Initial import
This commit is contained in:
291
application/controllers/v1/system/Auth.php
Normal file
291
application/controllers/v1/system/Auth.php
Normal file
@@ -0,0 +1,291 @@
|
||||
<?php
|
||||
/*
|
||||
### Auth API
|
||||
- Functions
|
||||
- login x
|
||||
- logout
|
||||
template function {
|
||||
$this->sys_debug();
|
||||
try {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
exit;
|
||||
}
|
||||
$prm = $this->sys_input;
|
||||
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
|
||||
}
|
||||
*/
|
||||
|
||||
class Auth extends MY_Controller
|
||||
{
|
||||
var $db_onedev;
|
||||
public function index()
|
||||
{
|
||||
echo "AUTH API";
|
||||
}
|
||||
public function __construct()
|
||||
{
|
||||
parent::__construct();
|
||||
$this->db_onedev = $this->load->database("onedev", true);
|
||||
}
|
||||
function isLogin()
|
||||
{
|
||||
if (!$this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
} else {
|
||||
$prm = $this->sys_input;
|
||||
$data = array(
|
||||
"user" => $this->sys_user
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
}
|
||||
}
|
||||
function multi_login()
|
||||
{
|
||||
// check in m_user
|
||||
//$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
|
||||
$prm = $this->sys_input;
|
||||
$sql = "select M_UserEmail from m_user where
|
||||
M_UserEmail = ? and M_UserIsActive = 'Y'";
|
||||
$qry = $this->db->query($sql, [$prm["username"]]);
|
||||
if (!$qry) {
|
||||
$message = $this->db->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$rows = $qry->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$this->login();
|
||||
exit;
|
||||
}
|
||||
// pic
|
||||
// $sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
// $query = $this->db->query("select Mgm_McuID M_UserID,
|
||||
// Mgm_McuPicEmail M_UserEmail, Mgm_McuPicEmail as M_UserUsername,
|
||||
// 'pic' M_UserGroupDashboard, 1 as M_UserDefaultT_SampleStationID,
|
||||
// Mgm_McuPicEmail M_StaffName, 'N' as is_courier,
|
||||
// IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
// from mgm_mcu
|
||||
// JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
// and Mgm_McuPicEmail=? and Mgm_McuPicPassword=?
|
||||
// and Mgm_McuIsActive = 'Y'
|
||||
// ", array($prm["username"], $sm_password));
|
||||
// if (!$query) {
|
||||
// $message = $this->db->error();
|
||||
// $this->sys_error($message);
|
||||
// exit;
|
||||
// }
|
||||
// // echo $this->db->last_query();
|
||||
// $rows = $query->result_array();
|
||||
// if (count($rows) > 0) {
|
||||
// $user = $rows[0];
|
||||
// $user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
// $user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
// //v2
|
||||
// $user['version'] = 'v2';
|
||||
// $user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
// $token = JWT::encode($user, $this->SECRET_KEY);
|
||||
// $data = array(
|
||||
// "user" => $user,
|
||||
// "token" => $token,
|
||||
// "type" => "pic"
|
||||
// );
|
||||
// $this->sys_ok($data);
|
||||
// exit;
|
||||
// }
|
||||
|
||||
// pic_v2
|
||||
$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
$sql_pic = "
|
||||
SELECT
|
||||
Mgm_McuUserID AS M_UserID,
|
||||
Mgm_McuUserEmail AS M_UserEmail,
|
||||
Mgm_McuUserEmail AS M_UserUsername,
|
||||
'pic' AS M_UserGroupDashboard,
|
||||
1 AS M_UserDefaultT_SampleStationID,
|
||||
Mgm_McuUserEmail AS M_StaffName,
|
||||
'N' as is_courier,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
FROM mgm_mcuuser
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
AND Mgm_McuUserEmail = ? AND Mgm_McuUserPassword = ?
|
||||
AND Mgm_McuUserIsActive = 'Y'
|
||||
";
|
||||
$query = $this->db->query($sql_pic, array($prm["username"], $sm_password));
|
||||
if (!$query) {
|
||||
$message = $this->db->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "pic"
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
|
||||
|
||||
//patient
|
||||
$sql = "
|
||||
select authPatientID M_UserID,
|
||||
authPatientEmail M_UserEmail, authPatientEmail as M_UserUsername,
|
||||
'patient' M_UserGroupDashboard, 1 as M_UserDefaultT_SampleStationID,
|
||||
M_PatientNAme M_StaffName, 'N' as is_courier,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
from auth_patient
|
||||
join m_patient on authPatientM_PatientID = M_PatientID
|
||||
and authPatientEmail=? and authPatientPassword=?
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
order by authPatientID desc limit 0,1";
|
||||
|
||||
$query = $this->db->query($sql, array($prm["username"], $sm_password));
|
||||
if (!$query) {
|
||||
$message = $this->db->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "patient"
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
}
|
||||
function login()
|
||||
{
|
||||
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
//existing password enc
|
||||
$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
$query = $this->db_onedev->query("select M_UserID,M_UserEmail,M_UserEmail as M_UserUsername, IFNULL(M_UserLastActivityUrl,M_UserGroupDashboard) as M_UserGroupDashboard, 1 as M_UserDefaultT_SampleStationID,
|
||||
M_StaffName, 'N' as is_courier,
|
||||
IFNULL(M_BranchName,'') as M_BranchName,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
from m_user
|
||||
join m_usergroup ON M_UserM_UserGroupID = M_UserGroupID
|
||||
LEFT JOIN m_userlocation ON M_UserLocationM_UserID = M_UserID
|
||||
LEFT JOIN m_branch ON M_UserLocationM_BranchID = M_BranchID
|
||||
left join m_staff on M_UserM_StaffID = M_StaffID
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
LEFT JOIN m_userlastactivity ON M_UserLastActivityM_UserID = M_UserID AND M_UserLastActivityIsActive = 'Y'
|
||||
where M_UserEmail=? and M_UserPassword=?
|
||||
and M_UserIsActive = 'Y'
|
||||
", array($prm["username"], $sm_password));
|
||||
//echo $query;
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
// echo $this->db_onedev->last_query();
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "cpone"
|
||||
);
|
||||
|
||||
$query = $this->db_onedev->query("update m_user SET M_UserIsLoggedIn = 'Y', M_UserLastAccess = now(), M_UserActiveToken = '{$token}' WHERE M_UserID = ?
|
||||
", array($user['M_UserID']));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$query = $this->db_onedev->query("INSERT INTO cpone_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
", array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'], 'LOGIN', 'SUCCESS', $prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
$query = $this->db_onedev->query("INSERT INTO cpone_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
", array(date('Y-m-d H:i:s'), $this->input->ip_address(), 'LOGIN', 'FAILED', $prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$this->sys_error_db("Invalid UserName / Password");
|
||||
} catch (Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
|
||||
function logout()
|
||||
{
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
|
||||
$query = $this->db_onedev->query(
|
||||
"
|
||||
UPDATE m_user
|
||||
SET M_UserIsLoggedIn = 'N', M_UserActiveToken = null
|
||||
WHERE M_UserID = ?",
|
||||
array($this->sys_user['M_UserID'])
|
||||
);
|
||||
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->db_onedev->query("INSERT INTO cpone_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
", array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'], 'LOGOUT', 'SUCCESS', $this->sys_user['M_UserEmail']));
|
||||
$this->sys_ok("OK");
|
||||
} catch (Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
}
|
||||
141
application/controllers/v1/system/Auth.php--010320
Normal file
141
application/controllers/v1/system/Auth.php--010320
Normal file
@@ -0,0 +1,141 @@
|
||||
<?php
|
||||
/*
|
||||
### Auth API
|
||||
- Functions
|
||||
- login x
|
||||
- logout
|
||||
template function {
|
||||
$this->sys_debug();
|
||||
try {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
exit;
|
||||
}
|
||||
$prm = $this->sys_input;
|
||||
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
|
||||
}
|
||||
*/
|
||||
|
||||
class Auth extends MY_Controller {
|
||||
var $db_onedev;
|
||||
public function index()
|
||||
{
|
||||
echo "AUTH API";
|
||||
}
|
||||
public function __construct()
|
||||
{
|
||||
parent::__construct();
|
||||
$this->db_onedev = $this->load->database("onedev", true);
|
||||
}
|
||||
function isLogin() {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
} else {
|
||||
$prm = $this->sys_input;
|
||||
$data = array(
|
||||
"user" => $this->sys_user
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
}
|
||||
}
|
||||
function login() {
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
//existing password enc
|
||||
$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
$query = $this->db_onedev->query("select M_UserID,M_UserUsername, M_UserGroupDashboard, M_UserDefaultT_SampleStationID,
|
||||
M_StaffName
|
||||
from m_user
|
||||
join m_usergroup ON M_UserM_UserGroupID = M_UserGroupID
|
||||
and M_UserIsActive = 'Y' and M_UserGroupIsActive = 'Y'
|
||||
left join m_staff on M_UserM_StaffID = M_StaffID
|
||||
where M_UserUsername=? and M_UserPassword=?
|
||||
and M_UserIsActive = 'Y'
|
||||
",array($prm["username"], $sm_password));
|
||||
//echo $query;
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0 ) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
$token = JWT::encode($user,$this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token
|
||||
);
|
||||
|
||||
$query = $this->db_onedev->query("update m_user SET M_UserIsLoggedIn = 'Y', M_UserLastAccess = now(), M_UserActiveToken = '{$token}' WHERE M_UserID = ?
|
||||
",array($user['M_UserID']));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$query = $this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'],'LOGIN','SUCCESS',$prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
$query = $this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'),$this->input->ip_address(),'LOGIN','FAILED',$prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$this->sys_error_db("Invalid UserName / Password");
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
|
||||
function logout()
|
||||
{
|
||||
$prm = $this->sys_input;
|
||||
try
|
||||
{
|
||||
|
||||
$query = $this->db_onedev->query("
|
||||
UPDATE m_user
|
||||
SET M_UserIsLoggedIn = 'N', M_UserActiveToken = null
|
||||
WHERE M_UserID = ?",
|
||||
array($this->sys_user['M_UserID']));
|
||||
|
||||
if (!$query)
|
||||
{
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'], 'LOGOUT', 'SUCCESS', $this->sys_user['M_UserUsername']));
|
||||
$this->sys_ok("OK");
|
||||
|
||||
}
|
||||
catch(Exception $exc)
|
||||
{
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
}
|
||||
?>
|
||||
141
application/controllers/v1/system/Auth.php-010320
Normal file
141
application/controllers/v1/system/Auth.php-010320
Normal file
@@ -0,0 +1,141 @@
|
||||
<?php
|
||||
/*
|
||||
### Auth API
|
||||
- Functions
|
||||
- login x
|
||||
- logout
|
||||
template function {
|
||||
$this->sys_debug();
|
||||
try {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
exit;
|
||||
}
|
||||
$prm = $this->sys_input;
|
||||
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
|
||||
}
|
||||
*/
|
||||
|
||||
class Auth extends MY_Controller {
|
||||
var $db_onedev;
|
||||
public function index()
|
||||
{
|
||||
echo "AUTH API";
|
||||
}
|
||||
public function __construct()
|
||||
{
|
||||
parent::__construct();
|
||||
$this->db_onedev = $this->load->database("onedev", true);
|
||||
}
|
||||
function isLogin() {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
} else {
|
||||
$prm = $this->sys_input;
|
||||
$data = array(
|
||||
"user" => $this->sys_user
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
}
|
||||
}
|
||||
function login() {
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
//existing password enc
|
||||
$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
$query = $this->db_onedev->query("select M_UserID,M_UserUsername, M_UserGroupDashboard, M_UserDefaultT_SampleStationID,
|
||||
M_StaffName
|
||||
from m_user
|
||||
join m_usergroup ON M_UserM_UserGroupID = M_UserGroupID
|
||||
and M_UserIsActive = 'Y' and M_UserGroupIsActive = 'Y'
|
||||
left join m_staff on M_UserM_StaffID = M_StaffID
|
||||
where M_UserUsername=? and M_UserPassword=?
|
||||
and M_UserIsActive = 'Y'
|
||||
",array($prm["username"], $sm_password));
|
||||
//echo $query;
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0 ) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
$token = JWT::encode($user,$this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token
|
||||
);
|
||||
|
||||
$query = $this->db_onedev->query("update m_user SET M_UserIsLoggedIn = 'Y', M_UserLastAccess = now(), M_UserActiveToken = '{$token}' WHERE M_UserID = ?
|
||||
",array($user['M_UserID']));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$query = $this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'],'LOGIN','SUCCESS',$prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
$query = $this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'),$this->input->ip_address(),'LOGIN','FAILED',$prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$this->sys_error_db("Invalid UserName / Password");
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
|
||||
function logout()
|
||||
{
|
||||
$prm = $this->sys_input;
|
||||
try
|
||||
{
|
||||
|
||||
$query = $this->db_onedev->query("
|
||||
UPDATE m_user
|
||||
SET M_UserIsLoggedIn = 'N', M_UserActiveToken = null
|
||||
WHERE M_UserID = ?",
|
||||
array($this->sys_user['M_UserID']));
|
||||
|
||||
if (!$query)
|
||||
{
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'], 'LOGOUT', 'SUCCESS', $this->sys_user['M_UserUsername']));
|
||||
$this->sys_ok("OK");
|
||||
|
||||
}
|
||||
catch(Exception $exc)
|
||||
{
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
}
|
||||
?>
|
||||
528
application/controllers/v1/system/Auth_v2.php
Normal file
528
application/controllers/v1/system/Auth_v2.php
Normal file
@@ -0,0 +1,528 @@
|
||||
<?php
|
||||
/*
|
||||
### Auth API
|
||||
- Functions
|
||||
- login x
|
||||
- logout
|
||||
template function {
|
||||
$this->sys_debug();
|
||||
try {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
exit;
|
||||
}
|
||||
$prm = $this->sys_input;
|
||||
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
|
||||
}
|
||||
*/
|
||||
|
||||
class Auth_V2 extends MY_Controller
|
||||
{
|
||||
var $db_onedev;
|
||||
public function index()
|
||||
{
|
||||
echo "AUTH API";
|
||||
}
|
||||
public function __construct()
|
||||
{
|
||||
parent::__construct();
|
||||
$this->db_onedev = $this->load->database("onedev", true);
|
||||
}
|
||||
function isLogin()
|
||||
{
|
||||
if (!$this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
} else {
|
||||
$prm = $this->sys_input;
|
||||
$data = array(
|
||||
"user" => $this->sys_user
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
}
|
||||
}
|
||||
function multi_login()
|
||||
{
|
||||
// check in m_user
|
||||
//$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
|
||||
$prm = $this->sys_input;
|
||||
$sql = "select M_UserEmail from m_user where
|
||||
M_UserEmail = ? and M_UserIsActive = 'Y'";
|
||||
$qry = $this->db->query($sql, [$prm["username"]]);
|
||||
if (!$qry) {
|
||||
$message = $this->db->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$rows = $qry->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$this->login();
|
||||
exit;
|
||||
}
|
||||
|
||||
// pic
|
||||
$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
$sql_pic = "
|
||||
SELECT
|
||||
Mgm_McuUserID AS M_UserID,
|
||||
Mgm_McuUserEmail AS M_UserEmail,
|
||||
Mgm_McuUserEmail AS M_UserUsername,
|
||||
'pic' AS M_UserGroupDashboard,
|
||||
1 AS M_UserDefaultT_SampleStationID,
|
||||
Mgm_McuUserEmail AS M_StaffName,
|
||||
'N' as is_courier,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
FROM mgm_mcuuser
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
AND Mgm_McuUserEmail = ? AND Mgm_McuUserPassword = ?
|
||||
AND Mgm_McuUserIsActive = 'Y'
|
||||
";
|
||||
$query = $this->db->query($sql_pic, array($prm["username"], $sm_password));
|
||||
if (!$query) {
|
||||
$message = $this->db->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "pic"
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
|
||||
|
||||
//patient
|
||||
$sql = "
|
||||
select authPatientID M_UserID,
|
||||
authPatientEmail M_UserEmail, authPatientEmail as M_UserUsername,
|
||||
'patient' M_UserGroupDashboard, 1 as M_UserDefaultT_SampleStationID,
|
||||
M_PatientNAme M_StaffName, 'N' as is_courier,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
from auth_patient
|
||||
join m_patient on authPatientM_PatientID = M_PatientID
|
||||
and authPatientEmail=? and authPatientPassword=?
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
order by authPatientID desc limit 0,1";
|
||||
|
||||
$query = $this->db->query($sql, array($prm["username"], $sm_password));
|
||||
if (!$query) {
|
||||
$message = $this->db->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "patient"
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
}
|
||||
|
||||
function login()
|
||||
{
|
||||
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
$branchID = $prm["branchID"];
|
||||
|
||||
//existing password enc
|
||||
$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
$query = $this->db_onedev->query("select M_UserID,M_UserEmail,M_UserEmail as M_UserUsername, IFNULL(M_UserLastActivityUrl,M_UserGroupDashboard) as M_UserGroupDashboard, 1 as M_UserDefaultT_SampleStationID,
|
||||
M_StaffName, 'N' as is_courier, M_BranchID, M_BranchName,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
from m_user
|
||||
join m_usergroup ON M_UserM_UserGroupID = M_UserGroupID
|
||||
left join m_staff on M_UserM_StaffID = M_StaffID
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
LEFT JOIN m_userlastactivity ON M_UserLastActivityM_UserID = M_UserID AND M_UserLastActivityIsActive = 'Y'
|
||||
LEFT JOIN m_branch ON M_BranchID = ? AND M_BranchIsActive = 'Y'
|
||||
where M_UserEmail = ? and M_UserPassword = ?
|
||||
and M_UserIsActive = 'Y'
|
||||
", array($branchID, $prm["username"], $sm_password));
|
||||
//echo $query;
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
// echo $this->db_onedev->last_query();
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0) {
|
||||
if ($branchID == "0") {
|
||||
$rows[0]['M_BranchID'] = "0";
|
||||
$rows[0]['M_BranchName'] = "MCU ONSITE";
|
||||
}
|
||||
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "cpone"
|
||||
);
|
||||
|
||||
$query = $this->db_onedev->query("update m_user SET
|
||||
M_UserIsLoggedIn = 'Y', M_UserLastAccess = now(), M_UserIsLoggedBranch = 'Y',
|
||||
M_UserActiveToken = '{$token}', M_UserLoginM_BranchID = '{$branchID}'
|
||||
WHERE M_UserID = ?
|
||||
", array($user['M_UserID']));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$query = $this->db_onedev->query("INSERT INTO cpone_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
", array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'], 'LOGIN', 'SUCCESS', $prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
|
||||
$query = $this->db_onedev->query("INSERT INTO cpone_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
", array(date('Y-m-d H:i:s'), $this->input->ip_address(), 'LOGIN', 'FAILED', $prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_error_db("Invalid UserName / Password");
|
||||
} catch (Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
|
||||
function logout()
|
||||
{
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
|
||||
$query = $this->db_onedev->query(
|
||||
"
|
||||
UPDATE m_user
|
||||
SET M_UserIsLoggedIn = 'N', M_UserActiveToken = null
|
||||
WHERE M_UserID = ?",
|
||||
array($this->sys_user['M_UserID'])
|
||||
);
|
||||
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->db_onedev->query("INSERT INTO cpone_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
", array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'], 'LOGOUT', 'SUCCESS', $this->sys_user['M_UserEmail']));
|
||||
$this->sys_ok("OK");
|
||||
} catch (Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
|
||||
function list_branch()
|
||||
{
|
||||
$query = "SELECT
|
||||
M_BranchID,
|
||||
M_BranchCode,
|
||||
M_BranchName
|
||||
FROM m_branch
|
||||
WHERE M_BranchIsActive = 'Y'
|
||||
";
|
||||
$qry = $this->db_onedev->query($query);
|
||||
if (!$qry) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$data = $qry->result_array();
|
||||
|
||||
$onsite = [
|
||||
"M_BranchID" => "0",
|
||||
"M_BranchCode" => "00000000",
|
||||
"M_BranchName" => "MCU ONSITE"
|
||||
];
|
||||
|
||||
$data[] = $onsite;
|
||||
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
|
||||
function multi_login_v2() {
|
||||
$prm = $this->sys_input;
|
||||
|
||||
// check if its admin
|
||||
$sql = "SELECT M_UserEmail
|
||||
FROM m_user
|
||||
JOIN m_userlocation ON M_UserLocationM_UserID = M_UserID
|
||||
WHERE M_UserEmail = ?
|
||||
AND M_UserIsActive = 'Y'";
|
||||
$qry = $this->db->query($sql, [$prm['username']]);
|
||||
if (!$qry) {
|
||||
$msg = $this->db->error();
|
||||
$this->sys_error_db($msg);
|
||||
exit;
|
||||
}
|
||||
|
||||
$rows = $qry->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$this->login_v2();
|
||||
exit;
|
||||
}
|
||||
|
||||
// check if its pic
|
||||
$sm_password = md5($this->one_salt . $prm['password'] . $this->one_salt);
|
||||
$sqlpic = "SELECT
|
||||
Mgm_McuUserID AS M_UserID,
|
||||
Mgm_McuUserEmail AS M_UserEmail,
|
||||
Mgm_McuUserEmail AS M_UserUsername,
|
||||
'pic' AS M_UserGroupDashboard,
|
||||
1 AS M_UserDefaultT_SampleStationID,
|
||||
Mgm_McuUserEmail AS M_StaffName,
|
||||
'N' as is_courier,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
FROM mgm_mcuuser
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
AND Mgm_McuUserEmail = ?
|
||||
AND Mgm_McuUserPassword = ?
|
||||
AND Mgm_McuUserIsActive = 'Y'
|
||||
";
|
||||
$qrypic = $this->db->query($sqlpic, [$prm['username'], $sm_password]);
|
||||
if (!$qrypic) {
|
||||
$msg = $this->db->error();
|
||||
$this->sys_error($msg);
|
||||
exit;
|
||||
}
|
||||
|
||||
$rowpic = $qrypic->result_array();
|
||||
if (count($rowpic) > 0) {
|
||||
$user = $rowpic[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "pic"
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
|
||||
// check if its patient
|
||||
$sqlpat = "SELECT
|
||||
authPatientID M_UserID,
|
||||
authPatientEmail M_UserEmail,
|
||||
authPatientEmail AS M_UserUsername,
|
||||
'patient' M_UserGroupDashboard,
|
||||
1 AS M_UserDefaultT_SampleStationID,
|
||||
M_PatientNAme M_StaffName,
|
||||
'N' as is_courier,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) as time_autologout
|
||||
FROM auth_patient
|
||||
JOIN m_patient ON authPatientM_PatientID = M_PatientID
|
||||
AND authPatientEmail= ?
|
||||
AND authPatientPassword= ?
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
ORDER BY authPatientID DESC LIMIT 0,1";
|
||||
$qrypat = $this->db->query($sqlpat, [$prm['username'], $sm_password]);
|
||||
if (!$qrypat) {
|
||||
$msg = $this->db->error();
|
||||
$this->sys_error($msg);
|
||||
exit;
|
||||
}
|
||||
|
||||
$rowpat = $qrypat->result_array();
|
||||
if (count($rowpat) > 0) {
|
||||
$user = $rowpat[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
//v2
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "patient"
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_error("Invalid username / password");
|
||||
}
|
||||
|
||||
function login_v2() {
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
$sm_password = md5($this->one_salt . $prm['password'] . $this->one_salt);
|
||||
$sql = "SELECT
|
||||
M_UserID,
|
||||
M_UserEmail,
|
||||
M_UserEmail AS M_UserUsername,
|
||||
IFNULL(M_UserLastActivityUrl, M_UserGroupDashboard) AS M_UserGroupDashboard,
|
||||
1 AS M_UserDefaultT_SampleStationID,
|
||||
M_StaffName,
|
||||
'N' AS is_courier,
|
||||
M_UserLocationM_BranchID AS M_BranchID,
|
||||
M_BranchName,
|
||||
IFNULL(S_SystemsAutoLogoutTime,0) AS time_autologout
|
||||
FROM m_user
|
||||
JOIN m_usergroup ON M_UserM_UserGroupID = M_UserGroupID
|
||||
JOIN m_userlocation ON M_UserLocationM_UserID = M_UserID
|
||||
LEFT JOIN m_staff ON M_UserM_StaffID = M_StaffID
|
||||
JOIN conf_systems ON S_SystemsIsActive = 'Y'
|
||||
LEFT JOIN m_userlastactivity ON M_UserLastActivityM_UserID = M_UserID
|
||||
AND M_UserLastActivityIsActive = 'Y'
|
||||
LEFT JOIN m_branch ON M_BranchID = M_UserLocationM_BranchID
|
||||
AND M_BranchIsActive = 'Y'
|
||||
WHERE M_UserEmail = ?
|
||||
AND M_UserPassword = ?
|
||||
AND M_UserIsActive = 'Y'
|
||||
AND CURRENT_DATE() BETWEEN DATE(M_StaffStartDate) AND DATE(M_StaffEndDate)";
|
||||
$query = $this->db_onedev->query($sql, [$prm['username'], $sm_password]);
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0) {
|
||||
$user = $rows[0];
|
||||
$loggedBranch = 'Y';
|
||||
if ($user['M_BranchID'] == '0') {
|
||||
$user['M_BranchName'] = "MCU ONSITE";
|
||||
$loggedBranch = 'N';
|
||||
}
|
||||
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
$user['version'] = 'v2';
|
||||
$user['last-login'] = date('Y-m-d H:i:s');
|
||||
|
||||
$token = JWT::encode($user, $this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token,
|
||||
"type" => "cpone"
|
||||
);
|
||||
|
||||
$sqlu = "UPDATE m_user SET
|
||||
M_UserIsLoggedIn = 'Y',
|
||||
M_UserLastAccess = NOW(),
|
||||
M_UserIsLoggedBranch = ?,
|
||||
M_UserActiveToken = ?,
|
||||
M_UserLoginM_BranchID = ?
|
||||
WHERE M_UserID = ?";
|
||||
$qryu = $this->db_onedev->query($sqlu, [
|
||||
$loggedBranch, $token, $user['M_BranchID'], $user['M_UserID']
|
||||
]);
|
||||
if (!$qryu) {
|
||||
$msge = $this->db_onedev->error();
|
||||
$this->sys_error($msge);
|
||||
exit;
|
||||
};
|
||||
|
||||
$sqlog = "INSERT INTO cpone_log.log_login(
|
||||
Log_LoginDateTime,
|
||||
Log_LoginIP,
|
||||
Log_LoginType,
|
||||
Log_LoginStatus,
|
||||
Log_LoginLogin
|
||||
) VALUES (?,?,?,?,?)";
|
||||
$qrlog = $this->db_onedev->query($sqlog, [
|
||||
date('Y-m-d H:i:s'),
|
||||
$_SERVER['REMOTE_ADDR'],
|
||||
'LOGIN',
|
||||
'SUCCESS',
|
||||
$prm['username']
|
||||
]);
|
||||
if (!$qrlog) {
|
||||
$msg = $this->db_onedev->error();
|
||||
$this->sys_error($msg);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
|
||||
$sqlog = "INSERT INTO cpone_log.log_login(
|
||||
Log_LoginDateTime,
|
||||
Log_LoginIP,
|
||||
Log_LoginType,
|
||||
Log_LoginStatus,
|
||||
Log_LoginLogin
|
||||
) VALUES (?,?,?,?,?)";
|
||||
$qrlog = $this->db_onedev->query($sqlog, [
|
||||
date('Y-m-d H:i:s'),
|
||||
$this->input->ip_address(),
|
||||
'LOGIN',
|
||||
'FAILED',
|
||||
$prm['username']
|
||||
]);
|
||||
if (!$qrlog) {
|
||||
$msg = $this->db_onedev->error();
|
||||
$this->sys_error($msg);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_error("Invalid UserName / Password");
|
||||
} catch(Exception $exc) {
|
||||
$msg = $exc->getMessage();
|
||||
$this->sys_error($msg);
|
||||
}
|
||||
}
|
||||
}
|
||||
171
application/controllers/v1/system/Authv2.php
Normal file
171
application/controllers/v1/system/Authv2.php
Normal file
@@ -0,0 +1,171 @@
|
||||
<?php
|
||||
/*
|
||||
### Auth API
|
||||
- Functions
|
||||
- login x
|
||||
- logout
|
||||
template function {
|
||||
$this->sys_debug();
|
||||
try {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
exit;
|
||||
}
|
||||
$prm = $this->sys_input;
|
||||
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
|
||||
}
|
||||
*/
|
||||
|
||||
class Authv2 extends MY_Controller {
|
||||
var $db_onedev;
|
||||
public function index()
|
||||
{
|
||||
echo "AUTH API";
|
||||
}
|
||||
public function __construct()
|
||||
{
|
||||
parent::__construct();
|
||||
$this->db_onedev = $this->load->database("onedev", true);
|
||||
}
|
||||
function isLogin() {
|
||||
if (! $this->isLogin) {
|
||||
$this->sys_error("Invalid Token");
|
||||
} else {
|
||||
$prm = $this->sys_input;
|
||||
$data = array(
|
||||
"user" => $this->sys_user
|
||||
);
|
||||
$this->sys_ok($data);
|
||||
}
|
||||
}
|
||||
function getsatellite(){
|
||||
$sql = $this->db_onedev->query("SELECT M_BranchHaveSatellite FROM m_branch
|
||||
WHERE M_BranchIsDefault = 'Y' AND M_BranchIsActive = 'Y'")->row();
|
||||
$hassatellite = $sql->M_BranchHaveSatellite;
|
||||
$rows = [];
|
||||
$query =" SELECT 0 as M_SatelliteID, M_BranchName as M_SatelliteName
|
||||
FROM m_branch
|
||||
WHERE M_BranchIsActive = 'Y' AND M_BranchIsDefault = 'Y'
|
||||
|
||||
UNION SELECT M_SatelliteID, M_SatelliteName
|
||||
FROM m_satellite
|
||||
WHERE
|
||||
M_SatelliteIsActive = 'Y'";
|
||||
//echo $query;
|
||||
$rows['satellites'] = $this->db_onedev->query($query)->result_array();
|
||||
|
||||
$result = array(
|
||||
"total" => count($rows) ,
|
||||
"records" => $rows,
|
||||
"hassatellite" => $hassatellite
|
||||
);
|
||||
$this->sys_ok($result);
|
||||
exit;
|
||||
}
|
||||
function login() {
|
||||
$prm = $this->sys_input;
|
||||
try {
|
||||
//existing password enc
|
||||
$sm_password = md5($this->one_salt . $prm["password"] . $this->one_salt);
|
||||
$query = $this->db_onedev->query("select M_UserID,M_UserUsername, M_UserGroupDashboard, M_UserDefaultT_SampleStationID,
|
||||
M_StaffName, IF(M_CourierID = NULL, 'N','Y') as is_courier
|
||||
from m_user
|
||||
join m_usergroup ON M_UserM_UserGroupID = M_UserGroupID
|
||||
left join m_staff on M_UserM_StaffID = M_StaffID
|
||||
left join m_courier ON M_CourierM_StaffID = M_StaffID AND M_CourierIsActive = 'Y'
|
||||
where M_UserUsername=? and M_UserPassword=?
|
||||
and M_UserIsActive = 'Y'
|
||||
",array($prm["username"], $sm_password));
|
||||
//echo $query;
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
$rows = $query->result_array();
|
||||
if (count($rows) > 0 ) {
|
||||
$user = $rows[0];
|
||||
$user['ip'] = $_SERVER['REMOTE_ADDR'];
|
||||
$user['agent'] = $_SERVER['HTTP_USER_AGENT'];
|
||||
if (isset($prm['M_SatelliteID'])) {
|
||||
$user['M_SatelliteID'] = $prm['M_SatelliteID'];
|
||||
} else {
|
||||
$user['M_SatelliteID'] = 0;
|
||||
}
|
||||
$token = JWT::encode($user,$this->SECRET_KEY);
|
||||
$data = array(
|
||||
"user" => $user,
|
||||
"token" => $token
|
||||
);
|
||||
|
||||
$query = $this->db_onedev->query("update m_user SET M_UserIsLoggedIn = 'Y', M_UserLastAccess = now(), M_UserActiveToken = '{$token}' WHERE M_UserID = ?
|
||||
",array($user['M_UserID']));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$query = $this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'],'LOGIN','SUCCESS',$prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_ok($data);
|
||||
exit;
|
||||
}
|
||||
$query = $this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'),$this->input->ip_address(),'LOGIN','FAILED',$prm["username"]));
|
||||
if (!$query) {
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->sys_error_db("Invalid UserName / Password");
|
||||
} catch(Exception $exc) {
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
|
||||
function logout()
|
||||
{
|
||||
$prm = $this->sys_input;
|
||||
try
|
||||
{
|
||||
|
||||
$query = $this->db_onedev->query("
|
||||
UPDATE m_user
|
||||
SET M_UserIsLoggedIn = 'N', M_UserActiveToken = null
|
||||
WHERE M_UserID = ?",
|
||||
array($this->sys_user['M_UserID']));
|
||||
|
||||
if (!$query)
|
||||
{
|
||||
$message = $this->db_onedev->error();
|
||||
$this->sys_error($message);
|
||||
exit;
|
||||
}
|
||||
|
||||
$this->db_onedev->query("INSERT INTO one_log.log_login(Log_LoginDateTime,Log_LoginIP,Log_LoginType,Log_LoginStatus,Log_LoginLogin) VALUES (?,?,?,?,?)
|
||||
",array(date('Y-m-d H:i:s'), $_SERVER['REMOTE_ADDR'], 'LOGOUT', 'SUCCESS', $this->sys_user['M_UserUsername']));
|
||||
$this->sys_ok("OK");
|
||||
|
||||
}
|
||||
catch(Exception $exc)
|
||||
{
|
||||
$message = $exc->getMessage();
|
||||
$this->sys_error($message);
|
||||
}
|
||||
}
|
||||
}
|
||||
?>
|
||||
33
application/controllers/v1/system/Genno.php
Normal file
33
application/controllers/v1/system/Genno.php
Normal file
@@ -0,0 +1,33 @@
|
||||
<?php
|
||||
|
||||
class Genno extends MY_Controller {
|
||||
var $db_onedev;
|
||||
public function index()
|
||||
{
|
||||
$sql = "truncate noreg_prefix;";
|
||||
$this->db_onedev->query($ql);
|
||||
$sql = "insert into noreg_prefix(NoregPrefixYear,
|
||||
NoregPrefixMonth, NoregPrefixCode )
|
||||
values(?,?,?)";
|
||||
$year = 2019;
|
||||
$month = 12;
|
||||
$xcode = 0;
|
||||
for($i_y= $year ; $i_y < 2030 ; $i_y++ ) {
|
||||
$s_month = 1;
|
||||
if ($i_y == 2019 ) $s_month = 12;
|
||||
for($i_x = $s_month; $i_x < 13; $i_x++) {
|
||||
$scode = sprintf("%03d",$xcode);
|
||||
$this->db_onedev->query($sql, array($i_y,$i_x, $scode));
|
||||
if ($scode == "999") break;
|
||||
$xcode++;
|
||||
}
|
||||
}
|
||||
}
|
||||
public function __construct()
|
||||
{
|
||||
parent::__construct();
|
||||
$this->db_onedev = $this->load->database("onedev", true);
|
||||
}
|
||||
|
||||
}
|
||||
?>
|
||||
46
application/controllers/v1/system/Verify.php
Normal file
46
application/controllers/v1/system/Verify.php
Normal file
@@ -0,0 +1,46 @@
|
||||
<?php
|
||||
class Verify extends MY_Controller {
|
||||
function __construct() {
|
||||
parent::__construct();
|
||||
}
|
||||
function do() {
|
||||
if ($this->isLogin === false ) {
|
||||
echo json_encode(
|
||||
array(
|
||||
"status" => "Error",
|
||||
"message" => "Unauthorized User"
|
||||
));
|
||||
exit;
|
||||
}
|
||||
$userID = $this->sys_user["M_UserID"];
|
||||
$sql = "select count(*) total from m_user where M_UserID = ? and M_UserIsActive = 'Y'";
|
||||
$qry = $this->db->query($sql,[$userID]);
|
||||
if (!$qry) {
|
||||
echo json_encode(
|
||||
array(
|
||||
"status" => "ERR",
|
||||
"message" => "Error " . $this->db->error()['message']
|
||||
)
|
||||
);
|
||||
exit;
|
||||
}
|
||||
$rows = $qry->result_array();
|
||||
if(count($rows) == 0) {
|
||||
echo json_encode(
|
||||
array(
|
||||
"status" => "ERR",
|
||||
"message" => "Invalid User"
|
||||
)
|
||||
);
|
||||
exit;
|
||||
}
|
||||
echo json_encode(
|
||||
array(
|
||||
"status" => "OK",
|
||||
"message" => "Invalid User"
|
||||
)
|
||||
);
|
||||
|
||||
}
|
||||
}
|
||||
?>
|
||||
Reference in New Issue
Block a user