UserCtrl.java 3.49 KB
package com.ui.ctrl;


import com.ui.User.MD5Util;
import com.ui.User.UserAuthLocal;
import com.ui.contants.HttpUriContants;
import com.ui.http.HttpRestClient;
import com.ui.model.BaseResponse;
import com.ui.model.req.User;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.servlet.ModelAndView;

import javax.servlet.http.HttpSession;

@Controller
@RequestMapping("user")
public class UserCtrl {

    Logger log = LoggerFactory.getLogger(UserCtrl.class);

    @Autowired
    HttpRestClient httpRestClient;

    @Autowired
    UserAuthLocal userAuthLocal;

    @RequestMapping("/toLogin")
    public ModelAndView toLogin() {
        return new ModelAndView("user/login");
    }

    @RequestMapping("/toupdatePwd")
    public ModelAndView toupdatePwd() {
        return new ModelAndView("user/modifypwd");
    }

    @RequestMapping("/login")
    public ModelAndView toLogin(User user, HttpSession session, Model model) {
        User u = userAuthLocal.getUserByname(user.getName());
        if (u == null) {
            model.addAttribute("message", "用户名不存在");
            return new ModelAndView("user/login");
        }
        if (u.getPwd().equals(MD5Util.encryption(user.getPwd()))) {
            session.setAttribute("user", u);
            if("Yoho@9646".equals(user.getPwd())){
                return new ModelAndView("user/modifypwd");
            }
            return new ModelAndView("dashBoard/dashBoard");
        } else {
            model.addAttribute("message", "密码错误");
            return new ModelAndView("user/login");
        }

    }

    @RequestMapping("/logout")
    public ModelAndView toLogin(HttpSession session) {
        session.removeAttribute("user");
        return new ModelAndView("user/login");
    }

    @RequestMapping("/updatePwd")
    public ModelAndView updatePwd(String name, String oldpwd, String newpwd, HttpSession session, Model model) {
        User u = (User) session.getAttribute("user");
        String username = u.getName();
        if ("admin".equals(username) && !"admin".equals(name)) {
            User user = userAuthLocal.getUserByname(name);
            if (user == null) {
                model.addAttribute("message", "当前用户不存在");
                return new ModelAndView("user/modifypwd");
            }
            user.setPwd(MD5Util.encryption(newpwd));
            httpRestClient.defaultPost(HttpUriContants.USER_UPDATE_PWD, user, BaseResponse.class);
            userAuthLocal.flushUser(name);
            return new ModelAndView("dashBoard/dashBoard");

        } else if (name.equals(username)) {
            User user = userAuthLocal.getUserByname(name);
            if (!user.getPwd().equals(MD5Util.encryption(oldpwd))) {
                model.addAttribute("message", "旧密码错误");
                return new ModelAndView("user/modifypwd");
            }
            user.setPwd(MD5Util.encryption(newpwd));
            httpRestClient.defaultPost(HttpUriContants.USER_UPDATE_PWD, user, BaseResponse.class);
            session.removeAttribute("user");
            userAuthLocal.flushUser(name);
            return new ModelAndView("user/login");
        } else {
            model.addAttribute("message", "无权限修改当前账户");
            return new ModelAndView("user/modifypwd");
        }

    }


}