在fuelphp项目中,我为注册用户提供了一个正常的后端。在前端,我有一个只有大学用户才能登录到后端的登录(superadmin也不能从前端登录)。我的问题是,如果我同时打开后端、前端,然后在刷新后端时,或者前端用户从后端注销。我将后端登录维护为默认的fuelphp登录(admin.php)。代码:
public function action_login() {
// Already logged in
Auth::check() and Response::redirect('admin');
$val = Validation::forge();
if (Input::method() == 'POST') {
$val->add('email', 'Email or Username')
->add_rule('required');
$val->add('password', 'Password')
->add_rule('required');
if ($val->run()) {
$auth = Auth::instance();
// check the credentials. This assumes that you have the previous table created
if (Auth::check() or $auth->login(Input::post('email'), Input::post('password'))) {
// credentials ok, go right in
if (Config::get('auth.driver', 'Simpleauth') == 'Ormauth') {
$current_user = Model'Auth_User::find_by_username(Auth::get_screen_name());
} else {
$current_user = Model_User::find_by_username(Auth::get_screen_name());
}
Session::set_flash('success', e('Welcome, ' . $current_user->fullname));
Response::redirect('admin');
} else {
$this->template->set_global('login_error', 'Login failed.');
}
}
}
$this->template->title = 'Login';
$this->template->content = View::forge('admin/login', array('val' => $val), f
alse);}此外,我在不同的控制器(welcome.php)中维护了如下前端登录
public function action_login_university() {
$val = Validation::forge();
if (Input::method() == 'POST') {
$auth = Auth::instance();
// check the credentials. This assumes that you have the previous table created
//if (Auth::check() and $auth->login(Input::post('email'), Input::post('password'))) {
if ($auth->login(Input::post('email'), Input::post('password'))) {
// credentials ok, go right in
if (Config::get('auth.driver', 'Simpleauth') == 'Ormauth') {
$current_user = Model'Auth_User::find_by_username(Auth::get_screen_name());
} else {
$current_user = Model_User::find_by_username(Auth::get_screen_name());
}
$group_id = $current_user->group_id;
$data['uname'] = Input::post('email');
$data['psword'] = Input::post('password');
$data['gid'] = $group_id;
if($current_user->group_id == '8') {
$data['msg'] = 'success';
$data['url'] = Input::post('admin_url');
} else {
$data['msg'] = 'error';
$data['url'] = Input::post('current_url');
}
} else {
$data['msg'] = 'error';
$data['url'] = Input::post('current_url');
}
echo json_encode($data);
die;
}
}
我已经在前端通过ajax完成了登录。欢迎任何帮助/建议。提前谢谢。
更简单的方法是为每种类型的用户创建基本控制器。
例如,将其称为Controller_Users和Controller_Admin。这些可以扩展另一个控制器,如Contoller_Template等
在before()方法中的Controllers for Users中。确保他们可以访问。我喜欢用小组来做这件事。如果它们属于用户组,则不执行任何操作。如果没有,请将它们发送到错误页面。
现在,在用户的所有控制器中,输入Controller_Users。
类似于:
<?php
/**
* The Users Controller.
*
* A controller to do user authentication for the Users section.
*
* @version 1.0.0
* @package Controllers'Users
* @extends Controller_Base
*/
class Controller_Users extends Controller_Base
{
/**
* @var string $template The template to use for this controller
*/
public $template = 'template_users';
public function before() {
parent::before();
$auth = 'Auth::instance();
if ($auth->check()) {
$group_id = $auth->get_groups();
if (!$group_id) {
'Session::set('error_msg', 'You do not have access to this application.');
'Response::redirect('Uri::generate('errors'));
} else {
if ($this->current_user->status === 'DISABLED') {
'Session::set('error_msg', 'Your user account has been disabled.');
'Response::redirect('Uri::generate('errors'));
}
}
} else {
'Session::set('redirect_url', 'Uri::current());
'Response::redirect('Uri::generate('login/'));
}
}
}