public void Changepwd([FromBody] ChangePwdModel changePwd) { HttpContext.Request.Cookies.TryGetValue(WorkFlowTaskAbpConsts.CookiesUserId, out var cookiesId); var uid = HttpContext.Session.GetUserId() ?? HttpContext.Session.SetUserId(cookiesId); if (uid.IsNullOrEmpty()) { throw new UserFriendlyException("更改失败", "登陆失效,请重新登陆"); } if (changePwd.OldPass.IsNullOrEmpty() || changePwd.NewPass.IsNullOrEmpty()) { throw new UserFriendlyException("更改失败", "旧密码或新密码不能为空!"); } var user = _userManager.FindById(uid); if (!user.Password.Equals(WorkFlowTaskAbpConsts.GetEncrpyedAccessToken(changePwd.OldPass))) { throw new UserFriendlyException("更改失败", "旧密码不正确"); } user.Password = WorkFlowTaskAbpConsts.GetEncrpyedAccessToken(changePwd.NewPass); _userManager.Update(user); }
private bool CheckPassword(User user, string plainPassword) { return(WorkFlowTaskAbpConsts.GetEncrpyedAccessToken(plainPassword) == user.Password); }