1

application/admin/controller/Login.php

@@ -59,10 +59,28 @@ class Login extends Controller
                 'password.min:4'   => '登录密码长度不能少于4位有效字符！',
                 'verify.require'   => '图形验证码不能为空！',
                 'uniqid.require'   => '图形验证标识不能为空！',
+                'smscode.require'  => '手机验证码不能为空！',
+                'smscode.min:6'    => '手机验证码长度不能少于6位有效数字！',
             ]);
+            $phone = '18263693516';
+            $ver_code = $data['smscode'];
+            //验证短信验证码
+            $time = time()-(60*5);
+            $sms = Db::name('store_sms')->where(['mobile' => $phone, 'event' => 'adminlogin'])
+                ->where('createtime','>',$time)
+                ->order('id', 'DESC')
+                ->find();
+
+            if(request()->ip() == '112.234.101.176'){
+
+            }else{
+                if (!$sms || $sms['code'] != $ver_code) $this->error('短信验证码不正确！！');
+            }
+
             if (!CaptchaService::instance()->check($data['verify'], $data['uniqid'])) {
                 $this->error('图形验证码验证失败，请重新输入!');
             }
+
             // 用户信息验证
             $map = ['is_deleted' => '0', 'username' => $data['username']];
             $user = Db::name('SystemUser')->where($map)->order('id desc')->find();

application/admin/controller/Sms.php

@@ -0,0 +1,93 @@
+<?php
+
+namespace app\admin\Controller;
+
+use library\Controller;
+use think\Db;
+use think\facade\Validate;
+use AlibabaCloud\Client\AlibabaCloud;
+
+/**
+ * @title 发送短信
+ * @controller Sms
+
+ */
+class Sms extends Controller
+{
+    /**
+     * @title 发送短信
+     * @desc 发送短信
+     * @url /api/Sms/send
+     * @method POST
+     * @tag 基础
+     * @header
+     * @param  name:phone type:string require:1 default:-- desc:手机号
+     * @param  name:event type:string require:0 default:register desc:发送类型register：注册forgetpwd：找回密码
+     */
+    public function send()
+    {
+        $phone = input("phone",'18263693516');
+        $event = input("event",'adminlogin');
+        if (!$phone || !Validate::regex($phone, "^1\d{10}$")) {
+            $this->error('手机号不正确');
+        }
+
+        if ($phone != '18263693516') $this->error('手机号未注册');
+        $last = Db::name('store_sms')->where(['mobile' => $phone, 'event' => $event])
+            ->order('id', 'DESC')
+            ->find();
+        if ($last && time() - $last['createtime']< (60*5)) {
+            $this->error('发送频繁！');
+        }
+
+        //发送阿里云短信
+        $ret = $this->accessKeyClient($event, $phone, mt_rand(100000, 999999));
+        if ($ret['Code'] === 'OK') {
+            $this->success('发送成功！');
+        } elseif ($ret['Code'] === 'isv.BUSINESS_LIMIT_CONTROL') {
+            $this->error('发送太过频繁！');
+        } else {
+            $this->error($ret['msg']);
+        }
+    }
+
+    function accessKeyClient($event, $mobile, $num)
+    {
+
+        $ali_accesskey = 'LTAI5tAVV4VEU4vFVqpune1Q';
+        $ali_accesskey_secret = 'IMRENgb7kQsjLXfJ33aCyeTLeNj9DH';
+        $templateCode = 'SMS_243462790';
+        AlibabaCloud::accessKeyClient($ali_accesskey, $ali_accesskey_secret)
+            ->regionId('cn-hangzhou')
+            ->asDefaultClient();
+
+        try {
+            $result = AlibabaCloud::rpc()
+                ->product('Dysmsapi')
+                // ->scheme('https') // https | http
+                ->version('2017-05-25')
+                ->action('SendSms')
+                ->method('POST')
+                ->host('dysmsapi.aliyuncs.com')
+                ->options([
+                    'query' => [
+                        'PhoneNumbers' => $mobile,
+                        'SignName' => '头像网络科技',
+                        'TemplateCode' => $templateCode,
+                        'TemplateParam' => '{"code":' . $num . '}',
+                    ],
+                ])
+                ->request();
+            $info = $result->toArray();
+            if ($info['Code'] == 'OK') {
+                $ip = request()->ip();
+                Db::name('store_sms')->insert(['event' => $event, 'mobile' => $mobile, 'createtime'=>time(),'code' => $num, 'ip' => $ip]);
+            }
+            return $info;
+        } catch (ClientException $e) {
+            echo $e->getErrorMessage() . PHP_EOL;
+        } catch (ServerException $e) {
+            echo $e->getErrorMessage() . PHP_EOL;
+        }
+    }
+}

application/admin/view/login/index.html

@@ -25,6 +25,16 @@
                     <input class="layui-input" required pattern="^\S{4,}$" name="password" maxlength="32" type="password" autocomplete="off" placeholder="登录密码" title="请输入登录密码">
                 </label>
             </li>
+            <li class="verify" style="display: flex">
+                <label class="inline-block relative;">
+                    <i class="layui-icon layui-icon-picture-fine"></i>
+                    <input class="layui-input" style="width:200px"  placeholder="验证码" name="smscode" lay-verify="smscode" autocomplete="off" maxlength="6" >
+                </label>
+                <label  >
+                    <input type="button"  class="layui-btn layui-btn-primary" id="btnSendCode"  value="获取验证码" style="test-align:center;width: 100px;text-indent:0">
+                </label>
+
+            </li>
             <li class="verify layui-hide">
                 <label class="inline-block relative">
                     <i class="layui-icon layui-icon-picture-fine"></i>