<?php

namespace app\controller;

use app\BaseController;
use think\facade\Db;
use think\facade\View;
use think\facade\Request;

class User extends BaseController
{
    
    public function user(){
        if(!checkPermission(2)) return $this->alert('error', '无权限');
        $list = Db::name('domain')->select();
        $domains = [];
        foreach($list as $row){
            $domains[] = $row['name'];
        }
        View::assign('domains', $domains);
        return view();
    }

    public function user_data(){
        if(!checkPermission(2)) return json(['total'=>0, 'rows'=>[]]);
        $kw = input('post.kw', null, 'trim');
        $offset = input('post.offset/d');
        $limit = input('post.limit/d');

        $select = Db::name('user');
        if(!empty($kw)){
            $select->whereLike('id|username', $kw);
        }
        $total = $select->count();
        $rows = $select->order('id','desc')->limit($offset, $limit)->select();

        return json(['total'=>$total, 'rows'=>$rows]);
    }

    public function user_op(){
        if(!checkPermission(2)) return $this->alert('error', '无权限');
        $act = input('param.act');
        if($act == 'get'){
            $id = input('post.id/d');
            $row = Db::name('user')->where('id', $id)->find();
            if(!$row) return json(['code'=>-1, 'msg'=>'用户不存在']);
            $row['permission'] = Db::name('permission')->where('uid', $id)->column('domain');
            return json(['code'=>0, 'data'=>$row]);
        }elseif($act == 'add'){
            $username = input('post.username', null, 'trim');
            $password = input('post.password', null, 'trim');
            $is_api = input('post.is_api/d');
            $apikey = input('post.apikey', null, 'trim');
            $level = input('post.level/d');
            if(empty($username) || empty($password)) return json(['code'=>-1, 'msg'=>'用户名或密码不能为空']);
            if($is_api ==1 && empty($apikey)) return json(['code'=>-1, 'msg'=>'API密钥不能为空']);
            if(Db::name('user')->where('username', $username)->find()){
                return json(['code'=>-1, 'msg'=>'用户名已存在']);
            }
            $uid = Db::name('user')->insertGetId([
                'username' => $username,
                'password' => password_hash($password, PASSWORD_DEFAULT),
                'is_api' => $is_api,
                'apikey' => $apikey,
                'level' => $level,
                'regtime' => date('Y-m-d H:i:s'),
                'status' => 1,
            ]);
            if($level == 1){
                $permission = input('post.permission/a');
                if(!empty($permission)){
                    $data = [];
                    foreach($permission as $domain){
                        $data[] = ['uid'=>$uid, 'domain'=>$domain];
                    }
                    Db::name('permission')->insertAll($data);
                }
            }
            return json(['code'=>0, 'msg'=>'添加用户成功！']);
        }elseif($act == 'edit'){
            $id = input('post.id/d');
            $row = Db::name('user')->where('id', $id)->find();
            if(!$row) return json(['code'=>-1, 'msg'=>'用户不存在']);
            $username = input('post.username', null, 'trim');
            $is_api = input('post.is_api/d');
            $apikey = input('post.apikey', null, 'trim');
            $level = input('post.level/d');
            $repwd = input('post.repwd', null, 'trim');
            if(empty($username)) return json(['code'=>-1, 'msg'=>'用户名不能为空']);
            if($is_api ==1 && empty($apikey)) return json(['code'=>-1, 'msg'=>'API密钥不能为空']);
            if(Db::name('user')->where('username', $username)->where('id', '<>', $id)->find()){
                return json(['code'=>-1, 'msg'=>'用户名已存在']);
            }
            if($level == 1 && ($id == 1000 || $id == request()->user['id'])) $level = 2;
            Db::name('user')->where('id', $id)->update([
                'username' => $username,
                'is_api' => $is_api,
                'apikey' => $apikey,
                'level' => $level,
            ]);
            Db::name('permission')->where(['uid'=>$id])->delete();
            if($level == 1){
                $permission = input('post.permission/a');
                if(!empty($permission)){
                    $data = [];
                    foreach($permission as $domain){
                        $data[] = ['uid'=>$id, 'domain'=>$domain];
                    }
                    Db::name('permission')->insertAll($data);
                }
            }
            if(!empty($repwd)){
                Db::name('user')->where('id', $id)->update(['password'=>password_hash($repwd, PASSWORD_DEFAULT)]);
            }
            return json(['code'=>0, 'msg'=>'修改用户成功！']);
        }elseif($act == 'set'){
            $id = input('post.id/d');
            $status = input('post.status/d');
            if($id == 1000) return json(['code'=>-1, 'msg'=>'此用户无法修改状态']);
            if($id == request()->user['id']) return json(['code'=>-1, 'msg'=>'当前登录用户无法修改状态']);
            Db::name('user')->where('id', $id)->update(['status'=>$status]);
            return json(['code'=>0]);
        }elseif($act == 'del'){
            $id = input('post.id/d');
            if($id == 1000) return json(['code'=>-1, 'msg'=>'此用户无法删除']);
            if($id == request()->user['id']) return json(['code'=>-1, 'msg'=>'当前登录用户无法删除']);
            Db::name('user')->where('id', $id)->delete();
            return json(['code'=>0]);
        }
        return json(['code'=>-3]);
    }

    public function log(){
        return view();
    }

    public function log_data(){
        $uid = input('post.uid', null, 'trim');
        $kw = input('post.kw', null, 'trim');
        $domain = input('post.domain', null, 'trim');
        $offset = input('post.offset/d');
        $limit = input('post.limit/d');

        $select = Db::name('log');
        if(request()->user['type'] == 'domain'){
            $select->where('domain', request()->user['name']);
        }elseif(request()->user['level'] == 1){
            $select->where('uid', request()->user['id']);
        }elseif(!empty($uid)){
            $select->where('uid', $uid);
        }
        if(!empty($kw)){
            $select->whereLike('action|data', '%'.$kw.'%');
        }
        if(!empty($domain)){
            $select->where('domain', $domain);
        }
        $total = $select->count();
        $rows = $select->order('id','desc')->limit($offset, $limit)->select();

        return json(['total'=>$total, 'rows'=>$rows]);
    }

}