where('phone', $data['phone']) ->field('id,phone,avatar,password,salt,status') ->find(); try { if (!$user) throw new \Exception('代理账号不存在'); if ($user->status != 1) throw new \Exception('账号已被停用'); // 使用相同的盐值对输入密码进行哈希验证 $hashedPassword = $AgentUser->generateHashedPassword($data['password'], $user->salt); if ($user->password !== $hashedPassword) throw new \Exception('密码错误'); # 缓存用户信息 $login_user_data = $user->toArray(); unset($login_user_data['password'],$login_user_data['salt'],$login_user_data['status']); Session::set('login_agent_user_data',$login_user_data); return ['status' => 1, 'msg' => '登陆成功', 'data' => $login_user_data]; } catch (\Exception $e) { return ['status' => 0, 'msg' => $e->getMessage()]; } } /** * 生成密码 * @param $password * @param $salt * @return string */ private function generateHashedPassword($password,$salt) { return md5(md5($password) . md5($salt)); } }