!94 在生成CURD时,增加一个配置参数,来屏蔽前台提交过来的某些数据.

Merge pull request !94 from Ackleys/master

application/admin/library/traits/Backend.php

@@ -6,6 +6,31 @@ trait Backend
 {
 
     /**
+     * 排除前台提交过来的字段
+     * @param $params
+     * @return array
+     */
+    private function preExcludeFields($params)
+    {
+        if (is_array($this->excludeFields)) {
+            foreach ($this->excludeFields as $field) {
+                if (key_exists($field,$params))
+                {
+                    unset($params[$field]);
+                }
+            }
+        } else {
+
+            if (key_exists($this->excludeFields,$params))
+            {
+                unset($params[$this->excludeFields]);
+            }
+        }
+        return $params;
+    }
+
+
+    /**
      * 查看
      */
     public function index()
@@ -74,6 +99,9 @@ trait Backend
         if ($this->request->isPost()) {
             $params = $this->request->post("row/a");
             if ($params) {
+
+                $params = $this->preExcludeFields($params);
+
                 if ($this->dataLimit && $this->dataLimitFieldAutoFill) {
                     $params[$this->dataLimitField] = $this->auth->id;
                 }
@@ -118,6 +146,9 @@ trait Backend
         if ($this->request->isPost()) {
             $params = $this->request->post("row/a");
             if ($params) {
+
+                $params = $this->preExcludeFields($params);
+
                 try {
                     //是否采用模型验证
                     if ($this->modelValidate) {

application/common/controller/Backend.php

@@ -94,6 +94,11 @@ class Backend extends Controller
     protected $selectpageFields = '*';
 
     /**
+     * 前台提交过来,需要排除的字段数据
+     */
+    protected $excludeFields = "";
+
+    /**
      * 导入文件首行类型
      * 支持comment/name
      * 表示注释或字段名