private bool CheckValidateCode(LogOnModel model)
{
//#if DEBUG
//return true;
//#endif
if (model.ValidateCode == null)
return true;
var code=Session["ValidateCode"];
if (code==null||(model.ValidateCode.ToUpper() != code.ToString().ToUpper()))
{
ModelState.AddModelError("", _translation.T("loginFormValidCodeError"));
return false;
}
return true;
}
public ActionResult LogOn(LogOnModel model, AuthorizeRequestModel requestModel)
{
CheckReturnUrl(requestModel);
if (ModelState.IsValid && CheckValidateCode(model))
{
model.AccountName = model.AccountName.Trim();
IAccount account;
if (_svcAuth.Login(model.AccountName, model.Password, out account))
{
CheckClient(requestModel, account.Id); //判断用户有无权限访问应用 暂时注释;2012-8/1
_svcAuthentication.SignIn(account, model.RememberMe);
var returnUrl= _authorizationCodeHolder.GetAuthorizationProvider(requestModel.response_type??"").GetAuthorizeReponseUrl(account, requestModel);
return GetReturlUrl(requestModel, returnUrl);
}
else
{
ModelState.AddModelError("", _translation.T("loginFormAccountError"));
}
}
if (model.SourceType == 1)
return View("MLogOn", model);
else
return View(model);
}
