public void Changepwd([FromBody] ChangePwdModel changePwd)
{
HttpContext.Request.Cookies.TryGetValue(WorkFlowTaskAbpConsts.CookiesUserId,
out var cookiesId);
var uid = HttpContext.Session.GetUserId() ?? HttpContext.Session.SetUserId(cookiesId);
if (uid.IsNullOrEmpty())
{
throw new UserFriendlyException("更改失败", "登陆失效,请重新登陆");
}
if (changePwd.OldPass.IsNullOrEmpty() || changePwd.NewPass.IsNullOrEmpty())
{
throw new UserFriendlyException("更改失败", "旧密码或新密码不能为空!");
}
var user = _userManager.FindById(uid);
if (!user.Password.Equals(WorkFlowTaskAbpConsts.GetEncrpyedAccessToken(changePwd.OldPass)))
{
throw new UserFriendlyException("更改失败", "旧密码不正确");
}
user.Password = WorkFlowTaskAbpConsts.GetEncrpyedAccessToken(changePwd.NewPass);
_userManager.Update(user);
}
private bool CheckPassword(User user, string plainPassword)
{
return(WorkFlowTaskAbpConsts.GetEncrpyedAccessToken(plainPassword) == user.Password);
}
