//登录
func (this *AccountController) Login() {
if this.userid > 0 {
this.Redirect("/admin", 302)
}
if this.GetString("dosubmit") == "yes" {
account := strings.TrimSpace(this.GetString("account"))
password := strings.TrimSpace(this.GetString("password"))
remember := this.GetString("remember")
if account != "" && password != "" {
var user models.User
user.UserName = account
if user.Read("user_name") != nil || user.Password != util.Md5([]byte(password)) {
this.Data["errmsg"] = "帐号或密码错误"
} else if user.Active == 0 {
this.Data["errmsg"] = "该帐号未激活"
} else {
user.LoginCount += 1
user.LastIp = this.getClientIp()
user.LastLogin = this.getTime()
user.Update()
authkey := util.Md5([]byte(this.getClientIp() + "|" + user.Password))
if remember == "yes" {
this.Ctx.SetCookie("auth", strconv.Itoa(user.Id)+"|"+authkey, 7*86400)
} else {
this.Ctx.SetCookie("auth", strconv.Itoa(user.Id)+"|"+authkey)
}
this.Redirect("/admin", 302)
}
}
}
this.TplNames = this.moduleName + "/account/login.html"
}
//资料修改
func (this *AccountController) Profile() {
user := models.User{Id: this.userid}
if err := user.Read(); err != nil {
this.showmsg(err.Error())
}
if this.isPost() {
errmsg := make(map[string]string)
password := strings.TrimSpace(this.GetString("password"))
newpassword := strings.TrimSpace(this.GetString("newpassword"))
newpassword2 := strings.TrimSpace(this.GetString("newpassword2"))
updated := false
if newpassword != "" {
if password == "" || util.Md5([]byte(password)) != user.Password {
errmsg["password"] = "******"
} else if len(newpassword) < 6 {
errmsg["newpassword"] = "******"
} else if newpassword != newpassword2 {
errmsg["newpassword2"] = "两次输入的密码不一致"
}
if len(errmsg) == 0 {
user.Password = util.Md5([]byte(newpassword))
user.Update("password")
updated = true
}
}
this.Data["updated"] = updated
this.Data["errmsg"] = errmsg
}
this.Data["user"] = user
this.display()
}
//编辑用户
func (this *UserController) Edit() {
id, _ := this.GetInt("id")
user := models.User{Id: id}
if err := user.Read(); err != nil {
this.showmsg("用户不存在")
}
errmsg := make(map[string]string)
if this.Ctx.Request.Method == "POST" {
password := strings.TrimSpace(this.GetString("password"))
password2 := strings.TrimSpace(this.GetString("password2"))
email := strings.TrimSpace(this.GetString("email"))
active, _ := this.GetInt("active")
valid := validation.Validation{}
if password != "" {
if v := valid.Required(password2, "password2"); !v.Ok {
errmsg["password2"] = "请再次输入密码"
} else if password != password2 {
errmsg["password2"] = "两次输入的密码不一致"
} else {
user.Password = util.Md5([]byte(password))
}
}
if v := valid.Required(email, "email"); !v.Ok {
errmsg["email"] = "请输入email地址"
} else if v := valid.Email(email, "email"); !v.Ok {
errmsg["email"] = "Email无效"
} else {
user.Email = email
}
if active > 0 {
user.Active = 1
} else {
user.Active = 0
}
if len(errmsg) == 0 {
user.Update()
this.Redirect("/admin/user/list", 302)
}
}
this.Data["errmsg"] = errmsg
this.Data["user"] = user
this.display()
}
//登录状态验证
func (this *baseController) auth() {
arr := strings.Split(this.Ctx.GetCookie("auth"), "|")
if len(arr) == 2 {
idstr, password := arr[0], arr[1]
userid, _ := strconv.Atoi(idstr)
if userid > 0 {
var user models.User
user.Id = userid
if user.Read() == nil && password == util.Md5([]byte(this.getClientIp()+"|"+user.Password)) {
this.userid = user.Id
this.username = user.UserName
}
}
}
if this.userid == 0 && (this.controllerName != "account" ||
(this.controllerName == "account" && this.actionName != "logout" && this.actionName != "login")) {
this.Redirect("/admin/login", 302)
}
}
//添加用户
func (this *UserController) Add() {
input := make(map[string]string)
errmsg := make(map[string]string)
if this.Ctx.Request.Method == "POST" {
username := strings.TrimSpace(this.GetString("username"))
password := strings.TrimSpace(this.GetString("password"))
password2 := strings.TrimSpace(this.GetString("password2"))
email := strings.TrimSpace(this.GetString("email"))
active, _ := this.GetInt("active")
input["username"] = username
input["password"] = password
input["password2"] = password2
input["email"] = email
valid := validation.Validation{}
if v := valid.Required(username, "username"); !v.Ok {
errmsg["username"] = "******"
} else if v := valid.MaxSize(username, 15, "username"); !v.Ok {
errmsg["username"] = "******"
}
if v := valid.Required(password, "password"); !v.Ok {
errmsg["password"] = "******"
}
if v := valid.Required(password2, "password2"); !v.Ok {
errmsg["password2"] = "请再次输入密码"
} else if password != password2 {
errmsg["password2"] = "两次输入的密码不一致"
}
if v := valid.Required(email, "email"); !v.Ok {
errmsg["email"] = "请输入email地址"
} else if v := valid.Email(email, "email"); !v.Ok {
errmsg["email"] = "Email无效"
}
if active > 0 {
active = 1
} else {
active = 0
}
if len(errmsg) == 0 {
var user models.User
user.UserName = username
user.Password = util.Md5([]byte(password))
user.Email = email
user.Active = int8(active)
if err := user.Insert(); err != nil {
this.showmsg(err.Error())
}
this.Redirect("/admin/user/list", 302)
}
}
this.Data["input"] = input
this.Data["errmsg"] = errmsg
this.display()
}