在fuelphp项目中,我为正在注册的用户提供了正常的后端。在前端我有登录,只有大学用户才能登录到后端(superadmin也无法从前端登录)。 我的问题是,如果我打开后端,前端然后刷新后端或前端用户登出后端。 我保持后端登录为默认的fuelphp登录(admin.php)。 代码:
public function action_login() {
// Already logged in
Auth::check() and Response::redirect('admin');
$val = Validation::forge();
if (Input::method() == 'POST') {
$val->add('email', 'Email or Username')
->add_rule('required');
$val->add('password', 'Password')
->add_rule('required');
if ($val->run()) {
$auth = Auth::instance();
// check the credentials. This assumes that you have the previous table created
if (Auth::check() or $auth->login(Input::post('email'), Input::post('password'))) {
// credentials ok, go right in
if (Config::get('auth.driver', 'Simpleauth') == 'Ormauth') {
$current_user = Model\Auth_User::find_by_username(Auth::get_screen_name());
} else {
$current_user = Model_User::find_by_username(Auth::get_screen_name());
}
Session::set_flash('success', e('Welcome, ' . $current_user->fullname));
Response::redirect('admin');
} else {
$this->template->set_global('login_error', 'Login failed.');
}
}
}
$this->template->title = 'Login';
$this->template->content = View::forge('admin/login', array('val' => $val), f
假); } 另外,我在不同的控制器(welcome.php)中保持了前端登录,如下所示
public function action_login_university() {
$val = Validation::forge();
if (Input::method() == 'POST') {
$auth = Auth::instance();
// check the credentials. This assumes that you have the previous table created
//if (Auth::check() and $auth->login(Input::post('email'), Input::post('password'))) {
if ($auth->login(Input::post('email'), Input::post('password'))) {
// credentials ok, go right in
if (Config::get('auth.driver', 'Simpleauth') == 'Ormauth') {
$current_user = Model\Auth_User::find_by_username(Auth::get_screen_name());
} else {
$current_user = Model_User::find_by_username(Auth::get_screen_name());
}
$group_id = $current_user->group_id;
$data['uname'] = Input::post('email');
$data['psword'] = Input::post('password');
$data['gid'] = $group_id;
if($current_user->group_id == '8') {
$data['msg'] = 'success';
$data['url'] = Input::post('admin_url');
} else {
$data['msg'] = 'error';
$data['url'] = Input::post('current_url');
}
} else {
$data['msg'] = 'error';
$data['url'] = Input::post('current_url');
}
echo json_encode($data);
die;
}
}
我已经通过前端的ajax进行了登录。 欢迎任何帮助/建议。谢谢。
答案 0 :(得分:0)
更简单的方法是为每种类型的用户创建基本控制器。
例如,将其称为Controller_Users和Controller_Admin。这些可以扩展另一个控制器,如Contoller_Template等。
在before()方法中的用户控制器中。确保他们有权访问。我喜欢使用群组。如果他们属于组用户,则不执行任何操作。如果没有,请将它们发送到错误页面。
现在所有用户控制器都使用Controller_Users。
类似的东西:
<?php
/**
* The Users Controller.
*
* A controller to do user authentication for the Users section.
*
* @version 1.0.0
* @package Controllers\Users
* @extends Controller_Base
*/
class Controller_Users extends Controller_Base
{
/**
* @var string $template The template to use for this controller
*/
public $template = 'template_users';
public function before() {
parent::before();
$auth = \Auth::instance();
if ($auth->check()) {
$group_id = $auth->get_groups();
if (!$group_id) {
\Session::set('error_msg', 'You do not have access to this application.');
\Response::redirect(\Uri::generate('errors'));
} else {
if ($this->current_user->status === 'DISABLED') {
\Session::set('error_msg', 'Your user account has been disabled.');
\Response::redirect(\Uri::generate('errors'));
}
}
} else {
\Session::set('redirect_url', \Uri::current());
\Response::redirect(\Uri::generate('login/'));
}
}
}