@Auth(text = "修改密码") @RequestMapping("changePassword") @ResponseBody public Resp changePassword(HttpServletRequest request, @Valid @RequestBody ChangePwdDto req) { log.info("IP地址:{},修改用户{}的密码", HttpUtil.getIpAddress(request), getUser().getUsername()); systemService.changePassword(req, getUser()); SecurityUtil.getSession().setAttribute(LoginUser.PWD_CHANGE_FLAG, 1); return success(); }
bo.setId(nextseq(AccessLogBo.SEQUENCE)); bo.init(user); bo.setUserId(user.getUserId()); bo.setUsername(user.getUsername()); bo.setNickname(user.getNickName()); String className = joinPoint.getTarget().getClass().getName(); bo.setClassName(className);
@Override protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authcToken) throws AuthenticationException { UsernamePasswordToken token = (UsernamePasswordToken) authcToken; UserData user = cmsService.getUser(token.getUsername()); if (null == user) { throw new UnknownAccountException("用户不存在"); } if (user.getStatus() != null && user.getStatus() == 1) { throw new DisabledAccountException("用户被锁定"); } SecurityUtil.getSession().setAttribute(LoginUser.PWD_CHANGE_FLAG, user.getPwdChange()); LoginUser loginUser = new LoginUser(); loginUser.setUserId(user.getId()); loginUser.setUsername(user.getUsername()); loginUser.setNickName(user.getNickname()); return new SimpleAuthenticationInfo(loginUser, user.getPassword(), getName()); }
@Override protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals) { LoginUser user = SecurityUtil.getPrincipal(); List<RoleData> roleList = cmsService.getRoles(user.getUsername()); SimpleAuthorizationInfo info = new SimpleAuthorizationInfo(); Set<String> roles = new HashSet<>(); for (RoleData role : roleList) { roles.add(role.getRoleName()); } info.setRoles(roles); List<FuncData> funList = cmsService.getFunsByRoles(roles); Set<String> funs = new HashSet<>(); for (FuncData fun : funList) { funs.add(fun.getFuncName()); } info.setStringPermissions(funs); return info; } }
@Override public void changePassword(ChangePwdDto req, LoginUser user) { if (!req.getFirstPwd().equals(req.getSecondPwd())) { throw ClientException.build(msa, SystemCode.E9994); } UserBo bo = new UserBo(); bo.setUsername(user.getUsername()); UserBo loginUser = userDao.selectOne(bo); String password = Md5Util.encode(user.getUsername() + Md5Util.encode(req.getPassword())); if (!password.equals(loginUser.getPassword())) { throw ClientException.build(msa, SystemCode.E9995); } String newPwd = Md5Util.encode(user.getUsername() + Md5Util.encode(req.getFirstPwd())); UserBo updBo = new UserBo(); updBo.setId(loginUser.getId()); updBo.setPassword(newPwd); updBo.setPwdChange(1); updBo.setPwdChangeDate(new Date()); userDao.update(updBo); }
@Override public AuthModel getUserAuth(String ipAddress, LoginUser user) { AuthModel result = new AuthModel(); List<RoleBo> roleList = roleService.getRoles(user.getUsername()); Set<String> roleSet = new HashSet<>(); List<Role> roles = new ArrayList<>(); log.debug("用户{}的角色列表:{}", user.getUsername(), JsonUtil.toJson(roleSet)); log.debug("用户{}的权限列表:{}", user.getUsername(), JsonUtil.toJson(privileges)); result.setAuths(auths); log.debug("用户{}的权限:{}", user.getUsername(), JsonUtil.toJson(auths)); log.debug("用户{}菜单列表:{}", user.getUsername(), JsonUtil.toJson(menus)); result.setMenus(menus); userBo.setUsername(user.getUsername()); userBo.setLastLoginIp(ipAddress); userBo.setLastLoginDate(new Date());
String username = user.getUsername(); Serializable sessionId = session.getId();
result.setAuthor(user.getUsername()); result.setPackageName(req.getPackageName()); result.setModuleName(req.getModuleName());