2016-07-22 19:36:24 +08:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace App\Controllers;
|
|
|
|
|
|
|
|
use App\Models\User;
|
|
|
|
use App\Models\UserModel;
|
2016-07-23 15:20:10 +08:00
|
|
|
use App\Models\Player;
|
|
|
|
use App\Models\PlayerModel;
|
|
|
|
use App\Models\Texture;
|
2016-07-22 19:36:24 +08:00
|
|
|
use App\Exceptions\E;
|
2016-08-06 21:53:55 +08:00
|
|
|
use Validate;
|
2016-07-22 19:36:24 +08:00
|
|
|
use Utils;
|
|
|
|
use View;
|
|
|
|
|
|
|
|
class AdminController extends BaseController
|
|
|
|
{
|
|
|
|
|
|
|
|
public function index()
|
|
|
|
{
|
2016-07-23 15:20:10 +08:00
|
|
|
View::show('admin.index');
|
2016-07-22 19:36:24 +08:00
|
|
|
}
|
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
public function customize()
|
|
|
|
{
|
|
|
|
View::show('admin.customize');
|
|
|
|
}
|
|
|
|
|
2016-07-29 11:52:45 +08:00
|
|
|
public function score()
|
|
|
|
{
|
|
|
|
View::show('admin.score');
|
|
|
|
}
|
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
public function options()
|
|
|
|
{
|
|
|
|
View::show('admin.options');
|
|
|
|
}
|
|
|
|
|
2016-08-09 13:18:27 +08:00
|
|
|
public function update()
|
|
|
|
{
|
2016-08-26 22:42:49 +08:00
|
|
|
$action = Utils::getValue('action', $_GET);
|
|
|
|
|
|
|
|
if ($action == "check") {
|
2016-08-24 22:43:04 +08:00
|
|
|
$updater = new \Updater(\App::version());
|
2016-08-09 13:18:27 +08:00
|
|
|
if ($updater->newVersionAvailable()) {
|
|
|
|
View::json([
|
|
|
|
'new_version_available' => true,
|
|
|
|
'latest_version' => $updater->latest_version
|
|
|
|
]);
|
2016-08-27 18:11:34 +08:00
|
|
|
} else {
|
|
|
|
View::json([
|
|
|
|
'new_version_available' => false,
|
|
|
|
'latest_version' => $updater->current_version
|
|
|
|
]);
|
2016-08-09 13:18:27 +08:00
|
|
|
}
|
2016-08-26 22:42:49 +08:00
|
|
|
} elseif ($action == "download") {
|
|
|
|
View::show('admin.download');
|
|
|
|
} else {
|
|
|
|
View::show('admin.update');
|
2016-08-09 13:18:27 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
public function users()
|
|
|
|
{
|
|
|
|
$page = isset($_GET['page']) ? $_GET['page'] : 1;
|
|
|
|
|
|
|
|
$filter = isset($_GET['filter']) ? $_GET['filter'] : "";
|
|
|
|
|
|
|
|
$q = isset($_GET['q']) ? $_GET['q'] : "";
|
|
|
|
|
|
|
|
if ($filter == "") {
|
|
|
|
$users = UserModel::orderBy('uid');
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($filter == "email") {
|
2016-07-23 15:20:10 +08:00
|
|
|
$users = UserModel::like('email', $q)->orderBy('uid');
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($filter == "nickname") {
|
2016-07-23 15:20:10 +08:00
|
|
|
$users = UserModel::like('nickname', $q)->orderBy('uid');
|
|
|
|
}
|
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
$total_pages = ceil($users->count() / 30);
|
|
|
|
$users = $users->skip(($page - 1) * 30)->take(30)->get();
|
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
echo View::make('admin.users')->with('users', $users)
|
|
|
|
->with('filter', $filter)
|
|
|
|
->with('q', $q)
|
|
|
|
->with('page', $page)
|
|
|
|
->with('total_pages', $total_pages)
|
|
|
|
->render();
|
|
|
|
}
|
|
|
|
|
|
|
|
public function players()
|
|
|
|
{
|
|
|
|
$page = isset($_GET['page']) ? $_GET['page'] : 1;
|
|
|
|
|
|
|
|
$filter = isset($_GET['filter']) ? $_GET['filter'] : "";
|
|
|
|
|
|
|
|
$q = isset($_GET['q']) ? $_GET['q'] : "";
|
|
|
|
|
|
|
|
if ($filter == "") {
|
|
|
|
$players = PlayerModel::orderBy('uid');
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($filter == "player_name") {
|
2016-07-23 15:20:10 +08:00
|
|
|
$players = PlayerModel::like('player_name', $q)->orderBy('uid');
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($filter == "uid") {
|
2016-07-23 15:20:10 +08:00
|
|
|
$players = PlayerModel::where('uid', $q)->orderBy('uid');
|
|
|
|
}
|
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
$total_pages = ceil($players->count() / 30);
|
|
|
|
$players = $players->skip(($page - 1) * 30)->take(30)->get();
|
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
echo View::make('admin.players')->with('players', $players)
|
|
|
|
->with('filter', $filter)
|
|
|
|
->with('q', $q)
|
|
|
|
->with('page', $page)
|
|
|
|
->with('total_pages', $total_pages)
|
|
|
|
->render();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Handle ajax request from /admin/users
|
|
|
|
*/
|
|
|
|
public function userAjaxHandler()
|
2016-07-22 19:36:24 +08:00
|
|
|
{
|
|
|
|
$action = isset($_GET['action']) ? $_GET['action'] : "";
|
|
|
|
|
|
|
|
if ($action == "color") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['color_scheme']);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
|
|
|
$color_scheme = str_replace('_', '-', $_POST['color_scheme']);
|
2016-07-23 15:20:10 +08:00
|
|
|
\Option::set('color_scheme', $color_scheme);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
|
|
|
View::json('修改配色成功', 0);
|
|
|
|
}
|
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
$user = new User(Utils::getValue('uid', $_POST));
|
|
|
|
// current user
|
|
|
|
$cur_user = new User($_SESSION['uid']);
|
2016-07-29 15:31:05 +08:00
|
|
|
|
2016-07-22 19:36:24 +08:00
|
|
|
if (!$user->is_registered)
|
|
|
|
throw new E('用户不存在', 1);
|
|
|
|
|
|
|
|
if ($action == "email") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['email']);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
|
|
|
if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) {
|
|
|
|
View::json('邮箱格式错误', 3);
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($user->setEmail($_POST['email']))
|
|
|
|
View::json('邮箱修改成功', 0);
|
2016-07-23 15:20:10 +08:00
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($action == "nickname") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['nickname']);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
|
|
|
if (Utils::convertString($_POST['nickname']) != $_POST['nickname'])
|
|
|
|
View::json('无效的昵称。昵称中包含了奇怪的字符。', 1);
|
|
|
|
|
|
|
|
if ($user->setNickName($_POST['nickname']))
|
|
|
|
View::json('昵称已成功设置为 '.$_POST['nickname'], 0);
|
2016-07-23 15:20:10 +08:00
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($action == "password") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['password']);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
2016-08-06 19:38:37 +08:00
|
|
|
if (\Validate::password($_POST['password'])) {
|
2016-07-22 19:36:24 +08:00
|
|
|
if ($user->changePasswd($_POST['password']))
|
|
|
|
View::json('密码修改成功', 0);
|
|
|
|
}
|
2016-07-23 15:20:10 +08:00
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($action == "score") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['score']);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
|
|
|
if ($user->setScore($_POST['score']))
|
|
|
|
View::json('积分修改成功', 0);
|
2016-07-23 15:20:10 +08:00
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($action == "ban") {
|
2016-07-29 15:31:05 +08:00
|
|
|
if ($user->getPermission() == "1") {
|
2016-08-16 22:52:00 +08:00
|
|
|
if ($cur_user->getPermission() != "2")
|
2016-07-29 15:31:05 +08:00
|
|
|
View::json('非超级管理员无法封禁普通管理员');
|
|
|
|
} elseif ($user->getPermission() == "2") {
|
|
|
|
View::json('超级管理员无法被封禁');
|
|
|
|
}
|
|
|
|
|
|
|
|
$permission = $user->getPermission() == "-1" ? "0" : "-1";
|
|
|
|
|
|
|
|
if ($user->setPermission($permission)) {
|
|
|
|
View::json([
|
|
|
|
'errno' => 0,
|
|
|
|
'msg' => '账号已被' . ($permission == '-1' ? '封禁' : '解封'),
|
|
|
|
'permission' => $user->getPermission()
|
|
|
|
]);
|
|
|
|
}
|
2016-07-23 15:20:10 +08:00
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($action == "admin") {
|
|
|
|
if ($cur_user->getPermission() != "2")
|
2016-07-29 15:31:05 +08:00
|
|
|
View::json('非超级管理员无法进行此操作');
|
|
|
|
|
|
|
|
if ($user->getPermission() == "2")
|
|
|
|
View::json('超级管理员无法被解除');
|
|
|
|
|
|
|
|
$permission = $user->getPermission() == "1" ? "0" : "1";
|
|
|
|
|
|
|
|
if ($user->setPermission($permission)) {
|
|
|
|
View::json([
|
|
|
|
'errno' => 0,
|
|
|
|
'msg' => '账号已被' . ($permission == '1' ? '设为' : '解除') . '管理员',
|
|
|
|
'permission' => $user->getPermission()
|
|
|
|
]);
|
|
|
|
}
|
2016-07-23 15:20:10 +08:00
|
|
|
|
2016-08-16 22:52:00 +08:00
|
|
|
} elseif ($action == "delete") {
|
2016-07-22 19:36:24 +08:00
|
|
|
if ($user->delete())
|
|
|
|
View::json('账号已被成功删除', 0);
|
2016-07-23 15:20:10 +08:00
|
|
|
|
2016-07-22 19:36:24 +08:00
|
|
|
} else {
|
2016-08-16 22:52:00 +08:00
|
|
|
throw new E('非法参数', 1);
|
2016-07-22 19:36:24 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
/**
|
|
|
|
* Handle ajax request from /admin/players
|
|
|
|
*/
|
|
|
|
public function playerAjaxHandler()
|
2016-07-22 19:36:24 +08:00
|
|
|
{
|
2016-07-23 15:20:10 +08:00
|
|
|
$action = isset($_GET['action']) ? $_GET['action'] : "";
|
2016-07-22 19:36:24 +08:00
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
// exception will be throw by model if player is not existent
|
|
|
|
$player = new Player(Utils::getValue('pid', $_POST));
|
2016-07-22 19:36:24 +08:00
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
if ($action == "preference") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['preference']);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
if ($_POST['preference'] != "default" && $_POST['preference'] != "slim")
|
|
|
|
View::json('无效的参数', 0);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
if ($player->setPreference($_POST['preference']))
|
|
|
|
View::json('角色 '.$player->player_name.' 的优先模型已更改至 '.$_POST['preference'], 0);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
} elseif ($action == "texture") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['model', 'tid']);
|
2016-07-22 19:36:24 +08:00
|
|
|
|
2016-07-23 15:20:10 +08:00
|
|
|
if ($_POST['model'] != "steve" && $_POST['model'] != "alex" && $_POST['model'] != "cape")
|
|
|
|
View::json('无效的参数', 0);
|
|
|
|
|
|
|
|
if (!(is_numeric($_POST['tid']) && Texture::find($_POST['tid'])))
|
|
|
|
View::json('材质 tid.'.$_POST['tid'].' 不存在', 1);
|
|
|
|
|
|
|
|
if ($player->setTexture(['tid_'.$_POST['model'] => $_POST['tid']]))
|
|
|
|
View::json('角色 '.$player->player_name.' 的材质修改成功', 0);
|
|
|
|
|
|
|
|
} elseif ($action == "owner") {
|
2016-08-06 19:38:37 +08:00
|
|
|
Validate::checkPost(['uid']);
|
2016-07-23 15:20:10 +08:00
|
|
|
|
|
|
|
if (!is_numeric($_POST['uid']))
|
|
|
|
View::json('无效的参数', 0);
|
|
|
|
|
2016-08-16 13:27:06 +08:00
|
|
|
$user = new User($_POST['uid']);
|
2016-07-23 15:20:10 +08:00
|
|
|
|
|
|
|
if (!$user->is_registered)
|
|
|
|
View::json('不存在的用户', 1);
|
|
|
|
|
|
|
|
if ($player->setOwner($_POST['uid']))
|
|
|
|
View::json('角色 '.$player->player_name.' 已成功让渡至 '.$user->getNickName(), 0);
|
|
|
|
|
2016-07-23 21:46:20 +08:00
|
|
|
} elseif ($action == "delete") {
|
|
|
|
if (PlayerModel::where('pid', $_POST['pid'])->delete())
|
|
|
|
View::json('角色已被成功删除', 0);
|
2016-07-23 15:20:10 +08:00
|
|
|
} else {
|
2016-08-16 22:52:00 +08:00
|
|
|
throw new E('非法参数', 1);
|
2016-07-23 15:20:10 +08:00
|
|
|
}
|
2016-07-22 19:36:24 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
}
|