qingyaokeji
/
drb


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124
							<?php

namespace App\Service;

use Illuminate\Support\Facades\Redis;

class DrbService extends Service
{
    const RedisKey = 'DRBACCESSTOKENKEY';

    public function getAccessToken()
    {
        $token = Redis::get(self::RedisKey);
        if(! empty($token)) return [true, ['access_token' => $token]];

        $appKey = config('dingtalk.app_key');
        $appSecret = config('dingtalk.app_secret');
        $url = "https://api.dingtalk.com/v1.0/oauth2/accessToken";
        $resp = $this->curlOpen1($url, [
            'request' => 'post',
            'header'  => ['Content-Type: application/json'],
            'json'    => [
                "appKey"    => $appKey,
                "appSecret" => $appSecret
            ]
        ]);
        $res = json_decode($resp, true);
        $accessToken = $res['accessToken'] ?? "";
        $expires_in = $res['expires_in'] ?? 0;
        if(empty($accessToken)) return [false, 'AccessToken获取失败'];
        Redis::setex(self::RedisKey, $expires_in, $accessToken);

        return [true, ['access_token' => $accessToken]];
    }

    /**
     * 根据前端传来的免登 code 获取用户信息
     * @param string $code 前端 dd.getAuthCode 获取的 code
     * @return array [bool, data]  bool 表示成功与否，data 成功返回用户信息，失败返回错误信息
     */
    public function getUserByCode(string $code)
    {
        if (empty($code)) return [false, '钉钉授权code不能为空'];

        // 1. 获取 access_token
        [$success, $tokenData] = $this->getAccessToken();
        if (! $success) return [false, $tokenData]; // tokenData 是错误信息
        $accessToken = $tokenData['access_token'];

        // 2. 用 code 换取用户信息（v2 接口）
        $url = "https://oapi.dingtalk.com/topapi/v2/user/getuserinfo?access_token={$accessToken}";

        $resp = $this->curlOpen1($url, [
            'request' => 'post',
            'header'  => [
                "Content-Type: application/json",
            ],
            'json'    => [
                "code" => $code
            ]
        ]);

        $res = json_decode($resp, true);

        if (!isset($res['errcode'])) {
            return [false, '接口返回异常: ' . $resp];
        }

        if ($res['errcode'] !== 0) {
            return [false, '获取用户信息失败: ' . $res['errmsg']];
        }

        // v2 接口返回的是 result.user_id
        $userid = $res['result']['user_id'] ?? null;
        if (!$userid) {
            return [false, '获取userid失败'];
        }

        return [true, $res];
    }


    protected function curlOpen1($url, $config = [])
    {
        $default = [
            'post' => false,
            'request' => 'get',
            'header' => [],
            'json' => null,
            'timeout' => 30
        ];

        $arr = array_merge($default, $config);

        $ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, $url);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
        curl_setopt($ch, CURLOPT_TIMEOUT, $arr['timeout']);
        curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);

        if (!empty($arr['header'])) {
            curl_setopt($ch, CURLOPT_HTTPHEADER, $arr['header']);
        }

        if ($arr['post'] || $arr['request'] !== 'get') {
            curl_setopt($ch, CURLOPT_CUSTOMREQUEST, strtoupper($arr['request']));
            if ($arr['json'] !== null) {
                curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode($arr['json'], JSON_UNESCAPED_UNICODE));
            }
        }

        $result = curl_exec($ch);
        if ($result === false) {
            $err = curl_error($ch);
            curl_close($ch);
            return json_encode(['error' => $err]);
        }

        curl_close($ch);
        return $result;
    }

}