ivampiresp/Lae
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

身份证数据加密以及提示

Browse Source
This commit is contained in:
iVampireSP.com 2023-01-15 20:22:55 +08:00
parent 8e1f29a373
commit 76d6af6d5f
No known key found for this signature in database
GPG Key ID: 2F7B001CA27A8132
7 changed files with 171 additions and 33 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
app/Models/User.php
View File

@ -5,11 +5,14 @@
// use Illuminate\Contracts\Auth\MustVerifyEmail; // use Illuminate\Contracts\Auth\MustVerifyEmail;
use Carbon\Exceptions\InvalidFormatException; use Carbon\Exceptions\InvalidFormatException;
use GeneaLabs\LaravelModelCaching\Traits\Cachable; use GeneaLabs\LaravelModelCaching\Traits\Cachable;
use Illuminate\Contracts\Encryption\DecryptException;
use Illuminate\Database\Eloquent\Casts\Attribute;
use Illuminate\Database\Eloquent\Factories\HasFactory; use Illuminate\Database\Eloquent\Factories\HasFactory;
use Illuminate\Database\Eloquent\Relations\BelongsTo; use Illuminate\Database\Eloquent\Relations\BelongsTo;
use Illuminate\Database\Eloquent\Relations\HasMany; use Illuminate\Database\Eloquent\Relations\HasMany;
use Illuminate\Foundation\Auth\User as Authenticatable; use Illuminate\Foundation\Auth\User as Authenticatable;
use Illuminate\Notifications\Notifiable; use Illuminate\Notifications\Notifiable;
use Illuminate\Support\Facades\Crypt;
use Laravel\Sanctum\HasApiTokens; use Laravel\Sanctum\HasApiTokens;
class User extends Authenticatable class User extends Authenticatable
@ -44,7 +47,7 @@ class User extends Authenticatable
'real_name_verified_at' => 'datetime', 'real_name_verified_at' => 'datetime',
'balance' => 'decimal:2', 'balance' => 'decimal:2',
'banned_at' => 'datetime', 'banned_at' => 'datetime',
'birthday_at' => 'date', 'birthday_at' => 'date:Y-m-d'
]; ];
protected $dates = [ protected $dates = [
@ -54,6 +57,7 @@ class User extends Authenticatable
'birthday_at', 'birthday_at',
]; ];
// id card 必须加密
protected static function boot() protected static function boot()
{ {
@ -77,19 +81,20 @@ protected static function boot()
$user->email_md5 = md5($user->email); $user->email_md5 = md5($user->email);
} }
if ($user->isDirty('id_card') || $user->isDirty('real_name')) { if ($user->isDirty('id_card')) {
$user->id_card = Crypt::encryptString($user->id_card);
}
if (empty($user->id_card) || empty($user->real_name)) { if ($user->isDirty('id_card') || $user->isDirty('real_name')) if (empty($user->id_card) || empty($user->real_name)) {
$user->real_name_verified_at = null; $user->real_name_verified_at = null;
} else { } else {
$user->real_name_verified_at = now(); $user->real_name_verified_at = now();
// 更新生日 // 更新生日
try { try {
$user->birthday_at = $user->getBirthdayFromIdCard(); $user->birthday_at = $user->getBirthdayFromIdCard();
} catch (InvalidFormatException) { } catch (InvalidFormatException) {
$user->birthday_at = null; $user->birthday_at = null;
}
} }
} }
@ -111,6 +116,24 @@ private function getBirthdayFromIdCard(): string
return $year . '-' . $month . '-' . $day; return $year . '-' . $month . '-' . $day;
} }
/**
* 获取用户的身份证号
*
* @return Attribute
*/
protected function idCard(): Attribute
{
return Attribute::make(
function ($value) {
try {
return Crypt::decryptString($value);
} catch (DecryptException) {
return $value;
}
}
);
}
public function isAdult(): bool public function isAdult(): bool
{ {
// 如果 birthday_at 为空,那么就返回 false // 如果 birthday_at 为空,那么就返回 false

40
database/migrations/2023_01_15_191519_encrypt_id_card_from_users.php Normal file
View File

@ -0,0 +1,40 @@
<?php
use App\Models\User;
use Illuminate\Database\Migrations\Migration;
use Illuminate\Support\Facades\Crypt;
return new class extends Migration {
/**
* Run the migrations.
*
* @return void
*/
public function up(): void
{
User::chunk(100, function ($users) {
foreach ($users as $user) {
if (!$user->id_card) {
continue;
}
echo "Encrypting user {$user->id}..." . PHP_EOL;
// 设置值(不走模型的 mutator
$user->setAttribute('id_card', Crypt::encryptString($user->id_card));
$user->save();
}
});
}
/**
* Reverse the migrations.
*
* @return void
*/
public function down(): void
{
echo PHP_EOL . '无法解密用户数据,因为此操作是不可逆的。' . PHP_EOL;
}
};

32
database/migrations/2023_01_15_194111_add_real_name_verified_at_index_to_users.php Normal file
View File

@ -0,0 +1,32 @@
<?php
use Illuminate\Database\Migrations\Migration;
use Illuminate\Database\Schema\Blueprint;
use Illuminate\Support\Facades\Schema;
return new class extends Migration
{
/**
* Run the migrations.
*
* @return void
*/
public function up(): void
{
Schema::table('users', function (Blueprint $table) {
$table->index('real_name_verified_at');
});
}
/**
* Reverse the migrations.
*
* @return void
*/
public function down(): void
{
Schema::table('users', function (Blueprint $table) {
$table->dropIndex('users_real_name_verified_at_index');
});
}
};

54
resources/views/admin/users/edit.blade.php
View File

@ -30,7 +30,7 @@
@if ($user->birthday_at) @if ($user->birthday_at)
<p> <p>
生日: {{ $user->birthday_at->format('Y-m-d') }} 生日: {{ $user->birthday_at->format('Y-m-d') }}
<br /> <br/>
{{ $user->birthday_at->age }} 岁,{{ $user->isAdult() ? '已成年' : '未成年' }} {{ $user->birthday_at->age }} 岁,{{ $user->isAdult() ? '已成年' : '未成年' }}
</p> </p>
@endif @endif
@ -208,26 +208,42 @@
<button type="submit" class="btn btn-primary mt-3">提交</button> <button type="submit" class="btn btn-primary mt-3">提交</button>
</form> </form>
{{-- 实人认证 --}}
<h3 class="mt-3">实人认证</h3>
<p>您应该保持此信息保密。</p>
<form action="{{ route('admin.users.update', $user) }}" method="post">
@csrf
@method('PATCH')
<div class="form-group"> <h3 class="mt-3">实人认证信息</h3>
<label for="real_name">姓名</label> <p>
<input type="text" class="form-control" id="real_name" name="real_name" placeholder="姓名" 请注意自己的底线,不要随意改写及泄漏以下信息。
value="{{ $user->real_name }}" autocomplete="off"> </p>
</div> <div id="real_name_form">
<form action="{{ route('admin.users.update', $user) }}" method="post">
@csrf
@method('PATCH')
<div class="form-group"> <div class="form-group">
<label for="id_card">身份证号</label> <label for="real_name">姓名</label>
<input type="text" class="form-control" id="id_card" name="id_card" placeholder="身份证号" <input type="text" class="form-control" id="real_name" name="real_name" placeholder="姓名"
value="{{ $user->id_card }}" maxlength="18" autocomplete="off"> value="{{ $user->real_name }}" autocomplete="off">
</div> </div>
<button type="submit" class="btn btn-primary mt-3">提交</button> <div class="form-group">
</form> <label for="id_card">身份证号</label>
<input type="text" class="form-control" id="id_card" name="id_card" placeholder="身份证号"
value="{{ $user->id_card }}" maxlength="18" autocomplete="off">
</div>
<button type="submit" class="btn btn-primary mt-3">提交</button>
</form>
</div>
<style>
#real_name_form {
filter: blur(10px);
transition: all 0.5s;
}
#real_name_form:hover {
filter: blur(0);
}
</style>
@endsection @endsection

6
resources/views/index.blade.php
View File

@ -15,8 +15,10 @@ class="text-decoration-underline">服务条款</a></p>
@if(!auth('web')->user()->real_name_verified_at) @if(!auth('web')->user()->real_name_verified_at)
<x-alert-danger> <x-alert-danger>
<div> <div>
全站实名认证状态已刷新,您需要进行实人认证。 由于我们 镜缘映射 部门收到了来自服务商的 电信诈骗 警告,并且被封禁了服务器。
<hr/> <br />
即日起,我们将开始加强监管,将实名认证升级为 实人认证。
<br />
您还没有完成实人认证,请尽快完成实人认证。 您还没有完成实人认证,请尽快完成实人认证。
<br/> <br/>
<a href="{{ route('real_name.create') }}">点击这里实人认证</a> <a href="{{ route('real_name.create') }}">点击这里实人认证</a>

2
resources/views/layouts/admin.blade.php
View File

@ -149,6 +149,8 @@ class="d-none">
</div> </div>
</main> </main>
<div class="mt-5"></div>
</div> </div>
</body> </body>

23
resources/views/real_name/create.blade.php
View File

@ -25,6 +25,29 @@
人脸识别需要使用手机摄像头,所以请使用手机浏览器进行实人认证。 人脸识别需要使用手机摄像头,所以请使用手机浏览器进行实人认证。
</p> </p>
<x-alert-info>
实人认证产品是结合公安一所“互联网+”可信身份认证平台简称CTID平台通过用户活体视频进行活体检测得到人脸视频通过OCR扫描用户身份证获取姓名+身份证号,并将人脸视频检测成功后获取的高质量人像照片直连公安一所“互联网+可信身份认证平台”简称CTID平台进行照片及信息比对返回权威比对结果。H5全流程接入简单应用方便快捷。
</x-alert-info>
<x-alert-warning>
莱云 隐私协议和 TOS: <a target="_blank"
href="https://www.laecloud.com/tos/">https://www.laecloud.com/tos</a>
<br/>
公安 CTID 实人认证服务由 北京一砂信息技术有限公司 提供。它将会引导您完成实人认证。
</x-alert-warning>
<x-alert-success>
我们会妥善保管您的数据,不会泄露给任何第三方,更详细的隐私政策请查看上方的链接。
</x-alert-success>
<x-alert-warning>
如果您是怀抱志向的未成年人,请确保您的父母或监护人已经同意您进行实人认证。
<br />
但是请注意,如果您的父母或监护人不同意您进行实人认证,我们将无法为您提供服务。
</x-alert-warning>
<x-alert-warning>
实人认证的人脸数据来自 "互联网+”可信身份认证平台",我们不会保存您的人脸数据。
<br />
如果您未办理过身份证,则公安数据库中没有您的人脸信息,请勿进行实人认证。
</x-alert-warning>
<h3>实人认证</h3> <h3>实人认证</h3>