//登录 func (this *AccountController) Login() { if this.userid > 0 { this.Redirect("/admin", 302) } if this.GetString("dosubmit") == "yes" { account := strings.TrimSpace(this.GetString("account")) password := strings.TrimSpace(this.GetString("password")) remember := this.GetString("remember") if account != "" && password != "" { var user models.User user.UserName = account if user.Read("user_name") != nil || user.Password != util.Md5([]byte(password)) { this.Data["errmsg"] = "帐号或密码错误" } else if user.Active == 0 { this.Data["errmsg"] = "该帐号未激活" } else { user.LoginCount += 1 user.LastIp = this.getClientIp() user.LastLogin = this.getTime() user.Update() authkey := util.Md5([]byte(this.getClientIp() + "|" + user.Password)) if remember == "yes" { this.Ctx.SetCookie("auth", strconv.Itoa(user.Id)+"|"+authkey, 7*86400) } else { this.Ctx.SetCookie("auth", strconv.Itoa(user.Id)+"|"+authkey) } this.Redirect("/admin", 302) } } } this.TplNames = this.moduleName + "/account/login.html" }
//资料修改 func (this *AccountController) Profile() { user := models.User{Id: this.userid} if err := user.Read(); err != nil { this.showmsg(err.Error()) } if this.isPost() { errmsg := make(map[string]string) password := strings.TrimSpace(this.GetString("password")) newpassword := strings.TrimSpace(this.GetString("newpassword")) newpassword2 := strings.TrimSpace(this.GetString("newpassword2")) updated := false if newpassword != "" { if password == "" || util.Md5([]byte(password)) != user.Password { errmsg["password"] = "******" } else if len(newpassword) < 6 { errmsg["newpassword"] = "******" } else if newpassword != newpassword2 { errmsg["newpassword2"] = "两次输入的密码不一致" } if len(errmsg) == 0 { user.Password = util.Md5([]byte(newpassword)) user.Update("password") updated = true } } this.Data["updated"] = updated this.Data["errmsg"] = errmsg } this.Data["user"] = user this.display() }
//编辑用户 func (this *UserController) Edit() { id, _ := this.GetInt("id") user := models.User{Id: id} if err := user.Read(); err != nil { this.showmsg("用户不存在") } errmsg := make(map[string]string) if this.Ctx.Request.Method == "POST" { password := strings.TrimSpace(this.GetString("password")) password2 := strings.TrimSpace(this.GetString("password2")) email := strings.TrimSpace(this.GetString("email")) active, _ := this.GetInt("active") valid := validation.Validation{} if password != "" { if v := valid.Required(password2, "password2"); !v.Ok { errmsg["password2"] = "请再次输入密码" } else if password != password2 { errmsg["password2"] = "两次输入的密码不一致" } else { user.Password = util.Md5([]byte(password)) } } if v := valid.Required(email, "email"); !v.Ok { errmsg["email"] = "请输入email地址" } else if v := valid.Email(email, "email"); !v.Ok { errmsg["email"] = "Email无效" } else { user.Email = email } if active > 0 { user.Active = 1 } else { user.Active = 0 } if len(errmsg) == 0 { user.Update() this.Redirect("/admin/user/list", 302) } } this.Data["errmsg"] = errmsg this.Data["user"] = user this.display() }
//登录状态验证 func (this *baseController) auth() { arr := strings.Split(this.Ctx.GetCookie("auth"), "|") if len(arr) == 2 { idstr, password := arr[0], arr[1] userid, _ := strconv.Atoi(idstr) if userid > 0 { var user models.User user.Id = userid if user.Read() == nil && password == util.Md5([]byte(this.getClientIp()+"|"+user.Password)) { this.userid = user.Id this.username = user.UserName } } } if this.userid == 0 && (this.controllerName != "account" || (this.controllerName == "account" && this.actionName != "logout" && this.actionName != "login")) { this.Redirect("/admin/login", 302) } }
//添加用户 func (this *UserController) Add() { input := make(map[string]string) errmsg := make(map[string]string) if this.Ctx.Request.Method == "POST" { username := strings.TrimSpace(this.GetString("username")) password := strings.TrimSpace(this.GetString("password")) password2 := strings.TrimSpace(this.GetString("password2")) email := strings.TrimSpace(this.GetString("email")) active, _ := this.GetInt("active") input["username"] = username input["password"] = password input["password2"] = password2 input["email"] = email valid := validation.Validation{} if v := valid.Required(username, "username"); !v.Ok { errmsg["username"] = "******" } else if v := valid.MaxSize(username, 15, "username"); !v.Ok { errmsg["username"] = "******" } if v := valid.Required(password, "password"); !v.Ok { errmsg["password"] = "******" } if v := valid.Required(password2, "password2"); !v.Ok { errmsg["password2"] = "请再次输入密码" } else if password != password2 { errmsg["password2"] = "两次输入的密码不一致" } if v := valid.Required(email, "email"); !v.Ok { errmsg["email"] = "请输入email地址" } else if v := valid.Email(email, "email"); !v.Ok { errmsg["email"] = "Email无效" } if active > 0 { active = 1 } else { active = 0 } if len(errmsg) == 0 { var user models.User user.UserName = username user.Password = util.Md5([]byte(password)) user.Email = email user.Active = int8(active) if err := user.Insert(); err != nil { this.showmsg(err.Error()) } this.Redirect("/admin/user/list", 302) } } this.Data["input"] = input this.Data["errmsg"] = errmsg this.display() }