摘要:<?phpnamespace app\admin\controller;use think\Controller;use Util\SysDb;use think\Db;class Admin extends Base{public function index(){//$data = $this->db->table('admins')->order(
namespace app\admin\controller;
use think\Controller;
use Util\SysDb;
use think\Db;
class Admin extends Base
{
public function index()
{
//$data = $this->db->table('admins')->order('id desc')->lists();
$data = Db::table('admins')->order('id desc')->select();
$this->view->data = $data;
return $this->fetch();
}
public function add()
{
$id = (int)input('get.id');
$item = $this->db->table('admins')->where(array('id'=>$id))->item();
$this->view->item = $item;
return $this->fetch();
}
public function save()
{
$id = (int)input('post.id');
$data['username'] = trim(input('post.username'));
$data['gid'] = (int)(input('post.gid'));
$data['truename'] = trim(input('post.truename'));
$data['status'] = (int)(input('post.status'));
$password = input('post.password');
if (!$data['username']) {
return array('code'=>1,'msg'=>'用户名不能为空!');
}
if (!$data['gid']) {
exit(json_encode(array('code'=>1,'msg'=>'请输入角色!')));
}
if(!$data['truename']){
exit(json_encode(array('code'=>1,'msg'=>'姓名不能为空!')));
}
if ($id==0 && !$password) {
exit(json_encode(array('code'=>1,'msg'=>'密码不能为空!')));
}
if ($password) {
$data['password'] = md5($data['username'].$password);
}
//新增
$res = true;
if($id == 0) {
$item = $this->db->table('admins')->where(array('username'=>$data['username']))->item();
if ($item) {
exit(json_encode(array('code'=>1,'msg'=>'该用户已经存在')));
}
$data['create_time'] = time();
$res = $this->db->table('admins')->insert($data);
//修改
} else {
$res = $this->db->table('admins')->where(array('id'=>$id))->update($data);
}
if ($res) {
exit(json_encode(array('code'=>0,'msg'=>'保存成功')));
} else {
exit(json_encode(array('code'=>1,'msg'=>'保存失败')));
}
}
//删除管理员
public function del()
{
$id = input('post.id');
$res = $this->db->table('admins')->where(array('id'=>$id))->delete();
if(!$res){
exit(json_encode(array('code'=>1,'msg'=>'删除失败')));
}
exit(json_encode(array('code'=>0,'msg'=>'删除成功')));
}
}
疑问:input() 获取 和 request::param() 那个更好 那个数据安全规范点
疑问2:老师写数据库类 和框架本身 得到数据我dump下好像都一样 为什么还要自己写数据库类?
批改老师:韦小宝批改时间:2019-02-12 16:44:42
老师总结:input()获取和 request::param()基本上是差不多的 自己写的数据库操作类来操作会更熟练一定并且灵活性也好点,可以根据自己的需求随意去添加还方便!不过这要看个人!也可以选择框架本身的