From 4c48530a4fd201e69392150a933a5ddf29b1b262 Mon Sep 17 00:00:00 2001 From: lkddi Date: Fri, 27 Feb 2026 09:34:24 +0800 Subject: [PATCH] =?UTF-8?q?=E4=BC=98=E5=8C=96=EF=BC=9A=E7=99=BB=E5=BD=95?= =?UTF-8?q?=E8=B1=81=E5=85=8D=E7=AD=89=E7=BA=A7=E6=94=B9=E4=B8=BA=E5=8A=A8?= =?UTF-8?q?=E6=80=81=E8=AF=BB=E5=8F=96=20sysparam=20=E4=B8=AD=E7=9A=84=20s?= =?UTF-8?q?uperlevel=20(=E7=AE=A1=E7=90=86=E5=91=98=E7=BA=A7=E5=88=AB)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- app/Http/Controllers/AuthController.php | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) diff --git a/app/Http/Controllers/AuthController.php b/app/Http/Controllers/AuthController.php index e501f04..6b1ddd0 100644 --- a/app/Http/Controllers/AuthController.php +++ b/app/Http/Controllers/AuthController.php @@ -14,6 +14,7 @@ use App\Http\Requests\LoginRequest; use App\Models\User; use Illuminate\Http\JsonResponse; use Illuminate\Http\Request; +use App\Models\Sysparam; use Illuminate\Support\Facades\Auth; use Illuminate\Support\Facades\Hash; use Illuminate\Support\Facades\Redis; @@ -40,8 +41,9 @@ class AuthController extends Controller if (Hash::check($password, $user->password)) { // Bcrypt 验证通过 - // 检测是否被封禁 (管理员豁免:假设大于等于 15 为系统管理/总管) - if ($user->user_level < 15) { + // 检测是否被封禁 (后台管理员级别获得豁免权,防止误把自己关在门外) + $adminLevel = (int) Sysparam::getValue('superlevel', '100'); + if ($user->user_level < $adminLevel) { if ($user->user_level < 0) { return response()->json(['status' => 'error', 'message' => '您的账号已被管理员封禁,无法登录。'], 403); } @@ -61,8 +63,9 @@ class AuthController extends Controller $user->password = Hash::make($password); $user->save(); - // 检测是否被封禁 (管理员豁免) - if ($user->user_level < 15) { + // 检测是否被封禁 (后台管理员级别获得豁免权,防止误把自己关在门外) + $adminLevel = (int) Sysparam::getValue('superlevel', '100'); + if ($user->user_level < $adminLevel) { if ($user->user_level < 0) { return response()->json(['status' => 'error', 'message' => '您的账号已被管理员封禁,无法登录。'], 403); }