//资料修改 func (this *AccountController) Profile() { user := models.User{Id: this.userid} if err := user.Read(); err != nil { this.showmsg(err.Error()) } if this.Ctx.Request.Method == "POST" { errmsg := make(map[string]string) password := strings.TrimSpace(this.GetString("password")) newpassword := strings.TrimSpace(this.GetString("newpassword")) newpassword2 := strings.TrimSpace(this.GetString("newpassword2")) updated := false if newpassword != "" { if password == "" || models.Md5([]byte(password)) != user.Password { errmsg["password"] = "******" } else if len(newpassword) < 6 { errmsg["newpassword"] = "******" } else if newpassword != newpassword2 { errmsg["newpassword2"] = "两次输入的密码不一致" } if len(errmsg) == 0 { user.Password = models.Md5([]byte(newpassword)) user.Update("password") updated = true } } this.Data["updated"] = updated this.Data["errmsg"] = errmsg } this.Data["user"] = user this.display() }
//登录 func (this *AccountController) Login() { if this.GetString("dosubmit") == "yes" { account := strings.TrimSpace(this.GetString("account")) password := strings.TrimSpace(this.GetString("password")) remember := this.GetString("remember") if account != "" && password != "" { var user models.User user.Username = account if user.Read("username") != nil || user.Password != models.Md5([]byte(password)) { this.Data["errmsg"] = "帐号或密码错误" } else if user.Active == 0 { this.Data["errmsg"] = "该帐号未激活" } else { user.Logincount += 1 user.Lastip = this.getClientIp() user.Lastlogin = this.getTime() user.Update() authkey := models.Md5([]byte(this.getClientIp() + "|" + user.Password)) if remember == "yes" { this.Ctx.SetCookie("auth", strconv.FormatInt(user.Id, 10)+"|"+authkey, 7*86400) } else { this.Ctx.SetCookie("auth", strconv.FormatInt(user.Id, 10)+"|"+authkey) } this.Redirect("/admin", 302) } } } this.TplName = "admin/account_login.html" }
//删除用户 func (this *UserController) Delete() { id, _ := this.GetInt64("id") if id == 1 { this.showmsg("不能删除ID为1的用户") } user := models.User{Id: id} if user.Read() == nil { user.Delete() } this.Redirect("/admin/user/list", 302) }
//编辑用户 func (this *UserController) Edit() { id, _ := this.GetInt64("id") user := models.User{Id: id} if err := user.Read(); err != nil { this.showmsg("用户不存在") } errmsg := make(map[string]string) if this.Ctx.Request.Method == "POST" { password := strings.TrimSpace(this.GetString("password")) password2 := strings.TrimSpace(this.GetString("password2")) email := strings.TrimSpace(this.GetString("email")) active, _ := this.GetInt64("active") valid := validation.Validation{} if password != "" { if v := valid.Required(password2, "password2"); !v.Ok { errmsg["password2"] = "请再次输入密码" } else if password != password2 { errmsg["password2"] = "两次输入的密码不一致" } else { user.Password = models.Md5([]byte(password)) } } if v := valid.Required(email, "email"); !v.Ok { errmsg["email"] = "请输入email地址" } else if v := valid.Email(email, "email"); !v.Ok { errmsg["email"] = "Email无效" } else { user.Email = email } if active > 0 { user.Active = 1 } else { user.Active = 0 } if len(errmsg) == 0 { user.Update() this.Redirect("/admin/user/list", 302) } } this.Data["errmsg"] = errmsg this.Data["user"] = user this.display() }
//登录状态验证 func (this *baseController) auth() { if this.controllerName == "account" && (this.actionName == "login" || this.actionName == "logout") { } else { arr := strings.Split(this.Ctx.GetCookie("auth"), "|") if len(arr) == 2 { idstr, password := arr[0], arr[1] userid, _ := strconv.ParseInt(idstr, 10, 0) if userid > 0 { var user models.User user.Id = userid if user.Read() == nil && password == models.Md5([]byte(this.getClientIp()+"|"+user.Password)) { this.userid = user.Id this.username = user.Username } } } if this.userid == 0 { this.Redirect("/admin/login", 302) } } }