this->param;
$by = $param['by'] ? : '';
$user_id = $param['user_id'] ? : '';
$where = [];
$belowIds = [];
if ($param['m'] && $param['c'] && $param['a']) {
if ($param['m'] == 'oa' && $param['c'] == 'task') {
$belowIds = getSubUserId(true, 1);
} else {
$belowIds = $userModel->getUserByPer($param['m'], $param['c'], $param['a']);
}
$where['user.id'] = ['in',$belowIds];
} else {
if ($by == 'sub') {
$userInfo = $this->userInfo;
$adminIds = $userModel->getAdminId();
if (in_array($userInfo['id'],$adminIds)) {
$belowIds = getSubUserId(true, 1);
} else {
//下属id
$belowIds = getSubUserId();
}
$where['user.id'] = ['in',$belowIds];
} elseif ($by == 'parent') {
if ($user_id == 1) {
$where['user.id'] = 0;
} else {
$unUserId[] = $user_id;
$subUserId = getSubUser($user_id);
$unUserId = $subUserId ? array_merge($subUserId,$unUserId) : $unUserId;
}
$where['user.id'] = ['not in',$unUserId];
} else {
$belowIds = getSubUserId(true, 1);
$where['user.id'] = ['in',$belowIds];
}
}
$userList = db('admin_user')
->alias('user')
->where($where)
->where('user.status>0 and user.type=1')
->join('__ADMIN_STRUCTURE__ structure', 'structure.id = user.structure_id', 'LEFT')
->field('user.id,user.realname,user.thumb_img,structure.name as s_name')
->select();
# 角色数据
$groupList = db('admin_access')->alias('access')
->join('__ADMIN_GROUP__ group', 'group.id = access.group_id', 'LEFT')
->field('group.id, group.title, access.user_id')->select();
$groupArray = [];
foreach ($groupList AS $key => $value) {
$groupArray[$value['user_id']]['roleId'][] = $value['id'];
$groupArray[$value['user_id']]['roleName'][] = $value['title'];
}
foreach ($userList as $k=>$v) {
$userList[$k]['username'] = $v['realname'];
$userList[$k]['thumb_img'] = $v['thumb_img'] ? getFullPath($v['thumb_img']) : '';
# 员工新增角色ID和角色名称字段
$userList[$k]['roleId'] = !empty($groupArray[$v['id']]['roleId']) ? implode(',', $groupArray[$v['id']]['roleId']) : '';
$userList[$k]['roleName'] = !empty($groupArray[$v['id']]['roleName']) ? implode(',', $groupArray[$v['id']]['roleName']) : '';
# 单独处理admin管理员的角色ID和角色名称字段
if ($v['id'] == 1 && (empty($groupArray[$v['id']]['roleId']) || empty($groupArray[$v['id']]['roleName']))) {
$userList[$k]['roleId'] = '1';
$userList[$k]['roleName'] = '超级管理员角色';
}
}
return resultArray(['data' => $userList ? : []]);
}
/**
* 修改头像
* @param
* @return
*/
public function updateImg()
{
$fileModel = model('File');
$param = $this->param;
$userInfo = $this->userInfo;
//处理图片
header('Access-Control-Allow-Origin: *');
header('Access-Control-Allow-Methods: POST');
header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept");
$param['file'] = request()->file('file');
$resImg = $fileModel->updateByField($param['file'], 'User', $param['id'], 'img', 'thumb_img', 150, 150);
if (!$resImg) {
return resultArray(['error' => $fileModel->getError()]);
}
return resultArray(['data' => '上传成功']);
}
/**
* 重置密码
* @param
* @return
*/
public function resetPassword()
{
$param = $this->param;
$userInfo = $this->userInfo;
$userModel = model('User');
if ($param['id'] && (int)$param['id'] !== $userInfo['id']) {
//权限判断
if (!checkPerByAction('admin', 'users', 'update')) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code'=>102,'error'=>'无权操作']));
}
$user_id = $param['id'];
if (!$param['new_pwd']) {
$this->error = '请输入重置密码';
return false;
}
$userInfo = $userModel->getDataById($user_id);
if (user_md5($param['new_pwd'], $userInfo['salt'], $userInfo['username']) == $userInfo['password']) {
$this->error = '密码没改变';
return false;
}
if (db('admin_user')->where('id', $user_id)->setField('password', user_md5($param['new_pwd'], $userInfo['salt'], $userInfo['username']))) {
$syncData = [];
$syncModel = new \app\admin\model\Sync();
$syncData['user_id'] = $userInfo['id'];
$syncData['salt'] = $userInfo['salt'];
$syncData['password'] = user_md5($param['new_pwd'], $userInfo['salt'], $userInfo['username']);
$resSync = $syncModel->syncData($syncData);
return resultArray(['data' => '密码重置成功']);
} else {
return resultArray(['error' => '密码重置失败,请重试']);
}
} else {
$userModel = model('User');
$old_pwd = $param['old_pwd'];
$new_pwd = $param['new_pwd'];
$data = $userModel->updatePaw($userInfo, $old_pwd, $new_pwd);
if (!$data) {
return resultArray(['error' => $userModel->getError()]);
}
return resultArray(['data' => $data]);
}
}
/**
* 员工角色关系
* @param
* @return
*/
public function groups()
{
//权限判断
if (!checkPerByAction('admin', 'groups', 'update')) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code'=>102,'error'=>'无权操作']));
}
$param = $this->param;
if (!$param['users'] && !$param['structures']) {
return resultArray(['error' => '请选择员工']);
}
if (!$param['groups']) {
return resultArray(['error' => '请选择角色']);
}
$userModel = model('User');
//部门下所有员工
$userArr = [];
if (is_array($param['structures'])) {
foreach ($param['structures'] as $v) {
$userArr[] = $userModel->getSubUserByStr($v);
}
}
if ($userArr) $userArr = call_user_func_array('array_merge', $userArr); //数组合并
if ($userArr && $param['users']) {
$userIds = array_merge($userArr, $param['users']);
} elseif ($userArr) {
$userIds = $userArr;
} else {
$userIds = $param['users'];
}
$userIds = array_unique($userIds);
$groups = $param['groups'];
$accessModel = model('Access');
$resData = true;
foreach ($userIds as $k=>$v) {
//角色员工关系处理
$res = $accessModel->userGroup($v, $param['groups']);
if (!$res) {
$resData = false;
}
}
// if ($resData == false) {
// return resultArray(['error' => '操作失败,请重试']);
// }
return resultArray(['data' => '创建成功']);
}
/**
* 员工角色关系(删除)
* @param
* @return
*/
public function groupsDel()
{
//权限判断
if (!checkPerByAction('admin', 'groups', 'update')) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code'=>102,'error'=>'无权操作']));
}
$param = $this->param;
if (!$param['user_id']) {
return resultArray(['error' => '请选择员工']);
}
if (!$param['group_id']) {
return resultArray(['error' => '参数错误']);
}
# 员工至少保留一个角色
$count = db('admin_access')->where(['user_id' => $param['user_id']])->count();
if ($count == 1) return resultArray(['error' => '员工至少保留一个角色!']);
$res = db('admin_access')->where(['user_id' => $param['user_id'],'group_id' => $param['group_id']])->delete();
if (!$res) {
return resultArray(['error' => '操作失败,请重试']);
}
return resultArray(['data' => '删除成功']);
}
/**
* [structureUserList 部门员工混合数据]
* @param
* @return
*/
public function structureUserList()
{
$structure_list = db('admin_structure')->select();
$structureList = getSubObj(0, $structure_list, '', 1);
foreach ($structureList as $k=>$v) {
$userList = [];
$userList = db('admin_user')->where(['structure_id' => $v['id'],'status' => array('in',['1','3'])])->field('id,realname')->select();
$structureList[$k]['userList'] = $userList;
}
return $structureList;
}
//人资员工导入
public function tobeusers(){
$userModel = model('User');
$param = $this->param;
$flag = $userModel->beusers($param);
if ($flag) {
return resultArray(['data'=>$flag]);
} else {
return resultArray(['error'=>$userModel->getError()]);
}
}
//根据部门ID获取员工列表
public function userListByStructId()
{
$usermodel = model('User');
$param = $this->param;
$structure_id = $param['structure_id']?:'';
$ret = $usermodel->getUserListByStructureId($structure_id) ? : [];
return resultArray(['data'=>$ret]);
}
/**
* 员工账号修改
* @param
* @return
*/
public function usernameEdit()
{
//权限判断
if (!checkPerByAction('admin', 'users', 'update')) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code'=>102,'error'=>'无权操作']));
}
$param = $this->param;
$userInfo = $this->userInfo;
//权限判断
if ($param['id'] == 1) {
return resultArray(['error' => '管理员账号暂不能修改']);
}
$adminTypes = adminGroupTypes($userInfo['id']);
if (!in_array(3,$adminTypes) && !in_array(1,$adminTypes) && !in_array(2,$adminTypes)) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code'=>102,'error'=>'无权操作']));
}
if (!$param['id'] || !$param['username'] || !$param['password']) {
return resultArray(['error' => '参数错误!']);
}
if (db('admin_user')->where(['id' => ['neq',$param['id']],'username' => $param['username']])->find()) {
return resultArray(['error' => '手机号码已存在!']);
}
$userData = db('admin_user')->where(['id' => $param['id']])->field('username,salt,password')->find();
$data = [];
$data['username'] = $param['username'];
$data['password'] = user_md5($param['password'], $userData['salt'], $param['username']);
$data['userInfo'] = $userData;
$resSync = model('Sync')->syncData($data);
if ($resSync) {
unset($data['userInfo']);
$res = db('admin_user')->where(['id' => $param['id']])->update($data);
return resultArray(['data' => '修改成功!']);
} else {
return resultArray(['error' => '修改失败,请重试!']);
}
}
/**
* 登录记录
*/
public function loginRecord()
{
if (!checkPerByAction('admin', 'loginRecord', 'index')) {
header('Content-Type:application/json; charset=utf-8');
exit(json_encode(['code' => 102, 'error' => '无权操作']));
}
$loginRecordModel = new LoginRecord();
$where = [];
getWhereUserByParam($where, 'create_user_id');
getWhereTimeByParam($where, 'create_time');
$limit = $this->param['limit'] ?: 15;
$data = $loginRecordModel
->where($where)
->order(['create_time' => 'DESC'])
->paginate($limit)
->each(function ($val) {
$val['username'] = $val->create_user_info['realname'];
$val['type_name'] = $val->type_name;
})
->toArray();
return resultArray([
'data' => [
'list' => $data['data'],
'dataCount' => $data['total']
],
]);
}
/**
* 员工导入模板下载
* @author Michael_xu
* @param string $save_path 本地保存路径 用于错误数据导出,在 Admin\Model\Excel::batchImportData()调用
* @return
*/
public function excelDownload($save_path = '')
{
$param = $this->param;
$userInfo = $this->userInfo;
$excelModel = new \app\admin\model\Excel();
// 导出的字段列表
$field_list = UserModel::$import_field_list;
$excelModel->excelImportDownload($field_list, 'admin_user', $save_path);
}
/**
* 员工导入
*/
public function import()
{
// 仅允许超管,系统管理员,部门与员工管理员 导入
if (false === UserModel::checkUserGroup([1, 2, 3])) {
return resultArray(['error' => '没有该权限']);
}
$param = $this->param;
$userInfo = $this->userInfo;
$excelModel = new \app\admin\model\Excel();
$param['types'] = 'admin_user';
$file = request()->file('file');
$res = $excelModel->batchImportData($file, $param, $this);
$list=[];
$list[]=$excelModel->getError();
$item=$list[0];
if (!$res) {
return resultArray(['data' => $item]);
}
Cache::clear('user_info');
return resultArray(['data' => $item]);
}
/**
* 批量设置直属上级
*
* @author Ymob
* @datetime 2019-10-28 13:37:57
*/
public function setParent()
{
// 仅允许超管,系统管理员,部门与员工管理员 批量设置
if (false === UserModel::checkUserGroup([1, 2, 3])) {
return resultArray(['error' => '没有该权限']);
}
$parent_id = (int) $this->param['parent_id'];
$parent_user = UserModel::find($parent_id);
if (!$parent_user) {
return resultArray(['error' => '请选择直属上级']);
}
$user_id_list = (array) $this->param['id_list'];
if (empty($user_id_list)) {
return resultArray(['error' => '请选择员工']);
}
if (in_array(1, $user_id_list)) {
return resultArray(['error' => '超级管理员不能设置上级']);
}
if (in_array($parent_id, $user_id_list)) {
return resultArray(['error' => '直属上级不能为员工自己']);
}
foreach ($user_id_list as $val) {
if (in_array($parent_id, getSubUserId(true, 0, (int) $val))) {
return resultArray(['error' => '直属上级不能是自己下属(包含下属的下属)']);
}
}
$a = new UserModel;
if ($a->where(['id' => ['IN', $user_id_list]])->update(['parent_id' => $parent_id])) {
Cache::clear('user_info');
return resultArray(['data' => '员工直属上级设置成功']);
} else {
return resultArray(['error' => '员工直属上级设置失败' . $a->getError()]);
}
}
/**
* 通讯录列表
* @return mixed
*/
public function queryList(){
$param = $this->param;
$userInfo = $this->userInfo;
$param['user_id']=$userInfo['id'];
$userLogic=new UserLogic();
$data=$userLogic->getDataList($param);
return resultArray(['data' => $data]);
}
/**
* 关注的通讯录列表
* @return mixed
*/
public function starList(){
$param = $this->param;
$userInfo = $this->userInfo;
$param['user_id']=$userInfo['id'];
$userLogic=new UserLogic();
$data=$userLogic->queryList($param);
return resultArray(['data' => $data]);
}
/**
* 设置关注
*
* @return \think\response\Json
* @throws \think\Exception
* @throws \think\exception\PDOException
*/
public function userStar()
{
$userInfo = $this->userInfo;
$userId = $userInfo['id'];
$targetId = $this->param['target_id'];
$type = $this->param['type'];
if (empty($userId) || empty($targetId) || empty($type)) return resultArray(['error' => '缺少必要参数!']);
if (!$this->setStar($type, $userId, $targetId)) {
return resultArray(['error' => '设置关注失败!']);
}
return resultArray(['data' => '设置关注成功!']);
}
/**
* 复制员工角色
*
* @return \think\response\Json
*/
public function copyRole()
{
$param = $this->param;
if (empty($param['user_id']) && empty($param['structure_id'])) return resultArray(['error' => '请选择员工或部门!']);
if (empty($param['group_id'])) return resultArray(['error' => '请选择角色!']);
$userModel = new User();
if (!$userModel->copyRole($param)) return resultArray(['error' => '操作失败!']);
return resultArray(['data' => '操作成功!']);
}
/**
* 获取下属(全部层级)
*
* @return \think\response\Json
* @throws \think\db\exception\DataNotFoundException
* @throws \think\db\exception\ModelNotFoundException
* @throws \think\exception\DbException
*/
public function subordinate()
{
$userId = $this->userInfo['id'];
# 获取下属的ID
$subIds = getSubUserId(false, 0, $userId);
$data = Db::name('admin_user')->field(['id', 'realname', 'thumb_img as img'])->whereIn('id', $subIds)->select();
foreach ($data AS $key => $value) {
$data[$key]['img'] = !empty($data[$key]['img']) ? getFullPath($data[$key]['img']) : '';
}
return resultArray(['data' => $data]);
}
}