From 4f37eeabe80d37b897fd7c125233c4f4016b6af0 Mon Sep 17 00:00:00 2001
From: xu <perelmen>
Date: Fri, 22 Nov 2019 14:17:50 +0800
Subject: [PATCH] app-ht 1. F 创建账号的时候做用户名校验

---
 app-ht/config/main.php                                  | 10 ++--------
 app-ht/modules/system/controllers/AccountController.php | 18 ++++++++++++++++++
 2 files changed, 20 insertions(+), 8 deletions(-)

diff --git a/app-ht/config/main.php b/app-ht/config/main.php
index dc07cae..54f94d1 100644
--- a/app-ht/config/main.php
+++ b/app-ht/config/main.php
@@ -91,18 +91,12 @@ $config = [
             'site/index',
             'site/region',
             'site/editor-upload',
-            'site/ajax-item-top',
-            'site/ajax-member-top',
-            'site/ajax-instant',
-            'site/ajax-wares-tab',
-            'site/ajax-member-chart',
+       
             'my/default/index', // 个人中心登陆即可
             'my/default/do-update',
             'my/default/password',
             'my/default/do-password',
-            'device/index',
-            'device/index/index',
-            'test/index',
+            'dashboard/index',
         ]
     ],
 
diff --git a/app-ht/modules/system/controllers/AccountController.php b/app-ht/modules/system/controllers/AccountController.php
index 92dd537..07c44c0 100644
--- a/app-ht/modules/system/controllers/AccountController.php
+++ b/app-ht/modules/system/controllers/AccountController.php
@@ -120,6 +120,14 @@ class AccountController extends BaseController
         $mobile = isset($post['mobile']) ? $post['mobile'] : '';
         $is_enable = isset($post['is_enable']) ? 1 : 0;
 
+        if ('' == $username || !(preg_match("/^[0-9a-zA-Z]{6,10}$/", $username))) {
+            Yii::$app->session->setFlash('danger', '用户名不能是空格,并且必须是6～12位的英文或数字');
+            return $this->redirect(['/system/account/create']);
+        }
+        if ('' == $realname) {
+            Yii::$app->session->setFlash('danger', '名称不能是空格');
+            return $this->redirect(['/system/account/create']);
+        }
         // 用户名不允许有冒号
         if (strpos($username, ':') !== false) {
             Yii::$app->session->setFlash('danger', '用户名不能包含冒号，请重新输入');
@@ -197,7 +205,17 @@ class AccountController extends BaseController
         $is_enable = isset($post['is_enable']) ? 1 : 0;
 
         $model = $this->findModel($id);
+        $username = trim($username);
+        $realname = trim($realname);
 
+        if ('' == $username || !(preg_match("/^[0-9a-zA-Z]{6,10}$/", $username))) {
+            Yii::$app->session->setFlash('danger', '用户名不能是空格,并且必须是6～12位的英文或数字');
+            return $this->redirect(['/system/account/update', 'id' => $model->id]);
+        }
+        if ('' == $realname) {
+            Yii::$app->session->setFlash('danger', '名称不能是空格');
+            return $this->redirect(['/system/account/update', 'id' => $model->id]);
+        }
         // 用户名不允许有冒号
         if (strpos($username, ':') !== false) {
             Yii::$app->session->setFlash('danger', '用户名不能包含冒号，请重新输入');
--
libgit2 0.21.0