<?php
// +----------------------------------------------------------------------
// | YFCMF [ WE CAN DO IT MORE SIMPLE ]
// +----------------------------------------------------------------------
// | Copyright (c) 2015-2016 http://www.rainfer.cn All rights reserved.
// +----------------------------------------------------------------------
// | Author: rainfer <81818832@qq.com>
// +----------------------------------------------------------------------
namespace app\member\controller;

use think\Db;
use think\captcha\Captcha;
use think\Validate;
use Flc\Alidayu\Client;
use Flc\Alidayu\App;
use Flc\Alidayu\Requests\AlibabaAliqinFcSmsNumSend;
use think\Log;

class Login extends Base
{
    private $home='index/index';
    public function index2(){
        $jump=input('jump');
        $this->assign("jump",$jump);
        if(session('mhid')){
            if($this->user['user_status']){
                $this->redirect($this->home);
            }else{
                $current_user=$this->user;
                $email = $current_user['member_list_email'];
                $this->assign("email",$email);
                return $this->view->fetch('user:center');
            }
        }
        $this->assign("openid","");
        return $this->view->fetch('public:login2');
	}
	public function index()
	{
	    $jump=input('jump');
	    $this->assign("jump",$jump);
		if(session('mhid')){
			if($this->user['user_status']){
				$this->redirect($this->home);
			}else{
                $current_user=$this->user;
                $email = $current_user['member_list_email'];
                $this->assign("email",$email);
				return $this->view->fetch('user:center');
			}
		}else{
		    $token=md5('szcaee_mobile');
		    $options = array(
		        'token'=>$token, //填写你设定的key
		        'appid'=>'wx2104ec4219a6c4c3', //填写高级调用功能的app id, 请在微信开发模式后台查询
		        'appsecret'=>'1322ae83f14427dea0af85b877b57376', //填写高级调用功能的密钥
		    );
		    
		    $we_obj = new \Wechat($options);
		    $code =input('code');
		    $openid='';
		    if ($code) {
		        Log::write($code);
		        try {
		            $json = $we_obj->getOauthAccessToken();
		            Log::write($json);
		            if($json){
    		            $openid=$json["openid"];
    		            $where=[];
    		            $where['user_status']=1;
    		            $where['openid']=$openid;
    		            $member=Db::name("member_list")->where($where)->find();
    		            if($member){
    		                session('mhid',$member['member_list_id']);
    		                session('muser',$member);
    		                $this->redirect(url('center/index'));
    		            }
		            }
		        }catch (\Exception $e){
		            //$this->redirect(url('login/index'));
		        }
		    }
		    $this->assign("openid",$openid);
		    return $this->view->fetch('public:login');
		}
	}
	//验证码
	public function verify(){
		if (session('mhid')) {
			$this->redirect($this->home);
		}
		return $this->verify_build('mhid');
	}
	public function forget(){
	    return $this->view->fetch('public:forget');
	}
	
	/*
	 * 退出登录 
	 */
	public function logout()
	{
		session('mhid',null);
		session('muser',null);
        session('api_token',null);
		cookie('yf_logged_user',null);
		$this->redirect($this->home);
	}

	//登录验证
	public function runlogin()
	{ 
	    $jump=input('jump');
    	$member_list_username=input('member_list_username');
    	$member_list_pwd=input('member_list_pwd');
    	$openid=input('openid');
    	$remember=input('remember',0,'intval');
    	$verify=input('verify');
    	
        if(empty($member_list_username)){
            $this->error("手机号不能为空");
        }
        $where['sms_type']='log';
        $where['sms_tel']=$member_list_username;
        $where['sms_time']=['>',time()-600];
        $rst=Db::name('smslog')->where($where)->find();
        if(!$rst || $rst['sms_code']!=$verify) $this->error(lang('verifiy incorrect'));
        
        $where=[];
        $where['member_list_tel|member_list_tel2|member_list_tel3']=$member_list_username;
        $where['user_status']=1;
        $where['member_list_groupid']=['in',[7,10]];
		$member=Db::name("member_list")->where($where)->find();
		
		if (!$member){
				$this->error(lang('username or pwd incorrect'));
		}else{
			if($member['member_list_open']==0){
				$this->error(lang('user disabled'));
			}
			//更新字段
			$data = array(
				'last_login_time' => time(),
				'last_login_ip' => request()->ip(),
			);
			if($openid){
			    $data['openid']=$openid;
			}
			if($member['member_list_tel2']==$member_list_username||$member['member_list_tel3']==$member_list_username){
			    $member['member_list_nickname']=$member['member_list_nickname2'];
			}
			Db::name("member_list")->where(array('member_list_id'=>$member["member_list_id"]))->update($data);
			$member['SessionId']='';
			session('mhid',$member['member_list_id']);
			session('muser',$member);
			if($remember && $member['user_status']){
				//更新cookie
				cookie('yf_logged_user', jiami("{$member['member_list_id']}.{$data['last_login_time']}"));
			}
			$url=url('center/index');
			if($jump)$url=urldecode($jump);
			$this->success(lang('login success'),$url);
		}
	}
	public function runlogin2(){
	    
	    $jump=input('jump');
	    $member_list_username=input('member_list_username');
	    $member_list_pwd=input('member_list_pwd');
	    
	    $remember=input('remember',0,'intval');
	    //调用掌柜文化金服登录接口，不需要官网的验证码
	    $verify =new Captcha ();
	    $rst=$verify->check(input('verify'), 'mlog');
	
	    if (!$rst) {
	        $this->error(lang('verifiy incorrect'));
	    }
	    if(empty($member_list_username)){
	        $this->error("帐号不能为空");
	    }
	    if(empty($member_list_pwd)){
	        $this->error("密码不能为空");
	    }
	    $where=[];
	    $where['member_list_username|member_list_tel|member_list_tel2|member_list_tel3']=$member_list_username;
	    $where['member_list_groupid']=['in',[7,10]];
	    $where['user_status']=1;
	    $member=Db::name("member_list")->where($where)->find();
	    if (!$member||encrypt_password($member_list_pwd,$member['member_list_salt'])!==$member['member_list_pwd']){
	        $this->error(lang('username or pwd incorrect'));
	    }else{
	        if($member['member_list_open']==0){
	            $this->error(lang('user disabled'));
	        }
	        //更新字段
	        $data = array(
	            'last_login_time' => time(),
	            'last_login_ip' => request()->ip(),
	        );
	        Db::name("member_list")->where(array('member_list_id'=>$member["member_list_id"]))->update($data);
	        session('mhid',$member['member_list_id']);
	        session('muser',$member);
	        if($remember && $member['user_status']){
	            //更新cookie
	            cookie('yf_logged_user', jiami("{$member['member_list_id']}.{$data['last_login_time']}"));
	        }
	        $url=url('center/index');
	        if($jump)$url=urldecode($jump);
	        $this->success(lang('login success'),$url);
	    }
	}
	private function reg(){
	    return $this->view->fetch('public:reg');
	}
	//验证码
	public function verify_forgot()
	{
		if (session('mhid')) {
			$this->redirect($this->home);
		}
		return $this->verify_build('forgot');
	}
	public function get_code(){
	    $verifyCode = input("verify");
	    
	    if(empty($verifyCode)){
	        $this->error('图形验证码为空！');
	    }
	    
	    //调用掌柜文化金服登录接口，不需要官网的验证码
	    $verify =new Captcha ();
	    if (!$verify->check($verifyCode, 'forgot')) {
	        $this->error(lang('verifiy incorrect'));
	    }
		$account=input('account','');
		$user=Db::name("member_list")->where('member_list_email|member_list_username|member_list_tel',$account)->find();
		if($user){
			if(stripos($account,'@')){
				//邮箱
				$code=random(6,'number');
				$rst=Db::name("member_list")->where(array("member_list_id"=>$user['member_list_id']))->update(array("user_activation_key"=>$code));
				if($rst){
					$template = lang('emal text').
						<<<hello
								#code#
hello;
					$content = str_replace(array('#code#','#username#'), array($code,$user['member_list_username']),$template);
					$send_result=sendMail($account, $this->site_options['site_name'].' '.lang('pwd reset'), $content);
					if($send_result['error']){
						return json(['code'=>0,'msg'=>lang('send pwd reset email failed')]);
					}else{
						return json(['code'=>1]);
					}
				}else{
					return json(['code'=>0,'msg'=>'获取失败,请重试']);
				}
			}else{
				//手机
				$rst=Db::name('smslog')->where(['sms_type'=>'forgot','sms_tel'=>$account])->find();
				if($rst){
					if($rst['sms_time']>(time()-120)){
						return json(['code'=>0,'msg'=>'已获取过,'.(time()-$rst['sms_time']).'后稍后再试']);
					}
				}
				$rst_sms=false;
				$error='未设置短信平台配置';
				$code=random(6,'number');
				if(config('alisms.on')){
					$client = new Client(new App(config('alisms')));
					$req    = new AlibabaAliqinFcSmsNumSend;
					$req->setRecNum($account)
						->setSmsParam([
							'number' => $code
						])
						->setSmsFreeSignName(config('alisms.signName'))
						->setSmsTemplateCode(config('alisms.TemplateCode'));//忘记密码短信模板
					$resp = $client->execute($req);
					if($resp->result->success){
						$rst_sms=true;
					}else{
						$error=$resp->sub_msg;
					}
				}elseif(config('ymsms.on')){
					//$arr=send_sms($account,'【'.config('ymsms.signname').'】您好，您的申请密码找回的验证码为'.$code.',验证码2分钟内有效!');
					$arr=send_sms($account,'您好，您的申请密码找回的验证码为'.$code.',验证码2分钟内有效!');
					if($arr['code']==1){
						$rst_sms=true;
					}else{
						$error=$arr['msg'];
					}
				}
				if($rst_sms){
					if($rst){
						//更新
						$rst['sms_time']=time();
						$rst['sms_code']=$code;
						$rst=Db::name('smslog')->update($rst);
						if($rst!==false){
							return json(['code'=>1]);
						}else{
							return json(['code'=>0,'msg'=>'获取失败,请重试']);
						}
					}else{
						//插入数据库
						$data=[
							'sms_type'=>'forgot',
							'sms_tel'=>$account,
							'sms_time'=>time(),
							'sms_code'=>$code
						];
						$rst=Db::name('smslog')->insert($data);
						if($rst){
							return json(['code'=>1]);
						}else{
							return json(['code'=>0,'msg'=>'获取失败,请重试']);
						}
					}
				}else{
					return json(['code'=>0,'msg'=>$error]);
				}
			}
		}else{
			return json(['code'=>0,'msg'=>'该邮箱或手机未注册过']);
		}
	}
	public function runforgot_pwd()
	{
		if(request()->isPost()){
			$member_list_username=input('member_list_tel');
			$verify=input('verify','');
			$where=[];
			$where['member_list_tel']=$member_list_username;
			$where['member_list_groupid']=['in',[7,10]];
			$find_user=Db::name("member_list")->where($where)->find();
			if($find_user){
				if(stripos($member_list_username,'@')){
					//邮箱
					if($find_user['user_activation_key']==$verify){
						$this->success('验证正确',url('Login/pwd_reset',['type'=>1,'member_list_id'=>$find_user['member_list_id'],'code'=>$verify]));
					}else{
						$this->error('验证码不正确');
					}
				}else{
				    $where=[];
					//手机
					$where['sms_type']='forget';
					$where['sms_tel']=$member_list_username;
					$where['sms_time']=['>',time()-120];
					$rst=Db::name('smslog')->where($where)->find();
					
					if(!$rst || $rst['sms_code']!=$verify) $this->error('验证码不正确');
					$this->success('验证正确',url('Login/pwd_reset',['type'=>2,'member_list_id'=>$find_user['member_list_id'],'code'=>$verify]),['type'=>2,'member_list_id'=>$find_user['member_list_id'],'code'=>$verify]);
				}
			}else {
				$this->error(lang('member not exist'));
			}
		}
	}
	public function pwd_reset(){
		$type=input("type",1,'intval');
		$member_list_id=input("member_list_id",0,'intval');
		$code=input("code",'');
		
		$this->assign("code",$code);
		$this->assign("member_list_id",$member_list_id);
		$this->assign("type",$type);
		$find_user=Db::name('member_list')->find($member_list_id);
		if($find_user){
			if($type==1){
				if(!$code || $find_user['user_activation_key']!=$code){
					$this->error('激活验证码不正确',url('Index/index'));
				}
			}else{
				$rst=Db::name('smslog')->where(['sms_type'=>'forget','sms_code'=>$code,'sms_tel'=>$find_user['member_list_tel']])->find();
				if(!$rst){
					$this->error('激活验证码不正确',url('Index/index'));
				}
			}
			return $this->view->fetch('public:pwd_reset');
		}else{
			$this->error('不存在此会员',url('Index/index'));
		}
	}
	//验证码
	public function verify_reset()
	{
		if (session('mhid')) {
			$this->redirect($this->home);
		}
		return $this->verify_build('pwd_reset');
	}
	public function runpwd_reset()
	{
		if(request()->isPost()){
			$verify =new Captcha();
			if (!$verify->check(input('verify'), 'pwd_reset')) {
				$this->error(lang('verifiy incorrect'));
			}
			$rule = [
				['password','require|length:5,20','{%pwd empty}|{%pwd length}'],
				['repassword','require|confirm:password','{%repassword empty}|{%repassword incorrect}'],
			];
			$validate = new Validate($rule);
			$rst= $validate->check(array('password'=>input('password'),'repassword'=>input('repassword')));
			if(true !==$rst){
				$error=is_array($validate->getError())?join('|',$validate->getError()):$validate->getError();
				$this->error($error);
			}else{
				$password=input('password');
				$code=input('code','');
				$type=input('type');
				$member_list_id=input('member_list_id');
				$find_user=Db::name('member_list')->find($member_list_id);
				if($find_user){
					if($type==1){
						if(!$code || $find_user['user_activation_key']!=$code){
							$this->error('激活验证码不正确');
						}
					}else{
						$rst=Db::name('smslog')->where(['sms_type'=>'forget','sms_code'=>$code,'sms_tel'=>$find_user['member_list_tel']])->find();
						if(!$rst){
							$this->error('激活验证码不正确');
						}
					}
					$member_list_salt=random(10);
					$member_list_pwd=encrypt_password($password,$member_list_salt);
					$result=Db::name("member_list")->where('member_list_id',$member_list_id)->update(array('first_pwd'=>'','member_list_pwd'=>$member_list_pwd,'user_activation_key'=>'','member_list_salt'=>$member_list_salt));
					if($result){
						$this->success(lang('密码修改成功'),url("Login/index"));
					}else {
						$this->error(lang('密码修改失败'));
					}
				}else{
					$this->error('不存在此会员');
				}
			}
		}
	}
	public function check_active()
	{
		$this->check_login();
		if($this->user['user_status']){
			$this->redirect('center/index');
		}else{
            $current_user=$this->user;
            $email = $current_user['member_list_email'];
            $this->assign("email",$email);

            $mailurl=null;
            if(stripos($email,'@163.com') or stripos($email,'@vip.163.com')) {
                $mailurl = 'http://mail.163.com';
            }elseif(stripos($email,'@163.net') or stripos($email,'@vip.tom.com')) {
                $mailurl = 'http://www.163.net/';
            }elseif(stripos($email,'@qq.com') or stripos($email,'@vip.qq.com') or stripos($email,'@foxmail.com')) {
                $mailurl = 'http://mail.qq.com';
            }elseif(stripos($email,'@126.com')) {
                $mailurl = 'http://mail.126.com';
            }elseif(stripos($email,'@yeah.net')) {
                $mailurl = 'http://mail.yeah.net/';
            }elseif(stripos($email,'@msn.com') or stripos($email,'@hotmail.com') or stripos($email,'@live.cn') or stripos($email,'@live.com')) {
                $mailurl = 'http://hotmail.msn.com/';
            }elseif(stripos($email,'@yahoo.cn') or stripos($email,'@yahoo.com.cn')) {
                $mailurl = 'https://login.yahoo.com/config/mail?&.src=ym&.intl=cn';
            }elseif(stripos($email,'@yahoo.com.tw')) {
                $mailurl = 'https://login.yahoo.com/config/mail?&.src=ym&.intl=tw';
            }elseif(stripos($email,'@sohu.com') or stripos($email,'@vip.sohu.com')) {
                $mailurl = 'http://mail.sohu.com/';
            }elseif(stripos($email,'@sina.com') or stripos($email,'@vip.sina.com') or stripos($email,'@sina.cn') or stripos($email,'@51uc.com') or stripos($email,'@2008.sina.com')) {
                $mailurl = 'http://mail.sina.com.cn/';
            }elseif(stripos($email,'@gmail.com')) {
                $mailurl = 'http://gmail.google.com/';
            }elseif(stripos($email,'@gmail.com')) {
                $mailurl = 'http://mail.10086.cn/';
            }elseif(stripos($email,'@gmail.com')) {
                $mailurl = 'http://mail.10086.cn/';
            }elseif(stripos($email,'@tom.com')) {
                $mailurl = 'http://mail.tom.com/';
            }elseif(stripos($email,'@188.com')) {
                $mailurl = 'http://vip.188.com/';
            }elseif(stripos($email,'@21cn.com') or stripos($email,'@vip.21cn.com') or stripos($email,'@21cn.net')) {
                $mailurl = 'http://mail.21cn.com/';
            }elseif(stripos($email,'@263.net')) {
                $mailurl = 'https://www.263.net/';
            }elseif(stripos($email,'@china.com')) {
                $mailurl = 'http://mail.china.com/';
            }

            $this->assign("mailurl",$mailurl);
			//判断是否激活
			return $this->view->fetch('user:active');
		}
	}
	//重发激活邮件
	public function resend()
	{
		$this->check_login();
		$current_user=$this->user;
		if($current_user['user_status']==0){
			if($current_user['member_list_email']){
				$active_options=get_active_options();
				$activekey=md5($current_user['member_list_id'].time().uniqid());//激活码
				$result=Db::name('member_list')->where(array("member_list_id"=>$current_user['member_list_id']))->update(array("user_activation_key"=>$activekey));
				if(!$result){
					$this->error(lang('activation code generation failed'));
				}
				//生成激活链接
				$url = url('Register/active',array("hash"=>$activekey), "", true);
				$template = $active_options['email_tpl'];
				$content = str_replace(array('http://#link#','#username#'), array($url,$current_user['member_list_username']),$template);
				$send_result=sendMail($current_user['member_list_email'], $active_options['email_title'], $content);
				if($send_result['error']){
                    return json(['code'=>0,'msg'=>lang('send active email failed')]);
				}else{
                    return json(['code'=>1,'msg'=>lang('send active email success'),'url'=>url('Login/index')]);
				}
			}else{
                return json(['code'=>0,'msg'=>lang('no registered email'),'url'=>url('Login/index')]);
			}
		}else{
            return json(['code'=>0,'msg'=>lang('activated'),'url'=>url('Login/index')]);
		}
	}

	protected function systemconfig(){
        try{
            $result = getSystemConfig();
            if($result->result=='000000'){
                $zgwhjf_config=[
                    'login_verity_code_enable'=>$result->data->security->login->verifyCode_enable,//登录是否开启验证码
                    'login_verity_code_type'=>$result->data->security->login->verifyCode_type,//登录验证类型(SMS:短信 IMAGE:图像验证码)
                    'code'=>1,'msg'=>'提交成功'
            ];
                return json($zgwhjf_config);
            }else{

            }
        }catch (\Exception $e){
            return json(['code'=>'0','msg'=>'获取失败']);
        }
        return json(['code'=>'0','msg'=>'获取失败']);
    }

    /**
     * 获取短信
     */
    public function loginSms(){
        try{
            $phone = input("member_list_username");
            $verify = input("verify");
            if(empty($verify)){
                $this->error('验证码为空！');
            }
            if(empty($phone)){
                $this->error('手机号码为空！');
            }
            $apitoken = session("api_token");
            sendSms($phone,$verify,$apitoken);
        }catch (\Exception $e){
            $this->error('获取失败');
        }
        $this->success('获取失败');
    }
    /**
     * 短信验证
     * @return \think\response\Json
     */
    public function sendSms(){
        
        $phone = input("mobile",'');
        $ticket=input('ticket');
        $randstr=input('randstr');
        if(empty($ticket)||empty($randstr)){
            $this->error('请先通过验证');
        }
        
        if(empty($phone)){
            $this->error('手机号码为空！');
        }
        $where=[];
        $where['member_list_tel']=$phone;
        $where['user_status']=1;
        $where['member_list_groupid']=['in',[7,10]];
        $result = Db::name('member_list')->where($where)->count();
        if(!$result)$this->error('未申请成为本会员平台会员');
        
        $smstype=input('smstype','log');
        $where=[];
        $where['sms_type']=$smstype;
        $where['sms_tel']=$phone;
        $rst=Db::name('smslog')->where($where)->order("sms_time desc")->find();
        
        if($rst){
            if($rst['sms_time']>(time()-60)){
                return json(['code'=>0,'msg'=>'已获取过,'.(60-(time()-$rst['sms_time'])).'秒后稍后再试']);
            }
        }
        
        
        $secretKey = 'iK5c3HIfAPULVFyEDyXqvn0G8j4B2e0o';
        $config=config('tccaptcha');
        $config=$config['mem'];
        $params=[];
        $params['Action']='DescribeCaptchaResult';
        $params['Version']='2019-07-22';
        $params['CaptchaType']=9;
        $params['Ticket']=$ticket;
        $params['UserIp']=request()->ip();
        $params['Randstr']=$randstr;
        $params['CaptchaAppId']=isset($config['appid'])?$config['appid']:'';
        $params['AppSecretKey']=isset($config['appsecret'])?$config['appsecret']:'';
        $params['SecretId']='AKIDA8pGJICmgL0Reg4Np9ETVHh4D6j7hgS0';
        $params['Timestamp']=time();
        $params['Nonce']=rand();
        $path="captcha.tencentcloudapi.com/";
        ksort($params);
        
        $signStr = "GET".$path."?";
        foreach ($params as $key => $value ) {
            $signStr =$signStr.$key."=".$value."&";
        }
        $signStr = substr($signStr,0,-1);
        $signature = base64_encode(hash_hmac("sha1", $signStr, $secretKey, true));
        $params['Signature']=$signature;
        
        $url='https://'.$path.'?'.http_build_query($params);
        $res=go_curl2($url,'get');
        try {
            $res=json_decode($res,true);
            if($res['Response']['CaptchaCode']!=1){
                $this->error('图片验证失败！');
            }
        } catch (\Exception $e) {
            $this->error('图片验证失败！');
        }
        
        
        $rst_sms=false;
        $error='未设置短信平台配置';
        $code=random(6,'number');
        if(config('alisms.on')){
            $client = new Client(new App(config('alisms')));
            $req    = new AlibabaAliqinFcSmsNumSend;
            $req->setRecNum($phone)->setSmsParam(['number' => $code])->setSmsFreeSignName(config('alisms.signName'))->setSmsTemplateCode(config('alisms.TemplateCode'));
            $resp = $client->execute($req);
            if($resp->result->success){
                $rst_sms=true;
            }else{
                $error=$resp->sub_msg;
            }
        }elseif(config('ymsms.on')){
            $arr=send_sms($phone,'您好，您的登录验证码为'.$code.',验证码5分钟内有效!');
            if($arr['code']==1){
                $rst_sms=true;
            }else{
                $error=$arr['msg'];
            }
        }
        if($rst_sms){
            if($rst){
                //更新
                $rst['sms_time']=time();
                $rst['sms_code']=$code;
                $rst=Db::name('smslog')->update($rst);
                if($rst==false){
                    return json(['code'=>0,'msg'=>'短信码获取失败,请重试']);
                }
            }else{
                //插入数据库
                $data=[
                    'sms_type'=>$smstype,
                    'sms_tel'=>$phone,
                    'sms_time'=>time(),
                    'sms_code'=>$code
                ];
                $rst=Db::name('smslog')->insert($data);
                if(!$rst){
                    return json(['code'=>0,'msg'=>'短信码获取失败,请重试']);
                }
            }
        }else{
            return json(['code'=>0,'msg'=>$error]);
        }
        
        $this->success('短信码已发送至你手机');
    }
    /**
     * 检查当前是否已登录
     */
    public function check_login(){
        if(session('mhid')){
            return json(array('code'=>1));
        }else{
            return json(array('code'=>0));
        }
    }
}