Merge pull request #218 from Qsnh/dev

v4.8

Author: Qsnh

.env.example

@@ -59,4 +59,6 @@ TENCENT_COS_SECRET_ID=
 TENCENT_COS_SECRET_KEY=
 TENCENT_COS_BUCKET=
 TENCENT_COS_CDN=
-TENCENT_COS_READ_FROM_CDN=false
+TENCENT_COS_READ_FROM_CDN=false
+
+CLOSE_DEPRECATED_API=false

.env.install

@@ -59,4 +59,6 @@ TENCENT_COS_SECRET_ID=
 TENCENT_COS_SECRET_KEY=
 TENCENT_COS_BUCKET=
 TENCENT_COS_CDN=
-TENCENT_COS_READ_FROM_CDN=false
+TENCENT_COS_READ_FROM_CDN=false
+
+CLOSE_DEPRECATED_API=false

.github/workflows/meedu.yml

@@ -41,4 +41,8 @@ jobs:
       - name: 'Directory Permissions'
         run: chmod -R 777 storage bootstrap/cache
       - name: 'Execute tests (Unit and Feature tests) via PHPUnit'
+        env:
+          WECHAT_MP_APP_ID: ${{secrets.WECHAT_MP_APP_ID}}
+          WECHAT_MP_APP_SECRET: ${{secrets.WECHAT_MP_APP_SECRET}}
+          WECHAT_MP_TOKEN: ${{secrets.WECHAT_MP_TOKEN}}
         run: vendor/bin/phpunit

app/Bus/AdminPermissionBus.php

@@ -0,0 +1,102 @@
+<?php
+
+/*
+ * This file is part of the Qsnh/meedu.
+ *
+ * (c) 杭州白书科技有限公司
+ */
+
+namespace App\Bus;
+
+use App\Constant\TableConstant;
+use App\Models\AdministratorRole;
+use Illuminate\Support\Facades\DB;
+use App\Models\AdministratorPermission;
+use App\Meedu\ServiceV2\Services\ConfigServiceInterface;
+
+class AdminPermissionBus
+{
+    protected $configService;
+
+    public const PERMISSION_WHITE_LIST = [
+        'user' => 1,
+        'login' => 1,
+        'dashboard' => 1,
+        'dashboard/system/info' => 1,
+        'dashboard/check' => 1,
+        'role/all' => 1,
+        'administrator_permission' => 1,
+        'course/all' => 1,
+        'upload/image/tinymce' => 1,
+        'upload/image/download' => 1,
+        'administrator/password' => 1,
+    ];
+
+    public function __construct(ConfigServiceInterface $configService)
+    {
+        $this->configService = $configService;
+    }
+
+    public function inWhitelist(string $path): bool
+    {
+        return isset(self::PERMISSION_WHITE_LIST[$path]);
+    }
+
+    public function isSuperAdmin(int $adminId): bool
+    {
+        $roleIds = DB::table(TableConstant::TABLE_ADMIN_ROLE_RELATION)
+            ->select(['role_id'])
+            ->where('administrator_id', $adminId)
+            ->get()
+            ->pluck('role_id')
+            ->toArray();
+        if (!$roleIds) {
+            return false;
+        }
+
+        return AdministratorRole::query()
+            ->whereIn('id', $roleIds)
+            ->where('slug', $this->configService->getSuperAdministratorSlug())
+            ->exists();
+    }
+
+    public function hasPermission(int $adminId, string $path, string $method): bool
+    {
+        $method = strtoupper($method);
+
+        $roleIds = DB::table(TableConstant::TABLE_ADMIN_ROLE_RELATION)
+            ->select(['role_id'])
+            ->where('administrator_id', $adminId)
+            ->get()
+            ->pluck('role_id')
+            ->toArray();
+        if (!$roleIds) {
+            return false;
+        }
+
+        $permissionIds = DB::table(TableConstant::TABLE_ROLE_PERMISSION_RELATION)
+            ->select(['permission_id'])
+            ->whereIn('role_id', $roleIds)
+            ->get()
+            ->pluck('permission_id')
+            ->toArray();
+        if (!$permissionIds) {
+            return false;
+        }
+
+        $permissions = AdministratorPermission::query()
+            ->select(['url', 'method'])
+            ->whereIn('id', $permissionIds)
+            ->get()
+            ->toArray();
+
+        foreach ($permissions as $permissionItem) {
+            $methods = explode('|', strtoupper($permissionItem['method']));
+            if (preg_match("#${permissionItem['url']}#", $path) && in_array($method, $methods)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+}

app/Bus/AuthBus.php

@@ -8,109 +8,122 @@
 
 namespace App\Bus;
 
-use Carbon\Carbon;
 use App\Events\UserLoginEvent;
+use App\Businesses\BusinessState;
 use App\Constant\FrontendConstant;
+use Illuminate\Support\Facades\DB;
+use App\Exceptions\ServiceException;
 use Illuminate\Support\Facades\Auth;
+use App\Services\Base\Services\ConfigService;
 use App\Services\Member\Services\UserService;
 use App\Services\Member\Services\SocialiteService;
+use App\Services\Base\Interfaces\ConfigServiceInterface;
 use App\Services\Member\Interfaces\UserServiceInterface;
 use App\Services\Member\Interfaces\SocialiteServiceInterface;
 
 class AuthBus
 {
+    public const ERROR_CODE_BIND_MOBILE = -100;
+
+    /**
+     * @var SocialiteService
+     */
+    protected $socialiteService;
+
+    /**
+     * @var UserService
+     */
+    protected $userService;
+
+    /**
+     * @var ConfigService
+     */
+    protected $configService;
+
+    public function __construct(
+        SocialiteServiceInterface $socialiteService,
+        UserServiceInterface      $userService,
+        ConfigServiceInterface    $configService
+    ) {
+        $this->socialiteService = $socialiteService;
+        $this->userService = $userService;
+        $this->configService = $configService;
+    }
+
     public function tokenLogin(int $userId, string $platform)
     {
-        $loginAt = Carbon::now();
-
-        $token = Auth::guard('apiv2')
-            ->claims([
-                FrontendConstant::USER_LOGIN_AT_COOKIE_NAME => $loginAt->timestamp,
-            ])
-            ->tokenById($userId);
-
-        event(new UserLoginEvent($userId, $platform, $loginAt->toDateTimeLocalString()));
-
+        $token = Auth::guard(FrontendConstant::API_GUARD)->tokenById($userId);
+        event(new UserLoginEvent($userId, $platform, request()->getClientIp(), request_ua(), $token));
         return $token;
     }
 
     public function wechatLogin(string $openId, string $unionId, $data): int
     {
-        /**
-         * @var SocialiteService $socialiteService
-         */
-        $socialiteService = app()->make(SocialiteServiceInterface::class);
-
-        if ($unionId && $socialiteRecord = $socialiteService->findUnionId($unionId)) {
+        if ($unionId && $socialiteRecord = $this->socialiteService->findUnionId($unionId)) {
             return $socialiteRecord['user_id'];
         }
 
-        $socialiteRecord = $socialiteService->findBind(FrontendConstant::WECHAT_LOGIN_SIGN, $openId);
+        $socialiteRecord = $this->socialiteService->findBind(FrontendConstant::WECHAT_LOGIN_SIGN, $openId);
         if ($socialiteRecord) {
             // 更新unionId
-            $unionId && $socialiteService->updateUnionId($socialiteRecord['id'], $unionId);
+            $unionId && $this->socialiteService->updateUnionId($socialiteRecord['id'], $unionId);
 
             return $socialiteRecord['user_id'];
         }
 
+        if ($this->configService->getEnabledMobileBindAlert() === 1) {//强制绑定手机号
+            return self::ERROR_CODE_BIND_MOBILE;
+        }
+
         // 创建新的用户
         $data = [
             'nickname' => $data['nickname'] ?? '',
             'avatar' => $data['headimgurl'] ?? '',
         ];
 
-        return $socialiteService->bindAppWithNewUser(FrontendConstant::WECHAT_LOGIN_SIGN, $openId, $data, $unionId);
+        return $this->socialiteService->bindAppWithNewUser(FrontendConstant::WECHAT_LOGIN_SIGN, $openId, $data, $unionId);
     }
 
-    public function wechatMiniLogin(string $openId, string $unionId)
+    public function socialiteLogin(string $app, string $id, array $data)
     {
-        /**
-         * @var SocialiteService $socialiteService
-         */
-        $socialiteService = app()->make(SocialiteServiceInterface::class);
-
-        if ($unionId && $socialiteRecord = $socialiteService->findUnionId($unionId)) {
-            return $socialiteRecord['user_id'];
+        $userId = $this->socialiteService->getBindUserId($app, $id);
+        if ($userId > 0) {
+            return $userId;
         }
-
-        $socialiteRecord = $socialiteService->findBind(FrontendConstant::WECHAT_MINI_LOGIN_SIGN, $openId);
-        if ($socialiteRecord) {
-            // 更新unionId
-            $unionId && $socialiteService->updateUnionId($socialiteRecord['id'], $unionId);
-
-            return $socialiteRecord['user_id'];
+        if ($this->configService->getEnabledMobileBindAlert() === 1) {//强制绑定手机号
+            return self::ERROR_CODE_BIND_MOBILE;
         }
-
-        return 0;
+        // 自动创建新用户
+        return $this->socialiteService->bindAppWithNewUser($app, $id, $data);
     }
 
-    public function wechatMiniMobileLogin(string $openId, string $unionId, string $mobile, $data)
-    {
-        /**
-         * @var SocialiteService $socialiteService
-         */
-        $socialiteService = app()->make(SocialiteServiceInterface::class);
-        /**
-         * @var UserService $userService
-         */
-        $userService = app()->make(UserServiceInterface::class);
-
-        $user = $userService->findMobile($mobile);
-        $userSocialites = [];
-
-        if ($user) {
-            // 读取已经绑定的socialite
-            $userSocialites = $socialiteService->userSocialites($user['id']);
-        } else {
-            // 创建新的账户
-            $user = $userService->createWithMobile($mobile, '', $data['nickName'], $data['avatarUrl']);
-        }
-
-        if (!in_array(FrontendConstant::WECHAT_MINI_LOGIN_SIGN, array_column($userSocialites, 'app'))) {
-            // 当前用户未绑定当前的小程序账户的话
-            $socialiteService->bindApp($user['id'], FrontendConstant::WECHAT_MINI_LOGIN_SIGN, $openId, $data, $unionId);
-        }
-
-        return $user;
+    public function registerWithSocialite(
+        string $mobile,
+        string $app,
+        string $appId,
+        string $unionId,
+        string $nickname,
+        string $avatar,
+        array  $data
+    ) {
+        return DB::transaction(function () use ($mobile, $app, $appId, $unionId, $nickname, $avatar, $data) {
+            $user = $this->userService->findMobile($mobile);
+            if ($user) {
+                throw new ServiceException(__('手机号已存在'));
+            }
+
+            /**
+             * @var BusinessState $bus
+             */
+            $bus = app()->make(BusinessState::class);
+            $bus->socialiteBindCheck(0, $app, $appId);
+
+            // 创建用户
+            $user = $this->userService->createWithMobile($mobile, '', $nickname, $avatar);
+
+            $this->socialiteService->bindApp($user['id'], $app, $appId, $data, $unionId);
+
+            return $user['id'];
+        });
     }
 }

app/Bus/RefundBus.php

@@ -65,7 +65,7 @@ public function wechatHandle(array $order, string $refundNo, int $total, int $am
 
     /**
      * 判断给定的订单是否已经处理完成
-     * @param $refundOrder
+     * @param array $refundOrder
      * @return bool
      */
     public function isProcessed(array $refundOrder): bool