public BaseApiResponse <string> Post(GetAfterCaseByDateRequest request)
{
var response = new BaseApiResponse <string>();
try
{
if (request.IsValid())
{
DateTime beginData = DateTime.ParseExact(request.BeginDate.NullSafe(), "yyyy/MM/dd", null);
DateTime?endDate = null;
if (!string.IsNullOrEmpty(request.EndDate.NullSafe()))
{
endDate = DateTime.ParseExact(request.EndDate.NullSafe(), "yyyy/MM/dd", null);
}
var afterCases = this.GetAfterCaseByData(beginData, endDate);
response.Status = StatusEnum.Success.ToString();
response.Message = "Success";
response.Data = ConvertToString(symm.EncryptFromString(afterCases.ToJson(), Encoding.UTF8));
}
else
{
response.Status = StatusEnum.Failed.ToString();
response.Message = request.GetErrorMessage();
}
}
catch (Exception ex)
{
response.Status = StatusEnum.Failed.ToString();
response.Message = ex.Message;
}
return(response);
}
public byte[] HashPass(string password)
{
if (password == null)
{
throw new ArgumentNullException("Password is Null");
}
SymmCrypto symm = new SymmCrypto(_Key, _IV);
return(symm.EncryptFromString(password));
}
public override string HashPassword(string password)
{
if (password == null)
{
throw new ArgumentNullException("Password is Null");
}
SymmCrypto symm = new SymmCrypto(_Key, _IV);
return(Convert.ToBase64String(symm.EncryptFromString(password)));
}
public async Task <ActionResult> Login()
{
//统一登陆
if (WebConfigurationManager.AppSettings["LoginMode"] == "SSL")
{
var returnurl = Server.UrlEncode(HttpContext.Request.Url.AbsoluteUri);
if (!Request.Url.AbsoluteUri.ToLower().Contains(WebConfigurationManager.AppSettings["LoginKey"].ToLower()))
{
Response.Redirect(WebConfigurationManager.AppSettings["LoginUrl"] + "?returnUrl=" + returnurl + "&systemName=" + WebConfigurationManager.AppSettings["SystemName"]);
return(null);
}
byte[] _Key = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["Cryptokey"] ?? "HSJF!@#$12345678");
byte[] _IV = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["CryptoIV"] ?? "HSJF^%$#12345678");
var userinfo = Request.QueryString[WebConfigurationManager.AppSettings["LoginKey"]];
byte[] outputb = Convert.FromBase64String(userinfo);
SymmCrypto symm = new SymmCrypto(_Key, _IV);
var userstr = symm.DecryptToString(outputb, Encoding.UTF8);
JavaScriptSerializer jsonSerializer = new JavaScriptSerializer();
var luser = (LoginUser)jsonSerializer.Deserialize(userstr, typeof(LoginUser));
Microsoft.Owin.IOwinContext OwinContext = HttpContext.GetOwinContext();
//初始化用户管理相关
UserStore userStore = new UserStore();
UserDAL userdal = new UserDAL();
UserManager UserManager = new UserManager(userStore);
Com.HSJF.Infrastructure.Identity.Model.User user = new Com.HSJF.Infrastructure.Identity.Model.User {
UserName = luser.LoginName
};
//byte[] _Key = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["Cryptokey"] ?? "HSJF!@#$12345678");
//byte[] _IV = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["CryptoIV"] ?? "HSJF^%$#12345678");
var newuser = UserManager.FindByName(luser.LoginName);
user.Password = symm.DecryptToString(Convert.FromBase64String(newuser.Password));
if (!userdal.FindUser(user.UserName, Convert.ToBase64String(symm.EncryptFromString(user.Password))))
{
ModelState.AddModelError("", "用户名不存在或者已被禁用!");
return(View());
}
Microsoft.AspNet.Identity.Owin.SignInStatus SignInStatus = await PrivateLogin(user.UserName, user.Password);
System.Web.HttpContext.Current.Session["_currentUser"] = UserManager.FindByName(user.UserName);
return(RedirectToAction("Index", "Home"));
}
return(View());
}
public ActionResult ChangePassword()
{
if (WebConfigurationManager.AppSettings["LoginMode"] == "SSL")
{
byte[] _Key = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["Cryptokey"] ?? "HSJF!@#$12345678");
byte[] _IV = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["CryptoIV"] ?? "HSJF^%$#12345678");
var sysname = WebConfigurationManager.AppSettings["SystemName"];
var username = CurrentUser.UserName;
SymmCrypto symm = new SymmCrypto(_Key, _IV);
var safeuser = symm.EncryptFromString(username, Encoding.UTF8);
var user = Convert.ToBase64String(safeuser);
Response.Redirect(WebConfigurationManager.AppSettings["LoginUrl"] + "Account/ModifyPassword?username="******"&systemName=" + WebConfigurationManager.AppSettings["SystemName"]);
return(null);
}
else
{
var model = new ChangePasswordViewModel();
return(View());
}
}
public async Task <ActionResult> Login(LoginViewModel usermodel)
{
if (!ModelState.IsValid)
{
return(View(usermodel));
}
Microsoft.Owin.IOwinContext OwinContext = HttpContext.GetOwinContext();
//初始化用户管理相关
UserStore userStore = new UserStore();
UserDAL userdal = new UserDAL();
UserManager UserManager = new UserManager(userStore);
//初始化权限管理相关
PermissionStore ps = new PermissionStore();
PermissionManager pm = new PermissionManager(ps);
//登录
SignInManager signInManager = new SignInManager(UserManager, OwinContext.Authentication);
Microsoft.AspNet.Identity.Owin.SignInStatus SignInStatus;
string pass = usermodel.Password;
string username = usermodel.LoginName;
var user = new Com.HSJF.Infrastructure.Identity.Model.User {
UserName = username, Password = pass
};
byte[] _Key = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["Cryptokey"] ?? "HSJF!@#$12345678");
byte[] _IV = Encoding.UTF8.GetBytes(WebConfigurationManager.AppSettings["CryptoIV"] ?? "HSJF^%$#12345678");
SymmCrypto symm = new SymmCrypto(_Key, _IV);
if (!userdal.FindUser(usermodel.LoginName, Convert.ToBase64String(symm.EncryptFromString(usermodel.Password))))
{
ModelState.AddModelError("", "用户名不存在或者已被禁用!");
return(View());
}
//域登陆
if (WebConfigurationManager.AppSettings["LoginMode"] == "LDAP")
{
LdapAuthentication ldap = new LdapAuthentication();
if (!ldap.IsAuthenticated(usermodel.LoginName, usermodel.Password))
{
ModelState.AddModelError("", "用户名或者密码错误!");
return(View());
}
var newuser = UserManager.FindByName(username);
user.Password = symm.DecryptToString(Convert.FromBase64String(newuser.Password));
}
SignInStatus = await PrivateLogin(user.UserName, user.Password);
switch (SignInStatus)
{
//成功
case Microsoft.AspNet.Identity.Owin.SignInStatus.Success:
//此处表示已经在startup 中配置
//标示
//System.Security.Claims.ClaimsIdentity identity = UserManager.CreateIdentity(user, DefaultAuthenticationTypes.ApplicationCookie);
//授权登陆
//AutherticationManager.SignIn(new Microsoft.Owin.Security.AuthenticationProperties { IsPersistent = true }, identity);
System.Web.HttpContext.Current.Session["_currentUser"] = signInManager.UserManager.FindByName(user.UserName);
return(RedirectToAction("Index", "Home"));
//锁定
case Microsoft.AspNet.Identity.Owin.SignInStatus.LockedOut:
Response.Write("LockedOut!");
break;
//要求验证
case Microsoft.AspNet.Identity.Owin.SignInStatus.RequiresVerification:
Response.Write("RequiresVerification!");
break;
//登录失败
case Microsoft.AspNet.Identity.Owin.SignInStatus.Failure:
ModelState.AddModelError("", @"用户名或者密码错误!");
return(View());
}
return(View());
}
