response->format = Response::FORMAT_JSON; \Yii::$app->response->data = [ 'code' => 401, 'msg' => 'access_token 不能为空' ]; return false; } $saasUser = SaasUser::findIdentityByAccessToken($access_token); if (!$saasUser) { \Yii::$app->response->format = Response::FORMAT_JSON; \Yii::$app->response->data = [ 'code' => 401, 'msg' => '登录失败 获取不到用户信息' ]; return false; } $user = User::findOne(['store_id' => $store_id, 'binding' => $saasUser->mobile, 'is_delete' => 0]); if (!$user) { \Yii::$app->response->format = Response::FORMAT_JSON; \Yii::$app->response->data = [ 'code' => 401, 'msg' => '登录失败 获取不到商城用户信息' ]; return false; } $materialVisualLevel = Option::get('material_visual_level', $store_id, 'store', json_encode([], JSON_UNESCAPED_UNICODE))['value']; $materialVisualLevelArray = json_decode($materialVisualLevel, true); //默认所有会员都可以进入 或者后台设置全部会员可进 if (empty($materialVisualLevelArray) || in_array(-1, $materialVisualLevelArray)) { return true; } if (!in_array($user->level, $materialVisualLevelArray)) { \Yii::$app->response->format = Response::FORMAT_JSON; \Yii::$app->response->data = [ 'code' => 0, 'msg' => '您的权限不足，不能进入该板块', 'data' => [ 'status' => 1 ] ]; return false; } return true; } }