sso_smartcost-php/protected/controller/ApiController.php

<?php

/**
 * MainController
 * Feel free to delete the methods and replace them with your own code.
 *
 * @author darkredz
 */
class ApiController extends DooController {

    private $username, $config, $data;


    /**
     * 用户注册
     * @param string $username 	用户名
     * @param string $password 	密码
     * @param string $email		email
     * @return int {-1:用户名已经存在 ;-2:email已存在;-2:mobile已存在;-4:用户名禁止注册;-5:邮箱禁止注册;-6:uc注册失败;int(uid):成功}
     */
    public  function register() {
        $this->random = isset($this->data['random']) && !empty($this->data['random']) ? $this->data['random'] : create_randomstr(6);
        $this->password = isset($this->data['password']) ? create_password($this->data['password'], $this->random) : '';
        $this->email = isset($this->data['email']) ? $this->data['email'] : '';
        $this->type = isset($this->appid) ? 'app' : 'connect';
        $this->regip = isset($this->data['regip']) ? $this->data['regip'] : '';
        $this->appid = isset($this->appid) ? $this->appid : '';
        $this->appname = $this->applist[$this->appid]['name'];

        $checkname = $this->checkname(1);
        if ($checkname == -1) {
            exit('-1');
        } elseif ($checkname == -4) {
            exit('-4');
        }

        $checkemail = $this->checkemail(1);
        if ($checkemail == -1) {
            exit('-2');
        } elseif ($checkemail == -5) {
            exit('-5');
        }

        //UCenter会员注册
        $ucuserid = 0;
        if ($this->config['ucuse']) {
            pc_base::load_config('uc_config');
            require_once PHPCMS_PATH . 'api/uc_client/client.php';
            $uid = uc_user_register($this->username, $this->data['password'], $this->email, $this->random);
            if (is_numeric($uid)) {
                switch ($uid) {
                    case '-3':
                        exit('-1');
                        break;
                    case '-6':
                        exit('-2');
                        break;
                    case '-2':
                        exit('-4');
                        break;
                    case '-5':
                        exit('-5');
                        break;
                    case '-1':
                        exit('-4');
                        break;
                    case '-4':
                        exit('-5');
                        break;
                    default :
                        $ucuserid = $uid;
                        break;
                }
            } else {
                exit('-6');
            }
        }

        $data = array(
            'username' => $this->username,
            'password' => $this->password,
            'email' => $this->email,
            'regip' => $this->regip,
            'regdate' => SYS_TIME,
            'lastdate' => SYS_TIME,
            'appname' => $this->appname,
            'type' => $this->type,
            'random' => $this->random,
            'ucuserid' => $ucuserid
        );
        $uid = $this->db->insert($data, 1);
        /* 插入消息队列 */
        $noticedata = $data;
        $noticedata['uid'] = $uid;
        messagequeue::add('member_add', $noticedata);
        exit("$uid"); //exit($uid) 不可以If status is an integer, that value will also be used as the exit status.
    }


    /**
     * 移动端用户注册
     * @param string $username 	用户名
     * @param string $password 	密码
     * @param string $email		email
     * @return int {-1:用户名已经存在 ;-2:mobile已存在;-3:mobile格式错误;-4:用户名禁止注册;-5:手机禁止注册;-6:验证码错误或过期;array(userinfo):用户信息}
     */
    public function MobileRegister(){
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->data[$key] = $val;
        }
        $this->username = isset($this->data['username']) ? $this->data['username'] : '';
        $this->random = isset($this->data['random']) && !empty($this->data['random']) ? $this->data['random'] : $this->create_randomstr(6);
        $this->password = isset($this->data['password']) ? $this->create_password($this->data['password'], $this->random) : '';
        $this->mobile = isset($this->data['mobile']) ? $this->data['mobile'] : '';
        $this->regip = isset($this->data['regip']) ? $this->data['regip'] : '';
        $this->code = isset($this->data['code']) ? $this->data['code'] : '';

        $checkmobile = $this->checkmobile(1);
        if ($checkmobile == -2) {
            exit('-2');
        } elseif ($checkmobile == -3) {
            exit('-3');
        } elseif ($checkmobile == -5) {
            exit('-5');
        }

        $checkname = $this->checknamebymobile(1);
        if ($checkname == -1) {
            exit('-1');
        } elseif ($checkname == -4) {
            exit('-4');
        }

        $checkcode = $this->checkcode(1);
        if ($checkcode == -6) {
            exit('-6');
        }


        $data = array(
            'username' => $this->username,
            'userpasswd' => $this->password,
            'mobile' => $this->mobile,
            'regip' => $this->regip,
            'salt' => $this->random,
            'intime' => time(),
            'regdate' => time(),
        );
        doo::loadModel('users');
        $users = new Users();
        $RetValue = $users->_insertAttributes('users', $data);
        $userinfo = Doo::db()->find('users', array(
            'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
            'where' => 'id=?',
            'param' => array($RetValue),
        ));
        echo json_encode($userinfo);
        die();
//        exit("$RetValue"); //exit($uid) 不可以If status is an integer, that value will also be used as the exit status.
    }

    /**
     * 用户获取手机验证码,type=1表示获取注册，type=2表示找回密码
     * @param string $mobile	mobile
     * @param string $type	    type
     * @return int {-2:mobile已存在;-3:mobile格式错误;-5:手机禁止注册;-7:验证码获取有误;-8:mobile未注册;array(code):验证码信息}
     */
    public function MobileCode(){
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->data[$key] = $val;
        }
        $this->mobile = isset($this->data['mobile']) ? $this->data['mobile'] : '';
        $type = isset($this->data['type']) ? $this->data['type'] : '';
        $checkmobile = $this->checkmobile(1);
        if($type == 1){
            if ($checkmobile == -2) {
                exit('-2');
            } elseif ($checkmobile == -3) {
                exit('-3');
            } elseif ($checkmobile == -5) {
                exit('-5');
            }
        }else{
            if ($checkmobile == 1) {
                exit('-8');
            } elseif ($checkmobile == -3) {
                exit('-3');
            }
        }

        Doo::loadModel('mobilecode');
        $mobilecode = new mobilecode();
        $code = $this->getRandomCheckCode();
        $now = time();
        $checkresult = $mobilecode->find(array('where' => 'mobile='.$this->mobile, 'desc' => 'id', 'limit' => 1,'asArray' => true));
        if(!empty($checkresult)){
            $old = $checkresult['time'];
            if($now-$old >= 60){
                $sendresult = $this->sendSms($this->mobile,$code);
//                $sendresult = true;
                if($sendresult){
                    $mobilecode->mobile = $this->mobile;
                    $mobilecode->code = $code;
                    $mobilecode->time = $now;
                    $mobilecode->insert();
                    echo json_encode(array('code' => $code));die;
                }else{
                    exit('-7');
                }
            }else{
                exit('-7');
            }
        }else {
            $sendresult = $this->sendSms($this->mobile,$code);
//            $sendresult = true;
            if($sendresult){
                $mobilecode->mobile = $this->mobile;
                $mobilecode->code = $code;
                $mobilecode->time = $now;
                $mobilecode->insert();
                echo json_encode(array('code' => $code));die;
            }else{
                exit('-7');
            }
        }
    }


    /**
     * 移动端找回密码
     * @param string $mobile 	手机号
     * @param string $password 	密码
     * @param string $code 	    手机验证码
     * @return int {-3:mobile格式错误;-6:验证码错误;-8:mobile未注册;-9:用户不存在;array(userinfo):用户信息}
     */
    public function ForgetPW(){
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->data[$key] = $val;
        }
        $this->password = isset($this->data['password']) ? $this->data['password'] : '';
        $this->mobile = isset($this->data['mobile']) ? $this->data['mobile'] : '';
        $this->code = isset($this->data['code']) ? $this->data['code'] : '';
        $checkmobile = $this->checkmobile(1);
        if ($checkmobile == 1) {
            exit('-8');
        } elseif ($checkmobile == -3) {
            exit('-3');
        }
        $checkcode = $this->checkcode(1);
        if ($checkcode == -6) {
            exit('-6');
        }

        Doo::loadModel('users');
        $users = new Users();
        $userinfo = $users->getRowByMobile($this->mobile);
        if(empty($userinfo)){
            exit('-9');
        }

        $newpasswd = $this->create_password($this->password, $userinfo['salt']);
        $users->id = $userinfo['id'];
        $users->userpasswd = $newpasswd;
        $users->update();

        $userinfo = Doo::db()->find('users', array(
            'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
            'where' => 'id=?',
            'param' => array($userinfo['id']),
        ));
        echo json_encode($userinfo);
        die();

    }

    /**
     * 获取所有用户在某段时间总充值的数目
     * @param string $startday  开始时间
     * @param string $endday  结束时间
     * @return int {-1;时间有错误;floor result:数目结果}
     */
    public function Deposit(){
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->data[$key] = $val;
        }
        $startday = isset($this->data['startday']) ? $this->data['startday'] : '';
        $endday = isset($this->data['endday']) ? $this->data['endday'] : '';
        if(empty($startday) || empty($endday)){
            exit('-1');
        }
//        $pay = new Pay();
//        $depositlist = $pay->find(array('select' => 'sum(money) as sum', 'where' => 'status="succ" and addtime between '.$startday.' and '.$endday, 'group' => 'status', 'asArray' => TRUE));
        $sql = 'SELECT sum(money) as sum FROM `wk_pay_account` WHERE `status` = "succ" and addtime between '.$startday.' and '.$endday.' group by status';
        $query = Doo::db ()->query ( $sql );
        $depositlist = $query->fetch ();
        echo round($depositlist['sum'],2);
        exit;
    }


    /**
     * 编辑用户，可以不传入旧密码和新密码
     * 如果传入新密码，则修改密码为新密码
     * @param string $username		用户名
     * @param string $password		旧密码
     * @param string $newpassword	新密码
     * @param string $email			email
     * @param string $random		密码随机数
     * @return int {-1:用户不存在;-2:旧密码错误;-3:email已经存在 ;1:成功;0:未作修改}
     */
    public function edit() {
        header("Content-type: text/html; charset=utf-8");
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $TmpArray[$key] = $val;
        }
        $userinfo = $this->__getuserinfo($TmpArray['uid']);
        if (!$userinfo) {
            exit('-1');
        }
        $passworld = $this->create_password($TmpArray['password'], $userinfo[0]['salt']);
        if (isset($this->password) && !empty($this->password) && ($passworld != $userinfo[0]['userpasswd'])) {
            exit('-2');
        }
        if ($TmpArray['useranswer'] && ($userinfo[0]['useranswer'] != $TmpArray['useranswer'])) {
            exit('-3');
        }
        $this->data['randomstr'] = $this->create_randomstr();
        $this->data['newpasswd'] = $this->create_password($TmpArray['newpassword'], $this->data['randomstr']);
        Doo::loadModel('users');
        $objuser = new Users();
        $objuser->userpasswd = $this->data['newpasswd'];
        $objuser->salt = $this->data['randomstr'];
        $RetValue = $objuser->update(array('where' => 'id=' . $TmpArray['uid'] . ' AND useranswer=\'' . $TmpArray['useranswer'] . '\''));
        return $RetValue;
    }

    /**
     * 生成随机字符串
     * @param string $lenth 长度
     * @return string 字符串
     */
    function create_randomstr($lenth = 6) {
        return $this->random($lenth, '123456789abcdefghijklmnpqrstuvwxyzABCDEFGHIJKLMNPQRSTUVWXYZ');
    }

    /**
     *
     * @param $password 密码
     * @param $random 随机数
     */
    function create_password($password = '', $random = '') {
        if (empty($random)) {
            $array['random'] = $this->create_randomstr();
            $array['password'] = md5(md5($password) . $array['random']);
            return $array;
        }
        return md5(md5($password) . $random);
    }

    /**
     * 随机字符串函数
     * @param $password 密码
     * @param $random 随机数
     */
    function random($length, $chars = '0123456789') {
        $hash = '';
        $max = strlen($chars) - 1;
        for ($i = 0; $i < $length; $i++) {
            $hash .= $chars[mt_rand(0, $max)];
        }
        return $hash;
    }

    /**
     * 删除用户
     * @param string {$uid:用户id;$username:用户名;$email:email;$mobile:mobile}
     * @return array {-1:删除失败;>0:删除成功}
     */
    public function delete() {
        $this->uid = isset($this->data['uid']) ? $this->data['uid'] : '';
        $this->email = isset($this->data['email']) ? $this->data['email'] : '';
        $this->mobile = isset($this->data['mobile']) ? $this->data['mobile'] : '';

        if ($this->uid > 0 || is_array($this->uid)) {
            $where = to_sqls($this->uid, '', 'uid');

            //ucenter部份
            if ($this->config['ucuse']) {
                pc_base::load_config('uc_config');
                require_once PHPCMS_PATH . 'api/uc_client/client.php';
                $s = $this->db->select($where, 'ucuserid');
                if ($s) {
                    $uc_data = array();
                    foreach ($s as $k => $v) {
                        $uc_data[$k] = $v['ucuserid'];
                    }
                    if (!empty($uc_data))
                        $r = uc_user_delete($uc_data);
                    if (!$r) {
                        exit('-1');
                    }
                } else {
                    exit('-1');
                }
            }

            /* 插入消息队列 */
            $noticedata['uids'] = $this->uid;
            messagequeue::add('member_delete', $noticedata);

            $this->db->delete($where);
            exit('1');
        } elseif (!empty($this->username)) {
            $this->db->delete(array('username' => $this->username));
            exit('2');
        } elseif (!empty($this->email)) {
            $this->db->delete(array('email' => $this->email));
            exit('3');
        } elseif (!empty($this->mobile)) {
            $this->db->delete(array('mobile' => $this->mobile));
            exit('3');
        } else {
            exit('-1');
        }
    }

    /**
     * 获取用户信息
     * @param string {$uid:用户id;$username:用户名;$email:email;$mobile:mobile}
     * @return array {-1:用户不存在;array(userinfo):用户信息}
     */
    private function __getuserinfo($uid) {
        if ($uid > 0) {
            $r = Doo::db()->find('users', array(
                'where' => 'id=?',
                'param' => array($uid),
                'asArray' => TRUE
                    )
            );
        } elseif (!empty($this->username)) {
            $r = $this->db->get_one(array('username' => $this->username));
        } elseif (!empty($this->email)) {
            $r = $this->db->get_one(array('email' => $this->email));
        } elseif (!empty($this->mobile)) {
            $r = $this->db->get_one(array('mobile' => $this->mobile));
        } else {
            return false;
        }
        return $r;
    }

    function getuserlist(){
    	
    	$authstr = $this->authcode($_POST['data']);
    	
    	$ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->$key = $val;
        }

    	$r = Doo::db()->find('users', array(
    			'select'=>'id,username',
                'where' => 'id in ( '.$this->uid.' )',
                'param' => array($this->uid),
                'asArray' => TRUE
                    )
         );
         exit(json_encode($r));
    }
    
    /**
     * 获取用户信息
     * @param string {$uid:用户id;$username:用户名;$email:email;$mobile:mobile}
     * @return array {-1:用户不存在;array(userinfo):用户信息}
     */
    public function getuserinfo() {
        // TODO:远程字符串解析提取出来做成函数
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $TmpArray[$key] = $val;
            $this->$key = $val;
        }
        $uid = isset($TmpArray['uid']) ? $TmpArray['uid'] : 0;
        if ($uid > 0) {
            $r = Doo::db()->find('users', array(
                'where' => 'id=?',
                'param' => array($uid),
                'asArray' => TRUE
                    )
            );
        } elseif (!empty($this->username)) {
            $r = Doo::db()->find('users', array(
                'where' => 'username=?',
                'param' => array($this->username),
                'asArray' => TRUE
                    )
            );
        } elseif (!empty($this->email)) {
            $r = Doo::db()->find('users', array(
                'where' => 'useremail=?',
                'param' => array($this->email),
                'asArray' => TRUE
                    )
            );
        } elseif(!empty($this->mobile)) {
            $r = Doo::db()->find('users', array(
                    'where' => 'mobile=?',
                    'param' => array($this->mobile),
                    'asArray' => TRUE
                )
            );
        } else {
            return false;
        }
        if ($this->username) {
            exit(json_encode($r));
        } else {
            exit(json_encode($r));
        }
    }

    function isMail($mail) {
        // if (preg_match("/^([a-zA-Z0-9_-])+@([a-zA-Z0-9_-])+(\.[a-zA-Z0-9\-\.])+/", $mail))
		if (filter_var($mail, FILTER_VALIDATE_EMAIL)){
            return true;
        }else{
            return false;
		}
    }

    // 检测手机格式
    function isMobile($mobile) {
        if(preg_match("/^1[34578]{1}\d{9}$/",$mobile)){
            return TRUE;
        } else {
            return FALSE;
        }
    }

    public function checkauth(){
    	$authstr = $this->authcode($_POST['data']);
    	$ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->$key = $val;
        }
        $k=explode('_', $this->auth);
        $userinfo = Doo::db()->find('users', array(
               'select' => 'id,keys_auth',
               'where' => 'id=?',
               'param' => array($k[0]),
                   ));
        if(empty($userinfo[0]->keys_auth)){
        	echo '2';die;           
        }
        
		$dd = explode('_', $userinfo[0]->keys_auth);
		
		Doo::loadModel('users');
	    $users = new Users();
		
		if(!isset($dd[1])){
			
	        $users->keys_auth=$k[1]."_1";
	        $users->update(array('where' => 'id=?', 'param' => array($k[0])));
			
		}else{
			//过程认证完成           
			if(isset($k[2])){
	            $users->keys_auth="";
	            $users->update(array('where' => 'id=?', 'param' => array($k[0])));
			}
		}           
        if($dd[0]==$k[1]){
        	echo '1';die;
        }else{
        	echo '2';die;
        }
    }
    
    /**
     * 用户登录
     * @param string $username	用户名
     * @param string $password	密码
     * @return array {-2;密码错误;-1:用户不存在;array(userinfo):用户信息}
     */
    public function login() {
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->$key = $val;
        }
        if (isset($this->email) && $this->isMail($this->email)) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
                'where' => 'useremail=?',
                'param' => array($this->email),
                    ));
        }
        if (isset($this->mobile) && $this->isMobile($this->mobile)) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
                'where' => 'mobile=?',
                'param' => array($this->mobile),
            ));
        }
        if ($this->username) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
                'where' => 'username=?',
                'param' => array($this->username),
                    ));
        }
        if (empty($userinfo))
            exit('-22');
        if (!empty($userinfo) && $userinfo[0]->userpasswd == $this->create_password($this->userpasswd, $userinfo[0]->salt)) {
            //登录成功更新用户最近登录时间和ip
            Doo::loadModel('users');
            $users = new Users();
            $key=$this->random_k(8);
            $users->keys_auth=$key;
            $users->lastloginip = ip2long($this->clientIP());
            $users->lastlogintime = time();
            $users->update(array('where' => 'id=?', 'param' => array($userinfo[0]->id)));
            $userinfo[0]->keys_auth=$key;
            Doo::loadModel('userswitch');
            $userswitch = new UserSwitch();
            $usArray = $userswitch->getOne(array('select' => 'actime', 'where' => 'uid=?', 'param' => array($userinfo[0]->id), 'asArray' => TRUE));
            if (!$usArray['actime'] && empty($userinfo[0]->mobile))
                exit('-3');
            echo json_encode($userinfo);
            die();
        } else {
            exit('-2');
        }
    }

    /**
     * 用户登录
     * @param string $username	用户名
     * @param string $password	密码
     * @return array {-2;密码错误;-22:用户不存在;array(userinfo):用户信息}
     */
    public function login2() {
//        $authstr = $this->authcode($_POST['data']);
//        $ddddd = explode('&', urldecode($authstr));
//        foreach ($ddddd as $k => $v) {
//            list($key, $val) = explode('=', $v);
//            $this->$key = $val;
//        }

        if ($this->isMail($_POST['username'])) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
                'where' => 'useremail=?',
                'param' => array($_POST['username']),
            ));
        }else if ($this->isMobile($_POST['username'])) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
                'where' => 'mobile=?',
                'param' => array($_POST['username']),
            ));
        }

        if (empty($userinfo))
            exit('-22');
        if (!empty($userinfo) && $userinfo[0]->userpasswd == $this->create_password($_POST['userpasswd'], $userinfo[0]->salt)) {
            //登录成功更新用户最近登录时间和ip
            Doo::loadModel('users');
            $users = new Users();
            $key=$this->random_k(8);
            $users->keys_auth=$key;
            $users->lastloginip = ip2long($this->clientIP());
            $users->lastlogintime = time();
            $users->update(array('where' => 'id=?', 'param' => array($userinfo[0]->id)));
            $userinfo[0]->keys_auth=$key;
            Doo::loadModel('userswitch');
            $userswitch = new UserSwitch();
            $usArray = $userswitch->getOne(array('select' => 'actime', 'where' => 'uid=?', 'param' => array($userinfo[0]->id), 'asArray' => TRUE));
            if (!$usArray['actime'] && empty($userinfo[0]->mobile))
                exit('-3');
            echo json_encode($userinfo);
            die();
        } else {
            exit('-2');
        }
    }

    public function scLogin(){
    	$authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $this->$key = $val;
        }
         if (isset($this->email) && $this->isMail($this->email)) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
                'where' => 'useremail=?',
                'param' => array($this->email),
                    ));
        }
        if (isset($this->mobile) && $this->isMobile($this->mobile)) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,bank,keys_auth,mobile',
                'where' => 'mobile=?',
                'param' => array($this->mobile),
            ));
        }
        if ($this->username) {
            $userinfo = Doo::db()->find('users', array(
                'select' => 'id,username,userpasswd,useremail,salt,actstate,keys_auth,mobile',
                'where' => 'username=?',
                'param' => array($this->username),
                    ));
        }
        if (empty($userinfo))
            exit('-22');
        if (!empty($userinfo) && $userinfo[0]->userpasswd == $this->create_password($this->userpasswd, $userinfo[0]->salt)) {
            //登录成功更新用户最近登录时间和ip
            Doo::loadModel('users');
            $users = new Users();
            $key=$this->random_k(8);
            $users->keys_auth=$key;
            $users->lastloginip = ip2long($this->clientIP());
            $users->lastlogintime = time();
            $users->update(array('where' => 'id=?', 'param' => array($userinfo[0]->id)));
            $userinfo[0]->keys_auth=$key;
            Doo::loadModel('userswitch');
            Doo::loadModel('scUser');
            $scUser=new scUser();
            $userswitch = new UserSwitch();
            $usArray = $userswitch->getOne(array('select' => 'actime', 'where' => 'uid=?', 'param' => array($userinfo[0]->id), 'asArray' => TRUE));
            $scU=$scUser->find(array('where' => 'uid='.$userinfo[0]->id, 'asArray' => TRUE));
            $scU[0]['userName']=$userinfo[0]->username;$scU[0]['userpasswd']=$userinfo[0]->userpasswd;$scU[0]['useremail']=$userinfo[0]->useremail;
            $scU[0]['mobile']=$userinfo[0]->mobile;
            if (!$usArray['actime'] && empty($userinfo[0]->mobile))
                exit('-3');
            echo json_encode($scU);
            die();
        } else {
            exit('-2');
        }
    }
    
    /**
     * 同步登陆
     * @param string $uid	用户id
     * @return string javascript用户同步登陆js
     */
    public function synlogin() {
        //判断本应用是否开启同步登陆
        if ($this->applist[$this->appid]['synlogin']) {
            $this->uid = isset($this->data['uid']) ? $this->data['uid'] : '';
            $this->password = isset($this->data['password']) ? $this->data['password'] : '';

            $res = '';
            //ucenter登陆部份
            if ($this->config['ucuse']) {
                pc_base::load_config('uc_config');
                require_once PHPCMS_PATH . 'api/uc_client/client.php';
                $r = $this->db->get_one(array('uid' => $this->uid), "ucuserid");
                if ($r['ucuserid'])
                    $res .= uc_user_synlogin($r['ucuserid']);
            }

            foreach ($this->applist as $v) {
                if (!$v['synlogin'])
                    continue;
                if ($v['appid'] != $this->appid) {
                    $tmp_s = strstr($v['url'] . $v['apifilename'], '?') ? '&' : '?';
                    $res .= '<script type="text/javascript" src="' . $v['url'] . $v['apifilename'] . $tmp_s . 'time=' . SYS_TIME . '&code=' . urlencode(sys_auth('action=synlogin&username=' . $this->username . '&uid=' . $this->uid . '&password=' . $this->password . "&time=" . SYS_TIME, 'ENCODE', $v['authkey'])) . '" reload="1"></script>';
                }
            }
            exit($res);
        } else {
            exit('0');
        }
    }

    /**
     * 同步退出
     * @return string javascript用户同步退出js
     */
    public function synlogout() {
        if ($this->applist[$this->appid]['synlogin']) {
            $res = '';
            //ucenter登陆部份
            if ($this->config['ucuse']) {
                pc_base::load_config('uc_config');
                require_once PHPCMS_PATH . 'api/uc_client/client.php';
                $res .= uc_user_synlogout();
            }
            foreach ($this->applist as $v) {
                if (!$v['synlogin'])
                    continue;
                if ($v['appid'] != $this->appid) {
                    $tmp_s = strstr($v['url'] . $v['apifilename'], '?') ? '&' : '?';
                    $res .= '<script type="text/javascript" src="' . $v['url'] . $v['apifilename'] . $tmp_s . 'time=' . SYS_TIME . '&code=' . urlencode(sys_auth('action=synlogout&time=' . SYS_TIME, 'ENCODE', $v['authkey'])) . '" reload="1"></script>';
                }
            }
            exit($res);
        } else {
            exit;
        }
    }

    /**
     * 获取应用列表
     */
    public function getapplist() {
        $applist = getcache('applist', 'admin');
        exit(serialize($applist));
    }

    /**
     * 获取积分兑换规则
     */
    public function getcredit($return = '') {
        $creditcache = getcache('creditlist', 'admin');
        foreach ($creditcache as $v) {
            if ($v['fromid'] == $this->appid) {
                $creditlist[$v['from'] . '_' . $v['to']] = $v;
            }
        }
        if ($return) {
            return $creditlist;
        } else {
            exit(serialize($creditlist));
        }
    }

    /**
     * 兑换积分
     * @param int $uid			phpssouid
     * @param int $from			本系统积分类型id
     * @param int $toappid 		目标系统应用appid
     * @param int $to			目标系统积分类型id
     * @param int $credit		本系统扣除积分数
     * @return bool 			{1:成功;0:失败}
     */
    public function changecredit() {
        $this->uid = isset($this->data['uid']) ? $this->data['uid'] : exit('0');
        $this->toappid = isset($this->data['toappid']) ? $this->data['toappid'] : exit('0');
        $this->from = isset($this->data['from']) ? $this->data['from'] : exit('0');
        $this->to = isset($this->data['to']) ? $this->data['to'] : exit('0');
        $this->credit = isset($this->data['credit']) ? $this->data['credit'] : exit('0');
        $this->appname = $this->applist[$this->appid]['name'];
        $outcredit = $this->getcredit(1);
        //目标系统积分增加数
        $this->credit = floor($this->credit * $outcredit[$this->from . '_' . $this->to]['torate'] / $outcredit[$this->from . '_' . $this->to]['fromrate']);

        /* 插入消息队列 */
        $noticedata['appname'] = $this->appname;
        $noticedata['uid'] = $this->uid;
        $noticedata['toappid'] = $this->toappid;
        $noticedata['totypeid'] = $this->to;
        $noticedata['credit'] = $this->credit;
        messagequeue::add('change_credit', $noticedata);
        exit('1');
    }

    /**
     * 检查用户名
     * @param string $username	用户名
     * @return int {-4：用户名禁止注册;-1:用户名已经存在 ;1:成功}
     */
    public function checkname($is_return = 0) {
        if (empty($this->username)) {
            if ($is_return) {
                return -1;
            } else {
                exit('-1');
            }
        }
        //非法关键词判断
        $denyusername = $this->settings['denyusername'];
        if (is_array($denyusername)) {
            $denyusername = implode("|", $denyusername);
            $pattern = '/^(' . str_replace(array('\\*', ' ', "\|"), array('.*', '', '|'), preg_quote($denyusername, '/')) . ')$/i';
            if (preg_match($pattern, $this->username)) {
                if ($is_return) {
                    return -4;
                } else {
                    exit('-4');
                }
            }
        }

        //UCenter部分
        if ($this->config['ucuse']) {
            pc_base::load_config('uc_config');
            require_once PHPCMS_PATH . 'api/uc_client/client.php';
            $rs = uc_user_checkname($this->username);
            if ($rs < 1) {
                exit('-4');
            }
        }

        $r = $this->db->get_one(array('username' => $this->username));
        if ($is_return) {
            return !empty($r) ? -1 : 1;
        } else {
            echo!empty($r) ? -1 : 1;
            exit;
        }
    }

    /**
     * 检查email
     * @param string $email	email
     * @return int {-1:email已经存在 ;-5:邮箱禁止注册;1:成功}
     */
    public function checkemail($is_return = 0) {
        $this->email = isset($this->email) ? $this->email : isset($this->data['email']) ? $this->data['email'] : '';
        if (empty($this->email)) {
            if ($is_return) {
                return -1;
            } else {
                exit('-1');
            }
        }
        //非法关键词判断
        $denyemail = $this->settings['denyemail'];
        if (is_array($denyemail)) {
            $denyemail = implode("|", $denyemail);
            $pattern = '/^(' . str_replace(array('\\*', ' ', "\|"), array('.*', '', '|'), preg_quote($denyemail, '/')) . ')$/i';
            if (preg_match($pattern, $this->email)) {
                if ($is_return) {
                    return -5;
                } else {
                    exit('-5');
                }
            }
        }

        //UCenter部分
        if ($this->config['ucuse']) {
            pc_base::load_config('uc_config');
            require_once PHPCMS_PATH . 'api/uc_client/client.php';
            $rs = uc_user_checkemail($this->email);
            if ($rs < 1) {
                exit('-5');
            }
        }

        $r = $this->db->get_one(array('email' => $this->email));
        if ($is_return) {
            return !empty($r) ? -1 : 1;
        } else {
            !empty($r) ? exit('-1') : exit('1');
        }
    }

    /**
     * 检查mobile
     * @param string $mobile	mobile
     * @return int {-2:mobile已经存在;-3:mobile格式错误;-5:手机禁止注册;1:成功}
     */
    public function checkmobile($is_return = 0) {
        $this->mobile = isset($this->mobile) ? $this->mobile : isset($this->data['mobile']) ? $this->data['mobile'] : '';
        if (empty($this->mobile)) {
            if ($is_return) {
                return -5;
            } else {
                exit('-5');
            }
        }
//        //非法关键词判断
//        $denymobile = $this->settings['denyemobile'];
//        if (is_array($denymobile)) {
//            $denymobile = implode("|", $denymobile);
//            $pattern = '/^(' . str_replace(array('\\*', ' ', "\|"), array('.*', '', '|'), preg_quote($denymobile, '/')) . ')$/i';
//            if (preg_match($pattern, $this->mobile)) {
//                if ($is_return) {
//                    return -5;
//                } else {
//                    exit('-5');
//                }
//            }
//        }
        if(!preg_match("/^1[34578]{1}\d{9}$/",$this->mobile)){
            if ($is_return) {
                return -3;
            } else {
                exit('-3');
            }
        }

        Doo::loadModel('users');
        $users = new Users();
        $r = $users->getRowByMobile(trim($this->mobile));
//        var_dump($r);
//        exit;
        if ($is_return) {
            return !empty($r) ? -2 : 1;
        } else {
            !empty($r) ? exit('-2') : exit('1');
        }
    }

    /**
     * 检查用户名
     * @param string $username	用户名
     * @return int {-4：用户名禁止注册;-1:用户名已经存在 ;1:成功}
     */
    public function checknamebymobile($is_return = 0) {
        if (empty($this->username)) {
            if ($is_return) {
                return -4;
            } else {
                exit('-4');
            }
        }
        if (!$this->CheckLengthBetween($this->username, 3, 20)) {
            if ($is_return) {
                return -4;
            } else {
                exit('-4');
            }
        }
        //非法关键词判断
        if (preg_match("/[\'.,:;*?~`!@#$%^&+=)(<>{}]|\]|\[|\/|\\\|\"|\|/",$this->username)) {
            if ($is_return) {
                return -4;
            } else {
                exit('-4');
            }
        }
//
//        //UCenter部分
//        if ($this->config['ucuse']) {
//            pc_base::load_config('uc_config');
//            require_once PHPCMS_PATH . 'api/uc_client/client.php';
//            $rs = uc_user_checkname($this->username);
//            if ($rs < 1) {
//                exit('-4');
//            }
//        }
        Doo::loadModel('users');
        $users = new Users();
        $r = $users->getRowByName($this->username);
        if ($is_return) {
            return !empty($r) ? -1 : 1;
        } else {
            echo!empty($r) ? -1 : 1;
            exit;
        }
    }

    function CheckLengthBetween($C_cahr, $I_len1, $I_len2=100)
    {
        $C_cahr = trim($C_cahr);
        if (strlen($C_cahr) < $I_len1) return false;
        if (strlen($C_cahr) > $I_len2) return false;
        return true;
    }

    /**
     * 检查mobilecode
     * @param string $mobile	mobile
     * @return int {-6:验证码错误或过期;1:成功}
     */
    public function checkcode($is_return = 0) {
        $this->mobile = isset($this->mobile) ? $this->mobile : isset($this->data['mobile']) ? $this->data['mobile'] : '';
        $this->code = isset($this->code) ? $this->code : isset($this->data['code']) ? $this->data['code'] : '';
        if (empty($this->mobile)) {
            if ($is_return) {
                return -5;
            } else {
                exit('-5');
            }
        }
        if (empty($this->code)) {
            if ($is_return) {
                return -6;
            } else {
                exit('-6');
            }
        }
        if($this->checkSmsCode($this->mobile,$this->code)){
            if ($is_return) {
                return 1;
            } else {
                exit('1');
            }
        }else{
            if ($is_return) {
                return -6;
            } else {
                exit('-6');
            }
        }
    }

    // 检测手机验证码和验证手机是否符合
    private function checkSmsCode($mobile,$code){
        $now = time();
        $old = $now-900;
        Doo::loadModel('mobilecode');
        $mobilecode = new mobilecode();
        $user = $mobilecode->find(array(
            'select' => 'id',
            'where' => 'mobile='.$mobile.' and code='.$code.' and time between '.$old.' and '.$now,
            'desc' => 'id',
            'limit' => 1,
            'asArray' => true
        ));
        if ($user) {
            $mobilecode->mobile=$mobile;
            $mobilecode->delete();
            return TRUE;
        } else {
            return FALSE;
        }
    }



    /**
     *  上传头像处理
     *  传入头像压缩包，解压到指定文件夹后删除非图片文件
     */
    public function uploadavatar() {
        //根据用户id创建文件夹
        $encodestr = $this->authcode(rawurldecode($this->params['authstr']));
        if (isset($encodestr)) {
            $this->uid = $encodestr;
        } else {
            exit('0');
        }
        $dir1 = ceil($this->uid / 10000);
        $dir2 = ceil($this->uid % 10000 / 1000);
        //创建图片存储文件夹
        $avatarfile = 'data/avatar/';
        $dir = $avatarfile . $dir1 . '/' . $dir2 . '/' . $this->uid . '/';
        if (!file_exists($dir)) {
            mkdir($dir, 0777, true);
        }
        //存储flashpost图片
        $this->data['avatardata'] = $GLOBALS['HTTP_RAW_POST_DATA'];
        $filename = Doo::conf()->SITE_PATH . $dir . $this->uid . '.zip';
        file_put_contents($filename, $this->data['avatardata']);

        //解压缩文件
        Doo::loadClass('pclzip.lib');
//	pc_base::load_app_class('pclzip', 'phpsso', 0);
        $archive = new PclZip($filename);
        if ($archive->extract(PCLZIP_OPT_PATH, $dir) == 0) {
            die("Error : " . $archive->errorInfo(true));
        }
        // 判断文件安全，删除压缩包和非jpg图片
        $avatararr = array('180x180.jpg', '30x30.jpg', '45x45.jpg', '90x90.jpg');
        if ($handle = opendir($dir)) {
            while (false !== ($file = readdir($handle))) {
                if ($file !== '.' && $file !== '..') {
                    if (!in_array($file, $avatararr)) {
                        @unlink($dir . $file);
                    } else {
                        $info = @getimagesize($dir . $file);
                        if (!$info || $info[2] != 2) {
                            @unlink($dir . $file);
                        }
                    }
                }
            }
            closedir($handle);
        }
        exit('1');
    }

    /**
     *  存储支付方式
     *
     */
    public function setPayWay() {

        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode(' = ', $v);
            $TmpArray[$key] = $val;
        }
        Doo::loadModel('users_payway');
        $upayway = new UsersPayway();
        $upayway->uid = $TmpArray['uid'];
        $upayway->idbank = $TmpArray['idbank'];
        $upayway->idalipay = $TmpArray['alipay'];
        $upayway->idtenpay = $TmpArray['tenpay'];
        if ($upayway->insert())
            exit('1');
    }

    /**
     *  实名认证
     *
     */
    public function setVerify() {
        Doo::loadModel('users_verify');
    }

    /**
     *  删除用户头像
     *  @return {0:失败;1:成功}
     */
    public function deleteavatar() {
        //根据用户id创建文件夹
        if (isset($this->data['uid'])) {
            $this->uid = $this->data['uid'];
        } else {
            exit('0');
        }

        $dir1 = ceil($this->uid / 10000);
        $dir2 = ceil($this->uid % 10000 / 1000);

        //图片存储文件夹
        $avatarfile = pc_base::load_config('system', 'upload_path') . 'avatar/';
        $dir = $avatarfile . $dir1 . '/' . $dir2 . '/' . $this->uid . '/';
        $this->db->update(array('avatar' => 0), array('uid' => $this->uid));
        if (!file_exists($dir)) {
            exit('1');
        } else {
            if ($handle = opendir($dir)) {
                while (false !== ($file = readdir($handle))) {
                    if ($file !== '.' && $file !== '..') {
                        @unlink($dir . $file);
                    }
                }
                closedir($handle);
                @rmdir($dir);
                exit('1');
            }
        }
    }

    /**
     *
     * @param type $string
     * @param type $operation
     * @param type $key
     * @param type $expiry
     * @return string
     */
    function authcode($string, $operation = 'DECODE', $key = '', $expiry = 0) {
        $ckey_length = 4;
        $key = md5($key != '' ? $key : Doo::conf()->AUTHKEY);
        $keya = md5(substr($key, 0, 16));
        $keyb = md5(substr($key, 16, 16));
        $keyc = $ckey_length ? ($operation == 'DECODE' ? substr($string, 0, $ckey_length) : substr(md5(microtime()), -$ckey_length)) : '';

        $cryptkey = $keya . md5($keya . $keyc);
        $key_length = strlen($cryptkey);

        $string = $operation == 'DECODE' ? base64_decode(substr($string, $ckey_length)) : sprintf('%010d', $expiry ? $expiry + time() : 0) . substr(md5($string . $keyb), 0, 16) . $string;
        $string_length = strlen($string);

        $result = '';
        $box = range(0, 255);

        $rndkey = array();
        for ($i = 0; $i <= 255; $i++) {
            $rndkey[$i] = ord($cryptkey[$i % $key_length]);
        }

        for ($j = $i = 0; $i < 256; $i++) {
            $j = ($j + $box[$i] + $rndkey[$i]) % 256;
            $tmp = $box[$i];
            $box[$i] = $box[$j];
            $box[$j] = $tmp;
        }

        for ($a = $j = $i = 0; $i < $string_length; $i++) {
            $a = ($a + 1) % 256;
            $j = ($j + $box[$a]) % 256;
            $tmp = $box[$a];
            $box[$a] = $box[$j];
            $box[$j] = $tmp;
            $result .= chr(ord($string[$i]) ^ ($box[($box[$a] + $box[$j]) % 256]));
        }

        if ($operation == 'DECODE') {
            if ((substr($result, 0, 10) == 0 || substr($result, 0, 10) - time() > 0) && substr($result, 10, 16) == substr(md5(substr($result, 26) . $keyb), 0, 16)) {
                return substr($result, 26);
            } else {
                return '';
            }
        } else {
            return $keyc . str_replace(' = ', '', base64_encode($result));
        }
    }

    public function LoginSetCookie() {
        $user = Doo::db()->find('users', array(
            'where' => 'username = ?',
            'param' => array($this->params['username']),
                ));
        header('P3P: CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"');
        // 通行证
        setcookie(Doo::conf()->COOKIEPRE . 'auth', $this->authcode($user[0]->id . "\t" . $this->clientIP(), 'ENCODE'), 0, '/', '192.168.1.140', 0);
        setcookie(Doo::conf()->COOKIEPRE . '_userid', $this->authcode($user[0]->id, 'ENCODE'), 0, '/', '192.168.1.140', 0);
        setcookie(Doo::conf()->COOKIEPRE . '_username', $this->authcode($user[0]->username, 'ENCODE'), 0, '/', '192.168.1.140', 0);
        // 文库
    }

    public function getBank() {
        // TODO:远程字符串解析提取出来做成函数
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $TmpArray[$key] = $val;
            $this->$key = $val;
        }
        $uid = $TmpArray['uid'];
        if ($uid > 0) {
            $r = Doo::db()->find('users', array(
                'select' => 'bank',
                'where' => 'id=?',
                'param' => array($uid),
                'asArray' => TRUE
                    )
            );
        }
        exit(json_encode(array($r[0]['bank'])));
    }

    public function getPayOrder() {
        // TODO:远程字符串解析提取出来做成函数
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $TmpArray[$key] = $val;
            $this->$key = $val;
        }
        $uid = $TmpArray['uid'];
        if ($uid > 0) {
            $r = Doo::db()->find('pay', array(
                'where' => 'userid=?',
                'param' => array($uid),
                'asArray' => TRUE
                    )
            );
        }
        exit(json_encode($r));
    }

    public function madd() {
        // TODO:认证，变量判断
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $TmpArray[$key] = $val;
            $this->$key = $val;
        }
        $uid = $TmpArray['uid'];
        if ($uid > 0) {
            $usersArray = Doo::db()->find('users', array(
                'where' => 'id=?',
                'param' => array($uid),
                'asArray' => TRUE
                    )
            );
            if (empty($usersArray)) {
                exit('0');
            } else {
                $usersObject = Doo::loadModel('users', TRUE);
                $usersObject->id = $usersArray[0]['id'];
                $usersObject->bank = new DooDbExpression('bank+' . $this->bank);
                if ($usersObject->update()) {
                    //TODO:写入日志
                    Doo::loadModel('income_pay');
                    $incomepay = new IncomePay();
                    $incomepay->uid = $usersArray[0]['id'];
                    $incomepay->money = $this->bank;
                    $incomepay->type = 1;
                    $incomepay->comefrom = $this->appid == 'ask' ? '问答(zhzdwd.com)收入' : '文库(zhzdwk.com)收入';
                    $incomepay->addtime = time();
                    $incomepay->insert();
                    exit('1');
                } else {
                    exit('0');
                }
            }
        } else {
            exit('0');
        }
    }

    public function msub() {
        // TODO:远程字符串解析提取出来做成函数
        $authstr = $this->authcode($_POST['data']);
        $ddddd = explode('&', urldecode($authstr));
        foreach ($ddddd as $k => $v) {
            list($key, $val) = explode('=', $v);
            $TmpArray[$key] = $val;
            $this->$key = $val;
        }
        $uid = $TmpArray['uid'];
        if ($uid > 0) {
            $usersArray = Doo::db()->find('users', array(
                'where' => 'id=?',
                'param' => array($uid),
                'asArray' => TRUE
                    )
            );
            if (empty($usersArray)) {
                exit('0');
            } else {
                if ($usersArray[0]['bank'] < $this->bank) {
                    exit('-1');
                }
                $usersObject = Doo::loadModel('users', TRUE);
                $usersObject->id = $usersArray[0]['id'];
                $usersObject->bank = new DooDbExpression('bank-' . $this->bank);
                if ($usersObject->update()) {
                    //TODO:写入日志
                    Doo::loadModel('income_pay');
                    $incomepay = new IncomePay();
                    $incomepay->uid = $usersArray[0]['id'];
                    $incomepay->money = $this->bank;
                    $incomepay->type = 2;
                    $incomepay->comefrom = $this->appid == 'ask' ? '问答(zhzdwd.com)消费' : '文库(zhzdwk.com)消费';
                    $incomepay->addtime = time();
                    $incomepay->insert();
                    exit('1');
                } else {
                    exit('0');
                }
            }
        } else {
            exit('0');
        }
    }

/**
	 * random 获取字符串
	 * @param int $length
	 * @return string $hash
	 */
	public function random_k($length = 6, $type = 0) {
		$hash = '';
		$chararr = array ('ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789abcdefghijklmnopqrstuvwxyz', '0123456789', '23456789ABCDEFGHJKLMNPQRSTUVWXYZ' );
		$chars = $chararr [$type];
		$max = strlen ( $chars ) - 1;
		PHP_VERSION < '4.2.0' && mt_srand ( ( double ) microtime () * 1000000 );
		for($i = 0; $i < $length; $i ++) {
			$hash .= $chars [mt_rand ( 0, $max )];
		}
		return $hash;
	}

    /**
     * 实现短信验证码接口
     *
     */
    protected function sendSms($number,$code){
        $send = array(
            'apikey' => 'fb5ef483e44b9556512a9febef376051',
            'mobile' => $number,
            'text'   => '【纵横通行账号】您的验证码是'.$code.'，15分钟内有效。'
        );

        $data = http_build_query($send);
        $res = json_decode($this->_httpClient($data));
        $resArr = $this->objectToArray($res);

        if (!empty($resArr) && $resArr["code"] == 0) return true;
        else {
            if (empty($this->errorMsg)) $this->errorMsg = isset($resArr["msg"]) ? $resArr["msg"] : '未知错误';
            return false;
        }
    }

    //对象转数组,使用get_object_vars返回对象属性组成的数组
    function objectToArray($array){
        if(is_object($array)) {
            $array = (array)$array;
        } if(is_array($array)) {
            foreach($array as $key=>$value) {
                $array[$key] = $this->objectToArray($value);
            }
        }
        return $array;
    }

    /**
     * POST方式访问短信接口
     * @param string $data
     * @return mixed
     */
    private function _httpClient($data) {
        $sms_api_url = 'http://sms.haotingyun.com/v2/sms/single_send.json';
        try {
            $ch = curl_init();
            curl_setopt($ch, CURLOPT_HTTPHEADER, array('Accept:text/plain;charset=utf-8', 'Content-Type:application/x-www-form-urlencoded','charset=utf-8'));
            curl_setopt($ch, CURLOPT_URL,$sms_api_url);
            curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
            curl_setopt($ch, CURLOPT_POST, 1);
            curl_setopt($ch, CURLOPT_TIMEOUT, 10);
            curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
            curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
            $res = curl_exec($ch);
            curl_close($ch);
            return $res;
        } catch (Exception $e) {
            $this->errorMsg = $e->getMessage();
            return false;
        }
    }

    /**
     * 随机生成验证码
     */
    function getRandomCheckCode() {
        $chars = '0123456789';
        mt_srand((double)microtime()*1000000*getmypid());
        $CheckCode="";
        while(strlen($CheckCode)<6)
            $CheckCode.=substr($chars,(mt_rand()%strlen($chars)),1);
        return $CheckCode;
    }

//    public function askUpdate(){
//        $authstr = $this->authcode($_POST['data']);
//        $ddddd = explode('&', urldecode($authstr));
//        foreach ($ddddd as $k => $v) {
//            list($key, $val) = explode('=', $v);
//            $TmpArray[$key] = $val;
//            $this->$key = $val;
//        }
//        $uname = $TmpArray['uname'];
//        if (!empty($uname)) {
//            $usersArray = Doo::db()->find('users', array(
//                    'where' => 'username=?',
//                    'param' => array($uname),
//                    'asArray' => TRUE
//                )
//            );
//
//            if (empty($usersArray)) {
//                exit('0');
//            } else {
//                //TODO:写入日志
//                Doo::loadModel('income_pay');
//                $incomepay = new IncomePay();
//                $incomepay->uid = $usersArray[0]['id'];
//                $incomepay->money = $this->money;
//                $incomepay->type = $this->type;
//                $incomepay->comefrom = $this->type == 2 ? '问答(zhzdwd.com)消费' : '问答(zhzdwd.com)收入';
//                $incomepay->addtime = $this->time;
//                $incomepay->insert();
//                exit('1');
//            }
//        } else {
//            exit('0');
//        }
//    }
//
//    public function wenkuUpdate(){
//        $authstr = $this->authcode($_POST['data']);
//        $ddddd = explode('&', urldecode($authstr));
//        foreach ($ddddd as $k => $v) {
//            list($key, $val) = explode('=', $v);
//            $TmpArray[$key] = $val;
//            $this->$key = $val;
//        }
//        //TODO:写入日志
//        Doo::loadModel('income_pay');
//        $incomepay = new IncomePay();
//        $incomepay->uid = $this->uid;
//        $incomepay->money = $this->money;
//        $incomepay->type = $this->type;
//        $incomepay->comefrom = $this->type == 2 ? '文库(zhzdwk.com)消费' : '文库(zhzdwk.com)收入';
//        $incomepay->addtime = $this->time;
//        $incomepay->insert();
//        exit('1');
//    }
    
}

?>