[接口]鉴权authToken用户登录login-注册register-退出logout, 并将用户信息保存到redis中

server/app/api/controller/AuthTokenController.php

@@ -0,0 +1,35 @@
+<?php
+declare(strict_types=1);
+
+namespace app\api\controller;
+
+use support\Request;
+use support\Response;
+use Tinywan\Jwt\JwtToken;
+use plugin\saiadmin\basic\OpenController;
+
+/**
+ * API 鉴权 Token 接口
+ * 后续所有 /api 接口调用均需在请求头携带此接口返回的 auth-token
+ */
+class AuthTokenController extends OpenController
+{
+    /**
+     * 获取 auth-token
+     * GET 或 POST /api/authToken
+     */
+    public function index(Request $request): Response
+    {
+        $exp = config('api.auth_token_exp', 86400);
+        $tokenResult = JwtToken::generateToken([
+            'id' => 0,
+            'plat' => 'api',
+            'access_exp' => $exp,
+        ]);
+
+        return $this->success([
+            'auth-token' => $tokenResult['access_token'],
+            'expires_in' => $tokenResult['expires_in'],
+        ]);
+    }
+}

server/app/api/controller/UserController.php

@@ -0,0 +1,83 @@
+<?php
+declare(strict_types=1);
+
+namespace app\api\controller;
+
+use support\Request;
+use support\Response;
+use app\api\logic\UserLogic;
+use plugin\saiadmin\basic\OpenController;
+
+/**
+ * API 用户登录/注册
+ * 需先携带 auth-token，登录/注册成功后返回 user-token 与用户信息，用户信息已写入 Redis（key=base64(user_id)，value=加密）
+ */
+class UserController extends OpenController
+{
+    /**
+     * 登录
+     * POST /api/user/login
+     * body: phone (+60), password
+     */
+    public function login(Request $request): Response
+    {
+        $phone = $request->post('phone', '');
+        $password = $request->post('password', '');
+        if ($phone === '' || $password === '') {
+            return $this->fail('请填写手机号和密码');
+        }
+        $logic = new UserLogic();
+        $data = $logic->login($phone, $password);
+        return $this->success([
+            'user' => $data['user'],
+            'user-token' => $data['user-token'],
+            'user_id' => $data['user_id'],
+        ]);
+    }
+
+    /**
+     * 注册
+     * POST /api/user/register
+     * body: phone (+60), password, nickname(可选)
+     */
+    public function register(Request $request): Response
+    {
+        $phone = $request->post('phone', '');
+        $password = $request->post('password', '');
+        $nickname = $request->post('nickname');
+        if ($phone === '' || $password === '') {
+            return $this->fail('请填写手机号和密码');
+        }
+        $logic = new UserLogic();
+        $data = $logic->register($phone, $password, $nickname ? (string) $nickname : null);
+        return $this->success([
+            'user' => $data['user'],
+            'user-token' => $data['user-token'],
+            'user_id' => $data['user_id'],
+        ]);
+    }
+
+    /**
+     * 退出登录
+     * POST /api/user/logout
+     * header: user-token（或 Authorization: Bearer <user-token>）
+     * 将当前 user-token 加入黑名单，之后该 token 无法再用于获取 user_id
+     */
+    public function logout(Request $request): Response
+    {
+        $token = $request->header('user-token');
+        if (empty($token)) {
+            $auth = $request->header('authorization');
+            if ($auth && stripos($auth, 'Bearer ') === 0) {
+                $token = trim(substr($auth, 7));
+            }
+        }
+        if (empty($token)) {
+            return $this->fail('请携带 user-token');
+        }
+        if (UserLogic::logout($token)) {
+            return $this->success('已退出登录');
+        }
+        return $this->fail('退出失败或 token 已失效');
+    }
+}