public HttpResponseMessage ChangePassword() { string oldpwd = HttpContext.Current.Request["oldpwd"]; string newpwd = HttpContext.Current.Request["newpwd"]; JObject data = new JObject(); int Status = 0; string Message = "操作成功"; var userInfo = HttpContext.Current.GetOwinContext().Authentication.User.Claims; int mid = Convert.ToInt32(userInfo.ElementAt(0).Value); EMC.Model.tb001 model = EMC.DbUtility.Utility.GetModel <EMC.Model.tb001>(mid); if (model.F003TB001 != EMC.Com.Common.StringToMD5(oldpwd)) { Status = 1; Message = "原始密码不正确"; } else { model.F003TB001 = EMC.Com.Common.StringToMD5(newpwd); model.F200TB001 = mid; model.F201TB001 = DateTime.Now; EMC.DbUtility.Utility.Update <EMC.Model.tb001>(model); } ReturnJson.Add("Status", Status); ReturnJson.Add("Message", Message); ReturnJson.Add("data", data); return(ResponseJson(this.ReturnJson.ToString())); }
public HttpResponseMessage GetSystemConfig() { JObject data = new JObject(); int Status = 0; string Message = "操作成功"; var userInfo = HttpContext.Current.GetOwinContext().Authentication.User.Claims; int mid = Convert.ToInt32(userInfo.ElementAt(0).Value); EMC.Model.tb001 model = EMC.DbUtility.Utility.GetModel <EMC.Model.tb001>(mid); data.Add("AdminName", model.F001TB001); List <EMC.Model.tb003> menuList = dal_System.GetMainMenu(mid); JArray listMenu = new JArray(); foreach (EMC.Model.tb003 modelTB003 in menuList) { JObject j = new JObject(); j.Add("ID", modelTB003.NOIDTB003); j.Add("Name", modelTB003.F001TB003); listMenu.Add(j); } data.Add("MainMenu", listMenu); ReturnJson.Add("Status", Status); ReturnJson.Add("Message", Message); ReturnJson.Add("data", data); return(ResponseJson(this.ReturnJson.ToString())); }
public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context) { string adminID = ""; #region 登陆验证 string userName = context.UserName; string password = EMC.Com.Common.StringToMD5(context.Password); string message = ""; EMC.Model.tb001 model = null; int res = dal.AdminLogin(userName, password, EMC.Com.Common.GetIPAddress(), ref model, ref message); if (res != 0) { context.SetError("invalid_grant", message); return; } else { adminID = model.NOIDTB001.ToString(); } #endregion var identity = new ClaimsIdentity(context.Options.AuthenticationType); identity.AddClaim(new Claim("adminID", adminID)); context.Validated(identity); await base.GrantResourceOwnerCredentials(context); }
/// <summary> /// 管理员登录 /// </summary> /// <returns>0=成功;1=帐号密码错误;2=帐号已经过期;3=帐号已经锁定</returns> public int AdminLogin(string F002TB001, string F003TB001, string F006TB001, ref EMC.Model.tb001 model, ref string Message) { int res = 1; #region 管理员登录 string sqlStr = "select * from TB001 where F002TB001={0} and F003TB001={1}"; model = db.T(sqlStr, F002TB001, F003TB001).ExecuteDynamicObject(); if (model != null) { if (model.F004TB001 > DateTime.Now || model.F005TB001 < DateTime.Now) { res = 2; Message = "帐号已经过期"; } else if (model.F099TB001 != 1) { res = 3; Message = "帐号已经锁定"; } else { res = 0; Message = "登录成功"; } } else { res = 1; Message = "用户名或者密码错误"; } #endregion #region 插入登录日志 try { using (var tran = db.BeginTransaction()) { //更新最后登录时间日志 if (res == 0) { tran.T("update TB001 set F006TB001={1},F007TB001=now() where NOIDTB001={0}", model.NOIDTB001, F006TB001).ExecuteNonQuery(); } //插入登录日志 Model.tb1001 model_TB1001 = new Model.tb1001(); model_TB1001.F001TB1001 = F002TB001; model_TB1001.F002TB1001 = F003TB001; model_TB1001.F003TB1001 = res; model_TB1001.F004TB1001 = Message; model_TB1001.F005TB1001 = F006TB001; model_TB1001.TIMETB1001 = DateTime.Now; TModel tmodel = EMC.DbUtility.Utility.GetInsertTModel <EMC.Model.tb1001>(model_TB1001); tran.T(tmodel.SQL, tmodel.ParameterValues).ExecuteNonQuery(); tran.Commit(); } } catch { //插入日志失败 暂不做处理 } #endregion return(res); }